dvbbs 7.1.0 reg.asp&mymodify.asp 权限提升漏洞

No description provided by source...

Google Chrome 3.0195.38 - Status Bar Obfuscation

Google Chrome 3.0195.38 - Status Bar Obfuscation Google Chrome 3.0195.38 Status Bar Obfuscation Author : 599eme Man. Contact : [email protected] Click 1? and the 2? look the Status bar for the 2? and you'll be redirect on Yahoo1? Open a new Window2? http://www.Google.com Look...

Mambo View Full Listing SQL Injection

Mambo Component comviewfulllisting SQL injection Vulnerability author : FL0RiX Greez : Deep-Power,PyskE,RuzgarinOglu,CWWarning0fvirüs & All My Friends Name : comviewfulllisting Bug Type : SQL Injection Infection : Admin login bilgileri alýnabilir. Demo Vuln. : TRUE+...

win32/xp sp2 (En + Ar) cmd.exe 23 bytes

No description provided by source. / win32/xp sp2 En + Ar cmd.exe 23 bytes Author : AnTi SeCuRe TeaM : SauDi ViRuS TeaM Email : [email protected] Site : WwW.VxX9.Cc Thx To : Stack , SauDi ViRuS TeaM RENO - Dr.php - ! BaD BoY ! - Jetli007 - Gov.hacker Description : It's a 23 Byte Shellcode...

Diesel Job Site 1.4 RFI / XSS / Bypass

======================================================================================== | Title : Diesel Job Site 1.4 Multiple Vulnerabilities | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site :...

vBulletin - Denial of Service

!/c:/perl/bin VBulletin Denail of Service Exploit by 4.!.5 created : !N 7h3 DARKNESS CODED BY: R3d-D3V!L important = Image Verification in search.php is NOT Enabled. It tested on V3.6.3 Perl Script use Socket; if @ARGV \n"; print "\tex: $0 127.0.0.1 /forum/\n"; print "\tex2: $0 127.0.0.1 /\n\n";...

VideoIsland Shell Upload

--------------------------------------- VideoIsland Remote shell upload Vulnerability --------------------------------------- + Author : RENO + Email : [email protected] + Site : www.vxx9.cc + Team : SauDi ViRuS TeaM + Dork : search for it :p + Script : VideoIsland + demo :...

BigAnt Server 2.52 SEH (0day)

No description provided by source. !/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect ...

phpbb 2.0.13 oracle.php 路径泄漏漏洞

No description provided by source...

IMG2ASCII Cross Site Scripting Vulnerability

No description provided by source. ======================================================================================== | Title : IMG2ASCII Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...

Datenator 0.3.0 - 'event.php?id' SQL Injection

Exploit Title: Datenator 0.3.0 event.php id SQL Injection Date: 26.12.09 Author: TheHuliGun Look on code in event.php: 22: ifisset$GET'id' 23: 24: $event = $datenator-readeventinfo$GET'id'; Function readeventinfo is in file includes/functions.php 412: function readeventinfo$eventid 413: 414: $sql...

apache tomcat 4.0.3 跨站脚本

No description provided by source...

apache 2.0.50 缓冲区溢出漏洞

No description provided by source...

apache 2.2.6 mod-autoindex.c 跨站脚本漏洞

No description provided by source...

PlayMeNow - .M3U Playlist Buffer Overflow (SEH)

PlayMeNow - .M3U Playlist Buffer Overflow SEH !/usr/bin/perl Greets: His0k4 : Then His0k4 and After That His0k4 Special Greets :01000001 01101001 01100011 01101000 01100001 00100000 win32exec - EXITFUNC=seh CMD=calc Size=158 Encoder=PexFnstenvMov http://metasploit.com my $shellcode =...

Linux - setreuid 0,0 & execve/bin/rm /etc/shadow

Linux - setreuid 0,0 & execve/bin/rm /etc/shadow. Shellcode exploit for linx86 platform / rmtheshadow.c by mrme Just for fun : visit: http://www.corelan.be:8800/ / include include char sc = "x31xc0" // xor %eax,%eax "xb0x46" // mov $046,%al "x31xdb" // xor %ebx,%ebx "x31xc9" // xor %ecx,%ecx...

Active Photo Gallery 6.2 SQL Injection

? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: Auth Bypass Remote SQL Injection Vulnerability‏ ? Vendor: www.activewebsoftwares.com ? ? Software: Active Photo Gallery v 6.2 ? ? author: R3d-D3v!L ? ? Date: 17.dec.2009 ? T!ME: 10:22 pm ? Home: WwW.xP10.M...

F3Site2009 Multiple LFI Exploit

No description provided by source. Exploit Title: F3Site2009 Multiple LFI Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://code.google.com/p/f3site/ Version: N/A Tested on: GNU/LINUX Code poll.php : iffileexists'./cache/poll'.$GLOBALS'nlang'.'.php':...

Southern data, a good precision system, Web soft world exploits-vulnerability warning-the black bar safety net

1, through the upfileother. asp vulnerability file taken directly SHELL Directly open userreg. asp for registered members, log in not logged state, use local Upload File Upload code is as follows: HTMLHEAD META http-equiv=Content-Type content="text/html; charset=gb2312" STYLE type=text/cssBODY...

Link Up Gold CSRF - Create Administrator Account

No description provided by source. /\ == \ /\ \ /\ \ \ \ \ \ \ \ \ /\ \ \ \ \ \ \ \ // // // 01000010 01101001 01001111 ---------------------------------------------------------------- + Link Up Gold - CSRF Create Administrator Account // Author Info x Author: bi0 x Contact:...