sk.log <= 0.5.3 (skin_url) Remote File Inclusion Vulnerability

No description provided by source. ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...

phpbbplus-rfi.txt

AUTHOR = Mehrad Ansari Targhi E-Mail : [email protected] My Yahoo Messenger ID : mehrad1989 Script Download URL : http://www.phpbbplus.net/PhpBBPlus1.53.zip This Is A RFI Bug . This Bug Is In : PHPBBPLUS INSTALLED /language/langgerman/lang mainalbum.php Exploit :...

QuickTicket 1.2 (qti_checkname.php) Local File Inclusion Vulnerability

No description provided by source. QuickTicket v1.2 Local File Inclusion download: http://www.qt-cute.org/download/qti12.zip found by: katatafish [email protected] vulncode: $strLang = $GET"lang"; include"language/$strLang/qtflangreg.inc"; exploit:...

Conti FTP Server 1.0 - Large String Denial of Service

Conti FTP Server 1.0 - Large String Denial of Service source: https://www.securityfocus.com/bid/24672/info The Conti FTP Server is prone to a denial-of-service vulnerability. A remote attacker may be able to exploit this issue to deny service to legitimate users of the application. Conti FTP Serv...

zomplog-sql.txt

!/usr/bin/python ---------------------------------------------------------------------------------- The sql injection : /zomplog-3.8/plugins/mp3playlist/mp3playlist.php?speler=sql I've code a sploit for the fun x ----------------------------------------------------------------------------------...

Remote Display Dev kit 1.2.1.0 RControl.dll Denial of Service Exploit

No description provided by source. span style="font: 14pt Courier New;"p align="center"b2007/05/10/b/p/span pre codespan style="font: 10pt Courier New;"span class="general1-symbol"----------------------------------------------------------------------------- bRControl.dll v. 1.2.1.0 Denial of...

Multiple vendors ZOO file decompression Infinite Loop DoS PoC

No description provided by source. / Exploit for the vulnerability: Multiple vendors ZOO file decompression infinite loop DoS coded by Jean-Sébastien Guay-Leroux September 2006 / include stdio.h include stdlib.h include string.h // Structure of a ZOO header define ZOOHEADERSIZE 0x0000002a define...

Corel Paint Shop Pro Photo畸形CLP文件栈溢出漏洞

Paint Shop Pro Photo是可与PhotoShop相媲美的绘图及图像处理软件，拥有众多而强大的绘制和图像处理的功能。 Paint Shop Pro Photo在处理畸形的CLP文件时存在栈溢出漏洞，如果用户受骗打开了恶意的CLP文件就可能导致执行任意指令。 Corel Paint Shop Pro Photo 11.20 Corel ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.corel.com/servlet/Satellite/us/en/Product/1155872554948...

Microsoft Windows - GDI Privilege Escalation (MS07-017) (2)

/ GDI Local Elevation of Privilege Vulnerability Exploit MS07-017 Coded by Lionel d'Hauenens http://www.labo-asso.com Development: ------------ Dev-C++ 4.9.9.2 Linked with /lib/libgdi32.a References: ----------- http://www.microsoft.com/technet/security/bulletin/MS07-017.mspx...

Web Service Deluxe News Manager 1.0.1 Deluxe - 'footer.php' Local File Inclusion

source: https://www.securityfocus.com/bid/23499/info News Manager Deluxe is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts. This issue affects News...

CodeBB 1.0 beta 2 (phpbb_root_path) Remote File Inclusion Vulnerability

No description provided by source. codebb 1.1b3 phpbbrootpath Remote File Include Vulnerability D.Script: http://rd.cycnus.de/download/codebb-1.1b3.tar.bz2 Discovered by: Alkomandoz Hacker Homepage: http://www.asb-may.net V.Code includeonce$phpbbrootpath . 'includes/codebb/config.'.$phpEx;...

PHP 4.4.5/4.4.6 - 'session_decode()' Double-Free (PoC)

?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP Project // // C Copyright 2007 Stefan...

PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...

Creative Files 1.2 (kommentare.php) Remote SQL Injection Vulnerability

No description provided by source. ======================X=O=R=O=N===================== + + Creative Files 1.2 kommentare.php Remote SQL Injection Vulnerabilities + ======================X=O=R=O=N===================== + + Bulan: xoron + + xoron.biz +...

AssetMan <= 2.4a (download_pdf.php) Remote File Disclosure Vuln

No description provided by source. +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= | |AssetMan 2.4a = downloadpdf.php Remote File Disclosure Vulnerability | |Script: AssetMan | |Verson: 2.4a | |URL: http://www.bctree.com/assetman/assetman-2.4a.zip | |Discover: BorN To K!LL |...

Adobe Acrobat/Adobe Reader信息泄露漏洞

Adobe Acrobat和Adobe Reader都是非常流行的PDF文件阅读器。 Adobe Reader或Adobe Acrobat打开恶意PDF文件时可能会启动file:// URL，这可能导致读取系统上的任意文件并发送给攻击者。 Adobe Acrobat Professional 8.0.0 Adobe Adobe Reader Professional 8.0.0 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.adobe.com...

Mozilla Firefox 2.0.0.2 - &#039;.GIF&#039; Handling Denial of Service

source: https://www.securityfocus.com/bid/22899/info Firefox is prone to a remote denial-of-service vulnerability. An attacker may exploit this vulnerability to cause the application to crash, resulting in denial-of-service conditions. Little is known regarding this vulnerability; this BID will b...

PHP 5.2.1 - substr_compare() Information Leak

PHP 5.2.1 - substrcompare Information Leak ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the...

mina-rfi.txt

$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $ $ $ Title : Mina Ajans Script Remote File Inclusion Vuln. $ Author : CanberX , BLaCKWHITE $ Free : NOT : $ Disb : www.minaajans.com.tr $ G. Dork : "Tasarim ve program: Mina Ajans." $ $ Vuln Code :...

Hailboards v1.2.0 &#40;phpbb_root_path&#41; Remote File Include Exploit

----------------------------------------------- Hailboards v1.2.0 phpbbrootpath Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz - xoron.info ----------------------------------------------- Code: include$phpbbrootpath . 'includes/bbcode.'.$phpEx;...