DornCMS Application v1.4 - Multiple Web Vulnerabilities

Document Title: =============== DornCMS Application v1.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1113 Release Date: ============= 2013-10-13 Vulnerability Laboratory ID VL-ID: ==================================== 11...

FreeSMS (Free Student Management System) 2.1.2 Multiple Vulnerability

Exploit for php platform in category web applications / \ / | / \ /000000 | 00 | /000000 | 00 \00/ / \ / \ / \ 00 \ / / \ / \ 00 \00/ / \ / | 00 \ 000000 |/000000 |000000 |0000000 |000000 0000 | 000000 | 00 \ /000000 |/0000000/ 000000 | / 00 |00 | 00/ / 00 |00 | 00 |00 | 00 | 00 | / 00 | 000000...

Blast XPlayer - Local Buffer Overflow (PoC)

Title: Blast XPlayer Local Buffer Overflow PoC Vendor: http://sourceforge.net/projects/blast-player/files/latest/download?source=dlp Versions: Beta Platform: nix, windows Bug: Buffer Overflow ------------------------------------------------------- 1 Introduction 2 Proof of concept 3 Credits...

Jcow 7.1.2 XSS/FPD Vulnerabilities

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Update to Bitcoin Client Fixes DoS Bug, Password Strength

The developers behind Bitcoin-QT, a software wallet used to protect and back up Bitcoin currency, have pushed out a new version of the client, fixing a critical denial-of-service bug, three security issues and fortifying password security. Version 0.8.4 of the original Bitcoin client was posted t...

Palms 3.6 Cross Site Scripting

1010101010101010101010101010101010101010101010101 0 0 1 /'\ /' /\ \ 1 0 /\ \ \ /, \ \ \ 0 1 //\ Dr.3v1l 0 1 0WebSecurity.IR 1 0 0 1 + E-Mail : [email protected] 1 0 + Y! : Doctor.3v1l 0 1 1 0 0 1 I'm 3v1l member from BlackDevils B0ys Team 1 0 0 1 1...

Bitbot C2 Panel gate2.php - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Bitbot C2 Panel gate2.php SQLi + XSS Date: 08/19/2013 Exploit Author: Brian Wallace bwall aka @botnethunter Software Link: https://sourceforge.net/p/flippingbitbot/wiki/Home/ Vulnerable Virtual Machine including Bitbot Tested on...

Bitbot (C2 Web Panel) - gate2.php Multiple Vulnerabilities

Bitbot C2 Web Panel - gate2.php Multiple Vulnerabilities Exploit Title: Bitbot C2 Panel gate2.php SQLi + XSS Date: 08/19/2013 Exploit Author: Brian Wallace bwall aka @botnethunter Software Link: https://sourceforge.net/p/flippingbitbot/wiki/Home/ Vulnerable Virtual Machine including Bitbot Tested...

ACal 2.2.6 Local File Inclusion

Exploit Title: ACal 2.2.6 Local File Inclusion Vulneberality Google Dork: - Date: 15/08/2013 Exploit Author: ICheerNo0M - http://icheernoom.blogspot.com/ Vendor Homepage: http://acalproj.sourceforge.net/ Software Link: http://prdownloads.sourceforge.net/acalproj/ACal-2.2.6.tar.gz?download Version...

MinaliC WebServer 2.0.0 - Remote Buffer Overflow (Egghunter)

!/usr/bin/env python Exploit Title: MinaliC Webserver buffer overflow egghunter Date: August 13 2013 Exploit Author: PuN1sh3r Email: [email protected] Vendor Homepage: http://minalic.sourceforge.net/ Version: MinaliC Webserver 2.0.0 Tested on: Windows XP Pro SP3, English Description: Remote...

