Lucene search
K

1899 matches found

Packet Storm
Packet Storm
added 2005/08/07 12:0 a.m.25 views

wowbbSQL.txt

An attacker can exploit this vulnerability to gain admin username and password. http://www.wowbb.com/ Vulnerable versions: 1.6 1.61 1.62 Proof of concept: http://www.example.com/wowbb/viewuser.php?list=1&letter=&sortby='SQL Injection...

7.4AI score
Exploits0
CVE
CVE
added 2005/07/19 4:0 a.m.39 views

CVE-2005-2314

CVE-2005-2314 (PHPsFTPd) affects PHPsFTPd versions 0.2–0.4. The flaw allows remote attackers to bypass login checks and exfiltrate the administrator’s credentials by setting the do_login parameter and performing an edit action via user.php, causing the login verification to be leaked in the respo...

7.5CVSS7.2AI score0.01917EPSS
Exploits1References6Affected Software1
exploitpack
exploitpack
added 2005/06/05 12:0 a.m.15 views

PostNuke 0.750 - readpmsg.php SQL Injection

PostNuke 0.750 - readpmsg.php SQL Injection !/usr/bin/perl This tools is only for educational purpose K-C0d3r a x0n3-h4ck friend !!! This exploit should give admin nick and md5 password -= PostNuke SQL Injection version : x= 0.750=- -= =- -= Discovered by sp3x =- -= Coded by K-C0d3r =- -=...

Exploits0
securityvulns
securityvulns
added 2005/03/31 12:0 a.m.40 views

Invision Power Board v2.0.3 XSS vulnerabilities

Invision Power Board v2.0.3 XSS vulnerabilities found more at user signature. when Admin read attacker topics, admin will lost his passhash example...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2005/03/27 12:0 a.m.13 views

phpMyFamily <= 1.4.0 SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w phpMyFamily Exploit injection ============================== $banner = "phpMyFamily Exploit injection \n\n============================== \n\nINFGPG-Hacking&Security Research"; Greats: AresU 1st IndoSec Team,ADZ Security Team has discovered bugs...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2005/03/27 12:0 a.m.48 views

phpMyFamily 1.4.0 - SQL Injection

!/usr/bin/perl -w phpMyFamily Exploit injection ============================== $banner = "phpMyFamily Exploit injection \n\n============================== \n\nINFGPG-Hacking&Security Research"; Greats: AresU 1st IndoSec Team,ADZ Security Team has discovered bugs Info: 98.to/infamous use IO::Socke...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2005/02/26 5:0 a.m.22 views

CVE-2004-1724

The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusionadmin/dbbackups directory to world read/write/execute 777, which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator userna...

6.5AI score0.06934EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2005/02/18 12:0 a.m.30 views

my.phpforum.1.0.txt

/==========================================/ // GHC - MyPHP Forum - ADVISORY // Product: MyPHP Forum // Version: 1.0 // URL: http://www.myphp.ws // VULNERABILITY CLASS: SQL injection /==========================================/ example of exploit member.php?action=viewpro&member=nonexist' UNION...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/05/13 12:0 a.m.27 views

[Full-Disclosure] Sweex 802.11g router/accesspoint config disclosure / remote config

Maniac Security Advisory 2004-01 Configuration disclosure on Wireless Accesspoint/Router SUMMARY Critical elements of the accesspoint's configuration can be discovered by any client connected to the accesspoint. This includes the administration username and password. AFFECTED PRODUCTS Sweex...

0.7AI score
Exploits0
FreeBSD
FreeBSD
added 2004/03/26 12:0 a.m.11 views

Critical SQL injection in phpBB

Anyone can get admin's username and password's md5 hash via a single web request. A working example is provided in the advisory...

1.5AI score
Exploits0References1
securityvulns
securityvulns
added 2003/06/10 12:0 a.m.29 views

Several bugs found in "Spyke's PHP Board"

================================================ ------------------------------------------------ ------------www.bright-shadows.net------------ ------------------------------------------------ --------------theblacksheep&erik-------------- ------------------------------------------------...

6.9AI score
Exploits0
exploitpack
exploitpack
added 2003/04/10 12:0 a.m.13 views

Guestbook 4.0 - Sensitive Information Disclosure

Guestbook 4.0 - Sensitive Information Disclosure source: https://www.securityfocus.com/bid/7320/info Guestbook has been reported prone to a sensitive information disclosure weakness. An attacker may disclose sensitive information regarding the Super Guestbook install by sending a HTTP request for...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/03/04 12:0 a.m.223 views

HP JetDirect Device SNMP Request Cleartext Admin Credential Disclosure

It is possible to obtain the password of the remote HP JetDirect web server by sending SNMP requests. An attacker may use this information to gain administrative access to the remote printer. TRUSTED...

7.5CVSS5.5AI score0.13522EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2002/10/15 12:0 a.m.30 views

Ingenium Learning Management System 5.1/6.1 - Reversible Password Hash

source: https://www.securityfocus.com/bid/5970/info Ingenium Learning Management System uses a weak algorithm to hash user and administrative credentials. Passwords may be trivially obtained by reversing the password hash. An attacker must be able to gain unauthorized access to the password hashe...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2001/05/23 12:0 a.m.24 views

LinkMax.txt

---------------------------------------------------------- Release date: May 21th 2001 Subject: WebAvail LinkMax2 ASP security problem Systems affected: All systems running LinkMax2 ASP script Vendor: http://www.webavail.com ---------------------------------------------------------- 1. problem...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/02/09 12:0 a.m.58 views

Local promotion in NT4's NTLM Security Support Provider

BindView Security Advisory -------- Local promotion vulnerability in NT4's NTLM Security Support Provider Issue Date: February 7, 2001 Contact: [email protected] Topic: Local promotion vulnerability in NT4's NTLM Security Support Provider Overview: Due to a flaw in the NTLM Security Suppo...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/12/15 12:0 a.m.19 views

Symlink attack in (all?) Samba. - Local root walkthrough by Tozz

Symlink attack in all? Samba. - Local root walkthrough by Tozz ================================================================= Requirements: Shell access or any other way to create symlinks A running samba deamon The username and/or password of a user named in the admin lists in one or more...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2000/10/27 12:0 a.m.30 views

Проблемы с безопасностью в Cisco VCO/4000 (SNMP community)

Через SNMP community доступны на чтение логин и пароль администрирования...

0.9AI score
Exploits0References1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.35 views

cybercash.cc.txt

Date: Sun, 25 Apr 1999 13:38:43 +0200 From: Bo Elkjaer To: [email protected] Subject: Re: Shopping Carts exposing CC data Hi Joe Your CC-exposures are gaining momentum. Right now I'm only waiting for the mainstream papers to catch up. I'm a journalist myself, working for one of Denmarks larges...

7.4AI score
Exploits0
Rows per page
Query Builder