1826 matches found
Simplog <= 0.9.2 (s) Remote Commands Execution Exploit
Exploit for unknown platform in category web applications ====================================================== Simplog \r\n"; die; / software site: http://www.simplog.or...
phpBB 2.0.19 - user_sig_bbcode_uid Remote Code Execution
phpBB 2.0.19 - usersigbbcodeuid Remote Code Execution !/usr/bin/perl r57phpbba2e2.pl - phpBB admin 2 exec exploit version 2 based on usersigbbcodeuid bug tested on 2.0.12 , 2.0.13 , 2.0.19 -------------------------------------------- screen r57phpbba2e2.pl -u http://192.168.0.2/phpBB-2.0.19/ -L...
PHPList <= 2.10.2 GLOBALS[] Remote Code Execution Exploit
Exploit for unknown platform in category web applications ========================================================= PHPList this works against registerglobals=On \r\n"; echo "a dork: inurl:"lists/?p=subscribe" | inurl:"lists/index.php?p=subscribe"\r\n"; echo " -ubbi phplist\r\n\r\n"; if $argc4...
phpBB 2.0.19 - 'user_sig_bbcode_uid' Remote Code Execution
!/usr/bin/perl r57phpbba2e2.pl - phpBB admin 2 exec exploit version 2 based on usersigbbcodeuid bug tested on 2.0.12 , 2.0.13 , 2.0.19 -------------------------------------------- screen r57phpbba2e2.pl -u http://192.168.0.2/phpBB-2.0.19/ -L admin -P password Command for execute or 'exit' for exi...
phpList 2.10.2 - 'GLOBALS[]' Remote Code Execution
!/usr/bin/php -q -d shortopentag=on this works against registerglobals=On \r\n"; echo "a dork: inurl:"lists/?p=subscribe" | inurl:"lists/index.php?p=subscribe"\r\n"; echo " -ubbi phplist\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0." host path cmd OPTIONS\r\n"; echo "host: target server...
ADODB 4.70 - tmssql.php Denial of Service
ADODB 4.70 - tmssql.php Denial of Service !/usr/bin/php -q -d shortopentag=on 126 $result...
ADODB < 4.70 (tmssql.php) Denial of Service Vulnerability
Exploit for unknown platform in category web applications ========================================================= ADODB 4.70 tmssql.php Denial of Service Vulnerability ========================================================= !/usr/bin/php -q -d shortopentag=on ? echo "ADODB tmssql.php Denial o...
phpmychat_015dev_xpl
!/usr/bin/php -q -d shortopentag=on works with magicquotesgpc=Off\r\n\r\n"; echo "dork: intext:"2000-2001 The phpHeaven Team" -sourceforge\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0." host path cmd OPTIONS\r\n"; echo "host: target server ip/hostname\r\n"; echo "path: path to PHPMyChat\r\n";...
horddy.pl.txt
!/usr/bin/perl Wed Apr 5 21:51:12 CEST 2006 [email protected] Horde help module remote execution telnet 310.27.901.33.1109 1689 thanks horatio for the address USER paranoia PASS total SYST REST 100 REST 0 PWD TYPE A PASV LIST CWD 0days GET horddy.pl w0w this damn 0day ftp is so sexy! GO GO GO !! ...
phpMyChat 0.15.0dev (SYS enter) Remote Code Execution Exploit
Exploit for unknown platform in category web applications ============================================================= phpMyChat 0.15.0dev SYS enter Remote Code Execution Exploit ============================================================= !/usr/bin/php -q -d shortopentag=on works with...
Claroline 1.7.4 - 'scormExport.inc.php' Remote Code Execution
!/usr/bin/php -q -d shortopentag=on works with registerglobals = On & allowurlfopen = On\r\n\r\n"; echo "dork: "Powered by Claroline" -demo\r\n\r\n"; if $argc5 echo "Usage: php ".$argv0." host path location OPTIONS\r\n"; echo "host: target server ip/hostname\r\n"; echo "path: path to...
CVE-2006-1218
The vulnerability concerns Novell BorderManager (HTTP proxy) versions 3.8 and earlier. It describes an unspecified flaw in the HTTP proxy that can be exploited remotely to cause a denial of service (CPU consumption and ABEND). The attack vectors are not specified beyond a relation to media stream...
CVE-2006-1124
CVE-2006-1124 describes a buffer overflow in RevilloC MailServer and Proxy 1.21 that allows remote attackers to execute arbitrary code via a long USER command. The connected documents confirm the affected product and the basic impact (remote code execution) but do not provide concrete exploit det...
[Full-disclosure] RevilloC mail server USER command heap overflow
1-title: Revilloc mail server "USER" command heap overflow Product: Revilloc MailServer and Proxy v 1.21 http://www.revilloC.com The mail server is a central point for emails coming in and going out from home or office The service will work with any standard email client that supports POP3 and...
[SA19163] Novell BorderManager Proxy Potential Denial of Service
TITLE: Novell BorderManager Proxy Potential Denial of Service SECUNIA ADVISORY ID: SA19163 VERIFY ADVISORY: http://secunia.com/advisories/19163/ CRITICAL: Less critical IMPACT: DoS WHERE: From local network SOFTWARE: Novell Bordermanager 3.x http://secunia.com/product/378/ DESCRIPTION: A...
Gallery <= 2.0.3 stepOrder[] Remote Commands Execution Exploit
Exploit for unknown platform in category web applications ============================================================== Gallery autisticiorg \r\n"; echo "site: http://retrogod.altervista.org \r\n\r\n"; echo "- works with registerglobals = On and magicquotesgpc = Off \r\n"; if $argc5 echo "Usage:...
[Full-disclosure] [SECURITY] [DSA 966-1] New adzapper packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 966-1 [email protected] http://www.debian.org/security/ Martin Schulze February 9th, 2006 http://www.debian.org/security/faq -...
DSA-966-1 adzapper - denial of service
Bulletin has no description...
CVE-2006-0578
Blue Coat Proxy Security Gateway OS SGOS 4.1.2.1 does not enforce CONNECT rules when using Deep Content Inspection, which allows remote attackers to bypass connection filters...
CVE-2006-0578
CVE-2006-0578 affects Blue Coat Proxy Security Gateway OS (SGOS) version 4.1.2.1. The issue arises because Deep Content Inspection does not enforce CONNECT rules, which can allow remote attackers to bypass connection filters. The connected PT-2006-1640 entry corroborates that remote bypass is pos...