Netrek 2.12.0 pmessage2() Remote Limited Format String Exploit

Exploit for unknown platform in category dos / poc ============================================================== Netrek 2.12.0 pmessage2 Remote Limited Format String Exploit ============================================================== Luigi Auriemma Application: Netrek http://www.netrek.org...

Oracle 10g Database - SUBSCRIPTION_NAME SQL Injection (2)

Oracle 10g Database - SUBSCRIPTIONNAME SQL Injection 2 source: https://www.securityfocus.com/bid/13236/info Oracle database is prone to an SQL-injection vulnerability because the software fails to properly sanitize user-supplied data. The 'SUBSCRIPTIONNAME' parameter is vulnerable. Packages that...

Extreme phpBB 3.0.1 (functions.php) Remote File Include Exploit

Exploit for unknown platform in category web applications =============================================================== Extreme phpBB 3.0.1 functions.php Remote File Include Exploit =============================================================== C xoron Name: phpBB Extreme 3.0.1 phpbbrootpath...

snort-py.txt

!/usr/bin/python Snort DCE/RPC Preprocessor Buffer Overflow DoS Author: Trirat Puttaraksa http://sf-freedom.blogspot.com For educational purpose only This exploit just crash Snort 2.6.1 on Fedora Core 4. However, Code Execution may be possible, but I have no time to make it : I will post the...

Oracle 10g - KUPV$FT.ATTACH_JOB GrantRevoke dba Permission

Oracle 10g - KUPV$FT.ATTACHJOB GrantRevoke dba Permission !/usr/bin/perl Remote Oracle KUPV$FT.ATTACHJOB exploit 10g Grant or revoke dba permission to unprivileged user Tested on "Oracle Database 10g Enterprise Edition Release 10.1.0.3.0" REF: https://www.securityfocus.com/bid/16294 AUTHOR: Andre...

Pyrophobia 2.1.3.1 - Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/22667/info Pyrophobia is prone to multiple input-validation vulnerabilities, including multiple local file-include issues and multiple cross-site scripting issues. An attacker can exploit these issues to steal cookie-based authentication credentials, view...

phpnuke-sql.txt

exploit2.asp 'Update: + Get Header 'Update: + Get Whois Info '=============================================================================================== % function functionControl1 setTimeout"functionControl2",2000; function functionControl2 ifdocument.form1.field1.value=="" alert"Exploit...

NukeSentinel 2.5.05 - 'nsbypass.php' Blind SQL Injection

!/usr/bin/php URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -victim Opts Options: -isadmin Is the victim an Admin 1 or a normal user default=0 ? -prefix Table prefix default=nuke -tid If you have already used this sploit -b...

NukeSentinel 2.5.05 - nukesentinel.php File Disclosure

NukeSentinel 2.5.05 - nukesentinel.php File Disclosure !/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -u...

VS-Link-Partner <= 2.1 (script_pfad) Remote File Include Exploit

Exploit for unknown platform in category web applications ================================================================ VS-Link-Partner VS-Link-Partner //'=============================================================================================== //'Script Name: VS-Link-Partner //'.... //'...

Drupal 5.1 - Post Comments Remote Command Execution

Drupal 5.1 - Post Comments Remote Command Execution !/usr/bin/perl $Id: milw0rmdrupalv5.pl,v 0.2 2007/02/15 13:40:29 str0ke Exp $ milw0rmdrupalv5.pl - Drupal Description ----------- Previews on comments were not passed through normal form validation routines, enabling users with the 'post comment...

LightRO CMS 1.0 - index.php?projectid SQL Injection

LightRO CMS 1.0 - index.php?projectid SQL Injection exploit2.asp 'Update: + Get Header 'Update: + Get Whois Info '=============================================================================================== % function functionControl1 setTimeout"functionControl2",2000; function functionControl...

Advanced Poll 2.0.5-dev - Remote Admin Session Generator

!/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...

Categories hierarchy phpBB Mod 2.1.2 - &#039;phpbb_root_path&#039; Remote File Inclusion

C xoron Name: Categories hierarchy v2.1.2 phpbbrootpath Remote File Include Exploit Script name: Ptifo mod-CH212installed Author: xoron Exploit coded by xoron Download: http://sourceforge.net/project/showfiles.php?groupid=125710 xoron.biz - xoron.info Thanx: str0ke, kacper, k1tk4t, SHiKA, can bjo...

Photo Galerie Standard 1.1 - view.php SQL Injection

Photo Galerie Standard 1.1 - view.php SQL Injection Title : Photo Galerie Standard = 1.1 view.php Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://noname-media.com $$ : Free SQL--------------------------------------------------------- http://target/path//view.php?id=S...

EQdkp 1.3.1 - Referer Spoof Remote Database Backup

EQdkp 1.3.1 - Referer Spoof Remote Database Backup Title: EQdkp = 1.3.1 Referer Spoof to access to SQL Database URL: http://www.eqdkp.com Hook: "Powered by EQdkp" Author: Eight10 Contact: [email protected]...

CA BrightStor ARCserve - lgserver.exe Remote Stack Overflow

CA BrightStor ARCserve - lgserver.exe Remote Stack Overflow !/usr/bin/python Remote exploit for the CA BrightStor Arcserve stack overflow as described in http://www.securityfocus.com/archive/1/458648/30/0/threaded Winny Thomas ;- Author shall bear no responsibility for any screw ups caused by usi...

Galeria Zdjec &lt;= 3.0 (zd_numer.php) Local File Include Exploit

No description provided by source. !/usr/bin/perl Script Name: Galeria Zdjec = v3.0 zdnumer.php Local File Include Exploit Coded by : ajann Author : ajann Contact : : $$ : Free use IO::Socket; use LWP::Simple; @apache= "../../../../../var/log/httpd/accesslog",...

Extcalendar 2 - profile.php Remote User Pass Change

Extcalendar 2 - profile.php Remote User Pass Change Account Information Username Password Confirm Password E-mail Address Other Details First Name Last Name Home page td class='t...

gnopaste &lt;= 0.5.3 &#40;index.php&#41; Remote File Include Vulnerability

t3K t4b4nc4 gnopaste = 0.5.3 index.php Remote File Include Vulnerability Script site: http://sourceforge.net/projects/gnopaste Find by TrZiNDaN Greetings; ELMuHaMMeD,CyberWolf,CrackersChild,EntriKa,Xyu,Sehzade, B4ct3ry,M3rhametsiz,Cold Z3ro,e-system,blackwolf,Paradox T3K T4B4NC4 Contact:...