234 matches found
Mambo Component com_awesom 0.3.2 - listid SQL Injection
Mambo Component comawesom 0.3.2 - listid SQL Injection joomla SQL Injectioncomawesom AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DORKS 1 : allinurl :"comawesom" ı changed ATATÜRK.com's db. soo dont look ATATÜRK.com db si değiştirilip kullanıcısına bildirilmiştir. EXPLOIT :...
Mambo Component com_catalogshop 1.0b1 - SQL Injection
Mambo Component comcatalogshop 1.0b1 - SQL Injection joomla SQL Injectioncomcatalogshop AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorKs 1 : allinurl: "comcatalogshop" EXPLOIT :...
Mambo Component EstateAgent 0.1 - SQL Injection
Mambo Component EstateAgent 0.1 - SQL Injection joomla SQL Injectioncomestateagent AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorK 1 : allinurl: allinurl: "comestateagent" EXPLOIT :...
mpaa-xss.txt
As many of you have heard, the MPAA themselves are violating the GNU GPL. Such hypocrisy from a company which claims they adhere to copyrights :- In protest, I took exactly 7 seconds to locate an XSS in their website and am posting it for your perusal. Maybe someone can use it in an email to an...
BytesFall-exp.txt
Advisory: Authentication bypass in BytesFall Explorer A malicious user can bypass authentication and take over the role of the administrator of BytesFall Explorer by using an SQL injection. Several other SQL injections are possible. Details ======= Product: BytesFall Explorer Affected Versions: =...
SQL Injection Vulnerability in bfExplorer 0.0.6
Armorize Technologies Security Advisory Advisory No: Armorize-ADV-2006-0007 Status: Partial Date: 2006/10/31 Summary: Armorize-ADV-2006-0007 discloses SQL injection vulnerability that is found in bfExplorer BytesFall Explorer, http://sourceforge.net/projects/bfexplorer, which is is a web-based fi...
adv51-K-159-2006.txt
ECHOADV51$2006 ----------------------------------------------------------------------------------------- ECHOADV51$2006 docmint = 2.0 MYENVBASEENGINELOC Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...
dragonflyCMS.txt
HeLiOsZ - Dark End Team - Internet Security Team Dragonfly CMS 9.0.6.1 and prior XSS IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.cpgnuke.com/ Exploit: - The vuln is in the search section,it don't validate t...
ToendaCMS 1.0.0 - 'FCKeditor' Arbitrary File Upload
!/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; return $exa."\r\n".$result; $proxyregex =...
[ECHO_ADV_37$2006] pc_cookbook Mambo/Joomla Component <= v0.3 Remote File Include Vulnerabilities
/ / | | / // / | | Y / | / / /| / / / / / / .OR.ID ECHOADV37$2006 ----------------------------------------------------------------------------------------------- ECHOADV37$2006 pccookbook Mambo/Joomla Component = v0.3 Remote File Include Vulnerabilities...
[Full-disclosure] RealVNC 4.1.1 Remote Compromise
Rumors of this bug began spreading on Slashdot and other sites, thanks to Steve Wiseman of intelliadmin.com who serendipitously discovered it while writing a VNC client. At first it was only a rumor, as Steve's site gave scant details and he himself was surprised such a huge hole could possibly...
EGS Enterprise Groupware System 1.0 rc4 remote commands execution & FlySpray 0.9.7 remote commands execution
--------EGS Enterprise Groupware System 1.0 rc4 possibly prior versions------- remote code execution -------------------------------------------------------------------------------- software: site: http://egs.sourceforge.net/ description: "EGS is an Open Source business system released under the...
BitchX <= 1.0c20 Local Buffer Overflow Exploit
No description provided by source. / Tested on BitchX-1.0c19 /str0ke / / P.o.C Exploit Code for BitchX made for Version BitchX-1.0c20cvs -- Date 20020325 C 2004. GroundZero Security Research and Software Development http://www.groundzero-security.com released under the GNU GPL -...
BitchX 1.0c20 - Local Buffer Overflow
/ Tested on BitchX-1.0c19 /str0ke / / P.o.C Exploit Code for BitchX made for Version BitchX-1.0c20cvs -- Date 20020325 C 2004. GroundZero Security Research and Software Development http://www.groundzero-security.com released under the GNU GPL - http://www.gnu.org/licenses/gpl.txt -- background...