Online Book Store 1.0 Arbitrary File Upload

Exploit Title: Online Book Store 1.0 - Arbitrary File Upload Google Dork: N/A Date: 2020-01-16 Exploit Author: Or4nG.M4n aka S4udiExploit Vendor Homepage: https://projectworlds.in/free-projects/php-projects/online-book-store-project-in-php/ Software Link:...

Elastix < 2.5 - PHP Code Injection

'; $faf=fopen"fa.txt","w+"; fwrite$faf,$inj; fclose$faf; $myf='fa.txt'; $url = $target."/vtigercrm/phprint.php?action=fa&module=ff&langcrm=../../modules/Import/ImportStep2.php%00"; // URL $reffer = "http://1337s.cc/index.php"; $agent = "Mozilla/5.0 Windows; U; Windows NT 5.0; en-US; rv:1.4...

Free MP3 CD Ripper 2.6 - Local Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python + Author: TUNISIAN CYBER + Exploit Title: Free MP3 CD Ripper All versions Local Buffer Overflow + Date: 20-03-2015 + Type: Local Exploits + Tested on: WinXp/Windows 7 Pro + Vendor:...

Free MP3 CD Ripper Buffer Overflow

!/usr/bin/python + Author: TUNISIAN CYBER + Exploit Title: Free MP3 CD Ripper All versions Local Buffer Overflow + Date: 20-03-2015 + Type: Local Exploits + Tested on: WinXp/Windows 7 Pro + Vendor: http://www.commentcamarche.net/download/telecharger-34082200-free-mp3-cd-ripper + Friendly Sites:...

Free MP3 CD Ripper 2.6 - '.wav' Local Buffer Overflow

!/usr/bin/python + Author: TUNISIAN CYBER + Exploit Title: Free MP3 CD Ripper All versions Local Buffer Overflow + Date: 20-03-2015 + Type: Local Exploits + Tested on: WinXp/Windows 7 Pro + Vendor: http://www.commentcamarche.net/download/telecharger-34082200-free-mp3-cd-ripper + Friendly Sites:...

eWebEditor 1.x - (WYSIWYG) Remote File Upload

No description provided by source. ============================================================================= Tilte: eWebEditor v1.x WYSIWYG Remote File Upload . ============================================================================= Date....................: 22-05-2010...

WordPress SermonBrowser Plugin 0.43 SQL Injection

No description provided by source. ?php if!$argv1 die Usage : php exploit.php site Example : php exploit.php http://site.com/wp/ ; printr Tilte......: WordPress SermonBrowser Plugin 0.43 SQL Injection Author.....: Ma3sTr0-Dz Date.......: 25-o4-2o11 Location ..: ALGERIA HoMe ......: wWw.sEc4EvEr.C...

Freepbx 2.x Code Execution Exploit

Exploit for php platform in category web applications App : Freepbx 2.x download : schmoozecom.com Author : i-Hmx mail : email protected Home : sec4ever.com , secarrays ltd Freepbx is famous asterisk based distro used world wide , it suffer from many vulns actually simple one is included here jus...

Imageview 6.x Shell Upload

Author: TUNISIAN CYBER + Exploit Title: Imageview File Upload vulnerability + Date: 20-01-2014 + Category: WebApp + Google Dork: : + Tested on: KaliLinux + Friendly Sites: na3il.com,th3-creative.com +Exploit: Imageview Suffers from a File Upload Vulnerability which allows the attacker to upload a...

Hloun Support Management System 3.0 SQL Injection / Bypass

fixhashuser$COOKIE'onlineadmin'; $userquery = "SELECT FROM member WHERE username='".$memberhash'username'."' AND password='".$memberhash'password'."'"; $member = $hloun-db-fetcharray$userquery; $groupquery = "SELECT FROM group WHERE id='".$member'group'."'"; $group =...

Joomla Component com_garyscookbook file upload Vulnerability

Exploit for php platform in category web applications Exploit Title: joomla comgaryscookbook file upload Author: Over-X email: email protected Vendor or Software Link: www.joomla.it Version: 242 Google dork: "inurl:comgaryscookbook" Tested on: win Xp...

am4ss Support System 1.2 PHP Code Injection Exploit

Exploit for php platform in category web applications 10/2011 , Vulnerability discovered till now , i haven't reported the vendor , why!!! The idiot backdoored it by himself + the official site is fucked up ; 19/07/2012 , Public Disclosured C:\labphp am4ss.php localhost /lab/am4ss/...

AdSpy Pro 2.0 Cross Site Request Forgery

--------------------------------------- Author : L3b-r1'z Title : AdSpy Pro CSRF V2.0 Date : 6/10/2012 Email : [email protected] Site : Sec4Ever.com & Exploit4arab.com Google Dork : allintext: "All Right Reserved Copyright 2007 - 2012 by AdSpy Pro" Version : 2.0...

Membris 2.0.1 - Multiple Vulnerabilities

Membris 2.0.1 - Multiple Vulnerabilities Exploit:Membris v 2.0.1 Sql \ XSS & File Disclosure Vulnerabilities Google Dork: Powered by Membris v 2.0.1 Date: Dr.abolalh Author:01/06/2012 E-Mail: [email protected] Software Link: http://scripts.toocharger.com/fiches/scripts/membris/5258.htm Version:...

WHMCompleteSolution 3.x/4.x - Multiple Vulnerabilities

$b0x WHMCS WHMCompleteSolution 3.x / 4.x Multiple Vulnerability ! $b0x ZxH-Labs $b0x 1st-NOV-11 $b0x Www.Sec4ever.coM $b0x WH-03 On Windows IIS 6.0 ======================================================== b0x@1337b0x:/b0x/Exploits/WebAPP whoami ZxH-Labs | Www.Sec4ever.coM...

cPanel Privilege Escalation

Privilege Escalation Exploit By TurkisH-RuleZ ////\ //\ //\ //\ //\ //\ //\ //\ //\ :::/\ ::\:.\ \::\ \ \ \ :\ \ ::: \ \::: \ \::\ \:::/ /: / \:::/ ::/\ .\ \ //\:\ \ :: \ \:: /:/ /: / /::/ /\/\:: ::\ \::::/ :\ \:: \ \:: \ \ /::/ /://\ \ \ ::\ \: \ \::\ ...

Easy Media Script - SQL Injection

Easy Media Script - SQL Injection alert0 -== Start ==- "; $t=array"dbuser "="user","dbversion"="version","dbname "="database", "UserName "="user","Password "="pass"; foreach$t as $r=$y...

Easy Media Script SQL Injection

alert0 -== Start ==- "; $t=array"dbuser "="user","dbversion"="version","dbname "="database", "UserName "="user","Password "="pass"; foreach$t as $r=$y...

RunCMS Module (partners) Remote SQL Injection Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Movavi VideoSuite 8.0 Movie Editor - '.avi' Local Crash (PoC)

!/usr/bin/perl Title : Movavi VideoSuite 8.0 MovieEditor.exe Local Crash PoC Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : Windows Impact : Crashs and Overflows in Process Tested on : Windows XP SP3...