155 matches found
SAP Crystal Reports 2008 Directory Traversal
SAP Crystal Reports is a business intelligence application which is used to design and generate reports from various data sources. These sources include databases, spreadsheets, text files, XML files, etc. SAP Crystal Reports installation includes Tomcat Web server and various servlet components ...
Lingxia I.C.E CMS Blind SQL Injection
!/usr/bin/python ICE CMS Blind SQLi 0day. mrme@pluto ice$ python icecold.py -p localhost:8080 -t 10.3.100.25:8500 -d /ice/ | ---------------------------------------------------- | | Lingxia I.C.E CMS Remote Blind SQL Injection Exploit | | by mrme - net-ninja.net --------------------------- | +...
Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit
No description provided by source. !/usr/bin/python Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit greetz Tecr0C :0 Vuln: lines 15-23 in core/lib/router.php ---------- sof //Get page request if any $page = $this-getInputString"page", "index"; //Get plugin request if any $plugin =...
ColdUserGroup 1.06 - Blind SQL Injection
ColdUserGroup 1.06 - Blind SQL Injection !/usr/bin/python ColdGen - coldusergroup v1.06 0day Remote Blind SQL Injection Exploit Vendor: http://www.coldgen.com/ Found by: mrme ----------------------------------------------- Script provided 'as is', without any warranty. Use for educational purpose...
Spaceacre - SQL Injection Cross-Site Scripting HTML Injection
Spaceacre - SQL Injection Cross-Site Scripting HTML Injection ========================================================= Spaceacre SQL/XSS/HTML Injection Vulnerabilities ========================================================= Name: Spaceacre SQL/XSS/HTML Injection Vulnerabilities Vendor:...
HP OpenView Storage Data Protector Stack Buffer Overflow (CVE-2007-2280)
HP OpenView Storage Data Protector is a cross-platform backup solution for Windows, Unix and Linux operating systems. The Data Protector environment consists of various components and processes: Cell Manager, OmniInet, backup agents, and backup device servers. A buffer overflow vulnerability has...
Jinais IRC Server 0.1.8 - NULL Pointer PoC
Exploit for multiple platform in category dos / poc ========================================== Jinais IRC Server 0.1.8 - NULL Pointer PoC ========================================== / Jinais IRC Server 0.1.8 - NULL Pointer PoC This PoC will disconnect the affected target IRC server using a NULL...
HP OpenView Network Node Manager ovalarmsrv Integer Overflow (CVE-2008-2438)
HP OpenView product consists of a suite of network and system management software applications developed by HP. It includes hundreds of optional modules and components, for example: OpenView Quality Manager, OpenView Performance Insight, OpenView Network Node Manager, etc. An integer overflow...
Preemptive Protection against HP OpenView Network Node Manager snmp.exe Oid Variable Buffer Overflow Vulnerability
A buffer overflow vulnerability has been reported in HP OpenView Network Node Manager NNM CGI program snmp.exe. The NNM is an HP OpenView product which manages networks. It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running...
CA BrightStor ARCserve Backup Discovery Service Denial of Service (CVE-2008-1979)
Computer Associates' CA BrightStor ARCserve Backup and Business Protection Suite families of software offer data protection for distributed servers, clients, databases and applications. They provide centralized control over a series of distribution operations including Backup/Restore, Data...
HP OpenView Network Node Manager Multiple Parameters Buffer Overflow (CVE-2009-0920; CVE-2009-0921)
The Network Node Manager NNM is an HP OpenView product which manages networks.It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running over the network. Multiple buffer overflow vulnerabilities were reported in HP OpenView...
Webshell under to crack computer administrator password-vulnerability warning-the black bar safety net
Method of use: 1, The your password dictionary was renamed into the psw. txt, upload to the target server is an executable, writable directory. It is assumed that this directory is: c:\windows\temp\ 2, The program upload to the c:\windows\temp, and then run it. 3, and then is wait a few...
Webshell under to crack computer administrator password-vulnerability warning-the black bar safety net
Information source: evil octal information security team www.eviloctal.com) This idea derived from previous studies runas command when inspired. Method of use: 1, The your password dictionary was renamed into the psw. txt, upload to the target server is an executable, writable directory. It is...
PixelPost 1.7 - Blind SQL Injection
!/usr/bin/php -q -d shortopentag=on ?php // magicquotesgpc needs to be off errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc3 print "-------------------------------------------------------------------------\r\n"; print " PixelPost 1.7 Blind SQL Injection...
Scribe 0.2 - PHP Remote Code Execution
--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg --------------------------------------------------------------- Scribe...
AV Tutorial Script 1.0 - Remote User Pass Change
AV Tutorial Script 1.0 - Remote User Pass Change 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string...
PBLang <= 4.67.16.a Remote Code Execution Exploit
Exploit for unknown platform in category web applications ================================================= PBLang = 4.67.16.a Remote Code Execution Exploit ================================================= !/usr/bin/php -q -d shortopentag=on ?php errorreporting0; iniset"maxexecutiontime",0;...
PBLang 4.67.16.a - Remote Code Execution
PBLang 4.67.16.a - Remote Code Execution !/usr/bin/php -q -d shortopentag=on ?php errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc4 print "-------------------------------------------------------------------------\r\n"; print " PBLang = 4.67.16.a Remote Code...
Quick.Cart 2.2 - LocalRemote File Inclusion Remote Code Execution
Quick.Cart 2.2 - LocalRemote File Inclusion Remote Code Execution ?php / Exploit Name: Quick.Cart = v2.2 Remote Local Include Exploit & Remote Code Execution Exploit Autor: Kacper Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Kacper Hacking & Security Blog:...
RunCMS 1.5.2 - debug_show.php SQL Injection
RunCMS 1.5.2 - debugshow.php SQL Injection no authentication is performed to run showfiles and showqueries functions, look at this now in /class/debug/debug.php: ... function showqueries$executedqueries, $sorted=0 global $db; $executedqueries = unserializeurldecode$executedqueries; if $sorted == ...