HyperBook Guestbook 1.3 - GBConfiguration.DAT Hashed Password Information Disclosure

source: https://www.securityfocus.com/bid/22754/info HyperBook Guestbook is prone to an information-disclosure vulnerability because the application fails to protect sensitive information. An attacker can exploit this issue to access sensitive information that may lead to other attacks. This issu...

nabopoll 1.2 Remote Unprotected Admin Section Vulnerability

By Cr@zyKing [email protected] Thakns : ApAci & Erne & Uyussman & Eno7 & Thehacker & CrackersChild Script : nabopoll 1.1.2 Risk : Remote Add Admin Exploit |High Site : http://nabocorp.com/ Google Dork : inurl:"nabopoll/" Exploit : http://target.com/nabopoll/admin/configedit.php Mysql Config For...

TaskTracker All Version Remote Add Admin Exploit

!-- Title : TaskTracker All Version Remote Add Admin Exploit Author : ajann Contact : : S.Page : http://www.geckovich.com $$ : $39.99 - $19.99 -- FORM NAME="AddUser" METHOD="POST" ACTION="http://target/path/Customize.asp?a=Add" style="word-spacing: 0; margin-top: 0; margin-bottom: 0" td valign=to...

Blog Pixel Motion 2.1.1 PHP Code Execution / Create Admin Exploit

Exploit for unknown platform in category web applications ================================================================= Blog Pixel Motion 2.1.1 PHP Code Execution / Create Admin Exploit ================================================================= !/usr/bin/perl Affected.scr..: Blog Pixel...

MyBulletinBoard (MyBB) 1.1.5 - CLIENT-IP SQL Injection

MyBulletinBoard MyBB 1.1.5 - CLIENT-IP SQL Injection !/usr/bin/php -q -d shortopentag=on ? echo "MyBulletinBoard MyBB = 1.1.5 'CLIENT-IP' SQL injection / create new admin exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork, version specific:...

MyBulletinBoard (MyBB) <= 1.1.3 (usercp.php) Create Admin Exploit

No description provided by source. !/usr/bin/perl MyBulletinBoard MyBB = 1.1.3 Create An Admin Exploit www.h4ckerz.com / hackerz.ir / aria-security.net / Myimei.com / ./2006-6-23 Coded By Hessam-x / Hessamx-at-Hessamx.net use IO::Socket; use LWP::UserAgent; use HTTP::Cookies; $host = $ARGV0; $una...

PunBB <= 1.2.4 - change email to become admin exploit

!/usr/bin/python | || | | | | | | | || || | |/ || '|/ |/ -| ' / -/ |||| /| || / ||||,||| ,|||||||,| || |||||| Proof of concept code from the Hardened-PHP Project -= PunBB 1.2.4 =- changeemail SQL injection exploit user-supplied data within the database is still user-supplied data import urllib...

ImageFolio All Versions : admin.cgi Directory transversal and file delete exploit.

/---------------------------- Pimp industries. -----------------------------/ ImageFolio All Versions : admin.cgi Directory transversal and file delete exploit. Company: www.imagefolio.com Background ------------- ImageFolio is a multi-platform, server-based, software...