NPDS CMS REvolution-13 - SQL Injection

Title - NPDS CMS Revolution-13 - SQL Injection Vulnerability Credits & Author: Narendra Bhati R00t Sh3ll www.websecgeeks.com References Source: ==================== http://www.npds.org/viewtopic.php?topic=26233&forum=12 http://websecgeeks.com/npds-cms-sql-injection/ Release Date: =============...

os-x/PPC/x86 execve("/bin/sh",{"/bin/sh",NULL},NULL) 121 bytes

No description provided by source. / - dual.c - by [email protected] execve/bin/sh,/bin/sh,NULL,NULL shellcode for osx both the ppc and x86 version. Sample output: -nemo@squee:/shellcode$ file dual-ppc dual-ppc: Mach-O executable ppc -nemo@squee:/shellcode$ ./dual-ppc sh-2.05b$ exit...

Linux Kernel 2.6.13 <= 2.6.17.4 - sys_prctl() Local Root Exploit

No description provided by source. // / Local r00t Exploit for: / / Linux Kernel PRCTL Core Dump Handling / / BID 18874 / CVE-2006-2451 / / Kernel 2.6.x = 2.6.13 && 2.6.17.4 / / By: / / - dreyer [email protected] main PoC code / / - RoMaNSoFt [email protected] local root code / / 10.Jul.2006 / //...

Immunity Canvas: SYSRET

Name| SYSRET ---|--- CVE| CVE-2012-0217 Exploit Pack| CANVAS Description| SYSRET: exploit for invalid GP @ CPL0 handling FreeBSD AMD64 version Notes| CVE Name: CVE-2012-0217 VENDOR: Intel,FreeBSD Notes: Tested on FreeBSD 9.0-RC3 and FreeBSD 9.0-RELEASE AMD64 To test this exploit from CANVAS use t...

almnzm 2.4 <= CSRF Vulnerability (Add Admin)

Exploit for php platform in category web applications Title: almnzm 2.4 Priv8 Almnzm 2.4 CSRF Exploit!! Add New Admin :D By: HaNniBaL KsA HK www.r00t-s3c.com UserName: PassWord: E-mail: ! -- NOTE!: The value id'z for...

almnzm 2.4 - Cross-Site Request Forgery (Add Admin)

almnzm 2.4 - Cross-Site Request Forgery Add Admin Title: almnzm 2.4 Priv8 Almnzm 2.4 CSRF Exploit!! Add New Admin :D By: HaNniBaL KsA HK www.r00t-s3c.com UserName: PassWord: E-mail: ! -- NOTE!: The value id'z for admin privileges can be cha...

almnzm 2.4 - Cross-Site Request Forgery (Add Admin)

Title: almnzm 2.4 Priv8 Almnzm 2.4 CSRF Exploit!! Add New Admin :D By: HaNniBaL KsA HK www.r00t-s3c.com UserName: PassWord: E-mail: ! -- NOTE!: The value id'z for admin privileges can be change in any site :D "down...

WordPress plugin photoracer SQL injection Vulnerability

Exploit for php platform in category web applications r00t-s3cur1ty cr3w rS HaNniBaL KsA - Dr.Silver - MR.DH email protected: ./rS Title : WordPress plugin photoracer Multi Vulnerability Vendor : http://www.dhzgw.com Author : HaNniBaL KsA HK Team : r00t-s3cur1ty cr3w rS E-mail : email protected...

InterTech (etemplaite.php) Sql Injection Vulnerability

Exploit for php platform in category web applications ====================================================== InterTech etemplaite.php Sql Injection Vulnerability ====================================================== 010101010101010101010101010101010101010101010101010101010 0 0 1 Iranian Datacode...

webessence 1.0.2 - Multiple Vulnerabilities

webessence 1.0.2 - Multiple Vulnerabilities WebEssence 1.0.2 Multiple Vulnerabilities Bugs found by whitesheep, r00t and epicfail for Debug|Track session @ Backtrack|italia community conference www.backtrack.it XSS PoC:...

webessence 1.0.2 - Multiple Vulnerabilities

WebEssence 1.0.2 Multiple Vulnerabilities Bugs found by whitesheep, r00t and epicfail for Debug|Track session @ Backtrack|italia community conference www.backtrack.it XSS PoC: http://localhost/webessence/webessence/oembed.php?url=http://google.com&id=alert'Backtrack|it'; In "url" variable is...

Overflow vulnerability:linux, each version corresponding overflow vulnerability finishing summary(overflow code)-vulnerability warning-the black bar safety net

2.4.17 local kmod 2.4.18 brk brk2 local kmod km. 2 2.4.19 brk brk2 local kmod km. 2 2.4.20 ptrace kmod ptrace-kmod km. 2 brk brk2 2.4.21 km. 2 brk brk2 ptrace ptrace-kmod 2.4.22 km. 2 brk2 brk ptrace ptrace-kmod 2.4.22-1 0 loginx ./ loginx 2.4.23 mremappte 2.4.24 mremappte Uselib24 2.4.25-1...

Gazelle CMS 1.0 Multiple Vulnerabilities / RCE Exploit

Exploit for unknown platform in category web applications ====================================================== Gazelle CMS 1.0 Multiple Vulnerabilities / RCE Exploit ====================================================== !/bin/bash Gazelle CMS 1.0 Multiple Vulnerabilities Script Download:...

SailPlanner 0.3a - Authentication Bypass

------------------------------------------------------------------------- -- JIKO FroM No-exploit.Com --- ------------------------------------------------------------------------- Author : jiko email : [email protected] Home : www.no-exploit.Com Script :...

Unpassworded 'r00t' account

The account 'r00t' on the remote host has no password. An attacker may leverage this issue to gain access to the affected system and launch further attacks against it. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "r00t"; include'deprecatednasllevel.inc'; include'compat.inc'; if...

Linux Kernel &lt; 2.4.20 Module Loader Local Root Exploit

No description provided by source. / Linux Kernel Module Loader Local R00t Exploit Up to 2.4.20 By anonymous KuRaK include stdio.h include stdlib.h include signal.h include fcntl.h include errno.h include unistd.h include sys/types.h include sys/stat.h include sys/ptrace.h include sys/wait.h...

Drcat 0.5.0-beta (drcatd) Remote Root Exploit

No description provided by source. / Proof of Concept DRCATD Remote exploit by Taif Test: root@localhost drcat ./drcat -d 127.0.0.1 -u taif -p test Public code by Taif drcat-0.5.0-beta 'remote r00t' proof Bug found by Khan Shirani host: +-+-+-+-+-+-+-+ 127.0.0.1 |C|L|U|P|C|S|R| user:...

Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Exploit

No description provided by source. / Copyright C 2007-2008 Subreption LLC. All rights reserved. Visit http://blog.subreption.com for exploit development notes. References: CVE-2007-3876 http://docs.info.apple.com/article.html?artnum=307179...

Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Exploit

Exploit for macOS platform in category local exploits ============================================================== Apple Mac OS X mountsmbfs Stack Based Buffer Overflow Exploit ============================================================== / Copyright C 2007-2008 Subreption LLC. All rights...

Clansphere 2007.4 (cat_id) Remote SQL Injection Vulnerability

No description provided by source. Inclusion Hunter Team http://www.ihteam.net Clansphere 2007.4 Class: SQL Injection Found: 22/09/2007 Remote: Yes Site: http://www.clansphere.net/ Download: http://sourceforge.net/project/showfiles.php?groupid=95430 Author: R00TATI of IHTeam Contact:...