122 matches found
CVE-2017-6343
The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 allows remote attackers to obtain login access by leveraging knowledge of the MD5 Admin Hash without knowledge of the...
CVE-2017-6343
The vulnerability CVE-2017-6343 affects Dahua DHI-HCVR7216A-S3 devices and is realized via the web interface, enabling remote authentication bypass by using knowledge of the MD5 Admin Hash to gain login access without the password. Affected components include NVR firmware 3.210.0001.10, Camera fi...
CVE-2017-6343
The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 allows remote attackers to obtain login access by leveraging knowledge of the MD5 Admin Hash without knowledge of the...
vBulletin Cross-Site Request Forgery Vulnerability
vBulletin is a forum program. A cross-site request forgery vulnerability exists in vBulletin, which allows remote attackers to perform cross-site scripting attacks via admin authentication requests hijacked by the adminhash and securitytoken parameters...
Nuked-Klan <= 1.7.6 - Multiple Vulnerabilities Exploit
No description provided by source. ?php / Name: Nuked-Klan = 1.7.6 Multiple Vulnerabilities Exploit Credits: Charles real F. charlesfolathotmail.fr URL: http://realn.free.fr/releases/46556 Date: 04-01-08 - Remote Code Execution - Remote File Upload - Admin Hash Extraction Remote Code Exec...
RevokeBB <= 1.0 RC4 - Blind SQL Injection / Hash Retrieve Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo ------------------------------------------------------------- RevokeBB = 1.0 RC4 Blind SQL Injection / Hash Retrieve Exploit Site: http://www.revokesoft.net by BlackHawk [email protected]...
1024 CMS <= 1.4.2 - Local File Inclusion / Blind SQL Injection Exploit
No description provided by source. Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit...
Coppermine Photo Gallery <= 1.4.22 Remote Exploit
No description provided by source. !/usr/bin/perl Coppermine Photo Gallery = 1.4.22 Remote Exploit Need registerglobals = on and magicquotesgpc = off Based on vulnerabilities discussed at http://www.milw0rm.org/exploits/8713 Coded by girex use LWP::UserAgent; ifnot defined $ARGV0 banner; print -...
vBulletin vbBux/vbPlaza <= 2.x (vbplaza.php) Blind SQL Injection Vuln
No description provided by source. --==+======================================================================================================================+==-- --==+ vBulletin vbBux/vbPlaza = 2.x vbplaza.php Remote Blind SQL Injection Vulnerability +==--...
dynpage <= 1.0 - Multiple Vulnerabilities (0day)
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-7-dynpage-multiple-remote-vulnerabilities/ ''' - Title : DynPage Multiple Remote Vulnerabilities. - Affected...
TaskDriver <= 1.2 Login Bypass/SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w TaskDriver = 1.2 Login Bypass/SQL Injection Exploit Discovered by: Silentz Payload: Login Bypass & Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code login.php: $sql = SELECT FROM $userstable WHERE username =...
EQdkp <= 1.3.2 (listmembers.php rank) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w EQdkp = 1.3.2 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code listmembers.php: $sql = 'SELECT m., m.memberearned-m.memberspent+m.memberadjustment AS...
Kamads Classifieds 2.0 - Admin Hash Disclosure
No description provided by source. ?php if $argc 2 echo \n+-----------------------------------------------------------------+\n; echo | Kamads classifieds V2 Multiple Vulnerabilities |\n; echo | Author:Mr.tro0oqy |\n; echo | [email protected] |\n; echo | dork:inurl:V2AXHTML |\n; echo | |\n; echo...
Openedit <= 5.1294 - Remote Code Execution Exploit
No description provided by source. !/usr/bin/python Openedit = v5.1294 Remote Code Execution Exploit http://net-ninja.net/blog/?p=553 watch http://www.zeitgeistmovie.com/ Explanation: Vuln 1: Admin hash disclosure Vuln 2: Login with the hash Vuln 3: Unprotected file upload mrme@pluto openedit$ su...
TutorialCMS <= 1.00 (search.php search) SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w TutorialCMS = 1.00 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code search.php: $search = $REQUEST'search'; $sql = SELECT FROM tutorials WHERE title LIKE...
OpenEMR 4.1.1 Patch 14 - SQL Injection Privilege Escalation Remote Code Execution (Metasploit)
OpenEMR 4.1.1 Patch 14 - SQL Injection Privilege Escalation Remote Code Execution Metasploit This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
Kamads Classifieds 2.0 - Admin Hash Disclosure
Kamads Classifieds 2.0 - Admin Hash Disclosure \n"; print "\nex...........: php $argv0 http://www.target.com/V2AXHTML/admin/admin.php\n"; die; else $ch = curlinit; curlsetopt$ch,CURLOPTURL,"$argv1"; $op1 = curlsetopt$ch,CURLOPTRETURNTRANSFER,true; curlsetopt$ch,CURLOPTUSERAGENT,"Mozilla/4.0...
Openedit <= v5.1294 Remote Code Execution Exploit
Exploit for jsp platform in category web applications !/usr/bin/python Openedit = v5.1294 Remote Code Execution Exploit http://net-ninja.net/blog/?p=553 watch http://www.zeitgeistmovie.com/ Explanation: Vuln 1: Admin hash disclosure Vuln 2: Login with the hash Vuln 3: Unprotected file upload...
Openedit 5.1294 - Remote Code Execution
!/usr/bin/python Openedit = v5.1294 Remote Code Execution Exploit http://net-ninja.net/blog/?p=553 watch http://www.zeitgeistmovie.com/ Explanation: Vuln 1: Admin hash disclosure Vuln 2: Login with the hash Vuln 3: Unprotected file upload mrme@pluto openedit$ sudo python ./openown.py -p...
Openedit 5.1294 Code Execution
!/usr/bin/python Openedit = v5.1294 Remote Code Execution Exploit http://net-ninja.net/blog/?p=553 watch http://www.zeitgeistmovie.com/ Explanation: Vuln 1: Admin hash disclosure Vuln 2: Login with the hash Vuln 3: Unprotected file upload mrme@pluto openedit$ sudo python ./openown.py -p...