SUMON <= 0.7.0 (chg.php host) Command Execution Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl sumon = 0.7.0 Remote Command Execution Vulnerability Script: Simple Unix MONitor sumon Script Site:...

Polaring <= 0.04.03 (general.php) Remote File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '64020' ssvid version = '1.0' author = '皮皮' vulDate = '2006-09-28' createDate = '2015-12-24...

SIPS <= 0.3.1 (box.inc.php) Remote File Include Vulnerability

No description provided by source. Title : SIPS = 0.3.1box.inc.php Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://sourceforge.net/projects/sips/ $$ : Free ERROR .. ... ..... ? include $configsipssys ./code/rssparser.inc.php; ? .. ... ..... ERROR RFI...

blindblog 1.3.1 (sql/ab/lfi) Multiple Vulnerabilities

No description provided by source. Salvatore drosophila Fresta + Application: BlindBlog + Version: 1.3.1 + Website: http://sourceforge.net/projects/cbblog/ + Bugs: A SQL Injection B Authentication Bypass C Local File Inclusion + Exploitation: Remote + Date: 03 Mar 2009 + Discovered by: Salvatore...

PHPcounter <= 1.3.2 (index.php name) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q ?php // PHPcounter = 1.3.2 Remote SQL Injection Exploit // Discovered By: StAkeR - StAkeRathotmaildotit // Discovered On: 28/09/2008 // Download: http://sourceforge.net/projects/phpcounter/ errorreporting0; $host = $argv1 or banner; $path = $arg...

Thatware <= 0.5.3 - Multiple Remote File Include Exploit

No description provided by source. Discovered by cr4wl3r \ cr4wl3r4tlinuxmaildotorg Thatware = 0.5.3 Multiple Remote File Include Exploit Download Script : http://sourceforge.net/projects/thatware/files Vuln : ./thatwarepath/config.php line 4 ?php include $rootpath.dbsettings.php; ? PoC :...

httpdx 1.5.2 - Remote Pre-Authentication DoS (PoC)

No description provided by source. Title: httpdx v1.5.2 Remote Pre-Authentication DoS PoC crash Found by: loneferret Hat's off to dookie2000ca Discovered on: 06/02/2010 Software link: http://httpdx.sourceforge.net/downloads/ Tested on: Windows XP SP3 Professional Nod to the Exploit-DB Team...

Omegaboard <= 1.0beta4 (functions.php) Remote File Include Vuln

No description provided by source. ----------------------------------------------- Omegaboard v1.0b4 phpbbrootpath Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz - xoron.info ----------------------------------------------- Code: includeonce...

Tribq CMS 5.2.7 - Adding/Editing New Administrator Account CSRF

No description provided by source. Exploit Title: Tribq CMS CSRF - Adding/Editing new administrator account Date: 2013 8 August Exploit Author: Yashar shahinzadeh Special thanks to Mormoroth Credit goes for: http://y-shahinzadeh.ir & ha.cker.ir Vendor Homepage:...

telephone directory 2008 (sql/xss) Multiple Vulnerabilities

No description provided by source. ==================================================================== Telephone Directory 2008 SQL/XSS Multiple Remote Vulnerabilities ==================================================================== ,--^----------,--------,-----,-------^--, | |||||||||...

JaxUltraBB <= 2.0 (delete.php) Remote Auto Deface Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+:...

Sports PHool <= 1.0 - Remote File Include Exploit

No description provided by source. ?php / Sports PHool = 1.0 Remote File Include Exploit Found and c0ded by cr4wl3r @hackb0x d0rk: no d0rk f0r kiddi0ts Script: http://sourceforge.net/projects/sportsphool/files/ usage: target: http://target/sportsphool/includes/layout/plain.footer.php?mainnav= evi...

Ettercap <= 0.7.5.1 Stack Overflow Vulnerability

No description provided by source. Title: Ettercap Stack overflow CWE-121 References: CVE-2012-0722 Discovered by: Sajjad Pourali Vendor: http://www.ettercap.sourceforge.net/ Vendor contact: 13-01-01 21:20 UTC No response Solution: Using the patch Patch:...

Lotus Core CMS 1.0.1 - Remote File Inclusion Vulnerabilities

No description provided by source. phpbb3 Lotus Core CMS v1.0.1 Remote File Include Vulnerabilities Discovered by : Ciph3r MAIL : [email protected] SP TANX4 : Iranian hacker & Kurdish Security TEAM CLASS : remote download cms: http://sourceforge.net/project/showfiles.php?groupid=215112 C0d...

openengine <= 2.0 beta4 - Remote File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl openEngine = 2.0 beta4 Remote File Inclusion Vulnerability Script: Open Source Web Content Management...

eNdonesia 8.4 - SQL Injection Vulnerability

No description provided by source. ======================================================================/ eNdonesia 8.4 Print Module SQL Injection Vulnerability Download : http://sourceforge.net/projects/endonesia/files/eNdonesia Version : 8.4 or lower maybe also affected Dork :...

proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + - Contact:...

mySeatXT 0.1781 SQL Injection Vulnerability

No description provided by source. ------------------------------------------------------------------------ Software................mySeatXT 0.1781 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://sourceforge.net/projects/myseat/ Discovery...

lizard cart SQLi (search.php)

No description provided by source. Exploit Title: lizard cart SQLi search.php Google Dork: inurl:search.php+intitle:Lizard Cart+intext:Search Results: Date: 05-03-2012 Author: Number 7 Software Link: http://sourceforge.net/projects/lizardcart/files/latest/download?source=directory Version: pp104...

Adult Webmaster PHP - Password Disclosure

No description provided by source. + Exploit:Adult Webmaster PHP - Password Disclosure + Author: vinicius777 + Email/Twitter: vinicius777 AT gmail @vinicius777 + Vendor Homepage: http://sourceforge.net/projects/adultweb/ 1 Administrative Credential Disclosure PoC: root@kali:/ curl...