ListMail 112 - Command Execution

ListMail 112 - Command Execution !/usr/bin/perl -w Listmail v112 by P.M.Systems / PoC Exploit Listmail is a powerful, hands-free mailing list manager which is exploitable due to an insecure open call. This exploit will attempt to bind a shell at port 60179/fido by using inetd. Code to spawn an...

Poll It CGI 2.0 - Multiple Vulnerabilities

Poll It CGI 2.0 - Multiple Vulnerabilities !/usr/bin/perl Poll It CGI v2.0 exploit keelis/havoc korp 2000 shouts to modjo, p, zen, kd, ab, all the script kiddies. keelisathushmaildotcom use Socket; $host, $cgiloc = @ARGV0,1; $ip=inetaton$host; print"\n\t+--- Poll It CGI v2.0 exploit ---+";...

Poll It CGI v2.0 exploit

Exploit for cgi platform in category web applications ======================== Poll It CGI v2.0 exploit ======================== !/usr/bin/perl Poll It CGI v2.0 exploit shouts to modjo, p, zen, kd, ab, all the script kiddies. use Socket; $host, $cgiloc = @ARGV0,1; $ip=inetaton$host; print"\n\t+--...

Poll It CGI 2.0 - Multiple Vulnerabilities

!/usr/bin/perl Poll It CGI v2.0 exploit keelis/havoc korp 2000 shouts to modjo, p, zen, kd, ab, all the script kiddies. keelisathushmaildotcom use Socket; $host, $cgiloc = @ARGV0,1; $ip=inetaton$host; print"\n\t+--- Poll It CGI v2.0 exploit ---+"; print"\n\t+--- keelis/havoc korp 2000 ---+\n\n\n"...

Cgisecurity.com advisory on dcforum

The staff of cgisecurity.com have found a remote input validation error in the dcforum cgi script. NOTE: The vendor was very quick to issue a patch on this and becuase of this i decided to release it so soon after finding it. Below is a paste of the advisory. -zenomorph Cgi Security Advisory 2...

Дырка в CGI dcforum

Можно получить доступ к любому файлу...

CVE-2000-0878

The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field...

CVE-2000-0877

mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attachfile parameter, which MailForm then sends to the attacker...

CVE-2000-0868

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/...

CVE-2000-0832

Htgrep CGI program allows remote attackers to read arbitrary files by specifying the full pathname in the hdr parameter...

McMurtrey/Whitaker & Associates Cart32 3.0/3.1/3.5 - Full Path Disclosure

source : https://www.securityfocus.com/bid/1932/info Cart32 is a shopping cart application for e-commerce enabled sites. Cart32 contains a vulnerability which reveals server information. Requesting a specially crafted URL, by way of the CGI application, will reveal the physical path to the web ro...

McMurtreyWhitaker Associates Cart32 3.03.13.5 - Full Path Disclosure

McMurtreyWhitaker Associates Cart32 3.03.13.5 - Full Path Disclosure source : https://www.securityfocus.com/bid/1932/info Cart32 is a shopping cart application for e-commerce enabled sites. Cart32 contains a vulnerability which reveals server information. Requesting a specially crafted URL, by wa...

NSFOCUS SA2000-07 : Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability

NSFOCUS Security AdvisorySA2000-07 Topic: Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability Release DateЈє Nov 7th, 2000 CVE Candidate Numbers: CAN-2000-0886 BUGTRAQ ID : 1912 Affected system: ================ - Microsoft IIS 4.0 SP6 - Microsoft IIS 5.0 Not affected system:...

Дырки в YaBB search.pl

Классические ошибки Perl-CGI позволяют доступ к любому файлу и выполнение любых приложений...

FreeBSD-SA-00:64.global

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:64 Security Advisory FreeBSD, Inc. Topic: global port allows remote compromise through CGI script Category: ports Module: global Announced: 2000-11-06 Credits: Shigio...

FreeBSD-SA-00:60.boa

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:60 Security Advisory FreeBSD, Inc. Topic: boa web server allows arbitrary file access/execution Category: ports Module: boa Announced: 2000-10-30 Credits: Lluis Mora...

Дырка в CGI News Update

Поменять пароль можно не зная оригинального пароля...

Дырка в Global

Недостаточный разбор shell-метасимволов в CGI-Скрипте позволяет выполнение команд на сервере...

Security Advisory YYYY-NNN

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2000-014 ================================= Topic: Global-3.55 allows world-wide executable cgi. Version: any before 4.01 Severity: permits remote execution of arbitrary shell commands Abstract ======== When using the CGI interface of the...

CVE-2000-0687

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. dot dot attack in the catdir parameter...