RevokeBB <= 1.0 RC4 - Blind SQL Injection / Hash Retrieve Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo ------------------------------------------------------------- RevokeBB = 1.0 RC4 Blind SQL Injection / Hash Retrieve Exploit Site: http://www.revokesoft.net by BlackHawk [email protected]...

WordPress Couponer plugin <= 1.2 - SQL Injection

No description provided by source. Exploit Title: WordPress Couponer plugin = 1.2 SQL Injection Vulnerability Date: 2011-08-31 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/couponer.zip Version: 1.2 tested Note: magicquotes has...

Clip Bucket <= 1.7.1 Insecure Cookie Handling Vulnerability

No description provided by source. || || | || o,7 || . o7 || q||| o\, : / / . /QQQQQQQQQQQQQQQQQQQ\ /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE... |QQQQ| |QQQQ| |QQQQ| |QQQQ\ iqaahotmail.fr /QQQQ| \QQQQ\ /QQQQ/ \QQQQ...

Havij <= 1.10 - Persistent XSS

No description provided by source. Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By : Hkhexon [email protected]...

Gravity Board X 2.0 BETA (Public Release 3) - SQL Injection Vulnerability

No description provided by source. !/usr/bin/perl Exploit Title: Gravity Board X 2.0 BETA Public Release 3 SQL INJECTION Date: 26.02.2010 Author: Ctacok Software Link: http://www.gravityboardx.com/ Version: 2.0 BETA Public Release 3 Tested on: Windows SP 3 Code : exploit code use LWP::Simple; pri...

Mobilelib Gold 3.0 - Local File Disclosure Vulnerability

No description provided by source. || || | || o,7 || . o7 || q||| o\, : / / . /QQQQQQQQQQQQQQQQQQQ\ /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE... |QQQQ| |QQQQ| |QQQQ| |QQQQ\ iqaahotmail.fr /QQQQ| \QQQQ\ /QQQQ/ \QQQQ...

WordPress Tune Library 2.17 SQL Injection

Exploit Title: WordPress Tune Library plugin prefix . "tracks where artist != '' and artist like '" .$artistletter . "%' order by artist";...

chCounter 3.1.3 - SQL Injection

chCounter 3.1.3 - SQL Injection !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache...

Havij 1.10 Cross Site Scripting

Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Software Link: http://itsecteam.com/files/Havij%201.10.rar Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By :...

SiteX CMS 0.7.4 beta (photo.php) SQL-Injection exploit

Exploit for php platform in category web applications ====================================================== SiteX CMS 0.7.4 beta photo.php SQL-Injection exploit ====================================================== ?php echo "\n\n\n"; echo " \n"; echo " Product: SiteX CMS 0.7.4 beta /photo.php...

BigForum 4.5 SQL Injection

Exploit Title: BigForum 4.5 SQL INJECTION EXPLOIT Date: 07.03.2010 Author: Ctacok Software Link: http://sourceforge.net/projects/npage-bigforum/ Version: 4.5 Tested on: Ubuntu 9.10 !/usr/bin/perl use LWP::Simple; print "\n"; print "\n"; print " BigForum Version: 4.5 SQL INJECTION \n"; print "...

BigForum Version 4.5 SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================ BigForum Version 4.5 SQL Injection Vulnerability ================================================ !/usr/bin/perl use LWP::Simple; print "\n"; print "\n"; print " BigForum Version: 4.5 SQL...

ONECMS 2.5 SQL Injection

Exploit Title: ONECMS v2.5 SQL INJECTION Date: 05.03.2010 Author: Ctacok and .:melkiy:. Software Link: http://sourceforge.net/projects/onecms/ Version: 2.5 Tested on: Ubuntu 9.10 Apache2+PHP5 !/usr/bin/perl use LWP::Simple; print "\n"; print "\n"; print " ONECMS v2.5 SQL INJECTION \n"; print " Bu...

Gravity Board X 2.0 Beta (Public Release 3) - SQL Injection

!/usr/bin/perl Exploit Title: Gravity Board X 2.0 BETA Public Release 3 SQL INJECTION Date: 26.02.2010 Author: Ctacok Software Link: http://www.gravityboardx.com/ Version: 2.0 BETA Public Release 3 Tested on: Windows SP 3 Code : exploit code use LWP::Simple; print "\n"; print "\n"; print " Gravit...

Gravity Board X 2.0 Beta (Public Release 3) - SQL Injection

Gravity Board X 2.0 Beta Public Release 3 - SQL Injection !/usr/bin/perl Exploit Title: Gravity Board X 2.0 BETA Public Release 3 SQL INJECTION Date: 26.02.2010 Author: Ctacok Software Link: http://www.gravityboardx.com/ Version: 2.0 BETA Public Release 3 Tested on: Windows SP 3 Code : exploit co...

eNdonesia CMS 8.4 - Local File Inclusion

eNdonesia CMS 8.4 - Local File Inclusion Endonesia 8.4 CMS Site: http://www.endonesia.org/ Download: http://sourceforge.net/projects/endonesia Bug: Local File Inclusion in mod.php file ! Author: s4r4d0 Mail: [email protected] Team: Fatal Error...

PixelPost 1.7.1 SQL Injection / XSS

=========================================== PixelPost Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...

Webspell 4 SQL Injection

Webspell Login Bypass Found by: h0yt3r Checklogin.php Line 60: setcookie"wsauth", $ds'userID'.":".$wspwd, time+$sessionduration6060; $login = 1; functions.php Line 253: $loginpercookie = false; ifisset$COOKIE'wsauth' AND !isset$SESSION'wsauth' $loginpercookie = true; $SESSION'wsauth' =...

social-sql.txt

HACKATTACK Advisory 2008-11-20Social Engine 2.7 CRLF Injection + SQL injection Details Product: Social Engine Security-Risk: moderate Remote-Exploit: yes Vendor-URL: http://www.socialengine.net/ Vendor-Status: informed Advisory-Status: published Credits Discovered by: David Vieira-Kurz of...

[ECHO_ADV_100$2008] Comdev Web Blogger &lt;= 4.1.3 &#40;arcmonth&#41; Sql Injection Vulnerability

.OR.ID ECHOADV100$2008 ----------------------------------------------------------------------------------------- ECHOADV100$2008 Comdev Web Blogger = 4.1.3 arcmonth Sql Injection Vulnerability ----------------------------------------------------------------------------------------- Author :...