527 matches found
Discuz v1.0 XSS Vulnerability
No description provided by source. ======================================================================================== | Title : Discuz Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...
Datenator 0.3.0 (event.php id) SQL Injection
Exploit for unknown platform in category web applications ============================================ Datenator 0.3.0 event.php id SQL Injection ============================================ Exploit Title: Datenator 0.3.0 event.php id SQL Injection Date: 26.12.09 Author: TheHuliGun Look on code i...
ta3arof [dating] Script (Arabic Version) - Arbitrary File Upload
ta3arof dating Script Arabic Version - Arbitrary File Upload ======================================================================================== | Title : ta3arof datnig Script Arabic Version Upload Shell Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk...
weenCompany - SQL Injection
weenCompany - SQL Injection weenCompany SQL Injection Vulnerability Vendor: http://www.weentech.com/ Author: Gamoscu Site: www.1923turk.biz Site: http://gamoscu.wordpress.com/ Dork:"Created by weenCompany" Exploit: http://server/index.php?moduleid=m2newsSQL-inj&articleid=1 Greetz: Manas58 Baybora...
Mozilla Firefox 3.5.3 Local Download Manager Exploit
Mozilla Firefox 3.5.3 Local Download Manager Exploit Exploit code for the download tampering vulnerability that can be referenced at http://www.mozilla.org/security/announce/2009/mfsa2009-53.html Full technical details at http://jbrownsec.blogspot.com/2009/10/firefox-local-download-manager.html...
cyask of a local file read exploit-vulnerability warning-the black bar safety net
By:linkboy Yesterday in the evening saw one such article, but no one said the use of the method, your own research a bit, the original is so simple. The following is the article content. Afternoon to help colleagues to see a station, DZ Forum, the Supplement are up, we also didn't ring day Then...
Nwahy Dir 2.1 Arbitrary Change Admin Password Exploit
No description provided by source. ? / Nwahy Dir v2.1 Change Admin Password Exploit - Author : rEcruit - Mail : [email protected] - Download : http://nwahy.com/showdownload-3105.html - Vuln in ./admincp/admininfo.php code $u = addslashes$COOKIE'username'; $query = mysqlquery "SELECT FROM dliladmi...
Microsoft DirectShow MPEG2TuneRequest Stack Overflow Exploit-vulnerability warning-the black bar safety net
The legendary rate is 6 0 per cent. Source: Xeye Microsoft DirectShow presence may be remotely exploitable stack overflow vulnerability. The key code is as follows: -------------------------The following contents are in danger, only for research use-------------- var appllaa='0'; var...
WebEyes Guest Book v.3 (yorum.asp mesajid) SQL Injection Vulnerability
No description provided by source. 000000 00000 0000 0000 000 00 000000 0000000 0000 000000 00000 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00000 0 0 0 0 0 0 0 0 00000 0000 0 0 0 0 00000 0 0 0 0 0 0 0 0 0 0 000 0 0 0 ...
ZeroShell 1.0beta11 - Remote Code Execution
ZeroShell 1.0beta11 - Remote Code Execution ==================================================== ZeroShell ;%22 In addition to the Unix commands, it is possible to abuse the ZeroShell scripts themself. For instance it is likely to use the "getkey" script in order to retrieve remote files, includi...
tvp-crash.txt
Total Video Player vcen.dll Remote Heap Overflow Crash By Cn4phux. Vendor: http://www.effectmatrix.com/ Risk : high The "" tag fail to handle long strings, which can lead to a Heap overflow in TVP. This bug can be remote or local, TVP parse any supplied file for a reconized header even if the...
Prozilla Hosting Index - 'id' SQL Injection
================================================================================================================== = SSSSS NN N AA K K EEEEE SSSSS TTTTTTTTT EEEEE AA MM MM = = S N N N A A K K E S T E A A M M M M = + SSSSS N N N AAAAAA KKK EEEEE SSSSS T EEEEE AAAAAA M M M M + = S N N N A A K K E S...
VideoScript <= 4.0.1.50 Admin Change Password Exploit-vulnerability warning-the black bar safety net
=== XPL === / errorreportingEALL; $G4N0K = "JEc0TjBLID0gPDw8RU9HDQo9PT09PT09pt09pt09pt09pt09pt09pt09pt09pt09pt09pt09pt09". "PT09PT09PT09PT09PT09PT09PT09PT09pt09pt09pt09pt09pt0nciagicagicagicagicagicag". "ICAgICBfICAgICAgXyAgICAgICBfICAgicagicagif8gicagicbficagxyanciagicagicagicag"...
tbmnetcms-lfi.txt
------------------------------------------------------------------------------------------------------------- TBmnetCMS v1.0 index.php?content Local File Inclusion Vulnerability http://www.tbmnet.de...
Sepal SPBOARD 4.5 (board.cgi) Remote Command Exec Vulnerability
No description provided by source. | | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | | | / \ | || | | | | | || || \ || // \ | | | Sepal's SPBOARD v4.5 board.cgi Remote Command Execution Vulnerability Script : : POC : |---...
MS06-067 Microsoft Internet Explorer Daxctle.OCX KeyFrame Method Heap Buffer Overflow Vulnerability
This module exploits a heap overflow vulnerability in the KeyFrame method of the direct animation ActiveX control. This is a port of the exploit implemented by Alexander Sotirov. This module requires Metasploit: https://metasploit.com/download Current source:...
Oracle Database Server 11.1 - CREATE ANY Directory Privilege Escalation
Oracle Database Server 11.1 - CREATE ANY Directory Privilege Escalation source: https://www.securityfocus.com/bid/31738/info Oracle Database Server is prone to a privilege-escalation issue related to the 'CREATE ANY DIRECTORY' user privilege. Attackers may exploit this issue to gain full SYSDBA...
intel-sql.txt
┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐...
Cscope <= 15.5 Symlink Vulnerability Exploit
No description provided by source. / RXcscope exploit version 15.5 and minor / include stdio.h include stdlib.h include sys/types.h include unistd.h define BSIZE 64 int mainint ac, char av pidt cur; uint i=0, lst; char bufferBSIZE + 1; fprintfstdout, "\n -- Cscope Exploit --\n"\ " version 15.5 an...
A+ PHP Scripts NMS Insecure Cookie Handling Vulnerability
No description provided by source. ...:::::A+ PHP Scripts - News Management System Insecure Cookie Handling Vulnerability ::::.... Virangar Security Team www.virangar.net www.virangar.ir -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra &...