1024 CMS 1.4.2 - Local File Inclusion / Blind SQL Injection

Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit Need: magicquotesgpc = Off Bug1: Vu...

LiveCart 1.1.1 - id Blind SQL Injection

LiveCart 1.1.1 - id Blind SQL Injection !/usr/bin/perl -w use LWP::UserAgent; ----------------------------------------------------------------------------------------------- scripts : livecart Remote Blind Sql Injection scripts site : http://www.livecart.com Discovered By : irvian site :...

livecart-blindsql.txt

!/usr/bin/perl -w use LWP::UserAgent; ----------------------------------------------------------------------------------------------- scripts : livecart Remote Blind Sql Injection scripts site : http://www.livecart.com Discovered By : irvian site : http://irvian.cn forum : http://noscan.info/foru...

LiveCart 1.1.1 - 'id' Blind SQL Injection

!/usr/bin/perl -w use LWP::UserAgent; ----------------------------------------------------------------------------------------------- scripts : livecart Remote Blind Sql Injection scripts site : http://www.livecart.com Discovered By : irvian site : http://irvian.cn forum : http://noscan.info/foru...

picturerating-blindsql.txt

!/usr/bin/perl -- Picture Rating 1.0 Blind SQL Injection Exploit -- -Info/Instructions- After running this perl script, you will have admin details therefore you will be able to login to the admin area at http://site.com/control/ ok once you have logged in has admin you can upload a shell, click...

Drake CMS <= 0.4.11 Remote Blind SQL Injection Exploit

No description provided by source. ?php / ------------------------------------------------------ Drake CMS = 0.4.11 Remote Blind SQL Injection Exploit ------------------------------------------------------ author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://drakecms.sourceforge.net...

Drake CMS <= 0.4.11 Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================== Drake CMS gid 17. if '' === $gbname = in'gbname', SQL | NOHTML, $POST, '', 50 18. || '' === $gbemail = in'gbemail', SQL | NOHTML, $POST, '', 50 19. || !isemail$gbemail 20. 21...

PIGMy-SQL &lt;= 1.4.1 (getdata.php id) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl - PIGMy-SQL = 1.4.1 Blind SQL Injection Exploit - PIGMy-SQL is vulnerable because the mysql querys are insecure, therefor it allows an attack to execute sql querys, since the.. ..vulnerable page only returns a picture we have to use a blind sql...

PIGMy-SQL 1.4.1 - getdata.php Blind SQL Injection

PIGMy-SQL 1.4.1 - getdata.php Blind SQL Injection !/usr/bin/perl - PIGMy-SQL ; print "Valid Photo ID: "; chompmy $pid=; ifinjecttest$url, $pid print "\nInjecting Please Wait.. This could take several minutes.\n"; my $result = blindattack$url, $pid; print "Exploited! Admin Details Are: ".$result;...

PIGMy-SQL 1.4.1 - &#039;getdata.php&#039; Blind SQL Injection

!/usr/bin/perl - PIGMy-SQL ; print "Valid Photo ID: "; chompmy $pid=; ifinjecttest$url, $pid print "\nInjecting Please Wait.. This could take several minutes.\n"; my $result = blindattack$url, $pid; print "Exploited! Admin Details Are: ".$result; exit; sub blindattack my $url = shift; my $pid =...

PIGMy-SQL <= 1.4.1 (getdata.php id) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================================== PIGMy-SQL ; print "Valid Photo ID: "; chompmy $pid=; ifinjecttest$url, $pid print "\nInjecting Please Wait.. This could take sev...

eggBlog 4.0 Password Retrieve Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== eggBlog 4.0 Password Retrieve Remote SQL Injection Exploit ========================================================== Author: GiReX Date: 27/03/2008 - 1/04/2008 Added exploit for...

EggBlog 4.0 - SQL Injection

Author: GiReX mySite: girex.altervista.org Date: 27/03/2008 - 1/04/2008 Added exploit for str0ke CMS: eggBlog 4.0 Site: eggblog.net Bug: SQL Injection cookie vars Type: 1 - Admin/User Authentication Bypass Bug2: Blind SQL Injection same vars-query Type: Password retrieve exploit Var :...

PostNuke 0.764 - Blind SQL Injection

PostNuke 0.764 - Blind SQL Injection !/usr/bin/python ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / =================================================================================================...

PEEL CMS 3.x - Admin Hash Extraction Arbitrary File Upload

PEEL CMS 3.x - Admin Hash Extraction Arbitrary File Upload !/usr/bin/php URL: http://realn.free.fr/ Date: 03-18-08 Targets: PEEL PREMIUM PEEL POWERSELL PEEL INTEGRALE PEEL PROFESSIONNELLE This exploit will use multiple vulns of multiple versions of PEEL to try to spawn a Remote Upload File. Speci...

EasyCalendar &lt;= 4.0tr - Multiple Remote Vulnerabilities

Info: Software: EsayCalendar HomePage: http://myiosoft.com Exploit: Multiple Remote Vulnerabilities High Bug Found By: Jose Luis Gуngora Fernбndez | JosS Contact: sys-projectathotmail.com Web: http://www.spanish-hackers.com Verified in localhost with EsayCalendar 4.0tr and magicquotes Off +...

EasyCalendar &lt;= 4.0tr Multiple Remote Vulnerabilities

No description provided by source. --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ EasyCalendar = 4.0tr - Multiple Remote Vulnerabilities +==-- --==+====================================================================================+==-- + JosS ...

AuraCMS <= 2.2.1 (online.php) Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================ AuraCMS 0 15. @mysqlquery"update useronline set timevisit='$utime' where ipproxy='$uipproxy'"; 16. else 17. @mysqlquery"insert into useronline...

auracms-blindsql.txt

!/usr/bin/perl -w Indonesian Newhack Security Advisory ------------------------------------ AuraCMS 2.x online.php - Remote Blind SQL Injection Exploit Waktu : Feb 15 2008 01:00PM Software : AuraCMS Versi : 2.0 2.1 2.2.1 Vendor : http://www.auracms.org/ ------------------------------------ Audit...

AuraCMS 2.2.1 - X-Forwarded-For HTTP Header Blind SQL Injection

AuraCMS 2.2.1 - X-Forwarded-For HTTP Header Blind SQL Injection !/usr/bin/perl -w Indonesian Newhack Security Advisory ------------------------------------ AuraCMS 2.x online.php - Remote Blind SQL Injection Exploit Waktu : Feb 15 2008 01:00PM Software : AuraCMS Versi : 2.0 2.1 2.2.1 Vendor :...