1507 matches found
Invision Power Board <= 2.0.3 Login.PHP SQL Injection (tutorial)
No description provided by source. danica jones [email protected] Tutorial for the recent exploit released by Petey Beege. 1. Get the exploit from http://www.milw0rm.com/id.php?id=1013 2. Make sure you have LWP::UserAgent perl module if not do this: a. perl -MCPAN -e 'shell' b. inside the perl...
Invision Power Board 1.* and 2.* Exploit (BID 13529)
!/usr/bin/perl -w This one actually works : Just paste the outputted cookie into your request header using livehttpheaders or something and you will probably be logged in as that user. No need to decrypt it! Exploit coded by "Tony Little Lately" and "Petey Beege" use LWP::UserAgent; $ua = new...
Invision Power Board 2.0.3 - 'login.php' SQL Injection (Tutorial)
danica jones Tutorial for the recent exploit released by Petey Beege. 1. Get the exploit from http://www.milw0rm.com/id.php?id=1013 https://www.exploit-db.com/exploits/1013/ 2. Make sure you have LWP::UserAgent perl module if not do this: a. perl -MCPAN -e 'shell' b. inside the perl shell, do thi...
Invision Power Board 2.0.3 - login.php SQL Injection
Invision Power Board 2.0.3 - login.php SQL Injection !/usr/bin/perl -w This one actually works : Just paste the outputted cookie into your request header using livehttpheaders or something and you will probably be logged in as that user. No need to decrypt it! Exploit coded by "Tony Little Lately...
CVE-2004-0781
Cross-site scripting XSS vulnerability in list.cgi in the Icecast internal web server icecast-server 1.3.12 and earlier allows remote attackers to inject arbitrary web script via the UserAgent parameter...
CVE-2004-0781
Cross-site scripting XSS vulnerability in list.cgi in the Icecast internal web server icecast-server 1.3.12 and earlier allows remote attackers to inject arbitrary web script via the UserAgent parameter...
CVE-2001-0904
Internet Explorer 5.5 and 6 with the Q312461 MS01-055 patch modifies the HTTPUSERAGENT UserAgent information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerable clients...