XOOPS events Module - id SQL Injection

XOOPS events Module - id SQL Injection source: https://www.securityfocus.com/bid/27890/info The XOOPS 'events' module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

saplpd-overflow.txt

/ http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060042.html Exploit for SapLPD 6.28 Win32 by BackBone Tested with SapLPD 6.28 on Windows XP SP2 Groetjes aan mijn sletjes Ops,Doop,Gabber,head,ps,sj,dd en de rest! / include include include pragma comment lib,"ws232" define...

titan-heap-py.txt

!/usr/bin/python First of all, thanks to my wife Edita. Remote Heap overflow in Titan FTP Server version 6.05 build 550 DELE - probably other commands are vulnerable too PoC tested on WinXP sp1 EAX and ESI are overwritten with 41414141 and 44444444 Greetz to muts, m1k1, bolexxx and crew from...

ITechBids 5.0 - 'item_id' SQL Injection

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!QTRinux!!aNa TrYaGi!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! iTechBids v3 Gold Remote SQL injection AUTHOR : QTRinux Discovered by : QTRinux Exploited By : QTRinux TrYaG Team Members : AlQaTaRi - POISON -Mr.SH4R3S and all TrYaGi , cold-z3ro , GoldM Site : Tryag.cc...

Sejoong Namo ActiveSquare 6 - 'NamoInstaller.dll' ActiveX Buffer Overflow

// HeapSpray - execute calculator shellcode =...

moinmoin-cookie.txt

!/usr/bin/python Exploit for the MOINDID cookie Bug MoinMoin 1.5.x Find your patch in : http://hg.moinmo.in/moin/1.5/rev/e69a16b6e630 Bug and exploit coded by just a nonroot and colombian user Enero 21 de 2008 Greets: el directorio and all the SL community import urllib2,sys print "MoinMoin host:...

aflog-sqlxss.txt

Name: aflog 1.01 and possibly earlier Webiste: http://aflog.org/ Vulnerability type: SQL Injection comments.php and XSS Author: shinmai, 2008-01-22 Description: SQL INJECTION: SQL injection is possible in comments.php for the GET variable 'id', like this:...

LulieBlog 1.02 - SQL Injection

LulieBlog Version 1.02 Remote Sql Injection BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://sourceforge.net/project/platformdownload.php?groupid=204083 Injection Adress : http://Sitename/voircom.php?id=SQL CODE SQL CODE :...

SDL_image 1.2.6 - Invalid '.GIF' File LWZ Minimum Code Size Remote Buffer Overflow

source: https://www.securityfocus.com/bid/27417/info The SDLimage library is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. The issue occurs when handling malformed GIF images. Attackers can leverage this issue to execu...

RTS Sentry PTZCamPanelCtrl ActiveX控件远程栈溢出漏洞

BUGTRAQ ID: 27304 RTS Sentry是系列视频监控和记录设备。 RTS Sentry的ActiveX控件实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 RTS Sentry监控设备客户端所安装的PTZCamPanelCtrl ActiveX控件（CamPanel.dll）没有正确地处理对ConnectServer函数的输入参数，如果用户受骗访问了恶意站点并向该方式传送了超长user参数的话，就可能触发栈溢出，导致执行任意指令。 RTS Sentry CamPanel.dll 2.1.0.2 RTS Sentry ----------...

Toshiba Surveillance (MeIpCamX.DLL 1.0.0.4) Remote BOF Exploit

No description provided by source. !-- Toshiba Surveillance Surveillix RecordSend Class MeIpCamX.DLL 1.0.0.4 remote buffer overflow exploit IE7/xpsp2 a demo camera: http://wb02-demo.surveillixdvrsupport.com/Ctl/index.htm?Cus?Audio codebase: http://wb02-demo.surveillixdvrsupport.com/Ctl/MeIpCamX.c...

Gradman <= 0.1.3 (agregar_info.php) Local File Inclusion Exploit

No description provided by source. --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Gradman = 0.1.3 agregarinfo.php?tabla= Local File Inclusion Exploit +==--...

nuvico-heap.txt

//add su one, user: sun pass: tzu shellcode =...

UploadImage/UploadScript 1.0 Remote Change Admin Password Exploit

Exploit for unknown platform in category web applications ================================================================= UploadImage/UploadScript 1.0 Remote Change Admin Password Exploit ================================================================= 126 $result.=" ."; else $result.=" "...

Lotus Domino Web Access ActiveX control dwa7w.dll buffer overflow

Added: 12/31/2007 CVE: CVE-2007-4474 BID: 26972 OSVDB: 40954 Background Lotus Domino Web Access provides capabilities similar to those of the Lotus Notes client, delivered through a web browser. Problem A buffer overflow vulnerability in the Lotus Domino Web Access ActiveX control in the dwa7w.dl...

OpenBiblio 0.x - theme_preview.php?themeName Cross-Site Scripting

OpenBiblio 0.x - themepreview.php?themeName Cross-Site Scripting source: https://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site...

PMOS Help Desk <= 2.4 Remote Command Execution Exploit

No description provided by source. ?php / ------------------------------------------------------ PMOS Help Desk = 2.4 Remote Command Execution Exploit ------------------------------------------------------ author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://www.h2desk.com/pmos...

Microsoft Windows Live Messenger联系人列表处理远程拒绝服务漏洞

BUGTRAQ ID: 18639 Windows Live Messenger是微软即将推出的Windows Live产品系列的一个重要组成部分，它将是新一代的MSN Messenger。 Live Messenger在处理畸形的联系人列表（.ctt）文件时存在堆溢出漏洞，如果用户受骗导入了恶意的.ctt文件的话，就会触发这个漏洞，导致拒绝服务。 Microsoft Windows Live Messenger 8.0 Microsoft --------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

MS Windows Color Management Module Overflow Exploit (MS05-036) (2)

No description provided by source. / \ MS05-036 ICC Stack Overflow Exploit / by Darkeagle \ / GreetZ: all unl0ckerz, ed, f0st, uf0, sowhat, str0ke, black, redsand \ / \ special tnx to snooq for his PoC. / \ / xploit was tested on WinXP SP1 RUS with explorer.exe \ / 02.08.05 \ /...

[waraxe-2007-SA#060] - Sensitive info disclosure in CuteNews <= 1.4.5

waraxe-2007-SA060 - Sensitive info disclosure in CuteNews = 1.4.5 ===================================================================== Author: Janek Vind "waraxe" Date: 24. December 2007 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-60.html Vulnerable software description: Cute new...