404 matches found
Xoops 2.3.2 Remote Code Execution
!/usr/bin/env python Title: Xoops 2.3.2 "mydirname" Remote Code Execution Exploit CVE: ????-???? Reference: http://secunia.com/advisories/33435/ Author: infodox Site: http://insecurety.net/ Twitter: @infodox Old news, just practicin' my python :3 import requests import sys vulnurl =...
Reliance Communications Server Compromised with Information disclosure Vulnerability
Hacker with nickname "mr.hack3r420" has successfully compromise the web server of Reliance Communications rcom.co.in as shown in image screenshot taken by THN team and we make link hidden to save site from further misuse of damage. Hacker most probably get this access because of Information...
qdPM 7 - Arbitrary File upload
Exploit qdPM v.7 Arbitrary File upload Date: June 13th 2012 Author: loneferret Version: 7 Vendor Url: http://qdpm.net/ Tested on: Winddows XP / XAMPP Discovered by: loneferret Software description: Free project management tool for small team qdPM is a free web-based project management tool suitab...
phpAcounts v. 0. 5. 3 SQL injection and fix-vulnerability warning-the black bar safety net
Author: loneferret Affected version: 0.5.3 Developer address: http://phpaccounts.com/ Test platform: Ubuntu Server 11.10 Old app, still fun. Auth. Bypass: http://www.xxx.com /phpaccounts/index.php Username: x' or '1'='1' Password: whatever Upload php shell in preferences Letterhead image upload...
MM Forms & MM Forms Community 2.2.6 - Unauthenticated Arbitrary File Upload
Attackers have been seen probing for the "/wp-content/plugins/mm-forms/includes/doajaxfileupload.php" file. PostShell.php "@$uploadfile"; curlsetopt$ch, CURLOPTRETURNTRANSFER, 1; $postResult = curlexec$ch; curlclose$ch; print "$postResult"; ? Shell Access :...
Rootdabitch version 0.1 - Multithreaded Linux root password Bruteforcer
Rootdabitch version 0.1 - Multithreaded Linux root password Bruteforcer r00tw0rm hacker "th3breacher!" release Rootdabitch v0.1 ,which is a Multithreaded Linux/UNIX tool to brute-force cracking local root through su using sucrack. sucrack is a multithreaded Linux/UNIX tool for brute-force crackin...
WordPress SB Uploader Shell Upload
================================================================= Title: Wordpress SB Uploader Plugin Shell Upload Vulnerability Author: JingoBD Category: webapps Team: Bangladesh Cyber Army Greetz: Bedu33n,N!1L,Rex0Man & All Member of BCA. http://facebook.com/life.is.code Plugin URI:...
Wordpress SB Uploader Plugin Shell Upload Vulnerability
No description provided by source. ================================================================= Title: Wordpress SB Uploader Plugin Shell Upload Vulnerability Author: JingoBD Category: webapps Team: Bangladesh Cyber Army Greetz: Bedu33n,N!1L,Rex0Man & All Member of BCA...
CVE-2012-1083
Cross-site request forgery CSRF vulnerability in the Terminal PHP Shell terminal extension 0.3.2 and earlier for TYPO3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2012-1082
Cross-site scripting XSS vulnerability in the Terminal PHP Shell terminal extension 0.3.2 and earlier for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the Terminal PHP Shell terminal extension 0.3.2 and earlier for TYPO3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2012-1082
Cross-site scripting XSS vulnerability in the Terminal PHP Shell terminal extension 0.3.2 and earlier for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-1083
This CVE concerns the TYPO3 ecosystem: the Terminal PHP Shell (terminal) extension, versions 0.3.2 and earlier, containing a Cross-Site Request Forgery (CSRF) vulnerability. The underlying issue allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. The p...
CVE-2012-1082
The CVE-2012-1082 issue affects the TYPO3 Terminal PHP Shell (terminal) extension up to version 0.3.2 and earlier, where a Cross-site scripting (XSS) flaw could allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. This vulnerability arises in the Termin...
CVE-2012-1083
Cross-site request forgery CSRF vulnerability in the Terminal PHP Shell terminal extension 0.3.2 and earlier for TYPO3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
Philips Electronics got hacked, Database Stolen by Hackers
Philips Electronics got hacked, Database Stolen by Hackers Another big site got hacked today, its Philips Electronics - had revenues of €25.42 billion in 2010, making it one of the largest electronics companies in the world. It employs around 114,500 people across more than 60 countries. The defa...
Ani-Shell v1.5 (Final) Released
Ani-Shell v1.5 Final Released Ani-Shell is a simple PHP shell with some unique features like Mass Mailer , A simple Web-Server Fuzzer , a DDoser etc! This shell has immense capabilities and have been written with some coding standards in mind for better editing and customization Features: Shell...
V-CMS 1.0 Shell Upload
------------------------------------------------------------------------ Software................V-CMS 1.0 Vulnerability...........Arbitrary Upload Threat Level............Very Critical 5/5 Download................http://v-cms.org/ Discovery Date..........11/13/2011 Tested On...............Window...
V-CMS 1.0 SQL Injection
------------------------------------------------------------------------ Software................V-CMS 1.0 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://v-cms.org/ Discovery Date..........11/13/2011 Tested On...............Windows Vista ...
Ani-Shell v1.4 Released With Python - Bind Shell , Anti-Crawler Feature and MD5 Cracker
Ani-Shell v1.4 Released With Python - Bind Shell , Anti-Crawler Feature and MD5 Cracker Ani-Shell is a simple PHP shell with some unique features like Mass Mailer , A simple Web-Server Fuzzer , a DDoser , A MD5 hash Cracker , Python and PHP Bind-Shells , Anti-Crawler Features etc! This shell has...