trillian074i.txt

AUTHOR Komrade DATE 08/09/2004 PRODUCT Trillian is a chat client currently supporting IRC, AIM, ICQ, MSN Messenger, and Yahoo! Messenger. from readme.txt file DETAILS A buffer overflow vulnerability in basic edition version 0.74i latest version occours in the MSN module when receiving a string of...

PHP-Nuke 6.9 - cid SQL Injection

PHP-Nuke 6.9 - cid SQL Injection !/usr/bin/perl -w use IO::Socket; THIS CODE PUBLIC NOW = \ \ / | \ | / | / / \ | | \ | /\ \ / || /// | / / / / based on 'cid' sql injection vuln in Download module, more info about this vuln u can see here: http://rst.void.ru/texts/advisory10.htm work only on...

PHP-Nuke 6.5 (Multiple Downloads Module) - SQL Injection

PHP-Nuke 6.5 Multiple Downloads Module - SQL Injection source: https://www.securityfocus.com/bid/7588/info PHP-Nuke is reportedly prone to multiple SQL injection vulnerabilities in the Downloads module. Exploitation could allow for injection of malicious SQL syntax, resulting in modification of S...

Exploit for a security hole in the pickle module for Python versions <= 2.1.x

""" Exploit for a security hole in the pickle module for Python versions = 2.1.x Pickle is the name of a Python module for object persistence. It can convert arbitrary Python objects into byte streams and back. Though the documentation for Python 1.5.2 read The pickle module doesn't handle code...

gtk+ security hole.

while going through a quick audit of gtk i found: gtk+ can be tricked into running arbitrary code via a bogus module. this means any program using gtk that is setid can be exploited via this method. here is an exploit i wrote for this security hole: original xgtk.cworking/un-wrapped:...