1552 matches found
Absolute Podcast 1.0 - Remote Insecure Cookie Handling
Absolute Podcast 1.0 - Remote Insecure Cookie Handling | | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By : Hakxer Home : Www.educ-up.com Type Gap : Insecure cookie handling script : Absloute Podcast V 1.0 see...
Absolute Poll Manager XE 4.1 - Insecure Cookie Handling
| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By : Hakxer Home : Www.educ-up.com Type Gap : Insecure cookie handling script : Absolute Poll Manager XE v 4.1 see script http://www.xigla.com/absolutepm/demo.htm...
Absolute Podcast 1.0 - Remote Insecure Cookie Handling
| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By : Hakxer Home : Www.educ-up.com Type Gap : Insecure cookie handling script : Absloute Podcast V 1.0 see script http://www.xigla.com/apodcasting/demo.htm Greetz...
FastStone Image Viewer 3.6 (malformed bmp image) DoS Exploit
No description provided by source. Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coder...
ayeview220-dos.txt
Name : AyeView v2.20 malformed gif image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.ayeview.com/downloads.htm Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coders and others; PoC: !/usr/local/bin/pe...
AyeView 2.20 - Invalid Bitmap Header Parsing Crash
AyeView 2.20 - Invalid Bitmap Header Parsing Crash Name : AyeView v2.20 invalid bitmap header parsing DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.ayeview.com/downloads.htm Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind,...
FastStone Image Viewer 3.6 - .BMP Image Crash
FastStone Image Viewer 3.6 - .BMP Image Crash Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from...
FastStone Image Viewer 3.6 - '.BMP' Image Crash
Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coders and others; PoC:...
AyeView 2.20 - .GIF Image Local Crash
AyeView 2.20 - .GIF Image Local Crash Name : AyeView v2.20 malformed gif image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.ayeview.com/downloads.htm Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-code...
AyeView 2.20 - '.GIF' Image Local Crash
Name : AyeView v2.20 malformed gif image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.ayeview.com/downloads.htm Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coders and others; PoC: !/usr/local/bin/pe...
freebsd/x86 - setreuid, execvepfctl -d 56 bytes
freebsd/x86 setreuid, execvepfctl -d 56 bytes. Shellcode exploit for freebsdx86 platform CoDed bY suN8Hclf DaRk-CodeRs Group production, kid FreeBSD x86 setreuid0, 0 + execvepfctl -d 56 bytes The simples way to disable the FreeBSD's packet filter. We do not flush all rules pfctl -F all but only...
freebsd/x86 connect back.send.exit /etc/passwd 112 bytes
Exploit for freebsd/x86 platform in category shellcode ======================================================== freebsd/x86 connect back.send.exit /etc/passwd 112 bytes ======================================================== CoDed bY suN8Hclf DaRk-CodeRs Group production, kid FreeBSD x86 connect...
Integramod 1.4.x - Insecure Directory Download Database
today i found some major security problem. the issue can be found at all integramod 1.4.x versions. explanation of the issue: all integramod versions do have a backup folder where the daily database backups are stored. the coders of integramod forgott to secure this folder. example: just head to...
z-breaknews 2.0 - single.php SQL Injection
z-breaknews 2.0 - single.php SQL Injection z Name : z-breaknews 2.0 single.php Remote SQL Injection Vulnerability Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, t0pP8uZz, 0in, suN8Hclf & All of my friends source of single.php : ... 4. @mysqlselectdb"$dbName"or die"Ãĺ...
TinyCMS 1.1.2 - templater.php Local File Inclusion
TinyCMS 1.1.2 - templater.php Local File Inclusion  Name : tinyCMS 1.1.2 templater.php Local File Inclusion Vulnerability Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, doctor, voo|doo, sid.psycho, irk4z Conditions : Magic quotes gpc = Off / Register Globals = On Other info...
linux/x86 connect back.send.exit /etc/shadow 155 bytes
Exploit for linux/x86 platform in category shellcode ====================================================== linux/x86 connect back.send.exit /etc/shadow 155 bytes ====================================================== ; CoDed by 0in ; Dark-Coders Group Productions ; Linux x86 connect back&send&ex...
linux/x86 - connect back.send.exit /etc/shadow 155 bytes
linux/x86 connect back.send.exit /etc/shadow 155 bytes. Shellcode exploit for linx86 platform ; CoDed by 0in ; Dark-Coders Group Productions ; Linux x86 connect back&send&exit /etc/shadow 155 byte shellcode ; www.dark-coders.pl nc -v -l -p 8192 ; 2nd console ;Connection from 127.0.0.1:48820...
TGS CMS Remote Code Execution Exploit
TGS CMS Remote Code Execution Exploit by 0in from Dark-Coders Group! www.dark-coders.pl Contact: 0indotemailatgmaildotcom Greetings to:dieangel,suN8Hclf,m4r1usz,cOndemned,str0ke Dork:NULL - because "You cannot kill what you did not create" - Duality by Slipknot Let's analyze the vuln: We've got...
tgscms-exec.txt
TGS CMS Remote Code Execution Exploit by 0in from Dark-Coders Group! www.dark-coders.pl Contact: 0indotemailatgmaildotcom Greetings to:dieangel,suN8Hclf,m4r1usz,cOndemned,str0ke Dork:NULL - because "You cannot kill what you did not create" templatedir = "'.$POST'templatedir'.'";...
TGS CMS 0.3.2r2 Remote Code Execution Exploit
No description provided by source. TGS CMS Remote Code Execution Exploit by 0in from Dark-Coders Group! www.dark-coders.pl Contact: 0indotemailatgmaildotcom Greetings to:dieangel,suN8Hclf,m4r1usz,cOndemned,str0ke Dork:NULL - because "You cannot kill what you did not create" - Duality by Slipknot...