404 matches found
Andy's PHP Knowledgebase Project 0.95.4 - SQL Injection
No description provided by source. ------------------------------------------------------------------------ Software................Andy's PHP Knowledgebase Project 0.95.4 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://www.aphpkb.org/...
eLitius 1.0 - Remote Command Execution Exploit
No description provided by source. ?php //786 / ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
Time and Expense Management System Multiple Vulnerabilities
No description provided by source. ------------------------------------------------------------------------ Software................Time and Expense Management System Vulnerability...........Command Injection Threat Level............Very Critical 5/5...
K&S Shopsysteme Arbitrary Remote File Upload Vulnerability
No description provided by source. Script Name: Shopsysteme new version oscommerce Download: http://www.shopsystem-forum.de/productinfo.php?cPath=22&productsid=43 299 euro : Author: mNt File Upload Bug Google Dork: intext:Powered by K&S Media Concept - Shopsysteme Powered by K&S Media Concept -...
Clipbucket 2.4 RC2 645 SQL Injection Vulnerability
No description provided by source. ------------------------------------------------------------------------ Software................Clipbucket 2.4 RC2 645 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://www.clip-bucket.com/ Discovery...
Graugon Forum 1.3 - SQL Injection Vulnerability
No description provided by source. !------------------------------------------------------------------------ Software................Graugon Forum 1.3 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://www.graugon.com/ Discovery...
Valdersoft Shopping Cart <= 3.0 - Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl cijfer-vscxpl - Valdersoft Shopping Cart =3.0 Remote Command Execution Exploit Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-vscxpl.pl -h www.valdersoft.com -d /store...
N-13 News 1.2 - SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15643/info N-13 News is prone to an SQL injection vulnerability. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit...
mySeatXT 0.1781 SQL Injection Vulnerability
No description provided by source. ------------------------------------------------------------------------ Software................mySeatXT 0.1781 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://sourceforge.net/projects/myseat/ Discovery...
CubeCart <= 3.0.6 - Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl cijfer-ccxpl - CubeCart =3.0.6 Remote Command Execution Exploit Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ perl ./cijfer-ccxpl.pl -h www.xxx.com -d [email protected] /$ id;uname -a uid=48apache...
MKPortal 1.0/1.1 Admin.PHP Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25515/info MKPortal is prone to an authentication-bypass vulnerability because it fails to restrict access to certain administrative functions. Attackers can exploit this issue to gain unauthorized access to the...
EZ-Oscommerce 3.1 - Remote File Upload
No description provided by source. !/usr/bin/env python coding: utf-8 import string import random from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register from pocsuite.lib.utils.webshell import PhpVerify, PhpShell from pocsuite.lib.utils.password...
joomla component memorybook 1.2 - Multiple Vulnerabilities
No description provided by source. SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found o...
WSN Links SQL Injection Vulnerability
No description provided by source. 'WSN Links' SQL Injection Vulnerability CVE-2010-4006 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the search.php code that allows for SQL injection of various parameters. By assemblin...
LibrettoCMS 2.2.2 - Arbitrary File Upload
No description provided by source. Exploit Title : LibrettoCMS 2.2.2 Malicious File Upload Date : 14 June 2013 Exploit Author : CWH Underground Site : www.2600.in.th Vendor Homepage : http://libretto.artwebonline.com/ Software Link :...
Ppim <= 1.0 (upload/change password) Multiple Vulnerabilities
No description provided by source. Ppim = 1.0 upload/change password Multiple Vulnerabilities cript : Ppim v1.0 Download : http://scripts.ringsworld.com/organizers/ppim.zip By Stack Poc 1: change password for change password go to this link http://localhost/ppim/changepassword.php writhe your...
ProQuiz 2.0.0b Arbitrary Upload Vulnerability
No description provided by source. Source: http://packetstormsecurity.org/files/view/98669/ProQuiz-Shell.py.txt ------------------------------------------------------------------------ Software................ProQuiz V2 Vulnerability...........Arbitrary Upload...
UBB.threads <= 6.5.1.1 (doeditconfig.php) Code Execution Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? // UBB.threads Multiple input validation error // Discovered By : HACKERS PAL // Copy rights : HACKERS PAL // Website : http://www.soqor.net // Email Address : [email protected] // Tested on Version 6 6.5.1.1 and other...
New-CMS - Multiple Vulnerability
No description provided by source. Multiple Vulnerability in New-CMS Vendor SW: New-CMS Version: 1.08 but possible all versions Vendor URL: www.new-cms.org Tested on: Ubuntu Server 9.10 Category: Webapps/0day Date: 17 Feb 2010 Author: Alberto fulgur Fontanella Author URL: ictsec.wordpress.com...
FlashBB <= 1.1.8 (phpbb_root_path) Remote File Include Exploit
No description provided by source. !/usr/bin/perl TUFaT FlashBB = 1.1.5 phpbbrootpath Remote File Include Exploit Bugs found & code By h4ntu aka TeloGanyong base on http://www.securityfocus.com/bid/18456/ http://h4ntu.com c 2006 usage: perl flashBB.pl target cmd shell location cmd shell variable...