Inferno vBShout 2.5.2 - SQL Injection

Inferno vBShout 2.5.2 - SQL Injection ==================================================================== Inferno vBShout SQLI 0day settings'scommands'; if $this-vbulletin-db-affectedrows vbulletin-db-queryfirst"select from " . TABLEPREFIX . "infernoshoutusers where...

Video: Locking Down iOS

Considering the rapid proliferation of smartpones and tablets and the vast wealth of personal and financial data many of us store on them, it is increasingly important that we find ways of securing our mobile devices. With that in mind, we decided there was no better way to kick-off a series of...

HTC HD2 TCOM Win 6.5 modify to HTC HD2 Win7 10 Steps

Document Title: =============== HTC HD2 TCOM Win 6.5 modify to HTC HD2 Win7 10 Steps Release Date: ============= 2012-01-13 Vulnerability Laboratory ID VL-ID: ==================================== 381 Discovery Status: ================= Published Exploitation Technique: =======================...

w3af v.1.1 - Web Application Attack and Audit Framework Released

w3af v.1.1 - Web Application Attack and Audit Framework Released w3af is a Web Application Attack and Audit Framework. The project's goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. To read our short and long term objectives. w3af i...

Exploit writing tutorial part 4 : From Exploit to Metasploit [RUS by p(eaZ]

Автор: Peter Van Eeckhoutte corelanc0d3r Перевод: peaZ 9/2011 В первых частях руководства, мы обсудили некоторые общие уязвимости, которые могут привести к двум типам эксплойтов: стековое переполнение буфера с прямой перезаписью EIP, и буферное переполнение с использованием SEH chain. В моих...

Zinf Audio Player 2.2.1 - .pls Local Buffer Overflow (DEP Bypass)

Zinf Audio Player 2.2.1 - .pls Local Buffer Overflow DEP Bypass !/usr/bin/ruby +Exploit Title: Zinf Audio Player v2.2.1 PLS File Buffer Overflow VulnerabilityDEP BYPASS +Date: 03\08\2011 +Author: C4SS!0 and h1ch4m +Found by: Delikonhttp://www.exploit-db.com/exploits/559/ or also...

Basic Codebreaking Lesson - Number, ENIGMA, ROT13

Document Title: =============== Basic Codebreaking Lesson - Number, ENIGMA, ROT13 References: =========== Download: http://www.vulnerability-lab.com/resources/videos/13.wmv View: http://www.youtube.com/watch?v=jOsYWvWTBA Release Date: ============= 2011-06-11 Vulnerability Laboratory ID VL-ID:...

Student Charged With Posting Counterfeit Coupons to 4Chan

A student at New York’s Rochester Institute of Technology RIT has been arrested for producing hundreds of thousands of dollars worth of fake coupons and posting them to 4chan and other websites. Lucas Henderson, a 22-year old computer security student from Lubbock, Texas was charged with wire fra...

Host-Extract - Host/IP Pattern Extractor Tool !

Host-Extract - Host/IP Pattern Extractor Tool ! This little ruby script tries to extract all IP/Host patterns in page response of a given URL and JavaScript/CSS files of that URL. With it, you can quickly identify internal IPs/Hostnames, development IPs/ports, cdn, load balancers, additional...

SnackAmp 3.1.3B Malicious SMP Buffer Overflow (SEH - DEP BYPASS)

Exploit for windows platform in category local exploits ================================================================ SnackAmp 3.1.3B Malicious SMP Buffer Overflow SEH - DEP BYPASS ================================================================ Exploit Title: SnackAmp 3.1.3B Malicious SMP...

SnackAmp 3.1.3B SMP Buffer Overflow

Exploit Title: SnackAmp 3.1.3B Malicious SMP Buffer Overflow Vulnerability SEH - DEP BYPASS Date: 09/24/10 Author: Muhamad Fadzil Ramli - mind1355 AT gmail DOT com Credit/Bug Found By: james AT learnsecurityonline DOT com Software Link: http://sourceforge.net/projects/snackamp/ Version: 3.1.3 Bet...

CVE-2010-3467

SQL injection vulnerability in modules/sections/index.php in E-Xoopport Samsara 3.1 and earlier, when the Tutorial module is enabled, allows remote attackers to execute arbitrary SQL commands via the secid parameter in a listarticles action...

Sql injection

SQL injection vulnerability in modules/sections/index.php in E-Xoopport Samsara 3.1 and earlier, when the Tutorial module is enabled, allows remote attackers to execute arbitrary SQL commands via the secid parameter in a listarticles action...

CVE-2010-3467

CVE-2010-3467 describes an SQL injection in modules/sections/index.php of E-Xoopport Samsara 3.1 and earlier, invoked when the Tutorial module is enabled. The vulnerability allows an attacker to craft the secid parameter in a listarticles action to execute arbitrary SQL commands. Documented impac...

Joomla Component com_soundset LFI Vulnerability

Exploit for php platform in category web applications =============================================== Joomla Component comsoundset LFI Vulnerability =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

Whitepaper - Using XFS To Create XSS From SQL Injection

XFS - XSS From SQL Author : 599eme Man Contact : [email protected] ------------------------------------------------------------------------ + Summary 1 Presentation 2 Explanation 3 Demonstration 4 Bibliography ------------------------------------------------------------------------ 1 --Presentation--...

CVE-2009-2293

Optimum Web Design Tutorial Share 3.5.0 and earlier allows remote attackers to bypass authentication and obtain administrative access by setting the usernamed cookie parameter...

CVE-2009-2293

Optimum Web Design Tutorial Share 3.5.0 and earlier allows remote attackers to bypass authentication and obtain administrative access by setting the usernamed cookie parameter...

AlumniServer 1.0.1 (resetpwemail) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= AlumniServer 1.0.1 resetpwemail Blind SQL Injection Exploit ============================================================= !/usr/bin/python...

Tutorial Share 3.5.0 Insecure Cookie

-------------------------------------------------------------- Tutorial Share 3.4 Insecure Cookie Handling Vulnerability --------------------------------------------------------------- Auothr :Evil-Cod3r Home: Creativexploit.com Contact : [email protected] & [email protected] Software : Tutorial...