Lucene search
K

2481 matches found

exploitpack
exploitpack
added 2007/03/15 12:0 a.m.27 views

creative Guestbook 1.0 - Multiple Vulnerabilities

creative Guestbook 1.0 - Multiple Vulnerabilities .-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ / @ +Iranian Are The Best In World+ Portal : Creative Guestbook 1.0 Download : http://www.thecreativeheads.de/CreativeFiles/downloads.php Author : Dj7xpl |...

0.6AI score
Exploits0
NVD
NVD
added 2007/01/23 12:28 a.m.14 views

CVE-2007-0409

BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP4, and 9.0 initial release does not encrypt passwords stored in the JDBCDataSourceFactory MBean Properties, which allows local administrative users to read the cleartext password...

1.5CVSS6AI score0.00284EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/12/27 11:0 p.m.21 views

CVE-2006-6773

pages/register/register.php in Fishyshoop 0.930 beta allows remote attackers to create arbitrary administrative users by setting the isadmin HTTP POST parameter to 1...

6.8AI score0.02426EPSS
Exploits1References5
CVE
CVE
added 2006/12/27 11:0 p.m.44 views

CVE-2006-6773

CVE-2006-6773 affects Fishyshoop 0.930 beta, where pages/register/register.php allows remote attackers to create arbitrary administrative users by sending is_admin=1 via HTTP POST. The vulnerability enables elevation of privileges (admin account creation) through a parameter-based bypass in the r...

7.5CVSS7.2AI score0.02426EPSS
Exploits1References5Affected Software1
0day.today
0day.today
added 2006/11/24 12:0 a.m.256 views

Woltlab Burning Board Lite 1.0.2 decode_cookie() SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================================== Woltlab Burning Board Lite 1.0.2 decodecookie SQL Injection Exploit ====================================================================== ?php printr'...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.13 views

Solaris 8 (sparc) : 110011-02

The remote host is missing Sun Security Patch number 110011-02 AnswerBook 1.4.2: create admin user that can interact with shell. Date this patch was last updated by Sun : Thu Aug 03 18:00:00 MDT 2000 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@...

Exploits0
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.11 views

Solaris 7 (sparc) : 110011-02

The remote host is missing Sun Security Patch number 110011-02 AnswerBook 1.4.2: create admin user that can interact with shell. Date this patch was last updated by Sun : Thu Aug 03 18:00:00 MDT 2000 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@...

Exploits0
Packet Storm
Packet Storm
added 2006/10/12 12:0 a.m.19 views

cahierSQL.txt

Cahier de textes Pierre Lemaitre - St Lô France - Ver 2.0 Remote SQL injection Exploit Discovred By s4mi s4miatlinuxmaildotorg exploit http://localhost/PATH/lire.php?classeID=1&matiereID=SQL or http://localhost/PATH/lireafaire.php?classeID=SQL expemle of sql code to get admin user and password...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/10/07 12:0 a.m.36 views

Cahier de textes 2.0 Remote SQL injection Exploit

Cahier de textes Pierre Lemaitre - St Lф France - Ver 2.0 Remote SQL injection Exploit Discovred By s4mi s4miatlinuxmaildotorg exploit http://localhost/PATH/lire.php?classeID=1&matiereID=SQL or http://localhost/PATH/lireafaire.php?classeID=SQL expemle of sql code to get admin user and password...

0.8AI score
Exploits0
Cvelist
Cvelist
added 2006/08/31 8:0 p.m.27 views

CVE-2006-4468

Multiple unspecified vulnerabilities in Joomla! before 1.0.11, related to unvalidated input, allow attackers to have an unknown impact via unspecified vectors involving the 1 mosMail, 2 JosIsValidEmail, and 3 josSpoofValue functions; 4 the lack of inclusion of globals.php in...

