151 matches found
AJ HYIP PRIME - 'welcome.php?id' Blind SQL Injection
AJ HYIP PRIME welcome.php id Blind SQL Injection Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - site: http://www.ajsquare.com/products/ajhyip/index.php - about AJ HYIP: AJ HYIP is a complete financial tool wit...
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
WebsiteBaker 2.8.1 - Cross-Site Request Forgery Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version: 2.8.1 Tested on: All Code : http://hacktalk.net/exploits/websitebakercsrfPOC.zip The full advisory can be found at...
WebsiteBaker 2.8.1 CSRF Vulnerability
Exploit for php platform in category web applications ===================================== WebsiteBaker 2.8.1 CSRF Vulnerability ===================================== Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version:...
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version: 2.8.1 Tested on: All Code : http://hacktalk.net/exploits/websitebakercsrfPOC.zip The full advisory can be found at http://hacktalk.net/exploits/websitebakerCSRF.txt...
SIESTTA 2.0 - Local File Inclusion Cross-Site Scripting
SIESTTA 2.0 - Local File Inclusion Cross-Site Scripting SIESTTA 2.0 LFI/XSS Multiple Vulnerabilities download: http://ramoncastro.es/siesttaold/ Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://www.hack0wn.com/ team: Spanish Hackers Team - SHT Hack0wn...
SIESTTA 2.0 - Local File Inclusion / Cross-Site Scripting
SIESTTA 2.0 LFI/XSS Multiple Vulnerabilities download: http://ramoncastro.es/siesttaold/ Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://www.hack0wn.com/ team: Spanish Hackers Team - SHT Hack0wn Security Project!! This was written for educational...
ALPHA CMS v3.2 <= Local File Inclusion Vulnerability
fucking the Web Apps attack edition / / / / L /' / , / / /' , / /' /' / /' / / / / / / L / / / // // // ///////////L // ////// // // Hack0wn! Security Project / /&...
Simple Machines Forum (SMF) 1.1.8 - avatar Remote PHP File Execute
Simple Machines Forum SMF 1.1.8 - avatar Remote PHP File Execute Simple Machines Forum ------END----- cat hacks.txt Simple Machines Forum = 1.1.8 avatar rpfe PoC by Jose Luis Gongora Fernandez aka JosS ///vhosts/hack0wn.com/httpdocs/poc.php VICTIM: 88.25.92. info: Mozilla/5.0 X11; U; Linux i686;...
E-topbiz Link ADS 1 PHP script (linkid) Blind SQL Injection Vulnerability
No description provided by source. E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability url: http://e-topbiz.com/oprema/pages/linkads1.php Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://hack0wn.com team: Spanish Hackers Team - SHT...
E-topbiz Link ADS 1 PHP script (linkid) Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================================= E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability ========================================================================= E-topbiz Link ADS 1...
E-topbiz Link ADS 1 PHP script - 'linkid' Blind SQL Injection
E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability url: http://e-topbiz.com/oprema/pages/linkads1.php Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://hack0wn.com team: Spanish Hackers Team - SHT This was written for educational...
MiNBank 1.5.0 Remote Command Execution Exploit
Exploit for unknown platform in category web applications ============================================== MiNBank 1.5.0 Remote Command Execution Exploit ============================================== !/usr/bin/perl MiNBank 1.5.0 Remote Command Execution Exploit download:...
MiNBank 1.5.0 - Remote Command Execution
!/usr/bin/perl MiNBank 1.5.0 Remote Command Execution Exploit download: http://downloads.sourceforge.net/minbank/ Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://www.hack0wn.com/ team: Spanish Hackers Team - SHT Hack0wn Security Project!! This was...
Cybershade CMS 0.2b Session Hijacking PoC Vulnerability
Exploit for unknown platform in category web applications ======================================================= Cybershade CMS 0.2b Session Hijacking PoC Vulnerability ======================================================= p0c!: Session Hijacking Cybershade CMS 0.2b Session Hijacking PoC...
Limny v2.0 Change Email and Password CSRF Exploit
Exploit for unknown platform in category web applications ================================================= Limny v2.0 Change Email and Password CSRF Exploit ================================================= /????????????????????????????\ :Limny 2.0 Change Pass CSRF : / /Discovered By: \ |Luis...
Limny 2.0 - Cross-Site Request Forgery (Change Email and Password)
Limny 2.0 - Cross-Site Request Forgery Change Email and Password /¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ :Limny 2.0 Change Pass CSRF : / /Discovered By: \ |Luis Santana | / Overview ¯¯¯¯¯¯¯¯¯¯ The Limny 2.0 CMS is vulnerable to a Cross-Site-Request Forgery exploit which allows for a malicious attacker to...
Limny v2.0 Create Admin User CSRF Exploit
Exploit for unknown platform in category web applications ========================================= Limny v2.0 Create Admin User CSRF Exploit ========================================= /????????????????????????????\ :Limny 2.0 CSRF : / /Discovered By: \ |Luis Santana | / Overview ?????????? The...
Limny 2.0 - Cross-Site Request Forgery (Create Admin User)
Limny 2.0 - Cross-Site Request Forgery Create Admin User /¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ :Limny 2.0 CSRF : / /Discovered By: \ |Luis Santana | / Overview ¯¯¯¯¯¯¯¯¯¯ The Limny 2.0 CMS is vulnerable to a Cross-Site-Request Forgery exploit which allows for a malicious attacker to create their own...
Limny 2.0 - Cross-Site Request Forgery (Change Email and Password)
/¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ :Limny 2.0 Change Pass CSRF : / /Discovered By: \ |Luis Santana | / Overview ¯¯¯¯¯¯¯¯¯¯ The Limny 2.0 CMS is vulnerable to a Cross-Site-Request Forgery exploit which allows for a malicious attacker to change the password, and email address, of any user, including...
Limny 2.0 - Cross-Site Request Forgery (Create Admin User)
/¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ :Limny 2.0 CSRF : / /Discovered By: \ |Luis Santana | / Overview ¯¯¯¯¯¯¯¯¯¯ The Limny 2.0 CMS is vulnerable to a Cross-Site-Request Forgery exploit which allows for a malicious attacker to create their own administrator user. Product Information ¯¯¯¯¯¯¯¯¯¯...