Phpwiki Ploticus Remote Code Execution

The Ploticus module in PhpWiki 1.5.0 allows remote attackers to execute arbitrary code via command injection. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Phpwiki Ploticus Remote Code...

Rejetto HTTP File Server (HFS) 2.3.x - Remote Command Execution (1)

Rejetto HTTP File Server HFS 2.3.x - Remote Command Execution 1 Exploit Title: HttpFileServer 2.3.x Remote Command Execution Google Dork: intext:"httpfileserver 2.3" Date: 11-09-2014 Remote: Yes Exploit Author: Daniele Linguaglossa Vendor Homepage: http://rejetto.com/ Software Link:...

HttpFileServer 2.3.x Remote Command Execution

Affected software: http://sourceforge.net/projects/hfs/ Version : 2.3x Exploit Title: HttpFileServer 2.3.x Remote Command Execution Google Dork: intext:"httpfileserver 2.3" Date: 11-09-2014 Remote: Yes Exploit Author: Daniele Linguaglossa Vendor Homepage: http://rejetto.com/ Software Link:...

PHP Stock Management System 1.02 - Multiple Persistent Cross Site Scripting Vulnerabilities

Exploit for php platform in category web applications ​ Exploit Title: Multiple Persistent Cross Site Scripting Vulnerabilities in PHP Stock Management System 1.02 Date: 25 Aug 2014 Exploit Author: ​Ragha Deepthi K R Vendor Homepage: ​http://www.posnic.com/​ Software Link:​...

DirPHP 1.0 - LFI Vulnerability

No description provided by source. !/usr/bin/env python -- coding:utf-8 -- from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class TestPOCPOCBase: vulID = '87159' version = '1' vulDate = '1406390400' createDate = '1442937600' references =...

DjVuLibre <= 3.5.25.3 - Out of Bounds Access Violation

No description provided by source. from shutil import copyfile import sys """ Exploit Title: DjVuLibre = 3.5.25 Out of Bounds Access Violation Date: 07/14/24 Exploit Author: drone @dronesec Vendor: http://djvu.sourceforge.net/ Software link:...

DjVuLibre 3.5.25.3 - Out of Bounds Access Violation

from shutil import copyfile import sys """ Exploit Title: DjVuLibre .text:004D3BC5 mov eax, eax+ecx4 .text:004D3BC8 test eax, eax .text:004D3BCA jnz short loc We overwrite 4 bytes in an FG44 chunk header with \xff\xff\xff\xff: 46 47 34 34 00 00 04 6E 00 64 01 02 FF FF FF FF 80 FF...

DjVuLibre 3.5.25.3 - Out of Bounds Access Violation

DjVuLibre 3.5.25.3 - Out of Bounds Access Violation from shutil import copyfile import sys """ Exploit Title: DjVuLibre .text:004D3BC5 mov eax, eax+ecx4 .text:004D3BC8 test eax, eax .text:004D3BCA jnz short loc We overwrite 4 bytes in an FG44 chunk header with \xff\xff\xff\xff: 46 47 34 34 00 00 ...

OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection Vulnerabilities

OL-Commerce version 2.1.1 suffers from cross site scripting and remote SQL injection vulnerabilities. OL-Commerce v2.1.1 - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : email protected , email protected .:...

SIPS <= 0.3.1 (box.inc.php) Remote File Include Vulnerability

No description provided by source. Title : SIPS = 0.3.1box.inc.php Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://sourceforge.net/projects/sips/ $$ : Free ERROR .. ... ..... ? include $configsipssys ./code/rssparser.inc.php; ? .. ... ..... ERROR RFI...

SAPID 1.2.3 Stable Remote File Inclusion Vulnerability

No description provided by source. Exploit Title: SAPID Stable RFI Google Dork: tanyakan pada dan pemula :D Date: January 08 2011 Author: Opa Yong Software Link: http://sourceforge.net/projects/sapid/files/sapid-cms/ Version: SAPID 1.2.3 Stable Tested on: Windows XP Home Edition SP2 @POC:...

phpMUR Remote File Disclosure Vulnerability

No description provided by source. Exploit Title: phpMUR Remote File Disclosure Date: 10/08/2010 Author: Offensive [email protected] Red-Stone On Inject0r Community ! Software Link: http://sourceforge.net/projects/phpmur Version : n/a Tested on: Windows XP C0nditi0ns : PHP Version 4.x.x Exploit...

Ptag <= 4.0.0 - Multiple RFI Exploit

No description provided by source. Exploit Title: Ptag = 4.0.0 Multiple RFI Exploit Date: 19-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/ptag/ Version: N/A Tested on: GNU/LINUX Code session.php ?php //Plottable Tagboard Systems Version 4.0.0 - ROLAND //Session handling...

phptraverse <= 0.8.0 - Remote File Inclusion Vulnerability

No description provided by source. Discovered by cr4wl3r \ cr4wl3r4tlinuxmaildotorg phptraverse = 0.8.0 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/phptraverse/files/ Dork : dieHacking attempt; :D Vuln : ./phptraverse-0.8.0/assets/plugins/mp3id/mp3id.php li...

free QBoard <= 1.1 (qb_path) Remote File Include Vulnerability

No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ free QBoard qbpath = v.1.1 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/freeqboard/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $...

Polaring <= 0.04.03 (general.php) Remote File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '64020' ssvid version = '1.0' author = '皮皮' vulDate = '2006-09-28' createDate = '2015-12-24...

FreeSchool <= 1.1.0 - Multiple Remote File Inclusion Vulnerabilities

No description provided by source. x FreeSchool = 1.1.0 Mutiple Remote File Include Vulnerability ! Download Script : http://sourceforge.net/projects/freeschool/files/ ! Author : cr4wl3r ! Contact : cr4wl3r4tlinuxmaildotorg ! Location : Gorontalo - INDONESIA ! Dork : FuCk y0u MaLaYsia x 3xplo!t :...

php-addressbook 3.1.5 - (edit.php) SQL Injection Vulnerability

No description provided by source. @ php-addressbook v3.1.5edit.php SQL Injection Vulnerability @ Author: Hussin X @ Home : www.iq-ty.comhttp://www.iq-ty.com, @ email: darkangelg85atYahoodotcom @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ script :...

IP Reg <= 0.4 - Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl ----------------------------------------------- IP Reg = 0.4 Blind SQL Injection Exploit Discovered By StAkeR - StAkeRathotmaildotit Discovered On 03/10/2008 ----------------------------------------------- Download...

sitexs cms 0.1.1 (upload/xss) Multiple Vulnerabilities

No description provided by source. =========================================================== SiteXS CMS Upload/XSS Multiple Remote Vulnerabilities =========================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground...