1697 matches found
BlazeVideo HDTV Player 6.6 Professional - Universal ASLR + DEP Bypass
Exploit Title: BlazeVideo HDTV Player 6.6 Professional Universal DEP+ASLR Bypass Author: modpr0be Software Download: http://www.blazevideo.com/download.php?product=blazevideo-hdtv-pro Date: 07/10/2011 Tested on: Windows XP SP3, Windows Vista SP2, Windows 7 SP1 Thanks: corelanc0d3r, cyb3r.anbu,...
Evidalia Web SL SQL Injection
rubenlinux vulnerable a injeccion remota SQL autor==rubenlinux equipo=rubenlinux + DORK: "Evidalia Web SL" inurl:categoria.php?cid= + URL: http://www.evprogramas.com/categoria.php?cid= slqi + DEMO:...
WordPress Plugin oQey Gallery 0.4.8 - SQL Injection
WordPress Plugin oQey Gallery 0.4.8 - SQL Injection Exploit Title: WordPress oQey Gallery plugin getrow"SELECT FROM $oqeygalls WHERE id ='".$id."' ";...
WordPress Plugin Menu Creator 1.1.7 - SQL Injection
WordPress Plugin Menu Creator 1.1.7 - SQL Injection Exploit Title: WordPress Menu Creator plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- $menuid = $GET'menuid'; ... $firstitem = $wpdb-getrow"SELECT FROM " . $wpdb-prefix."menuitems WHERE...
phpList 2.10.x - Security Bypass / Information Disclosure
source: https://www.securityfocus.com/bid/49188/info PHPList is prone to a security-bypass vulnerability and an information-disclosure vulnerability. An attacker can exploit these issues to gain access to sensitive information and send arbitrary messages to registered users. Other attacks are als...
CiscoKits 1.0 TFTP Server DoS (write command)
Exploit for windows platform in category dos / poc !/usr/bin/python Title : CiscoKits CCNA TFTP Server Denial Of Service Vulnerability Author : Prabhu S Angadi from SecPod Technologies www.secpod.com Vendor : http://www.certificationkits.com/cisco-ccna-tftp-server/ Advisory :...
CiscoKits CCNA TFTP Denial Of Service
!/usr/bin/python Title : CiscoKits CCNA TFTP Server Denial Of Service Vulnerability Author : Prabhu S Angadi from SecPod Technologies www.secpod.com Vendor : http://www.certificationkits.com/cisco-ccna-tftp-server/ Advisory : http://secpod.org/blog/?p=271...
Sagem F@st 3304 Routers - PPPoE Credentials Information Disclosure
source: https://www.securityfocus.com/bid/48908/info Sagem F@st 3304 router is prone to a remote information-disclosure vulnerability because it fails to restrict access to sensitive information. A remote attacker exploit this issue to obtain sensitive information, possibly aiding in further...
VideoLAN VLC Media Player MKV Demuxer Code Execution
Added: 06/27/2011 CVE: CVE-2011-0531 BID: 46060 OSVDB: 70698 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem VideoLan VLC 1.1.6.1 and earlier are vulnerable to a remote code execution vulnerability as a result of insufficien...
VisiWave VWR File Parsing Buffer Overflow
$Id: visiwavevwrtype.rb 12706 2011-05-24 23:15:06Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Microsoft Office Excel Buffer Overflow
This is a PoC for MS11-021/CVE-2011-0978 Microsoft Office Excel Axis Properties Record Parsing Buffer Overflow w3bd3vilatgmaildot.com twitter.com/w3bd3vil Modify bits at file location 0x39E7 0:000:x86 r eax=04dd6380 ebx=ffff5554 ecx=04ab5108 edx=00000000 esi=04ab4800 edi=ffff5554 eip=2f36a2fd...
php <5.3.6 phar扩展phar_object.c拒绝服务和信息泄露漏洞
No description provided by source...
Novell Netware NWFTPD.NLM DELE Remote Code Execution Vulnerability
No description provided by source. !/usr/bin/python import socket, sys Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=25&Itemid=25 host = sys.argv1 data =...
FORMfields Upload Vulnability
Exploit for php platform in category web applications Date: 12.03.2011 Author: PretoriaN Vendor or Software Link: Version: app version Category:: Exploit Google dork: inurl:/forms/FORMfields/ Tested on: PHP Exploit:/examples/allFields/ffceallfields.phpupload Step 1: in Text Field: type any name...
mySeatXT 0.164 Local File Inclusion
------------------------------------------------------------------------ Software................mySeatXT 0.164 Vulnerability...........Local File Inclusion Download................http://sourceforge.net/projects/coursems Release Date............2/16/2011 Tested On...............Windows Vista +...
CVE-2011-0538
Wireshark 1.2.0 through 1.2.14, 1.4.0 through 1.4.3, and 1.5.0 frees an uninitialized pointer during processing of a .pcap file in the pcap-ng format, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a malformed file...
CVE-2010-4541
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin in GIMP 2.6.11 allows user-assisted remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long "Number of lights" field in a...
QuickPHP Web Server 1.9.1 - Directory Traversal
QuickPHP Web Server 1.9.1 - Directory Traversal ------------------------------------------------------------------------ Software................QuickPHP Web Server 1.9.1 Vulnerability...........Directory Traversal Download................http://www.zachsaw.co.cc/?pg=quickphpphptesterdebugger...
Traidnt Up 3.0 CSRF Vulnerability
Exploit for php platform in category web applications Title : TRAIDNT UP Version 3.0 - CSRF Add Admin Script : TRAIDNT UP Version 3.0 Language : Php Download : http://www.traidnt.net http://www.traidnt.net/vb/attachment.php?attachmentid=519880&d=1285278011 Date : 2010/12/25 Version : 3.0 Dork :...
Linux kernel exploit
Hi all, I've included here a proof-of-concept local privilege escalation exploit for Linux. Please read the header for an explanation of what's going on. Without further ado, I present full-nelson.c: Happy hacking, Dan --snip-- / Linux Kernel = 2.6.37 local privilege escalation by Dan Rosenberg...