Lizard Cart - Multiple SQL Injections

Exploit Title: Lizard Cart Multiple SQL Injection Exploit Date: 20-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/lizardcart/ Version: N/A Tested on: GNU/LINUX Code detail.php $dbResult = mysqlquery"select from products where id='$id'"; PoC lizardcartpath/detail.php?id=SQL...

gpEasy 1.5RC3 Remote File Inclusion

Exploit Title: gpEasy = 1.5RC3 Remote FIle Include Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/gpeasy/files/ Version: N/A Tested on: GNU/LINUX Code adminpassword.php : requireonce$GLOBALS'rootDir'.'/include/admin/adminusers.php'; 3xplo!t :...

gpEasy <= 1.5RC3 Remote FIle Include Exploit

Exploit for unknown platform in category web applications ============================================ gpEasy = 1.5RC3 Remote FIle Include Exploit ============================================ Exploit Title: gpEasy = 1.5RC3 Remote FIle Include Exploit Date: 18-12-2009 Author: cr4wl3r Software Link...

F3Site2009 Local File Inclusion

Exploit Title: F3Site2009 Multiple LFI Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://code.google.com/p/f3site/ Version: N/A Tested on: GNU/LINUX Code poll.php : iffileexists'./cache/poll'.$GLOBALS'nlang'.'.php': include'./cache/poll'.$GLOBALS'nlang'.'.php'; 3xplo!t :...

gpEasy &lt;= 1.5RC3 Remote FIle Include Exploit

No description provided by source. Exploit Title: gpEasy = 1.5RC3 Remote FIle Include Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/gpeasy/files/ Version: N/A Tested on: GNU/LINUX Code adminpassword.php :...

F3Site2009 Multiple LFI Exploit

No description provided by source. Exploit Title: F3Site2009 Multiple LFI Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://code.google.com/p/f3site/ Version: N/A Tested on: GNU/LINUX Code poll.php : iffileexists'./cache/poll'.$GLOBALS'nlang'.'.php':...

New cacti packages fix insufficient input sanitising

No description provided by source. - ------------------------------------------------------------------------ Debian Security Advisory DSA-1954-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 16, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1954-1] New cacti packages fix insufficient input sanitising

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1954-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 16, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA-1953-1] New expat packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1953-1 [email protected] http://www.debian.org/security/ Stefan Fritsch December 15, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing

------------------------------------------------------------------------ Debian Security Advisory DSA-1951-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 15, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1951-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 15, 2009 http://www.debian.org/security/faq -...

eoCMS 0.9.03 - Remote File Inclusion

eoCMS 0.9.03 - Remote File Inclusion Exploit Title: eoCMS = 0.9.03 Remote FIle Include Vulnerability Date: 14-12-2009 Author: 1nd0n3s14n l4m3r Software Link: http://eocms.com/index.php?act=plugin&id=4 Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A eoCMS = 0.9.03 Remote FIle Include...

eoCMS <= 0.9.03 Remote FIle Include Vulnerability

Exploit for unknown platform in category web applications ================================================= eoCMS = 0.9.03 Remote FIle Include Vulnerability ================================================= Exploit Title: eoCMS = 0.9.03 Remote FIle Include Vulnerability Date: 14-12-2009 Author:...

eoCMS &lt;= 0.9.03 Remote FIle Include Vulnerability

No description provided by source. Exploit Title: eoCMS = 0.9.03 Remote FIle Include Vulnerability Date: 14-12-2009 Author: 1nd0n3s14n l4m3r Software Link: http://eocms.com/index.php?act=plugin&id=4 Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A eoCMS = 0.9.03 Remote FIle Include...

eoCMS 0.9.03 - Remote File Inclusion

Exploit Title: eoCMS = 0.9.03 Remote FIle Include Vulnerability Date: 14-12-2009 Author: 1nd0n3s14n l4m3r Software Link: http://eocms.com/index.php?act=plugin&id=4 Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A eoCMS = 0.9.03 Remote FIle Include Vulnerability Created By 1nd0n3s14n l4m3r c...

Interspire Shopping Cart - Full Path Disclosure

Interspire Shopping Cart - Full Path Disclosure Exploit Title: Interspire Shopping Cart Full Path Disclosure Date: 13-12-2009 Author: Mr.aFiR Software Link: http://www.interspire.com/ Version: N/A Tested on: GNU/LINUX CVE : N/A Code : N/A / \ / \ / \ | | |/ | | | Y Y | V\ / Y| || |/ / A ||| \ | |...

[SECURITY] [DSA 1949-1] New php-net-ping packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1949-1 [email protected] http://www.debian.org/security/ Raphael Geissert December 12, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1945-1] New gforge packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1945-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 03, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1938-1] New php-mail packages fix insufficient input sanitising

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1938-1 [email protected] http://www.debian.org/security/ Steffen Joeris November 23, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1939-1] New libvorbis packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1939-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano November 24, 2009 http://www.debian.org/security/faq -...