PHP-Nuke <= 8.1.0.3.5b Remote Command Execution Exploit

No description provided by source. PHP-Nuke = 8.1.0.3.5b Remote Command Execution Exploit Author/s: Dante90 & yawn Contact Us: www.unitx.net Requirements: magicquotesgpc : off Greetings: [email protected] | [email protected] You will remember, Watson, how the dreadful business of the Abernetty...

LightNEasy sql/no-db <= 2.2.x system Config Disclosure Exploit

No description provided by source. !/usr/bin/perl LightNEasy sql/no-db = 2.2.x system config disclosure exploit by staker ------------------------------ mail: stakerathotmaildotit url: http://www.lightneasy.org ------------------------------ it works with magicquotesgpc=off short explanation:...

File Store PRO 3.2 - Multiple Blind SQL Injection Vulnerabilities

No description provided by source. | File Store PRO 3.2 Blind SQL Injection | || Download from: http://upoint.info/cgi/demo/fs/filestore.zip - Need admin rights: /confirm.php: code ifisset$GETfolder && $GETfolder!= $folder=$GETfolder; else exitBad Request; ifisset$GETid && $GETid!= $id=$GETid; el...

GreenPants 0.1.7 SQL Injection

Exploit Title: GreenPants 0.1.7 Multiple Vulnerabilities Date : 19 March 2011 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/greenpants/ Version : 0.1.7 Tested on : CentOS 5.2 with magicquotesgpc off Thanks to :...

Lotus CMS Fraise 3.0 - Local File Inclusion Remote Code Execution

Lotus CMS Fraise 3.0 - Local File Inclusion Remote Code Execution !/usr/bin/python Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit greetz Tecr0C :0 Vuln: lines 15-23 in core/lib/router.php ---------- sof //Get page request if any $page = $this-getInputString"page", "index"; //Get plugin...

PHP-Nuke 8.1.0.3.5b (Your_Account Module) - Blind SQL Injection (Benchmark Mode)

PHP-Nuke 8.1.0.3.5b YourAccount Module - Blind SQL Injection Benchmark Mode PHP-Nuke new; my $average = 0; print "+ Calculating average load time may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: pe...

Online University - Authentication Bypass

'/ -.- --------------------oOO------OOo----------------------------- | Online University Auth Bypass SQL Injection Vulnerability | | works only with magicquotesgpc = off | ---------------------------------------------------------------- ! Discovered: cr4wl3r ! Homepage: http://h4ckb0x.org/ !...

Aflam Online (Auth Bypass) SQL Injection

Exploit for unknown platform in category web applications ======================================== Aflam Online Auth Bypass SQL Injection ======================================== :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : Aflam Online Auth...

al3jeb script - Remote Authentication Bypass

al3jeb script - Remote Authentication Bypass '/ -.- --------------------oOO------OOo------------------- | al3jeb script Remote Login Bypass Exploit | | works only with magicquotesgpc = off | ------------------------------------------------------ ! Discovered: cr4wl3r ! Date: 19.01.2010 ! Remote:...

PHP-RESIDENCE <= 0.7.2 Multiple LFI Vulnerability

Exploit for unknown platform in category web applications ================================================= PHP-RESIDENCE = 0.7.2 Multiple LFI Vulnerability ================================================= '/ -.- --------------------oOO------OOo------------------- | PHP-RESIDENCE = 0.7.2 Multipl...

织梦(Dedecms) 5.1 feedback_js.php 注入漏洞

同样是在magicquotesgpc=off的情况下可用 此漏洞可拿到后台管理员的帐号和加密HASH,漏洞存在文件plus/feedbackjs.php,未过滤参数为$arcurl ...... $urlindex = 0; ifempty$arcID $row = $dlist-dsql-GetOne"Select id From @cachefeedbackurl where url='$arcurl' "; //此处$arcurl没有过滤 ifisarray$row $urlindex = $row'id';...

织梦(DEDECMS) 5.1 plus/feedback_js.php存在注入漏洞

在magicquotesgpc=off的情况下可用 此漏洞可拿到后台管理员的帐号和加密HASH,漏洞存在文件plus/feedbackjs.php,未过滤参数为$arcurl ...... $urlindex = 0; ifempty$arcID $row = $dlist-dsql-GetOne"Select id From @cachefeedbackurl where url='$arcurl' "; //此处$arcurl没有过滤 ifisarray$row $urlindex = $row'id';...

Traidnt UP 2.0 SQL Injection

!/usr/bin/ruby ============================================= Traidnt UP v2.0 Exploit SQL Injection Vulnerability --------------------------------------------- Date: 05-08-2009 Discovered & written by: Jafer Al-Zidjali Email: jaferatscorpionds.com Website: www.scorpionds.com...

Traidnt UP 2.0 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================== Traidnt UP 2.0 Remote SQL Injection Exploit =========================================== !/usr/bin/ruby ============================================= Traidnt UP v2.0 Exploit SQL Injection...

Mobilelib Gold v3 (Auth Bypass/SQL) Multiple Remote Vulnerabilities

No description provided by source. ------------------Mobilelib Gold v3 Auth Bypass/SQL Multiple Remote Vulnerabilities---------------------------- ---------------------------------------------------------------------------------------------------------------- Script : Mobilelib Gold version : 3.0...

Limny 1.01 - Authentication Bypass

Limny 1.01 - Authentication Bypass + Limny 1.01 Auth Bypass SQL Injection Vulnerability + Discovered By SirGod + http://insecurity-ro.org + http://h4cky0u.org + Script Homepage : http://www.limny-project.com/ + SQL Injection Vulnerability - Notes : magicquotesgpc = off - Vulnerable code in...

LightNEasy sql/no-db <= 2.2.x system Config Disclosure Exploit

Exploit for unknown platform in category web applications ============================================================== LightNEasy sql/no-db new...

Shop Script Pro 2.12 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================= Shop Script Pro 2.12 Remote SQL Injection Exploit ================================================= !/usr/bin/perl =about VENDOR Shop Script Pro 2.12 maybe other versions vulnerable too...

LightOpenCMS 0.1 pre-alpha Remote SQL Injection

Salvatore "drosophila" Fresta + Application: LightOpenCMS + Version: 0.1 pre-alpha + Website: http://sourceforge.net/projects/lightopencms + Bugs: A Remote SQL Injection + Exploitation: Remote + Date: 05 Jun 2009 + Discovered by: Salvatore Fresta aka drosophila + Author: Salvatore Fresta aka...

PropertyMax Pro FREE (SQL/XSS) Multiple Remote Vulnerabilities

No description provided by source. + PropertyMax Pro FREE SQL/XSS Multiple Remote Vulnerabilities + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + SQL Injection Auth Bypass Conditions : magicquotesgpc = off Go to : http://127.0.0.1/path/admin Login as : Username : 'or''=' Password...