Lucene search
+L

2511 matches found

Packet Storm
Packet Storm
added 2006/07/15 12:0 a.m.37 views

mybb-sql-115.php.txt

!/usr/bin/php -q -d shortopentag=on ? echo "MyBulletinBoard MyBB = 1.1.5 'CLIENT-IP' SQL injection / create new admin exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork, version specific: "Powered By MyBB" "2006 MyBB Group"\n\n"; / works...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/07/15 12:0 a.m.18 views

MyBulletinBoard (MyBB) 1.1.5 - CLIENT-IP SQL Injection

MyBulletinBoard MyBB 1.1.5 - CLIENT-IP SQL Injection !/usr/bin/php -q -d shortopentag=on ? echo "MyBulletinBoard MyBB = 1.1.5 'CLIENT-IP' SQL injection / create new admin exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork, version specific:...

0.3AI score
Exploits0
0day.today
0day.today
added 2006/07/15 12:0 a.m.177 views

MyBulletinBoard (MyBB) <= 1.1.5 (CLIENT-IP) SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================= MyBulletinBoard MyBB = 1.1.5 CLIENT-IP SQL Injection Exploit ================================================================= !/usr/bin/php -q -d shortopentag=on ? echo...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/02/23 12:0 a.m.55 views

VHCS <= 2.4.7.1 (Add User) Authentication Bypass Exploit

Exploit for unknown platform in category web applications ======================================================== VHCS VHCS version function submitform if document.adminadduser.username.value=='admin' alert'Learn to read before launching an exploit, script-kiddie!'; exit;...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2005/06/21 12:0 a.m.23 views

pafaq.pl.txt

!/usr/bin/perl -w paFaq 1.0 Add Administrator PoC // By James // http://www.gulftech.org use LWP::UserAgent; Set up the LWP User Agent $ua = new LWP::UserAgent; $ua-agent"paFaq Hash Grabber v1.0"; if !$ARGV0 print "Usage : pafaq.pl http://path/to/pafaq"; exit; my $keytime = time; my $dbmpath =...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/01/22 12:0 a.m.30 views

God Admin Injection Vulnerability in Siteman 1.0.x

God Admin Injection Vulnerability in Siteman 1.0.x, Discovered by PersianHacker.NET Security Team by amironline452 amironline452 hotmail com http://www.PersianHacker.NET http://www.amironline452.tk Siteman is a Content Management System CMS that is so easy to install and use, that a person who ha...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2004/12/31 12:0 a.m.8 views

PT-2004-3258 · Phpx · Phpx

Name of the Vulnerable Software and Affected Versions: PHPX versions 3.0 through 3.2.6 Description: A cross-site request forgery CSRF issue allows remote attackers to execute arbitrary commands via specific URLs that are automatically executed on behalf of the administrator. The affected URLs...

5CVSS7.5AI score0.10708EPSS
Exploits3References17
seebug.org
seebug.org
added 2004/09/26 12:0 a.m.17 views

os-x/PPC Add user r00t 219 bytes

No description provided by source. / PPC OS X / Darwin Shellcode by B-r00t. 2003. open; write; close; execve; exit; See ASM below. 219 Bytes! / char shellcode = "\x7c\xa5\x2a\x79\x40\x82\xff\xfd\x7d\x48\x02\xa6\x3b\xea\x01\x70" "\x39\x60\x01\x70\x39\x1f\xff\x0d\x7c\xa8\x29\xae\x38\x7f\xff\x04"...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2004/03/16 12:0 a.m.33 views

PHP-Nuke 6.x/7.0/7.1 - Image Tag Admin Command Execution

source: https://www.securityfocus.com/bid/9895/info It has been reported that PHP-Nuke is prone to a remote admin command execution vulnerability. This issue is due to a design error that allows an attacker to specify arbitrary URI values in bbCode tags contained within posts. This issue may be...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/08/15 12:0 a.m.18 views

Poster 2.0 - Unauthorized Privileged User Access

source: https://www.securityfocus.com/bid/8426/info A vulnerability has been reported for Poster.version:two. The problem occurs due to the application failing to lock the 'setup' variable after initialization. As a result, an attacker may access this variable to add additional adminstrator users...

7AI score
Exploits0
exploitpack
exploitpack
added 2002/12/04 12:0 a.m.20 views

Exim Internet Mailer 3.353.364.10 - Format String

Exim Internet Mailer 3.353.364.10 - Format String // source: https://www.securityfocus.com/bid/6314/info A format string vulnerability has been discovered in Exim. The problem occurs in the daemongo function. By supplying malicious format strings via the command line, it is possible for an attack...

0.2AI score
Exploits0
Rows per page
Query Builder