Discuz! 6.0.1 - 'searchid' SQL Injection

=5 & mysql=4.1 BY james +------------------------------------------------------------------+ "; if$argc4 $host=$argv1; $port=$argv2; $path=$argv3; $uid=$argv4; else echo "Usage: php ".$argv0." host port path uid\n"; echo "host: target server \n"; echo "port: the web port, usually 80\n"; echo "pat...

ATutor 1.6.1-pl1 - 'import.php' Remote File Inclusion

ATutor Course Server Rfi AUTHOR : IRCRASH R3d.W0rm Discovered by : IRCRASH R3d.W0rm Our Site : Http://IRCRASH.COM IRCRASH Team Members : Dr.Crash - R3d.w0rm Script Download : www.atutor.ca DORK : "Web site engine's code is copyright © 2001-2007 ATutor®" Note : You must login , then use rfi bug ...

Linux Kernel 2.6.x chown() Group Ownership Alteration Exploit

No description provided by source. / $Id: raptorchown.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorchown.c - syschown missing DAC controls on Linux Copyright c 2004 Marco Ivaldi [email protected] Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of file...

Scripteen Free Image Hosting Script 1.2 - cookie Pass Grabber

Scripteen Free Image Hosting Script 1.2 - cookie Pass Grabber Scripteen Free Image Hosting Script V1.2. cookie Admin Password Grabber Exploit Coded By RMx - Liz0ziM Web:www.biyosecurity.com Dork:"Powered by Scripteen Free Image Hosting Script V1.2" TARGET HOST: Example:www.xxxx.com TARGET PATH:...

BP Blog 6.0 (id) Remote Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= BP Blog 6.0 id Remote Blind SQL Injection Vulnerability ========================================================= + Info: Software: bp blog HomePage: http://blog.betaparticle.com/...

openauto-sql.txt

|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | | |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| Title :: Remote SQL...

joomlaflipping-sql.txt

A L G E R I A S E C U R I T Y C R E W Joomla Component FlippingBook 1.0.4 SQL Injection Vulnerability found by: cO2 Algeria Security Crew Contact: c02athotmail.de Website: http://www.Dz-Secure.com Greetings: to all hackers DZ . . . ScriptName : 'Joomla' ModuleName : 'FlippingBook' Version : 1.0.4...

Prozilla Cheat Script 2.0 - id SQL Injection

Prozilla Cheat Script 2.0 - id SQL Injection --==+================================================================================+==-- --==+ Prozilla Cheat Script 2.0 SQL Injection Vulnerabilitys +==-- --==+================================================================================+==--...

The latest SMSJ Version 8.0 vulnerability-vulnerability warning-the black bar safety net

Author:rover Help a friend testing the site's security, using SMSJ Version 8.0, known as the imitation of the Alibaba stuff, the registered enterprise members, login Manager, find the upload pictures will be categorized into one http://www. rover. com/UserDocument/your registered member account...

advisory-singapore-modern-template.txt

Singapore Modern Template v1.3.2 pageTitle.'" href="'.$SERVER"PHPSELF"; if isset$GET"gallery" echo '?gallery='.$GET"gallery"; echo '&template=rss" / Input passed to the "gallery" parameter is not properly santised. Therefore the following request would result in a XSS flaw:...

vcart 3.3.2 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Scripts : vcart version 3.3.2 Discovered By : k1n9k0ng Scripts site : http://www.visionburst.com/ Thanks To : sekuritionline, semprol, bajingan, mimid, r.i.p, x-code,...

adult-access.txt

Adult Script Unauthorized Administrative Access Exploit bodymargin:0px;font-style:normal;font-size:10px;color:FFFFFF;font-family:Verdana,Arial;background-color:3a3a3a;scrollbar-face-color: 303030;scrollbar-highlight-color: 5d5d5d;scrollbar-shadow-color: 121212;scrollbar-3dlight-color:...

Microsoft .NET Framework JIT编译器远程溢出漏洞（MS07-040）

BUGTRAQ ID: 24811 CVECAN ID: CVE-2007-0043 Microsoft .NET Framework是一个流行的软件开发工具包。 .NET Framework JIT编译器处理包含恶意数据的网页时存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 .NET Framework...

Symantec Product Security: Norton Personal Firewall 2004 ActiveX Control vulnerability

SYM07-007 May 16, 2007 Symantec Norton Personal Firewall 2004 ActiveX Control Buffer Overflow Risk Impact Medium Affected Products Norton Internet Security 2004 Norton Personal Firewall 2004 Details CERT notified Symantec that a buffer overflow exists in an ActiveX Control used by Norton Personal...

SimpleBlog <= 2.0 (comments.asp) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= SimpleBlog use IO::Socket; if@ARGV != 3 usage; else exploit; sub header print " SimpleBlog 2.0 SQL Injection Exploit \r\n"; print " www.asianeagle.org \r\n"; sub usage header;...

DeluxeBB 1.07 - Remote Create Admin

DeluxeBB 1.07 - Remote Create Admin !/usr/bin/perl DeluxeBB new or die; $cookiejar = HTTP::Cookies-new; $xpl-cookiejar $cookiejar ; $res = $xpl-post$url.'misc.php', Content = "sub" = "login", "name" = "$uname", "password" = "$passwd", "submit" = "Log-in", "redirect" = "", "expiry" = "990090909", ...

The link tooltip and the statusbar can be misleading

It is possible to make a form input that looks like an image link.If the form input has a "title" attribute, the status bar will showthe "title". A "title" which looks like a URL can mislead the user,since the title can say http://nice.familiar.com/, while the formaction can be something...

Solaris Runtime Linker - Exploit Detection

This is a demonstration of exploit detection using the Solaris implementation of C2 Auditing BSM to detect the system has been compromised. Of course , it helps to be logging locally as well to a secure central log server or protected media. This was tested on an unpatched Solaris 10 Sparc system...

Sun JavaMail 1.3.2 - MimeBodyPart.getFileName Directory Traversal

Sun JavaMail 1.3.2 - MimeBodyPart.getFileName Directory Traversal source: https://www.securityfocus.com/bid/13141/info Sun JavaMail is prone to a directory traversal vulnerability. This arises because the API fails to properly validate filenames in email attachments received by the applet. This...