6485 matches found
WEBBDOMAIN Polls 1.01 (SQL Injection) Auth Bypass Vulnerability
Exploit for unknown platform in category web applications =============================================================== WEBBDOMAIN Polls 1.01 SQL Injection Auth Bypass Vulnerability =============================================================== Discovered by : Hakxer Type Gap : WEBBDOMAIN Poll...
apoll-bypass.txt
Apoll version Remote Auth Bypass Vulnerability version: beta 0.7 script dwonload: http://www.miticdjd.com/download/3/ ---------------------------------------------------------- Discovered By: ZoRLu Date: 03.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi...
Simple Document Management System 1.1.4 SQL Injection Auth Bypass
Exploit for php platform in category web applications ================================================================= Simple Document Management System 1.1.4 SQL Injection Auth Bypass ================================================================= SDMS Simple Document Management System v1.1.4...
WEBBDOMAIN Petition 1.02/2.0/3.0 (SQL Injection) Auth Bypass Vuln
Exploit for unknown platform in category web applications ================================================================= WEBBDOMAIN Petition 1.02/2.0/3.0 SQL Injection Auth Bypass Vuln ================================================================= Discovered by : Hakxer Type Gap : WEBBDOMAI...
WEBBDOMAIN Quiz <= 1.02 (Auth Bypass) SQL Injection Vulnerability
No description provided by source. / / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // EgY Coders Vulnerability Research TM Discovered by : Hakxer Type Gap : WEBBDOMAIN Quiz Auth Bypass...
Apoll 0.7b (SQL Injection) Remote Auth Bypass Vulnerability
Exploit for unknown platform in category web applications =========================================================== Apoll 0.7b SQL Injection Remote Auth Bypass Vulnerability =========================================================== Apoll version Remote Auth Bypass Vulnerability version: beta...
ajarticle-sqlbypass.txt
/ / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap : Auth Bypass Script : AJ ARTICLE Greetz : Allah , Egyptian x hacker , Br1ght D@rk First Go to...
Article Publisher PRO 1.5 (SQL Injection) Auth Bypass Vulnerability
Exploit for unknown platform in category web applications =================================================================== Article Publisher PRO 1.5 SQL Injection Auth Bypass Vulnerability =================================================================== Discovered by : Hakxer Type Gap :...
freeSSHd 1.2.1 sftp realpath Remote Buffer Overflow PoC (auth)
Exploit for unknown platform in category dos / poc ============================================================== freeSSHd 1.2.1 sftp realpath Remote Buffer Overflow PoC auth ============================================================== !/usr/bin/perl Jeremy Brown...
CVE-2008-4600
configure.php in PokerMax Poker League Tournament Script 0.13 allows remote attackers to bypass authentication and gain administrative access by setting the ValidUserAdmin cookie...
Code injection
sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service OOPS via an INIT-ACK that states the peer does not support AUTH, which causes the sctpprocessinit function to clean up active transports and triggers the OOPS when the T1-Init timer expires...
NoticeWare E-mail Server 5.1.2.2 (POP3) Pre-Auth DoS Exploit
Exploit for unknown platform in category dos / poc ============================================================ NoticeWare E-mail Server 5.1.2.2 POP3 Pre-Auth DoS Exploit ============================================================ !/usr/bin/python Software: NoticeWare E-mail Sever POP3 5.1.2.2...
Noticeware E-mail Server 5.1.2.2 - 'POP3' Denial of Service
!/usr/bin/python Software: NoticeWare E-mail Sever POP3 5.1.2.2 Pre-Auth DoS Discovered and Coded by: Paul Hand aka rAWjAW Blog: http://rawjaw-security.blogspot.com E-mail: phand3754gmailcom Description: NoticeWare E-mail Server has many odd querks about it This DoS leverages the fact that the PO...
[SECURITY] Fedora 9 Update: postfix-2.5.5-1.fc9
Postfix is a Mail Transport Agent MTA, supporting LDAP, SMTP AUTH SASL, TLS...
[SECURITY] Fedora 8 Update: postfix-2.5.5-1.fc8
Postfix is a Mail Transport Agent MTA, supporting LDAP, SMTP AUTH SASL, TLS...
CVE-2008-4529
Multiple PHP remote file inclusion vulnerabilities in asiCMS alpha 0.208 allow remote attackers to execute arbitrary PHP code via a URL in the ENVasicmspath parameter to 1 Association.php, 2 BigMath.php, 3 DiffieHellman.php, 4 DumbStore.php, 5 Extension.php, 6 FileStore.php, 7 HMAC.php, 8...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in asiCMS alpha 0.208 allow remote attackers to execute arbitrary PHP code via a URL in the ENVasicmspath parameter to 1 Association.php, 2 BigMath.php, 3 DiffieHellman.php, 4 DumbStore.php, 5 Extension.php, 6 FileStore.php, 7 HMAC.php, 8...
CVE-2008-4529
Multiple PHP remote file inclusion vulnerabilities in asiCMS alpha 0.208 allow remote attackers to execute arbitrary PHP code via a URL in the ENVasicmspath parameter to 1 Association.php, 2 BigMath.php, 3 DiffieHellman.php, 4 DumbStore.php, 5 Extension.php, 6 FileStore.php, 7 HMAC.php, 8...
Linux Kernel SCTP INIT-ACK AUTH扩展远程拒绝服务漏洞
BUGTRAQ ID: 31634 CNCAN ID:CNCAN-2008100908 Linux是一款开放源代码的操作系统。 Linux不正确处理peers之间的不匹配SCTP AUTH扩展设置,本地攻击者可以利用漏洞触发内核Panic,造成拒绝服务攻击。 如果通过SupportedExtensions参数接收到INIT-ACK意味着peer不支持AUTH,报文会不告知的忽略,sctpprocessinit会清除联合中的所有传送。当T1-Init计时器过期时,选择一个不同的init传送可导致OOPS。 Linux kernel 2.6.27 -rc6 Linux kernel 2.6....
Linux kernel sctp_setsockopt_auth_key() integer overflow
Integer overflow in the sctpsetsockoptauthkey function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel 2.6.24-rc1 through 2.6.26.3 allows remote attackers to cause a denial of service panic or possibly have unspecified other impact via a...