1923 matches found
Directory traversal
Multiple directory traversal vulnerabilities in Scallywag 2005-04-25 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the skinname parameter to template.php in 1 skin/dark/, 2 skin/gold/, or 3 skin/original/, a different vector than CVE-2007-2900. NOTE: the...
Scallywag - 'template.php?path' Remote File Inclusion
Scallywag = Remote File Inclusion Vulnerability Dork:"Powered by Scallywag" Vuln Code ERROR1:skin/dark/template.php ?php include"$path/source/top.txt"; RFI CODE BUG1:...
Show Password Admin In Script Uploadscript
Theif Password Script UploadScript All Versions To 1.02 Discovered By : Hasadya Raed Contact : [email protected] Script : UploadScript V1.0/ 1.02 Dark : Powered by Uploadscript v1.0/v1.02 Only Add This File After The Link : password.txt Expl : Http://www.Victim.Com/ScriptPath/password.txt Example ...
CivicSpace Version 0.8.5 HTML injection
HeLiOsZ - Dark End Team - Internet Security Team CivicSpace Version 0.8.5 HTML injection IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: www.civicspacelabs.org Exploit: - To exploit this issue you must only put your...
Archangel Weblog 0.90.02 and prior Multiple HTML injections
HeLiOsZ - Dark End Team - Internet Security Team Archangel Weblog 0.90.02 and prior Multiple HTML injections IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.archangelmgt.com/ Exploit: - To exploit this issue yo...
MuOnline Loopholes Web Server (pkok.asp) SQL Injection Exploit
No description provided by source. !-- Save this code as .htm and replace SITE/SQLCODE to your server address Some SQL Examples: -Changing character data- update character set...
[SA15902] Plague News System SQL Injection and Security Bypass Vulnerabilities
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
PHP-Fusion <= 6.00.105 Accessible Database Backups Download Exploit
No description provided by source. !/usr/bin/perl D A R K A S S A S S I N S C R E W 2 0 0 5 Dark Assassins - http://dark-assassins.com/ Visit us on IRC @ irc.tddirc.net DarkAssassins phpfusiondb.pl; Version 0.1 22/06/05 PHP-Fusion db backup proof-of-concept by Easyex Database backup vuln in...
PHP-Fusion 6.00.105 - Accessible Database Backups Download
!/usr/bin/perl D A R K A S S A S S I N S C R E W 2 0 0 5 Dark Assassins - http://dark-assassins.com/ Visit us on IRC @ irc.tddirc.net DarkAssassins phpfusiondb.pl; Version 0.1 22/06/05 PHP-Fusion db backup proof-of-concept by Easyex Database backup vuln in v6.00.105 and below Description: When a ...
CVE-2004-1855
CVE-2004-1855 affects Dark Age of Camelot prior to 1.68 live patch. The RSA public key is not signed, enabling potential MITM by remote malicious servers to access sensitive information. No explicit fix or patch details are provided in the supplied documents.
CVE-2004-1855
Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers to gain sensitive information via a man-in-the-middle attack...
Exim <= 4.42 Local Root Exploit
Exploit for linux platform in category local exploits =============================== Exim include int mainint argc, char argv char addrptr; addrptr = getenvargv1; printf"%s @ %p\n", argv1, addrptr; return 0; gcc @env.c -o @env cp @env /usr/bin cd /usr/exim/bin CODE=perl -e 'print...
Exim 4.42 - Local Privilege Escalation
!/bin/sh Local Lame R00T sploit for exim include int mainint argc, char argv char addrptr; addrptr = getenvargv1; printf"%s @ %p\n", argv1, addrptr; return 0; gcc @env.c -o @env cp @env /usr/bin cd /usr/exim/bin CODE=perl -e 'print...
-= Unl0ck Team Security Advisory =-
-= Unl0ck Team Security Advisory =- | | | | | | / | | / | | / / / | |/ / | |/ / | | / | | / | | | / / | Y Y |/|| // / | || /|| / / / / / / / / ... the best way of protection is attack http://unl0ck.void.ru Advisory : 10 by unl0ck team Product : WinRAR = 3.41 Vendor : http://rarlabs.com Date :...
phpBB Code EXEC (v2.0.10)
| | | | | | | | || | | | | | | | | |/ / / / | | | / | '| |/ / | | | | V V / | |/ / | | | | | |// // |/ ,|| || http://www.howdark.com ---------------------------------------------------------------------------------------------------------------------------------- // Information...
bug.
-= Unl0ck Team Security Advisory =- | | | | | | / | | / | | / / / | |/ / | |/ / | | / | | / | | | / / | Y Y |/|| // / | || /|| / / / / / / / / ... the best way of protection is attack http://unl0ck.net.ru || http://unl0ck.info Advisory : 9 by unl0ck team Product : qwik-smtpd latest version. Vendo...
[VulnWatch] Dark Age of Camelot login client vulnerability to man in the middle attack
---------------------------------------- Security Advisory ---------------------------------------- Software: Dark Age of Camelot from Mythic Entertainment including Shrouded Isles & Trials of Atlantis Expansion Packs http://www.darkageofcamelot.com Affected Version: North America – all “live”...
CVE-2004-1855
Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers to gain sensitive information via a man-in-the-middle attack...
Mythic Entertainment Dark Age of Camelot 1.6x - Encryption Key Signing
Mythic Entertainment Dark Age of Camelot 1.6x - Encryption Key Signing // source: https://www.securityfocus.com/bid/9960/info An encryption key signing vulnerability has been reported to exist in Dark Age of Camelot. This issue is due to a design error in the application that carries out encrypti...
Mythic Entertainment Dark Age of Camelot 1.6x - Encryption Key Signing
// source: https://www.securityfocus.com/bid/9960/info An encryption key signing vulnerability has been reported to exist in Dark Age of Camelot. This issue is due to a design error in the application that carries out encryption without having the encryption key signed or verified by the affected...