31 matches found
EUVD-2007-3271
Malware in sbrugna...
Drupal core - Critical - Remote code execution - SA-CORE-2020-012
Update November 18: Documented longer list of dangerous file extensions Drupal core does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting...
PHP Hosting Directory 2.0 Database Disclosure Exploit (.py)
No description provided by source. !/usr/bin/env python -- coding:cp1254 -- ''' Title : PHP Hosting Directory 2.0 Database Disclosure Exploit .py Author : ZoRLu / http://inj3ct0r.com/author/577 mail-msn : [email protected] Down. Script : - Proof :...
PHP Hosting Biller 1.0 Index.PHP Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24517/info Php Hosting Biller is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting...
PHP Hosting Directory 2.0 Database Disclosure
!/usr/bin/env python -- coding:cp1254 -- ''' 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit Database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site :...
PHP Hosting Directory 2.0 - Database Disclosure (Python)
PHP Hosting Directory 2.0 - Database Disclosure Python !/usr/bin/env python -- coding:cp1254 -- ''' Title : PHP Hosting Directory 2.0 Database Disclosure Exploit .py Author : ZoRLu / http://inj3ct0r.com/author/577 mail-msn : [email protected] Down. Script : - Proof :...
PHP Hosting Directory 2.0 - Database Disclosure
!/usr/bin/env python -- coding:cp1254 -- ''' Title : PHP Hosting Directory 2.0 Database Disclosure Exploit .py Author : ZoRLu / http://inj3ct0r.com/author/577 mail-msn : [email protected] Down. Script : - Proof : http://img214.imageshack.us/img214/2407/directory.jpg Tested : Windows XP...
PHP Hosting Directory 2.0 background verification bypass vulnerability and fix-vulnerability warning-the black bar safety net
PHP Hosting Directory 2.0 program background verification is not strictly, can lead to bypass the password verification sign in the background. Google: "powered by PHP Hosting Directory 2.0" Default background:http://127.0.0.1/admin Use method: Do not need to enter any password, through cookies...
PHP Hosting Directory 2.0 background verification bypass vulnerability-vulnerability warning-the black bar safety net
PHP Hosting Directory 2.0 program background verification is not strictly, can lead to bypass the password verification sign in the background. Google: "powered by PHP Hosting Directory 2.0" Default background:http://127.0.0.1/admin Use method: Do not need to enter any password, through cookies...
PHP Hosting Directory 2.0 Insecure Cookie
----------------------------------------------------------------------- o X .@% @@@ @ @ @@ %X X@ @ @X% @X% X@ X@ o@ o X o @ % % X @ X X X@ X X % @o @%o @o% X @ % X.@@ o @o@ @ @XX X@ @ X @% X% %@@ X -----------------------------------------------------------------------...
PHP Hosting Directory 2.0 Admin Password Bypass Vulnerability
Exploit for php platform in category web applications ============================================================= PHP Hosting Directory 2.0 Admin Password Bypass Vulnerability ============================================================= Author: ruinerblackhat Version: Versin 2 My Group Web:...
CVE-2008-3455
PHP remote file inclusion vulnerability in include/admin.php in JnSHosts PHP Hosting Directory 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the rd parameter...
CVE-2008-3454
JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the "adm" cookie value to 1...
CVE-2008-3454
JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the "adm" cookie value to 1...
CVE-2008-3454
CVE-2008-3454 affects JnSHosts PHP Hosting Directory 2.0. The vulnerability allows remote attackers to bypass authentication by setting the adm cookie value to 1, gaining administrative access. Exploitation is possible over a network with low complexity and no authentication required. The documen...
JnSHosts PHP Hosting Directory 'admin.php'远程文件包含漏洞
BUGTRAQ ID: 30428 CNCAN ID:CNCAN-2008073110 JnSHosts PHP Hosting Directory是一款基于PHP的论坛程序。 JnSHosts PHP Hosting Directory不正确过滤用户提交的参数,远程攻击者可以利用漏洞以WEB进程权限执行任意PHP代码。 问题是'admin.php'脚本不正确过滤用户提交的WEB参数,指定远程服务器上的任意文件作为包含对象,可导致以WEB进程权限执行任意PHP代码。 JnSHosts PHP Hosting Directory 2.0 目前没有解决方案提供:...
PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability
No description provided by source. PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability Name Of Script : PHP Hosting Directory 2.0 Download From : http://jnshosts.com/download/phphostdirectory.zip Discoverd By :Stack Home : http://v4-team.com --- exploit: javascript:document.cookie =...
phphostdir-cookie.txt
PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability Name Of Script : PHP Hosting Directory 2.0 Download From : http://jnshosts.com/download/phphostdirectory.zip Discoverd By :Stack Home : http://v4-team.com --- exploit: javascript:document.cookie = "adm=1; path=/"; document.cookie =...
PHP Hosting Directory 2.0 - Insecure Cookie Handling
PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability Name Of Script : PHP Hosting Directory 2.0 Download From : http://jnshosts.com/download/phphostdirectory.zip Discoverd By :Stack Home : http://v4-team.com --- exploit: javascript:document.cookie = "adm=1; path=/"; document.cookie =...
PHP Hosting Directory 2.0 - Insecure Cookie Handling
PHP Hosting Directory 2.0 - Insecure Cookie Handling PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability Name Of Script : PHP Hosting Directory 2.0 Download From : http://jnshosts.com/download/phphostdirectory.zip Discoverd By :Stack Home : http://v4-team.com --- exploit:...