Phpwiki Ploticus Remote Code Execution

The Ploticus module in PhpWiki 1.5.0 allows remote attackers to execute arbitrary code via command injection. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Phpwiki Ploticus Remote Code...

Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution (1)

Rejetto HTTP File Server HFS 2.3.x - Remote Command Execution 1 Exploit Title: HttpFileServer 2.3.x Remote Command Execution Google Dork: intext:"httpfileserver 2.3" Date: 11-09-2014 Remote: Yes Exploit Author: Daniele Linguaglossa Vendor Homepage: http://rejetto.com/ Software Link:...

HttpFileServer 2.3.x Remote Command Execution

Affected software: http://sourceforge.net/projects/hfs/ Version : 2.3x Exploit Title: HttpFileServer 2.3.x Remote Command Execution Google Dork: intext:"httpfileserver 2.3" Date: 11-09-2014 Remote: Yes Exploit Author: Daniele Linguaglossa Vendor Homepage: http://rejetto.com/ Software Link:...

PHP Stock Management System 1.02 - Multiple Persistent Cross Site Scripting Vulnerabilities

Exploit for php platform in category web applications ​ Exploit Title: Multiple Persistent Cross Site Scripting Vulnerabilities in PHP Stock Management System 1.02 Date: 25 Aug 2014 Exploit Author: ​Ragha Deepthi K R Vendor Homepage: ​http://www.posnic.com/​ Software Link:​...

DirPHP 1.0 - LFI Vulnerability

No description provided by source. !/usr/bin/env python -- coding:utf-8 -- from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class TestPOCPOCBase: vulID = '87159' version = '1' vulDate = '1406390400' createDate = '1442937600' references =...

DjVuLibre <= 3.5.25.3 - Out of Bounds Access Violation

No description provided by source. from shutil import copyfile import sys """ Exploit Title: DjVuLibre = 3.5.25 Out of Bounds Access Violation Date: 07/14/24 Exploit Author: drone @dronesec Vendor: http://djvu.sourceforge.net/ Software link:...

DjVuLibre 3.5.25.3 - Out of Bounds Access Violation

from shutil import copyfile import sys """ Exploit Title: DjVuLibre .text:004D3BC5 mov eax, eax+ecx4 .text:004D3BC8 test eax, eax .text:004D3BCA jnz short loc We overwrite 4 bytes in an FG44 chunk header with \xff\xff\xff\xff: 46 47 34 34 00 00 04 6E 00 64 01 02 FF FF FF FF 80 FF...

DjVuLibre 3.5.25.3 - Out of Bounds Access Violation

DjVuLibre 3.5.25.3 - Out of Bounds Access Violation from shutil import copyfile import sys """ Exploit Title: DjVuLibre .text:004D3BC5 mov eax, eax+ecx4 .text:004D3BC8 test eax, eax .text:004D3BCA jnz short loc We overwrite 4 bytes in an FG44 chunk header with \xff\xff\xff\xff: 46 47 34 34 00 00 ...

OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection Vulnerabilities

OL-Commerce version 2.1.1 suffers from cross site scripting and remote SQL injection vulnerabilities. OL-Commerce v2.1.1 - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : email protected , email protected .:...

deeemm cms (dmcms) 0.7.4 - Multiple Vulnerabilities

No description provided by source. DeeEmm CMS Sql Injection/Rfi AUTHOR : IRCRASH R3d.W0rm Sina Yazdanmehr Discovered by : IRCRASH R3d.W0rm Sina Yazdanmehr Our Site : Http://IRCRASH.COM IRCRASH Team Members : Dr.Crash - R3d.w0rm Sina Yazdanmehr Script Download :...

Open and Compact FTPd Pre-Authentication Crash (PoC)

No description provided by source. Title: Open & Compact FTPd Pre-Authentication Crash PoC Found by: loneferret Hat's off to dookie2000ca Date Found: 07/02/2010 Software link: https://sourceforge.net/projects/open-ftpd/ Tested on: Windows XP SP2/SP3 Professional Nod to the Exploit-DB Team It's...

Joomla component com_universal Remote File Inclusion Vulnerability exploit

No description provided by source. Joomla component comuniversal = Remote File Inclusion Vulnerability exploit +Software: Joomla component comuniversal UWCMS Universal Web CMS +Version: 1.0.0 +License: http://www.gnu.org/copyleft/gpl.html GNU/GPL +Source: http://uwcms.sourceforge.net +CWE ID : 98...

sitexs cms 0.1.1 (upload/xss) Multiple Vulnerabilities

No description provided by source. =========================================================== SiteXS CMS Upload/XSS Multiple Remote Vulnerabilities =========================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground...

Scratcher (SQL/XSS) Multiple Remote Vulnerability

No description provided by source. + Scratcher SQL/XSS Multiple Remote Vulnerability 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /...

phpsyncml <= 0.1.2 - Remote File Include Vulnerabilities

No description provided by source. ======================================================================== || || || || || || || || || || || || ======================================================================== ======================================================================== phpsync...

LoveCMS 1.6.2 Final Multiple Local File Inclusion Vulnerabilities

No description provided by source. LoveCMS 1.6.2 Final Multiple Local File Inclusion Vulnerabilities found by cOndemned vendor: http://lovecms.org/ download: http://sourceforge.net/project/showfiles.php?groupid=168535 source of /system/admin/modules.php 13. ifisset$GET'install' 14. 15. $include =...

Gallo 0.1.0 - Remote File Include Vulnerability

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

IP Reg <= 0.4 - Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl ----------------------------------------------- IP Reg = 0.4 Blind SQL Injection Exploit Discovered By StAkeR - StAkeRathotmaildotit Discovered On 03/10/2008 ----------------------------------------------- Download...

free QBoard <= 1.1 (qb_path) Remote File Include Vulnerability

No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ free QBoard qbpath = v.1.1 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/freeqboard/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $...

php-addressbook 3.1.5 - (edit.php) SQL Injection Vulnerability

No description provided by source. @ php-addressbook v3.1.5edit.php SQL Injection Vulnerability @ Author: Hussin X @ Home : www.iq-ty.comhttp://www.iq-ty.com, @ email: darkangelg85atYahoodotcom @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ script :...