Computer Software Manufaktur Alibaba 2.0 - Multiple CGI Vulnerabilties

No description provided by source. source: http://www.securityfocus.com/bid/770/info There are several CGI programs that ship with the Alibaba webserver. Many of these do not do proper input handling, and therefore will allow requests for access to files outside of normal or safe webserver...

Infinity <= 2.0.5 Arbitrary Create Admin Exploit

No description provided by source. ?php printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Infinity = 2.0.5 Create Admin /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ q POST 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q Owned : |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE... |QQQQ|...

Poll It CGI 2.0 - exploit

No description provided by source. !/usr/bin/perl Poll It CGI v2.0 exploit keelis/havoc korp 2000 shouts to modjo, p, zen, kd, ab, all the script kiddies. keelisathushmaildotcom use Socket; $host, $cgiloc = @ARGV0,1; $ip=inetaton$host; print\n\t+--- Poll It CGI v2.0 exploit ---+; print\n\t+---...

Telnet-Ftp Service Server 1.x - Multiple Vulnerabilities (Post Auth)

No description provided by source. / Telnet-Ftp Service Server v1.x ------------------------------ Multiple Vulnerability: -Remote Creat File -Remote Delet File -Remote Creat Directory -Remote Delet Directory -Remote Get File -Remote Crash...

TomatoCart 1.0.1 - Multiple CSRF Vulnerabilities

No description provided by source. !--- Title: TomatoCart 1.0.1 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Sun 11 Jul 2010 05:01:51 PM EEST Vendor: http://www.tomatocart.com/ Download:...

Grafik CMS 1.1.2 - Multiple CSRF Vulnerabilities

No description provided by source. !--- Title: Grafik CMS 1.1.2 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Mon 12 Jul 2010 07:07:22 PM EEST Vendor: http://www.grafik-power.com/grafikcms/ Download: None --- -= CSRF PoC 1 - Change Admin Password =- html head titleGrafik CMS...

Limny 2.0 - Create Admin User CSRF Exploit

No description provided by source...

Orbis CMS 1.0.2 - Multiple CSRF Vulnerabilities

No description provided by source. !--- Title: Orbis CMS 1.0.2 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Sun 11 Jul 2010 08:08:10 PM EEST Vendor: http://www.novo-ws.com/orbis-cms/ Download: http://www.ohloh.net/p/orbis-cms/download?filename=orbis-1.0.2.zip --- -= CSRF Po...

Zenphoto CMS 1.3 - Multiple CSRF Vulnerabilities

No description provided by source. !--- Title: Zenphoto CMS 1.3 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Wed 14 Jul 2010 12:48:56 PM EEST Vendor: http://www.zenphoto.org/ Download: http://zenphoto.googlecode.com/files/zenphoto-1.3.tar.gz --- -= CSRF PoC 1 - Change Admin...

Sysax Multi Server 5.50 Create Folder BOF

No description provided by source. !/usr/bin/python Title: Sysax Multi Server 5.50 Create Folder BOF Author: Craig Freyman @cd1zz Tested on: XP SP3 32bit and Server 2003 SP2 32bitNo DEP Date Discovered: January 13, 2012 Vendor Contacted: January 15, 2012 Vendor Response: January 16, 2012 Vendor...

DeluxeBB <= 1.07 (cp.php) Create Admin Exploit

No description provided by source. !/usr/bin/perl DeluxeBB = 1.07 Create Admin Exploit www.h4ckerz.com / www.hackerz.ir / www.aria-security.net ./2006-6-25 Coded & Discovered By Hessam-x / Hessamx-at-Hessamx.net use IO::Socket; use LWP::UserAgent; use HTTP::Cookies; $host = $ARGV0; $uname = $ARGV...

Nuked-Klan 1.x Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10104/info Nuked-Klan is prone to multiple vulnerabilities. These issues include information disclosure via inclusion of local files, an issue that may permit remote attackers to corrupt configuration files and an SQL...

PostgreSQL 8.3.6 Low Cost Function Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34069/info PostgreSQL is prone to an information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. PostgreSQL 8.3.6 is vulnerable; other...

FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability

No description provided by source. Document Title: =============== FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1231 Release Date: ============= 2014-03-20 Vulnerability Laboratory ID VL-ID:...

dotProject 2.1.5 CSRF Vulnerability

No description provided by source. Source: http://packetstormsecurity.org/files/view/98245/dotProject2.1.5-xsrf.txt !------------------------------------------------------------------------ Software................dotProject 2.1.5 Vulnerability...........Cross-site Request Forgery...

Wordpress Spicy Blogroll Plugin - File Inclusion Vulnerability

No description provided by source. ?php // Title: Wordpress Plugin Spicy Blogroll File Inclusion Vulnerability // Date: 12-07-2013 GMT+8 Kuala Lumpur // Author: Ahlspiess // Greetz: All TBDIAN - http://w3.tbd.my : // Screenshot: http://i.imgur.com/jIrUznC.png / Details: File:...

Store Locator Remote Add Admin Exploit CSRF Vulnerability

No description provided by source. vendor: www.ghostscripter.com ::::::::::::::explo!t::::::: ::::::: html head title Store Locator Remote Add Admin Exploit /title /head body text=00FF00 bgcolor=000000 form action=http://server/StoreLocator/adm/adminadd.php method=post style=text-align: center br...

MailOrderWorks 5.907 - Multiple Vulnerabilities

No description provided by source. Title: ====== MailOrderWorks v5.907 - Multiple Web Vulnerabilities Date: ===== 2013-01-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=798 VL-ID: ===== 796 Common Vulnerability Scoring System: ==================================== 4....

Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities

No description provided by source. Name: Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Sat 10 Jul 2010 08:05:44 PM EEST Vendor: http://elitecms.net/ Download: http://elitecms.net/download.php?download=eliteCMS -= CSRF PoC 1 - Change Admin Password =- html...

DirectAdmin 1.34.0 - CSRF Create Administrator Vulnerability

No description provided by source. Vendor: http://www.directadmin.com/ Code : Create Administrator : html titleDirectAdmin v1.34.0 XSRF Create Administrator Vulnerability/title !--!Set You'r victim By SarBoT511 !-- form name=reseller action=http://site.com:2222/CMDACCOUNTADMIN method=post input...