Aiyoota! CMS - Blind SQL Injection

php '.$argv0.' -1 http://www.site.com Example Method 2 for http://www.site.com/english/8/8/45001/liste9.html = php '.$argv0.' -2 http://www.site.com english 8 8 45001 liste9.html '; $automatic = $argv1; $url =...

Pro Chat Rooms 3.0.2 (XSS/CSRF) Multiple Vulnerabilities

No description provided by source. Pro Chat Rooms Version 3.0.2 XSS/CSRF Vulnerabilties AUTHOR : ZynbER MAiL : ZynbERatGmaildotcom HOME : NoWhere Script WebSite : http://www.prochatrooms.com Version : Pro Chat Rooms Version 3.0.2 EXPLOITS : -==XSS==-...

PacPoll 4.0 (poll.mdb/poll97.mdb) Database Disclosure Vulnerability

No description provided by source. -----------------------------OffensiveTrack------------------------------ ---------------------------- Tunisia Muslim ------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script ...

PacPoll 4.0 - Database Disclosure

-----------------------------OffensiveTrack------------------------------ ---------------------------- Tunisia Muslim ------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : PacPoll version : v4 download :...

bookingcentre201-sql.txt

Booking Centre 2.01 Auth Bypass SQL Injection Vulnerability -------------------------------------------------------------- Author: MrDoug E-mail: mrdoug13atgmaildotcom -------------------------------------------------------------- Exploit: http://demo.hotelsadmin.com/admin/index.php Username ==...

Star Articles 6.0 - Arbitrary File Upload

Star Articles 6.0 - Arbitrary File Upload Star Articles 6.0 Remote File Upload ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Home: www.z0rlu.blogspot.com N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : dork:...

CMS Ortus <= 1.13 Remote SQL Injection Vulnerability

No description provided by source. Author: otmorozok428, http://forum.antichat.ru Products: CMS Ortus 1.12, CMS Ortus 1.13 Vendor: http://ortus.nirn.ru Download: http://ortus.nirn.ru/files/ortus1-12.zip, http://ortus.nirn.ru/files/ortus1-13.zip Dork for ALL Versions of CMS Ortus:...

ParsBlogger - 'blog.asp' SQL Injection

-------------------------------------------------------------------------------------------------------------------- Script : ParsBlogger Version : ! Link : http://www.parsblogger.com Dork : "Powered by ParsBlogger" Author : BorN To K!LL TeaM : Security Geeks Sec-Geeks.com...

vBulletin 3.7.3 Visitor Message XSS/XSRF + worm Exploit

No description provided by source. / ----------------------------- Author = Mx Title = vBulletin 3.7.3 Visitor Messages XSS/XSRF + worm Software = vBulletin Addon = Visitor Messages Version = 3.7.3 Attack = XSS/XSRF - Description = A critical vulnerability exists in the new vBulletin 3.7.3 softwa...

vBulletin 3.7.3 - Visitor Message Cross-Site Request Forgery / Worm

/ ----------------------------- Author = Mx Title = vBulletin 3.7.3 Visitor Messages XSS/XSRF + worm Software = vBulletin Addon = Visitor Messages Version = 3.7.3 Attack = XSS/XSRF - Description = A critical vulnerability exists in the new vBulletin 3.7.3 software which comes included + with the...

linksxs-sql.txt

----------------------------------------------------------------------------------------------------------------------------------------------------- Linksxs Script link.php?catid and linking.page.php?catid Remote SQL Injection Vulnerability http://linksxs.com...

CVE-2008-5150

sample.sh in maildirsync 1.1 allows local users to append data to arbitrary files via a symlink attack on a /tmp/maildirsync-..log temporary file...

CVE-2008-5152

inmail-show in mh-book 200605 allows local users to overwrite arbitrary files via a symlink attack on a 1 /tmp/inmail.log or 2 /tmp/inmail.stdin temporary file...

ultrastats-sql.txt

||| ||| ||| ||| ||| |||| ||| |||||||||||| +++++++++++ ++++++++++++ ++++++++++++ | ++++++++++++| | ++++++++ | | ++ | |+| Ultrastats exploit by eeee eeee e e -------------------- 8 8 8 8 8eee 8eee 8eee8e 88 88 88 8 88ee 88ee 88 8 --- mail: [email protected] - Greetz to:...

asn-query NSE Script

Maps IP addresses to autonomous system AS numbers. The script works by sending DNS TXT queries to a DNS server which in turn queries a third-party service provided by Team Cymru using an in-addr.arpa style zone set up especially for use by Nmap. The responses to these queries contain both Origin...

http-open-proxy NSE Script

Checks if an HTTP proxy is open. The script attempts to connect to www.google.com through the proxy and checks for a valid HTTP response code. Valid HTTP response codes are 200, 301, and 302. If the target is an open proxy, this script causes the target to retrieve a web page from www.google.com...

ftp-anon NSE Script

Checks if an FTP server allows anonymous logins. If anonymous is allowed, gets a directory listing of the root directory and highlights writeable files. See also: ftp-brute.nse Script Arguments ftp-anon.maxlist The maximum number of files to return in the directory listing. By default it is 20, o...

PHPX 3.5.16 - 'news_id' SQL Injection

action = $GET'action'; 12. $this-newsid = $GET'newsid'; 13. 14. global $userinfo; 15. global $core; 16. 17. $this-core = $core; 18. 19. $this-userinfo = $userinfo; 20. 21. 22. 23. 24. if !$this-userinfo DIE"HACK ATTEMPT"; 25. if $this-userinfonews != 1 DIE"NO ACCESS TO THIS MODULE"; 26. 27...

Shahrood (ndetail.php id) Blind SQL Injection Vulnerability

No description provided by source. ======================================================== == Shahrood ndetail.php id Blind SQL Injection Vulnerability ======================================================== == AuThOr : BazOka-HaCkEr == EmaiL : [email protected] == HomE : www.TrYaG.cc/cc...

Shahrood (ndetail.php id) Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== Shahrood ndetail.php id Blind SQL Injection Vulnerability =========================================================== Page 1 ======================================================...