59 matches found
PunBB Affiliates Mod <= 1.1 - Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB Affiliations.php OUT Mod = v1.1 Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90 & UltraSound, WaRWolFz Crew Product: http://www.punres.org/desc.php?pid=328 use strict; use LWP::UserAgent; u...
PunBB Extension Vote For Us <= 1.0.1 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB VoteForUs.php OUT Mod = v1.0.1 Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew Download: http://www.punres.org/desc.php?pid=378 use strict; use LWP::UserAgent; use...
PunBB Automatic Image Upload <= 1.3.5 - Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB Automatic Image Upload = v1.3.5 Remote SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew Works only if '$AllowStats = USERGROUP;' is not commented in uploadimgconfig.php FIND LINE: 75...
PunBB Reputation.php Mod <= 2.0.4 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB Reputation.php Mod = v2.0.4 Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew use strict; use LWP::UserAgent; use HTTP::Cookies; use HTTP::Request::Common; use Time::HiRes; use...
PunBB Automatic Image Upload <= 1.3.5 Delete Arbitrary File Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB Automatic Image Upload = v1.3.5 Delete Arbitrary File Vulnerability Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew Works only if '$AllowDelete = USERGROUP;' is not commented in uploadimgconfig.php FIND LINE:...
Oxygen2PHP <= 1.1.3 (post.php) Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day Oxygen2PHP = 1.1.3 post.php Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew use strict; use LWP::UserAgent; use HTTP::Request::Common; use Time::HiRes; use IO::Socket; my...
ShopCartDx <= 4.30 - (products.php) Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day ShopCartDx = v4.30 products.php Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew use strict; use LWP::UserAgent; use HTTP::Request::Common; use Time::HiRes; use IO::Socket; my...
Oxygen2PHP <= 1.1.3 (forumdisplay.php) Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day Oxygen2PHP = 1.1.3 forumdisplay.php Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew use strict; use LWP::UserAgent; use HTTP::Request::Common; use Time::HiRes; use IO::Socket; my...
PHP-Nuke <= 8.0 - Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PHP-Nuke = 8.0 News Remote SQL Injection Exploit Created: 2010.04.23 after 3 days the bug was discovered. Author/s: Dante90 & The:Paradox, WaRWolFz Crew Crew Members: 4lasthor, Andryxxx, Cod3, Gho5t, HeRtZ, N.o.3.X, RingZero, s3rg3770, Shade...
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
No description provided by source. !/usr/bin/perl 0-Day PHP-Nuke = 8.1.0.3.5b Downloads Remote Blind SQL Injection Date: 2010.07.04 after 50 days the bug was discovered. Author/s: Dante90, WaRWolFz Crew Crew Members: 4lasthor, Andryxxx, Cod3, Gho5t, HeRtZ, N.o.3.X, RingZero, s3rg3770, Shades...
PunBB <= 1.3.4 & Pun_PM <= 1.2.6 - Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day PunBB = 1.3. Package: PunPM = v1.2.6 Remote Blind SQL Injection Exploit Author/s: Dante90, WaRWolFz Crew Created: 2009.07.30 after 0 days the bug was discovered. Crew Members: 4lasthor, Andryxxx, Cod3, Gho5t, HeRtZ, N.o.3.X, RingZero,...
MDPro Module CWGuestBook <= 2.1 - Remote SQL Injection Vulnerability
No description provided by source. Author: Dante90, WaRWolFz Crew Title: 0-Day MDPRO CWGuestBook = v2.1 Mod Remote SQL Injection By Dante90 MSN: [email protected] Web: www.warwolfz.org 0-Day MDPRO CWGuestBook = v2.1 Mod Remote SQL Injection By Dante90 code...
Oxygen2PHP <= 1.1.3 (member.php) SQL Injection Exploit
No description provided by source. !/usr/bin/perl 0-Day Oxygen2PHP = 1.1.3 member.php Remote SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90, WaRWolFz Crew use LWP::UserAgent; use HTTP::Cookies; use strict; my $UserName = shift or usage; my $HostName =...
PHP-Nuke 8.1.0.3.5b Downloads Remote Blind SQL Injection
!/usr/bin/perl 0-Day PHP-Nuke newPOST = $HostName.'modules.php?name=Downloads&dop=Add'; my $Cookies = new HTTP::Cookies; my $UserAgent = new LWP::UserAgent agent = 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, defaultheaders = HTTP::Headers-new, or die $!; my $WaRWolFz =...
PHP-Nuke 8.1.0.3.5b - Downloads Blind SQL Injection
PHP-Nuke 8.1.0.3.5b - Downloads Blind SQL Injection !/usr/bin/perl 0-Day PHP-Nuke newPOST = $HostName.'modules.php?name=Downloads&dop=Add'; my $Cookies = new HTTP::Cookies; my $UserAgent = new LWP::UserAgent agent = 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, defaultheaders =...
PHP-Nuke 8.1.0.3.5b - 'Downloads' Blind SQL Injection
!/usr/bin/perl 0-Day PHP-Nuke newPOST = $HostName.'modules.php?name=Downloads&dop=Add'; my $Cookies = new HTTP::Cookies; my $UserAgent = new LWP::UserAgent agent = 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, defaultheaders = HTTP::Headers-new, or die $!; my $WaRWolFz =...
PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
Exploit for php platform in category web applications !/usr/bin/perl 0-Day PHP-Nuke newPOST = $HostName.'modules.php?name=Downloads&dop=Add'; my $Cookies = new HTTP::Cookies; my $UserAgent = new LWP::UserAgent agent = 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, defaultheaders =...
iGaming CMS <= 1.5 Blind SQL Injection Exploit
Exploit for perl platform in category web applications ============================================== iGaming CMS Example: perl exploit.pl http://website.net/iGamingCMS1.5/ 1 Vulnerability: polls.class.php line 10-17 if !empty$REQUEST'id' $poll = $db-Execute" SELECT id,title FROM sppolls WHERE id...
iGaming CMS 1.5 - Blind SQL Injection
!/usr/bin/env perl =pod iGaming CMS Example: perl exploit.pl http://website.net/iGamingCMS1.5/ 1 Vulnerability: polls.class.php line 10-17 if !empty$REQUEST'id' $poll = $db-Execute" SELECT id,title FROM sppolls WHERE id = '" . $REQUEST'id' . "'"; $result = $db-Execute"SELECT FROM sppollsoptions...
iGaming CMS 1.5 Blind SQL Injection
!/usr/bin/env perl =pod iGaming CMS Example: perl exploit.pl http://website.net/iGamingCMS1.5/ 1 Vulnerability: polls.class.php line 10-17 if !empty$REQUEST'id' $poll = $db-Execute" SELECT id,title FROM sppolls WHERE id = '" . $REQUEST'id' . "'"; $result = $db-Execute"SELECT FROM sppollsoptions...