phpBB Add-on Fishing Cat Portal Remote File Inclusion Exploit

Exploit for unknown platform in category web applications ============================================================= phpBB Add-on Fishing Cat Portal Remote File Inclusion Exploit ============================================================= Fishing Cat Portal Addon functionsportal.php Remote...

MPlayer sdpplin_parse() Array Indexing Buffer Overflow Exploit PoC

No description provided by source. !/usr/bin/perl Huston, mplayer got some vulns! : CVE-2008-0073 also apply to mplayer and vlc with some distinctions. Assuming kernel.varandomize=0 this overwrite EIP with a "stream" structure on my box...

yapblog-rfi.txt

Description: Yap Blog 1.1 Remote File Include RFI Script Name: Yap Blog 1.1 Author : THEMILLER contact : themilleratlinuxmail.org Download URL : http://wildmary.net-sauvage.com/share/yap1.1.tar.gz Bug Type: Remote File Inclusion Bug In: index.php Vulnerable Code: if isset$GET'page' include...

QuickTicket 1.5 - 'qti_usr.php' SQL Injection

Script name: QuickTicket Site: http://www.qt-cute.org Vulnerability: remote sql injection at qtiusr.php Download: v 1.4: http://www.qt-cute.org/download/qti14.zip v 1.5.0.3: http://www.qt-cute.org/download/qti15.zip Vulnerable code: 1.4 ; 1.5 is pretty the same if isset$GET'id' $id = $GET'id'; //...

wordpresssniplet-rfixssexec.txt

Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities by NBBN 1 Remote File Inclusion File: /modules/syntaxhighlight.php Register Globals: ON Vuln code: "/ http://victim.tld/wordpress/wp-content/plugins/sniplets/view/admin/pager.php?page=%22%3E%3Cscript%3Ealert%22XSS%22%3C/script%3E 3 Remote...

domphp-lfi.txt

------------------------------------------------------------- ----- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------- ------------------------------------------------------------- = Author : HouSSaMix From H-T Team = Script : DomPHP 0.82 = Download : http://www.domphp.com/download/ = BUG : Loca...

mambocom-sql.txt

Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND published=1 order by id DESC"; Exploit:...

Mambo Component Comments 0.5.8.5g - SQL Injection

Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND published=1 order by id DESC"; Exploit:...

DomPHP 0.82 - 'index.php' Local File Inclusion

------------------------------------------------------------- ----- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------- ------------------------------------------------------------- = Author : HouSSaMix From H-T Team = Script : DomPHP 0.82 = Download : http://www.domphp.com/download/ = BUG : Loca...

DomPHP 0.82 (index.php page) Local File Inclusion Vulnerability

No description provided by source. ------------------------------------------------------------- ----- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------- ------------------------------------------------------------- = Author : HouSSaMix From H-T Team = Script : DomPHP 0.82 = Download :...

Mambo Component Comments 0.5.8.5g - SQL Injection

Mambo Component Comments 0.5.8.5g - SQL Injection Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND...

Mambo Component Comments <= 0.5.8.5g SQL Injection Vulnerability

No description provided by source. Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND published=1 order...

DomPHP 0.82 - index.php Local File Inclusion

DomPHP 0.82 - index.php Local File Inclusion ------------------------------------------------------------- ----- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------- ------------------------------------------------------------- = Author : HouSSaMix From H-T Team = Script : DomPHP 0.82 = Download :...

osa-rfi.txt

Software Vulnerable: OpenSiteAdmin 0.9.1 BETA and maybe prior versions. Vulnerable Code: -OpenSiteAdmin/indexFooter.php requireonce$path."footer.php"; -OpenSiteAdmin/scripts/classes/DatabaseManager.php requireonce$path."OpenSiteAdmin/include.php";...

Mihalism Multi Host Download (Username) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================================== Mihalism Multi Host Download Username Blind SQL Injection Exploit =================================================================== ?php / Mihalism Multi Host Download -...

Mihalism Multi Host Download (Username) Blind SQL Injection Exploit

No description provided by source. ?php / Moubik Romanian Security Team - http://rstzone.org presents Mihalism Multi Host Download - Blind SQL Injection Attack Thanks to Vladii for telling me about the CMS. Thanks to Shocker for telling Vladii about the CMS. Shoutz to Kw3rln, Bankai, Slick,...

All Club CMS 0.0.1f - index.php Local File Inclusion

All Club CMS 0.0.1f - index.php Local File Inclusion Vulnerability: File Inclusion Software Vulnerable: All Club CMS 0.0.1f and maybe prior versions. Vulnerable Code: --- function autoload$classname requireonce 'includes/'.$classname . '.php'; --- Download:...

phpShop <= v 0.8.1 Remote SQL injection / Filter Bypass

Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic SQL inject detection $myinsecurearray =...

phpShop 0.8.1 - SQL Injection Filter Bypass

phpShop 0.8.1 - SQL Injection Filter Bypass Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic...

phpShop 0.8.1 - SQL Injection / Filter Bypass

Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic SQL inject detection $myinsecurearray =...