Net Portal Dynamic System (NPDS) <= 5.10 Remote Code Execution

No description provided by source...

Arab Network Tech. (ANT) CMS - SQL Injection

No description provided by source. ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: ::::::::::::::::::::::::: Exploit Title : Arab Network Tech. ANT CMS SQL Injection Author : Tr0y-x Script Site : www.antpage.comhttp://www.antpage.com/ Version : All Versions Tested on : Windows & Linux...

vBulletin <= 3.5.4 Multiple Cross Site Scripting Vulnerabilities

No description provided by source...

Netkamp Emlak Scripti Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25875/info Netkamp Emlak Scripti is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues and an SQL-injection issue, because the application fails to sanitize user-supplied input. A...

Dokeos <= 1.8.0 (my_progress.php course) Remote SQL Injection Exploit

No description provided by source...

List Site Pro 2.0 User Database Delimiter Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6685/info List Site PRO is a top site ranking system that counts hits from member sites and then ranks them according to the number of hits. A problem has been reported for List Site PRO that would allow an attacker to...

Active Photo Gallery 6.2 - (Auth Bypass) Remote SQL Injection

No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: Auth Bypass Remote SQL Injection Vulnerability ? Vendor: www.activewebsoftwares.com ? ? Software: Active Photo Gallery v 6.2 ? ? author: R3d-D3v!L ? ? Date: 17.dec.2009 ?...

Bonza Cart <= 1.10 Admin Password Changing Exploit

No description provided by source. ?php / ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

MS IE 4/5/5.5/5.0.1 external.NavigateAndFind() Cross-Frame Vulnerability

No description provided by source. Microsoft Internet Explorer 4.0 for WfW/Windows 3.1/Windows 95/Windows NT 3/Windows NT 4,Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 5.5,Internet Explorer 5.0.1,Internet Explorer for Unix 5.0 external.NavigateAndFi...

phpWebSite <= 0.10.0 (module) SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::Simple; $serv = $ARGV0; $path = $ARGV1; $name = $ARGV2; sub usage print \nUsage: $0 server path username \n; print sever - URL\n; print path - path to index.php\n; print username - name register user\n\n; exit ; sub work print qq...

UtilMind Mail List 1.7 - Users Can Execute Commands

No description provided by source. !/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions / http://www.utilmind.com/ Actually a pretty amusing exploit to write! The 'openMAIL, |$mailprog $address' ... code sends e-mail to those who are on the mailing list - and the...

Destiny Media Player 1.61 0 (.m3u File) Local Buffer Overflow PoC

No description provided by source. !/usr/bin/perl -w Program : Destiny Media Player Version : 1.61.0 website : http://www.pirateradio.com/downloads/ Download : http://www.pirateradio.com/downloads/destinymp3.exe Type : .m3u File local Stack Overflow PoC EAX 61616161 ECX 00000001 EDX 014377A0 EBX...

Allomani - Super Multimedia 2.5 - CSRF Add Admin Account

No description provided by source. Exploit Title: Allomani - Super Multimedia v2.5 - CSRF Add Admin Account Date: 29-06-2010 Author: G0D-F4Th3r Software Link: http://allomani.com Version: 2.5 html body onload=javascript:fireForms form method=POST name=form0 action=...

GNU GNU bash 1.14 Path Embedded Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/119/info A vulnerability in bash may allow inadvertently running commands embedded in the path to the currently working directory. If an unsuspecting user enters a directory created by some malicious user with embedded...

IBM Installation Manager <= 1.3.0 iim:// URI handler exploit

No description provided by source. !-- IBM Installation Manager = 1.3.0 iim:// uri handler remote code execution exploit - IE by nine:situations:group::bruiser site: http://retrogod.altervista.org/ vulnerable: IBM Rational Robot IBM Rational Team Concert possibly all Rational products, not Ration...

Solaris 2.x/7.0/8,IRIX 6.5.x,OpenBSD 2.x,NetBSD 1.x,Debian 3,HP-UX 10 Telnetd Buffer Overflow

No description provided by source. source: http://www.securityfocus.com/bid/3064/info A boundary condition error exists in telnet daemons derived from the BSD telnet daemon. Under certain circumstances, the buffer overflow can occur when a combination of telnet protocol options are received by th...

pfSense 2.1 build 20130911-1816 - Directory Traversal

No description provided by source...

SoX - (.wav) Local Buffer Overflow Exploiter

No description provided by source. //--------------------------------- Begin Code: sox-exploiter.c --------------------------------- / Copyright Rosiello Security 2004 http://www.rosiello.org CVE Reference: CAN-2004-0557 Bug Type: Stack Overflow Date: 01/08/2004 Ulf Harnhammar reported that there...

SimpleServer:WWW 1.0.7/1.0.8/1.13 Hex Encoded URL Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3112/info SimpleServer:WWW is a freely available HTTP daemon available from AnalogX. It is designed for simplicity of operation. A problem with the web server could allow a remote user to execute arbitrary commands, and...

LibPNG <= 1.2.5 png_jmpbuf() Local Buffer Overflow Exploit

No description provided by source. include stdio.h include stdlib.h include png.h / The pngjmpbuf macro, used in error handling, became available in libpng version 1.0.6. If you want to be able to run your code with older versions of libpng, you must define the macro yourself but only if it is no...