SPIP < 2.0.9 Arbitrary Copy All Passwords to XML File Remote Exploit

No description provided by source. !/usr/bin/env python SPIP - Content Management System 2.0.9 exploit http://www.securityfocus.com/bid/36008 Author : KernelPanik import urllib, urllib2 import cookielib import sys def sendrequesturlOpener, url, postdata=None: request = urllib2.Requesturl url =...

Kimai 0.9.2.1306-3 - SQL Injection Vulnerability

No description provided by source. Exploit Title: Kimai 0.9.2.1306-3 SQLi Date: 05/20/2013 Exploit Author: drone @dronesec Vendor Homepage: http://www.kimai.org/ Software Link: https://downloads.sourceforge.net/project/kimai/0.9.x/kimai.0.9.2.1306-3.zip Version: 0.9.2.1306-3 Fixed in: source...

Vinagre < 2.24.2 show_error() Remote Format String PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Vinagre showerror format string vulnerability 1. Advisory Information Title: Vinagre showerror format string vulnerability Advisory...

Blackmoon FTP 3.1 Build 1735,1736 DoS

No description provided by source. !/usr/bin/python Exploit Title: BlackmoonFTP Server DOS Date: 12/28/2010 Author: Craig Freyman cd1zz Software Link: http://www.mediafire.com/?bnc4d00myymmx55 Version: 3.1 Release 6 - Build 1735 and 1736 Tested On: Windows XP SP3 Vendor Contacted: 12/28/2010 Vend...

mcrypt <= 2.6.8 stack-based buffer overflow PoC

No description provided by source. !/usr/bin/env python mcrypt = 2.6.8 stack-based buffer overflow poc http://mcrypt.sourceforge.net/ the command line tool, not the library date: 2012-09-04 exploit author: ishikawa tested on: ubuntu 12.04.1 tech: it overflows in checkfilehead when decrypting .nc...

ESET Smart Security 4.2 and NOD32 Antivirus 4.2 (x32-x64) LZH archive parsing PoC Exploit

No description provided by source. ESET Smart Security 4.2 and NOD32 Antivirus 4.2 x32-x64 LZH archive parsing PoC exploit. Scanning of malicious file causes heap corruption in context of the service process ekrn.exe. See Dr. Watson log drwtsn32.log for details. USAGE: python esetlzh.py TEST.LZH...

Easy FTP Server 1.7.0.2 - CWD Remote BoF

No description provided by source. Tested on: XP SP3 Eng !/usr/bin/python import socket, sys print Easy FTP Server 1.7.0.2 Remote BoF Discovered by: athleet jonbutler88atgooglemaildotcom if lensys.argv != 3: print Usage: ./easyftp.py Target IP Port sys.exit1 target = sys.argv1 port = intsys.argv2...

Honestech VHS to DVD <= 3.0.30 Deluxe Local Buffer Overflow (SEH)

No description provided by source. !/usr/bin/python Exploit Title: Honestech VHS to DVD = 3.0.30 Deluxe Local Buffer Overflow SEH Date: September 16, 2010 Author: Brennon Thomas [email protected] Software Link: n/a Version: = 3.0.30.0 Deluxe Tested on: Windows XP SP2/SP3 using Honestech VHS to...

IceWarp Merak Mail Server 9.4.1 'Forgot Password' Input Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34827/info IceWarp Merak Mail Server is prone to an input-validation vulnerability because it uses client-supplied data when performing a 'Forgot Password' function. Attackers can exploit this issue via social-engineering...

Symantec Web Gateway 5.0.3.18 LFI Remote ROOT RCE Exploit

No description provided by source. !/usr/bin/python ''' The original patch for the Symantec Web Gateway 5.0.2 LFI vulnerability removed the /tmp/networkScript file but left the entry in /etc/sudoers, allowing us to simply recreate the file and obtain a root shell using a different LFI...

GOM Media Player (GOMMP) 2.2.56.5183 - Memory Corruption PoC

No description provided by source. !/usr/bin/python + Author: TUNISIAN CYBER + Exploit Title: GOMMP 2.2.56.5183 Memory Corruption PoC + Date: 22-03-2014 + Category: DoS/PoC + Tested on: WinXp/Windows 7 Pro + Vendor: http://player.gomlab.com/eng/ + Friendly Sites: na3il.com,th3-creative.com +...

Linux write() & exit(0) shellcode genearator with customizable text

No description provided by source. !/usr/bin/python Linux write & exit0 shellcode genearator with customizable text Usage: ./generator msg Author: Stoke Tested on: Ubuntu 8.10 E-mail: stoke95atyahoodotit Web: hack2web.altervista.org Visit: blasterhacking.forumcommunity.net import re, sys def...

X-lite SIP 3.0 - (wav) memory corruption Heap BOF exploit

No description provided by source. !/usr/bin/python X-lite SIP v3 wav memory corruption Heap BOF exploit Date: 06-02-2010 Author: TecR0c Software Link: http://xlite.counterpath.com/download/win32100106 Version: 3.0 Tested on: Windows XP SP3 Usage: right click running application options Alerts &...

FtpXQ FTP Server 3.0 - Remote Denial of Service Exploit (auth)

No description provided by source. !/usr/bin/python print print Iranian Pentesters Home print Www.Pentesters.Ir print PLATEN - H.jafari - print FtpXQ FTP Server 3.0 Remote Denial Of Service Exploit print author: PLATEN print E-mail && blog: print hjafari.blogspot.com print...

Cilem Haber 1.4.4 (Tr) - Database Disclosure Exploit (.py)

No description provided by source. !/usr/bin/env python -- coding:cp1254 -- ''' Title : Cilem Haber v1.4.4 Tr Database Disclosure Exploit .py Down. Script : http://www.aspindir.com/indir.asp?id=3287&sIslem=%DDndir Proof : http://img718.imageshack.us/img718/7993/cilem.jpg Tested : Windows XP...

JAKCMS <= 2.01 RC1 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/python jakCMS = v2.01 RC1 Blind SQL Injection Exploit Understanding: The parameters 'JAKCOOKIENAME' and 'JAKCOOKIEPASS' are parsed via cookies to the application and are unchecked for malicious characters. The contents of these variables are directly...

xWeblog 2.2 - (arsiv.asp tarih) SQL Injection Exploit

No description provided by source. !/usr/bin/env python -- coding:utf-8 -- ''' Title : xWeblog v2.2 arsiv.asp tarih SQL Injection Exploit .py Proof : http://img408.imageshack.us/img408/7624/sqlm.jpg Script Down. : http://www.aspdunyasi.com/goster.asp?id=19 Tested : Windows XP Professional sp3...

FlatNuke 2.5.7 Index.php Remote File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class FlatNukeRemoteFileIncludePOCBase: vulID = '63616' version = '1' vulDate = '2006-07-13' author = ' '...

iOS FTP On The Go 2.1.2 - HTTP Remote DoS

No description provided by source. !/usr/bin/python Apple Iphone/Ipod - FTP On The Go 2.1.2 - HTTP Remote Denial-of-Service Attack Found by: TecR0c Homepage: http://www.ftponthego.com/ Download: From the Apple App Store - http://app2.it/topapp/286479936 Tested on: IPhone 3G - firmware 3.1.2...

Hewlett-Packard FTP Print Server <= 2.4.5 - Buffer Overflow (PoC)

No description provided by source. !/usr/bin/python import sys from ftplib import FTP print Hewlett-Packard FTP Print Server Version 2.4.5 Buffer Overflow POC print Copyright c Joxean Koret print if lensys.argv == 1: print Usage: %s target % sys.argv0 sys.exit0 target = sys.argv1 print + Running...