3100 matches found
BRIM < 2.0.0 - SQL Injection
No description provided by source. BRIM 2.0.0 SQL InjectionExploit information - Exploit Title: BRIM 2.0.0 SQL Injection - Google Dork: Brim project intitle:Brim - login - Date: 2012-02-20 - Author: ifnull - Tested on: Apache/2.2.3, PHP/5.1.6, MySQL 5.0.45 ? although it should work on any...
All browsers 0day Crash Exploit
No description provided by source. =============================== All browsers 0day Crash Exploit =============================== + Discovered By: Inj3ct0r Team @Title: All browsers 0day Crash Exploit @Site: http://site.securityspl0its.com/ - http://forum.securityspl0its.com/ -...
McGallery 1.0/1.1/2.2 index.php language Parameter Traversal Local File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...
McGallery 1.0/1.1/2.2 index.php album Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...
PwsPHP <= 1.2.3 (index.php) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl PwsPHP = 1.2.4 index.php Remote SQL Injection Exploit http://example.com/index.php?mod=sondages&do=results&id=1%20union%20select%20id,0,0,pseudo,pass,pseudo,0,0,0,0,0,0,0,0,0,0,0,0,0,0%20from%20%60users%60%20/ Discovered by: papipsycho...
Solaris 7.0/8 Xsun Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1140/info A buffer overrun vulnerability exists in the Xsun X11 server, as shipped as part of Solaris 7 and 8 from Sun Microsystems. By supplying a long argument to the -dev option normally used to set the output device, ...
Jokes Complete Website results.php searchingred Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/37852/info EasySiteNetwork Jokes Complete Website is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...
Oscommerce Online Merchant 2.2 - File Disclosure And Admin ByPass
No description provided by source. -------------------------------------------- Oscommerce Online Merchant v2.2 File Disclosure And Admin ByPass -------------------------------------------- Author : Flyff666 Date : May, 30, 2010 Location : Tangerang, Indonesia Time Zone : GMT +7:00 Software :...
SnackAmp 3.1.3B - SMP Buffer Overflow Vulnerability (SEH - DEP BYPASS)
No description provided by source. Exploit Title: SnackAmp 3.1.3B Malicious SMP Buffer Overflow Vulnerability SEH - DEP BYPASS Date: 09/24/10 Author: Muhamad Fadzil Ramli - mind1355 AT gmail DOT com Credit/Bug Found By: james AT learnsecurityonline DOT com Software Link:...
Limny 1.01 - Remote File Upload Vulnerability
No description provided by source. ----------exploit Debut Remote File Upload Vulnerability ----------Script Info Moi : JIKO Site : No-exploit.Com Email : : ----------Script Info Site:http : limny.org ----------exploit Info 13 Action the first setup register if the register active...
Mambo Open Source 4.5.1 (1.0.9) - Function.php Arbitrary Command Execution
No description provided by source. source: http://www.securityfocus.com/bid/11220/info Mambo open source is reportedly affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly validate user-supplied URI parameters. An attacker may...
D-Link DSL-2640B Authentication Bypass
No description provided by source...
Linux Kernel < 2.6.29 exit_notify() Local Privilege Escalation Exploit
No description provided by source. !/bin/sh gw-notexit.sh: Linux kernel 2.6.29 exitnotify local root exploit by Milen Rangelov gat3way-at-gat3way-dot-eu Based on 'exitnotify' CAPKILL verification bug found by Oleg Nestorov. Basically it allows us to send arbitrary signals to a privileged suidroot...
Oracle 9i/10g Evil Views - Change Passwords Exploit
No description provided by source. -- -- bunkerview.sql -- -- Oracle 9i/10g - evil view exploit CVE-2007-3855 -- Uses evil view to perform unauthorized password update -- -- by Andrea bunker Purificato - http://rawlab.mindcreations.com -- 37F1 A7A1 BB94 89DB A920 3105 9F74 7349 AF4C BFA2 -- -- Th...
Platform Load Sharing Facility 4/5 LSF_ENVDIR Local Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7655/info It has been reported that Load Sharing Facility LSF does not properly handle input in environment variables. Because of this, an attacker may be able to gain escalated privileges on a vulnerable system. LSF 5.1...
Elm < 2.5.8 (Expires Header) Remote Buffer Overflow Exploit
No description provided by source. / Exploit code for the bug posted by Ulf Harnhammar metaurtelia.com http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0688.html Probably you will need to change SYSLOC and STRLOC to work on your box / include stdio.h include stdlib.h include string.h...
MySQL Eventum <= 1.5.5 (login.php) SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w use IO::Socket; use strict; print \n; print MySQL Eventum = v1.5.5 SQL Injection PoC \n; print James Bercegay // gulftech.org // 7-28-05 \n; print \n; my $host = 'localhost'; my $path = '/eventum/login.php'; my $user = '2'; my $port = 80; my...
Joomla Component ChronoForms (com_chronocontact)
No description provided by source...
Netgear DGN2200B - Multiple Vulnerabilities
No description provided by source...
MODx 0.9.6 index.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27672/info MODx is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...