Sun Java System Delegated Administrator 6.x - HTTP Response Splitting

Sun Java System Delegated Administrator 6.x - HTTP Response Splitting source: https://www.securityfocus.com/bid/34643/info Sun Java System Delegated Administrator is prone to an HTTP response-splitting vulnerability because it fails to sufficiently sanitize user-supplied data. Attackers can...

ASP Product Catalog 1.0 - Cross-Site Scripting File Disclosure

ASP Product Catalog 1.0 - Cross-Site Scripting File Disclosure !/usr/bin/perl By AlpHaNiX NullArea.Net alphaathacker.bz Made in Tunisia script : ASP Product Catalog Multiple Remote Exploits download : http://sourceforge.net/project/showfiles.php?groupid=136315 script homepage :...

Banshee 1.4.2 DAAP Extension - '/apps/web/vs_diag.cgi' Cross-Site Scripting

source: https://www.securityfocus.com/bid/34507/info Banshee DAAP Extension is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...

Abee Chm eBook Creator 2.11 (FileName) Local Stack Overflow Exploit

No description provided by source. exploit.py Abee Chm eBook Creator 2.11 Stack overflow Exploit By:Encrypt3d.M!nd it's the same exploit i wrote for chm maker,everything is the same!! but there's a lil note that when importing 'DevilInside.chmprj' a message will pops up and tells that the project...

Hannon Hill Cascade Server Command Execution Vulnerability (post auth)

Exploit for cgi platform in category web applications ====================================================================== Hannon Hill Cascade Server Command Execution Vulnerability post auth ====================================================================== Emory University UTS Security...

phpCommunity 2.1.8 (SQL/DT/XSS) Multiple Vulnerabilities

No description provided by source. Salvatore "drosophila" Fresta + Application: phpCommunity 2 + Version: 2.1.8 + Website: http://sourceforge.net/projects/phpcommunity2/ + Bugs: A Multiple SQL Injection B Directory Traversal C Reflected XSS + Exploitation: Remote + Date: 07 Mar 2009 + Discovered...

Apache Tomcat crossite scripting

Crossite scriptign in example applications...

cURL/libcURL 7.19.3 - HTTP 'Location:' Redirect Security Bypass

source: https://www.securityfocus.com/bid/33962/info cURL/libcURL is prone to a security-bypass vulnerability. Remote attackers can exploit this issue to bypass certain security restrictions and carry out various attacks. This issue affects cURL/libcURL 5.11 through 7.19.3. Other versions may als...

Ewebeditor2. 8. 0 Ultimate Edition delete arbitrary file vulnerability-vulnerability warning-the black bar safety net

Author: oldjun This vulnerability can very tasteless, it can be fatal, the key to see how you use! This vulnerability is present in Example\NewsSystem directory delete. asp file, which is ewebeditor test page, without the login you can go directly to, to see these code: 'The band"|"the string...

Gaeste 1.6 File Disclosure

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + Gaeste 1.6 gastbuch.php Remote File Disclosure Vulnerability + + + + bd0rk || SOH-Crew + + + ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ = Vendor: http://www.php4scripte.de/ = Download:...

Ninja Blog 4.8 Remote Information Disclosure Vulnerability

No description provided by source. Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/index.php?s=ad&id=6 ---- Due to insufficient validation of client-side data, we can alt...

DMXReady Contact Us Manager 1.1 - Remote Contents Change

DMXReady Contact Us Manager 1.1 - Remote Contents Change Title : DMXReady Contact Us Manager http://target/path//applications/ContactUsManager/inccontactusmanager.asp Edit - http://target/path//admin/ContactUsManager/addcategory.asp : milw0rm.com 2009-01-14...

DMXReady BillboardManager <= 1.1 Contents Change Vulnerability

Exploit for unknown platform in category web applications ============================================================== DMXReady BillboardManager http://target/path//applications/BillboardManager/ Edit - http://www.demo.dmxready.com/admin/BillboardManager/addcategory.asp 0day.today 2018-02-09...

DMXReady Document Library Manager 1.1 - Contents Change

Title : DMXReady Document Library Manager http://target/path//applications/DocumentLibraryManager/incdocumentlibrarymanager.asp Edit - http://target/path//admin/DocumentLibraryManager/addcategory.asp : milw0rm.com 2009-01-14...

DMXReady Registration Manager 1.1 - Contents Change

DMXReady Registration Manager 1.1 - Contents Change Title : DMXReady Registration Manager http://target/path//applications/RegistrationManager/incregistrationmanager.asp Edit - http://target/path//admin/RegistrationManager/addcategory.asp : milw0rm.com 2009-01-14...

Dark Age CMS 0.2c Beta - Authentication Bypass

--+++==================================================================================+++-- --+++====== Dark Age CMS = v0.2c Beta Auth Bypass SQL Injection Vulnerability ======+++-- --+++==================================================================================+++-- + Dark Age CMS = v0.2...

ILIAS &lt;= 3.7.4 (ref_id) Blind SQL Injection Vulnerability

No description provided by source. ILIAS Learning Management = 3.7.4 - SQL Injection Vulnerability Vulnerability discovered by: LidlosesAuge Greetz to: -=Player=- , Suicide, g4ms3, enco, Palme, GPM, karamble, Free-Hack Date: 24.12.2008 Developer: http://www.ilias.de Dork 1: "powered by ILIAS" Dor...

phpLD 3.3 (page.php name) Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== phpLD 3.3 page.php name Blind SQL Injection Vulnerability =========================================================== phpLD 3.3 Blind SQL Injection http://www.phplinkdirectory.com...

Online Keyword Research Tool (download.php) File Disclosure Vuln

No description provided by source. Online Keyword Research download.php filename Local File Include author : Cold z3ro, http://www.hackteach.org/ script : http://secure.emetrix.com/order/product.asp?PID=68900247 demo : http://www.rightscripts.com/keywordresearch/ Exploit...

WebcamXP 5.3.2.375 - Remote File Disclosure

Directory Traversal Attack Example: http://XX.XX.XX.XX/..%2F..%2F..%2F..%2F..%2Fwindows/repair/sam http://XX.XX.XX.XX/..%2F..%2F..%2F..%2F..%2Fboot.ini -nicx0 milw0rm.com 2008-12-19...