1619 matches found
CVE-2007-3280
The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...
CVE-2007-3280
The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...
apache2058-rewrite.txt
/ apache mod rewrite exploit win32 By: fabio/b0x oc-192, old CoTS member Vuln details: http://www.securityfocus.com/archive/1/archive/1/443870/100/0/threaded Code: bind shell on port 4445, tested on apache 2.0.58 with modrewrite windows 2003 original exploit http://milw0rm.com/exploits/3680 only...
dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx)
No description provided by source. / dproxy-v1.c Copyright c 2007 by dproxy-nexgen remote root exploit x86-lnx by mu-b - Mar 2007 - Tested on: dproxy-nexgen .tar.gz This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as publish...
Webshell is how to bypass the Firewall with elevated permissions? - Vulnerability warning-the black bar safety net
This article speaks of the focus is on webshell permissions of the upgrade and bypass the firewall, master do not laugh. Cut the crap, let's get into the chase. First, determine what goal: http://www.sun. com, a common virtual host. Use Upfile vulnerability I believe we get the webshell is not...
VerliAdmin <= 0.3 (language.php) Local File Inclusion Exploit
Exploit for unknown platform in category web applications ============================================================= VerliAdmin = 0.3 language.php Local File Inclusion Exploit ============================================================= !/usr/bin/perl VerliAdmin = 0.3 Remote Command Execution...
Oracle <= 9i / 10g (read/write/execute) Exploitation Suite
No description provided by source. -- -- $Id: raptororaexec.sql,v 1.2 2006/11/23 23:40:16 raptor Exp $ -- -- raptororaexec.sql - java exploitation suite for oracle -- Copyright c 2006 Marco Ivaldi [email protected] -- -- This is an exploitation suite for Oracle written in Java. Use it to --...
linkssmbclient.txt
Links smbclient command execution ----------------------------------------------------------------------------- There is a flaw in the Links web browser, that allows malicious web sites to execute smbclient commands on the victim's machine. This flaw makes it possible to read any file from the...
MS Windows WebDav II (New) Remote Root Exploit
No description provided by source. // / 29/05/2003 - by Alumni - / / Microsoft IIS WebDAV New Exploit / / spawns shell on port 32768 / // include stdio.h include winsock.h include windows.h define SHELLCODELEN 753 define NOP 0x90 define BUFFERLEN 1024 define RET 0x41424344 define GMHOFF 30 define...
HP OpenView OmniBack II Generic Remote Exploit
No description provided by source. / HP OpenView OmniBack II generic remote Exploit by DiGiT - [email protected] Omniback is a network backup system by HP, widely used. took me some time to figure out how omniback communicated then it was just a matter of finding a bug. This lovely little exploit wi...
Alstrasoft e-Friends 4.85 - Remote Command Execution
Alstrasoft e-Friends 4.85 - Remote Command Execution !/usr/bin/perl AlstraSoft Efriends 4.85 Remote Command Execution Exploit Site : http://www.alstrasoft.com/efriends.htm Coded by Kw3RLn from Romanian Security Team a.K.A http://RST-CREW.NET Contact: [email protected] or [email protected] P...
VulnCheck KEV: CVE-2004-1464
Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases, Hypertext Transport Protocol HTTP access to the Cisco device...
freesshd-exploit.txt
!/usr/bin/env python """ Coded by Tauqeer Ahmad a.k.a 0x-Scientist-x0 ahmadtauqeeratyahoo.com Disclaimer: This Proof of concept exploit is for educational purpose only. Please do not use it against any system without prior permission. You are responsible for yourself for what you do with this cod...
Code injection
Jelsoft vBulletin accepts uploads of Cascading Style Sheets CSS and processes them in a way that allows remote authenticated administrators to gain shell access by uploading a CSS file that contains PHP code, then selecting the file via the style chooser, which causes the PHP code to be executed...
CVE-2006-2335
Jelsoft vBulletin accepts uploads of Cascading Style Sheets CSS and processes them in a way that allows remote authenticated administrators to gain shell access by uploading a CSS file that contains PHP code, then selecting the file via the style chooser, which causes the PHP code to be executed...
CVE-2006-2335
Jelsoft vBulletin (CSS upload handling) is affected by a vulnerability where uploading a CSS file containing PHP code and selecting it via the style chooser can result in the PHP code being executed. The issue is described as enabling remote authenticated administrators to gain shell access throu...
planetGallery admin login
google dork - inurl:planetgallery last path add to /admin/galleryadmin.php example: http://site.com/planetgallery/admin/galleryadmin.php no pass, no login, sending your shell. credits:tugr@,AlpEren...
Command injection
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "" backtick characters in the appliance's command line interface CLI...
CVE-2006-2043
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "" backtick characters in the appliance's command line interface CLI...
CVE-2006-2043
CVE-2006-2043 affects IP3 Networks NetAccess NA75 with the na-img-4.0.34.bin image; backtick characters in the appliance CLI enable local users to gain Unix shell access, indicating a command-injection-style vulnerability in the CLI parsing. No remediation details are provided in the supplied doc...