6.8AI score0.01923EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2006/07/15 12:0 a.m.37 views

mybb-sql-115.php.txt

!/usr/bin/php -q -d shortopentag=on ? echo "MyBulletinBoard MyBB = 1.1.5 'CLIENT-IP' SQL injection / create new admin exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork, version specific: "Powered By MyBB" "2006 MyBB Group"\n\n"; / works...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/07/15 12:0 a.m.18 views

MyBulletinBoard (MyBB) 1.1.5 - CLIENT-IP SQL Injection

MyBulletinBoard MyBB 1.1.5 - CLIENT-IP SQL Injection !/usr/bin/php -q -d shortopentag=on ? echo "MyBulletinBoard MyBB = 1.1.5 'CLIENT-IP' SQL injection / create new admin exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork, version specific:...

0.3AI score
Exploits0
0day.today
0day.today
added 2006/07/15 12:0 a.m.176 views

MyBulletinBoard (MyBB) <= 1.1.5 (CLIENT-IP) SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================= MyBulletinBoard MyBB = 1.1.5 CLIENT-IP SQL Injection Exploit ================================================================= !/usr/bin/php -q -d shortopentag=on ? echo...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/02/23 12:0 a.m.55 views

VHCS <= 2.4.7.1 (Add User) Authentication Bypass Exploit

Exploit for unknown platform in category web applications ======================================================== VHCS VHCS version function submitform if document.adminadduser.username.value=='admin' alert'Learn to read before launching an exploit, script-kiddie!'; exit;...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2005/06/21 12:0 a.m.23 views

pafaq.pl.txt

!/usr/bin/perl -w paFaq 1.0 Add Administrator PoC // By James // http://www.gulftech.org use LWP::UserAgent; Set up the LWP User Agent $ua = new LWP::UserAgent; $ua-agent"paFaq Hash Grabber v1.0"; if !$ARGV0 print "Usage : pafaq.pl http://path/to/pafaq"; exit; my $keytime = time; my $dbmpath =...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/01/22 12:0 a.m.29 views

God Admin Injection Vulnerability in Siteman 1.0.x

God Admin Injection Vulnerability in Siteman 1.0.x, Discovered by PersianHacker.NET Security Team by amironline452 amironline452 hotmail com http://www.PersianHacker.NET http://www.amironline452.tk Siteman is a Content Management System CMS that is so easy to install and use, that a person who ha...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2004/12/31 12:0 a.m.6 views

PT-2004-3258 · Phpx · Phpx

Name of the Vulnerable Software and Affected Versions: PHPX versions 3.0 through 3.2.6 Description: A cross-site request forgery CSRF issue allows remote attackers to execute arbitrary commands via specific URLs that are automatically executed on behalf of the administrator. The affected URLs...

5CVSS7.5AI score0.10708EPSS
Exploits3References17
seebug.org
seebug.org
added 2004/09/26 12:0 a.m.16 views

os-x/PPC Add user r00t 219 bytes

No description provided by source. / PPC OS X / Darwin Shellcode by B-r00t. 2003. open; write; close; execve; exit; See ASM below. 219 Bytes! / char shellcode = "\x7c\xa5\x2a\x79\x40\x82\xff\xfd\x7d\x48\x02\xa6\x3b\xea\x01\x70" "\x39\x60\x01\x70\x39\x1f\xff\x0d\x7c\xa8\x29\xae\x38\x7f\xff\x04"...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2004/03/16 12:0 a.m.31 views

PHP-Nuke 6.x/7.0/7.1 - Image Tag Admin Command Execution

source: https://www.securityfocus.com/bid/9895/info It has been reported that PHP-Nuke is prone to a remote admin command execution vulnerability. This issue is due to a design error that allows an attacker to specify arbitrary URI values in bbCode tags contained within posts. This issue may be...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/08/15 12:0 a.m.17 views

Poster 2.0 - Unauthorized Privileged User Access

source: https://www.securityfocus.com/bid/8426/info A vulnerability has been reported for Poster.version:two. The problem occurs due to the application failing to lock the 'setup' variable after initialization. As a result, an attacker may access this variable to add additional adminstrator users...

7AI score
Exploits0
Rows per page
Query Builder