1762 matches found
Kemana Directory 1.5.6 - kemana_admin_passwd Cookie User Password Hash Disclosure
Kemana Directory 1.5.6 - kemanaadminpasswd Cookie User Password Hash Disclosure Kemana Directory 1.5.6 kemanaadminpasswd Cookie User Password Hash Disclosure Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with...
exploit for old rlpdaemon bug
!/opt/perl5/bin/perl -w HP-UX rlpdaemon local exploit Bulletin HPSBUX0111-176 November 2001 For use only on machines where you have legitimate root. This attempts to add junk including "localhost +" to /.rhosts. Obvious variants could include /etc/passwd. use IO::Socket; $PORT = 9000; pick...
HP-UX rlpdaemon Local .rhosts Append
!/opt/perl5/bin/perl -w HP-UX rlpdaemon local exploit Bulletin HPSBUX0111-176 November 2001 For use only on machines where you have legitimate root. This attempts to add junk including "localhost +" to /.rhosts. Obvious variants could include /etc/passwd. use IO::Socket; $PORT = 9000; pick...
HackerOne: DNS Misconfiguration
Your localhost.hackerone.com has address 127.0.0.1 and this may lead to "Same- Site" Scripting. Here is detailed description of this minor security issue by Tavis Ormandy: http://www.securityfocus.com/archive/1/486606/30/0/threaded...
Updated chrony package fixes security vulnerability
Updated chrony package fixes security vulnerability: In the chrony control protocol some replies are significantly larger than their requests, which allows an attacker to use it in an amplification attack CVE-2014-0021. Note: in the default configuration, cmdallow is restricted to localhost, so...
MyBB 1.6.12 POST Cross Site Scripting
alert/XSS/ " / document.exploit.submit;...
FileStealer v1.3 Upload Vulnerability
Exploit for php platform in category web applications File: HWID: Hash: PC: 0day.today 2018-03-12...
Amin'z Tech CMS Shell Upload / SQL Injection
---------------------------------------------- Exploit Title : Amin'z Tech Login Page SQL Injection Bypass / Upload shell vulnerability Exploit Author : ACC3SS Vendor Homepage : http://www.aminztech.com Google Dork : intext:"AMIN'Z TECH" inurl:panel Date: 2014-01-16 Tested on: Windows 7...
XAMPP 3.2.1 Cross Site Scripting
Title : XAMPP 3.2.1 Cross Site Scripting Author : DevilScreaM Date : 15 January 2014 Category : Web Applications Vendor : http://sourceforge.net/projects/xampp Version : 3.2.1 Type : PHP Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security Indonesian Hacker |...
Kimai v0.9.2 'db_restore.php' SQL Injection Vulnerability
Exploit for php platform in category remote exploits require 'msf/core' class Metasploit3 "Kimai v0.9.2 'dbrestore.php' SQL Injection", 'Description' = %q This module exploits a SQL injection vulnerability in Kimai version 0.9.2.x. The 'dbrestore.php' file allows unauthenticated users to execute...
Destoon最新版本20131010补丁后,全版本继续注入
简要描述: Destoon最新版本20131010补丁后,全版本继续注入 详细说明: 问题出在api/js.php这个漏洞,这个星期工作忙,结果别人提交了,官方补丁都出来了。 下载补丁,发现官方的修复比较马虎,没有理解漏洞的本质,分分钟绕过再次注入。 建议官方好好思考一下这个漏洞产生的根本原因。 漏洞证明: stripsql过滤了union这个字符串,但是实际上是可以绕过的。 由于需要伪造referer,所以用php写的脚本进行漏洞利用,需要根据实际情况修改里面的路径。 POC里面host参数为域名,本机测试为localhost,ver参数为版本,里面写了3,4,5三个版本的利用代码。...
WHMCS SQL injection EXP-vulnerability warning-the black bar safety net
Localhost in the report WHMCS SQL injection, by the way, and EXP with the release, here it will be his turn! This site provides programmethodmay carry offensive,for security research and teaching purposes,at your own risk! !/ usr/bin/env python 2013/10/03 - WHMCS 5.2.7 SQL Injection...
Epop Studio XSS/SQL Injection Vulnerabilities
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
KeenLook XSS/SQL Injection Vulnerabilities
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
Sun Java JDK/JRE 6 < Update 7 Multiple Vulnerabilities (Unix)
The version of Sun Java Runtime Environment JRE 6.0 installed on the remote host is affected by multiple security issues : - A vulnerability in the JRE could allow unauthorized access to certain URL resources or cause a denial of service condition while processing XML data. In order to successful...
Sun Java JDK/JRE 5 < Update 16 Multiple Vulnerabilities (Unix)
The version of Sun Java Runtime Environment JRE 5.0 installed on the remote host is affected by multiple security issues : - A vulnerability in the XML processing module of the JRE could allow an untrusted applet/application unauthorized access to certain URL resources 238628. - A buffer overflow...
phpShop 2.0 - SQL Injection
phpShop 2.0 - SQL Injection Exploit Title : phpshop 2.0 SQL Injection Vulnerability Author : By onestree Software Link : http://code.google.com/p/phpshop/downloads/list tested : windows 7 / ubuntu Dork : inurl:"tanyakan pada rumput yang bergoyang" SQLi p0c: ==================...
phlyLabs phlyMail Lite 4.03.04 - 'go' Open Redirect
phlyLabs phlyMail Lite 4.03.04 go param Open Redirect Vulnerability Vendor: phlyLabs Product web page: http://www.phlymail.com Affected version: Lite 4.03.04 Summary: phlyMail offers you an interface in the browser to have access to your emails, contacts, appointments, tasks, files and bookmakrs...
Wordpress admin-menu-editor plugin Full Path Disclosure vulnerability
Exploit for php platform in category web applications http://localhost/wp-content/plugins/admin-menu-editor/menu-editor.php Demo: http://jaguari.rs.gov.br/wp-content/plugins/admin-menu-editor/menu-editor.php http://eusoufan.com.br/wp-content/plugins/admin-menu-editor/menu-editor.php...
WordPress Uploader 1.0.4 Shell Upload
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...