MinaliC Webserver 2.0.0 - Buffer Overflow (Egghunter)

Exploit for windows platform in category remote exploits !/usr/bin/env python Exploit Title: MinaliC Webserver buffer overflow egghunter Date: August 13 2013 Exploit Author: PuN1sh3r Email: email protected Vendor Homepage: http://minalic.sourceforge.net/ Version: MinaliC Webserver 2.0.0 Tested on...

Tribq CMS 5.2.7 Cross Site Request Forgery

Exploit Title: Tribq CMS CSRF - Adding/Editing new administrator account Date: 2013 8 August Exploit Author: Yashar shahinzadeh Special thanks to Mormoroth Credit goes for: http://y-shahinzadeh.ir & ha.cker.ir Vendor Homepage: http://sourceforge.net/projects/tribiq/ Tested on: Linux & Windows, PH...

Open And Compact FTP Server 1.2 Bypass / Directory Traversal

!/usr/bin/python Exploit Title: Open&Compact Ftp Server = 1.2 Auth bypass & directory traversal sam retrieval Date: Aug 7, 2013 By Wireghoul - http://www.justanotherhacker.com Based on Serge Gorbunov's auth bypass http://www.exploit-db.com/exploits/13932/ Software Link:...

(Gabriels FTP Server) Open Compact FTP Server 1.2 - Authentication Bypass Directory Traversal SAM Retrieval

Gabriels FTP Server Open Compact FTP Server 1.2 - Authentication Bypass Directory Traversal SAM Retrieval !/usr/bin/python Exploit Title: Open&Compact Ftp Server = 1.2 Auth bypass & directory traversal sam retrieval Date: Aug 7, 2013 By Wireghoul - http://www.justanotherhacker.com Based on Serge...

(Gabriel's FTP Server) Open & Compact FTP Server 1.2 - Authentication Bypass / Directory Traversal SAM Retrieval

!/usr/bin/python Exploit Title: Open&Compact Ftp Server = 1.2 Auth bypass & directory traversal sam retrieval Date: Aug 7, 2013 By Wireghoul - http://www.justanotherhacker.com Based on Serge Gorbunov's auth bypass http://www.exploit-db.com/exploits/13932/ Software Link:...

Open&Compact FTP Server 1.2 - Auth Bypass & Directory Traversal SAM Retrieval Exploit

Exploit for windows platform in category remote exploits !/usr/bin/python Exploit Title: Open&Compact Ftp Server = 1.2 Auth bypass & directory traversal sam retrieval Date: Aug 7, 2013 By Wireghoul - http://www.justanotherhacker.com Based on Serge Gorbunov's auth bypass...

EchoVNC Viewer - Remote Denial of Service

EchoVNC Viewer - Remote Denial of Service !/usr/bin/env python ================================================================ + Title: EchoVNC Viewer Remote DoS Vulnerability + Discovered: 29/07/2013 + Software Vendor: http://sourceforge.net/projects/echovnc/ + Author: Z3r0n3 - Independent...

FunGamez - Arbitrary File Upload

FunGamez Remote File Upload Vulnerability Brought to you by cr4wl3r http://bastardlabs.info Software Link: http://sourceforge.net/projects/fg-gsm/?source=dlp ----------------------------------------------- Source FunGamez/admin/modules/game.php .......... 135 And your shell will be available here...

FunGamez Remote Shell Upload

FunGamez Remote File Upload Vulnerability Brought to you by cr4wl3r http://bastardlabs.info Software Link: http://sourceforge.net/projects/fg-gsm/?source=dlp Tested: Linux, Windows ----------------------------------------------- Source FunGamez/admin/modules/game.php .......... 135 And your shell...

Static HTTP Server 1.0 - Local Overflow (SEH)

!/usr/bin/env python import os TitleStatic HTTP Server SEH Overflow - HTTP Config - httptiplist Discovered and ReportedJune 2013 Discovered/Exploited ByJacob Holcomb/Gimppy, Security Analyst @ Independent Security Evaluators Exploit/Advisoryhttp://infosec42.blogspot.com/ SoftwareStatic HTTP Serve...