NATO Server Hacked by 1337day Inj3ct0r and Backup Leaked !

NATO Server Hacked by1337day Inj3ct0r and Backup Leaked ! Team Inj3ct0r 1337day claim to hack Apache Tomcat Version 5.5.9 of NATO. The North Atlantic Treaty Organization or NATO also called the North Atlantic Alliance, is an inter governmental military alliance based on the North Atlantic Treaty...

Auto Database System 1.0 Infusion Addon SQL injection Vulnerability

Exploit for php platform in category web applications Exploit Title: PHP-Fusion Auto Database System 1.0 Infusion SQL injection Date: 8-2-2011 Author: Saif El-Sherei Software Link: http://www.php-fusion.co.uk/infusions/addondb/view.php?addonid=146 Version: Auto Database System 1.0 Infusion,...

Ypninc Realty Classifieds - SQL Injection

Script Name: Ypninc Realty Classifieds Script Demo: http://fsbo.ypninc.com/ BUG: Sql INjection google dork: inurl:"gmap.php?id="; OBS: With this dork you will find a lot of sql injection aiuhauiha ;D Found: by Br0ly Lame script ;/... p0c:...

CVE-2010-4221

Multiple stack-based buffer overflows in the prnetiotelnetgets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a 1 FTP or 2 FTPS server...

CVE-2010-2253

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...

vBulletin - DoS

vBulletin DOS - all version. Dos exploit for php platform DOS Vbulletin 92% Works ; Tested on all versions! and can DOS the server Perl Script use Socket; if @ARGV \n"; print "\tex: $0 127.0.0.1 /forum/\n"; print "\tex2: $0 127.0.0.1 /\n\n"; exit; ;...

JaxCMS 1.0 - Local File Inclusion

JaxCMS 1.0 - Local File Inclusion / Name : JaxCMS p Local File Include WebSite : http://www.pixiescripts.com/ Author : Hamza 'MizoZ' N. Email : [email protected] Greetz : Zuka ! / The vulnerability is in the get $GET'p' , the index.php include '/pages/'.$GET'p'.'.php' So we can read any file in th...

Internet Explorer 6 Web Server Exploit

Author : Ahmed Obied [email protected] Modify by: syniack [email protected] This program acts as a web server that generates an exploit to target a vulnerability CVE-2010-0249 in Internet Explorer. The exploit was tested using Internet Explorer 6 on Windows XP SP3. The exploit's payload...

Joomla! Component com_avosbillets - Blind SQL Injection

Joomla Component comavosbillets Blind SQL Injection Vulnerability Author : Pyske Home : www.cyber-warrior.org Greetz : Fl0riX , M-K-A, F0RTYS3V3N ,BlackApple , KaBaDaY and All Cyber-Warrior Name : comavosbillets Bug Type : Blind SQL Injection Infection : Admin login bilgileri alinabilir...

Image File Upload - Arbitrary File Upload

======================================================================================== | Title : Image file upload Upload Shell Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site :...

CURL-CVE-2009-0037 Arbitrary File Access

When told to follow a "redirect" automatically, libcurl does not question the new target URL but follows it to any new URL that it understands. As libcurl supports FILE:// URLs, a rogue server can thus "trick" a libcurl-using application to read a local file instead of the remote one. This is a...

i-dreams GB Server Info Disclosure

--------------------------------------------------------- Portal Name: i-dreams GB Server Author : PouyaServer , [email protected] Website: http://Pouya-Server.ir --------------------------------------------------------- Xpl: http://site.com/Path/admdat/admin.dat...

TPTEST 3.1.7 - Stack Buffer Overflow (PoC)

TPTEST 3.1.7 - Stack Buffer Overflow PoC !/usr/local/bin/perl TPTEST newProto="tcp",PeerAddr=$host,PeerPort=$port; if!$remdie "1\n";$rem-autoflush1; $cookie=$major=$minor="123"; $r=;print "$r";sleep 5; to attach in gdb.. if$r=/cookie=0-9/$cookie=$1; if$r=/vmajor=0-9/$major=$1;...

TPTEST <= 3.1.7 Stack Buffer Overflow PoC

No description provided by source. !/usr/local/bin/perl TPTEST = 3.1.7 maby also 5.0.2? tptest.sourceforge.net stackbased buffer overflow poc in server client can also be exploit author: ffwd use IO::Socket;$host,$port=@ARGV; $rem=IO::Socket::INET-newProto="tcp",PeerAddr=$host,PeerPort=$port;...

Accellion File Transfer Appliance Error Report Message - Open Email Relay

Accellion File Transfer Appliance Error Report Message - Open Email Relay source: https://www.securityfocus.com/bid/31178/info Accellion File Transfer Appliance is prone to an open-email-relay vulnerability. An attacker could exploit this issue by constructing a script that would send unsolicited...

Microworld Mailscan 5.6.a - Password Reveal

/ ---------------------------------------------------------------------------------------------- / / / \ \ / / / / / / \ | / / / / / // // / / |/ / //////|/ 2008 SecurityDevelopment.net Author: SlaYeR Date: 25. Aug. 2008 Email: [email protected] Website:...

CVE-2008-2362

Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a 1 SProcRenderCreateLinearGradient, 2 SProcRenderCreateRadialGradient, or 3 SProcRenderCreateConicalGradient request with an invalid field...

Home FTP Server 1.4.5 Remote Denial of Service Exploit

No description provided by source. Discovered by 0in from DaRk-CodeRs Programming & Security Group Contact: 0indotemailatgmaildotcom Thats a very funny bug, and nobody understand how it works; When we send a python FTP retrlines function bad command and create a new connection server got DoS... o...

Prozilla Pub Site Directory - 'Directory.php?cat' SQL Injection

--==+================================================================================+==-- --==+ Prozilla Pub Site Directory SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZz & xprog SITE: prozilla.com DORK...

Easy File Sharing FTP Server 2.0 - 'PASS' Remote

!/usr/bin/python Easy File Sharing FTP Server 2.0 PASS 0day PoC exploit Proof of Concept: execute calc.exe Bug found by h07 Tested on XP SP2 polish Date: 28.07.2006 BUFFPASS + 0x20+0x2c+NOP 2571+0x41414141+\r\n EIP = 0x41414141 host = "127.0.0.1" port = 21 lenrecv = 1024 username = "anonymous"...