CVE-2007-4825

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass openbasedir restrictions and possibly execute arbitrary code via a .. dot dot in the dl function...

php524-basedir.txt

Application: PHP dll . / Bug: openbasedir bypass & code exec & denial of service/some people call this as a buffer overflow , but it's a denial of service./ special condition: default php-memory-limit ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept ...

CVE-2007-4604

SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

Sql injection

SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

CVE-2007-4604

SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

paycart-sql.txt

!/usr/bin/perl -w use HTTP::Request; use LWP::UserAgent; --------------------------------------------------------------------------------- scripts : DL PayCart 1.01 - c 2006 Discovered By : irvian scripts site : http://www.dinkumsoft.com/ Thanks To bot : sqlscan, hantuinternet, xcart chanell :...

DL PayCart 1.01 - 'viewitem.php?ItemID' Blind SQL Injection

!/usr/bin/perl -w use HTTP::Request; use LWP::UserAgent; --------------------------------------------------------------------------------- scripts : DL PayCart 1.01 - c 2006 Discovered By : irvian scripts site : http://www.dinkumsoft.com/ Thanks To bot : sqlscan, hantuinternet, xcart chanell :...

DL PayCart 1.01 - viewitem.php?ItemID Blind SQL Injection

DL PayCart 1.01 - viewitem.php?ItemID Blind SQL Injection !/usr/bin/perl -w use HTTP::Request; use LWP::UserAgent; --------------------------------------------------------------------------------- scripts : DL PayCart 1.01 - c 2006 Discovered By : irvian scripts site : http://www.dinkumsoft.com/...

Breakthrough Windows 2 0 0 3 the PHP server to new ideas-vulnerability warning-the black bar safety net

From WIN2000 to WIN XP, WIN2003, MS IIS server security improvement is obvious. In WIN2000, a regular PHP SHELL will be able to put it down; in WIN XP, even Safe mode = off,you cannot use system function executes a system command, but we can also use the comfunction to break;to WIN 2 0 0 3,even i...

The use of dl function breakthrough disable_functions command execution-vulnerability warning-the black bar safety net

Go:http://www. tantao. cn:8 0 8 0/? action=show&id=2 7 5 Article submission: TTorchidy jnchahaat163.com PHP is a powerful and widely used scripting language, a large part of the site is using PHP architecture. Because it provides a powerful file operation function and interact with the system...

CVE-2006-7086

The 1 dlback.php and 2 dlback.cgi scripts in Hot Links allow remote attackers to obtain sensitive information and download the database via a direct request with a modified dl parameter...

solaris/sparc download and execute 278 bytes

No description provided by source. / black-dl-exec-SOLARIS.c MIPS 278:bytes Dowloads a binary from host given named 'evil-dl' to '/tmp/ff' then executes. 11.21.6 Russell Sanford [email protected] gcc -lnsl black-dl-exec-SOLARIS.c -o bdes / include sys/socket.h include netinet/in.h include...

solaris/sparc download and execute 278 bytes

Exploit for solaris/sparc platform in category shellcode ============================================ solaris/sparc download and execute 278 bytes ============================================ / black-dl-exec-SOLARIS.c MIPS 278:bytes Dowloads a binary from host given named 'evil-dl' to '/tmp/ff'...

Breakthrough Windows 2 0 0 3 the PHP server to new ideas-vulnerability warning-the black bar safety net

From WIN2000 to WIN XP, WIN2003, MS IIS server security improvement is obvious. In WIN2000, a regular PHP SHELL will be able to put it down; in WIN XP, even Safe mode = off,you cannot use system function executes a system command, but we can also use the comfunction to break;to WIN 2 0 0 3,even i...

CVE-2005-2839

Multiple cross-site scripting XSS vulnerabilities in MAXdev MD-Pro 1.0.72 allow remote attackers to inject arbitrary web script or HTML via 1 dl-search.php or 2 wl-search.php...

D-Link Dl-704 2.56 b5 - IP Fragment Denial of Service

D-Link Dl-704 2.56 b5 - IP Fragment Denial of Service // source: https://www.securityfocus.com/bid/3306/info The DLink Dl-704 is a DSL/Cable router and switch designed for home network use. A problem has been discovered in the Dl-704 router. Upon receiving a high amount of fragmented IP packets,...