169 matches found
Bugbear FlatOut 2005 Malformed .bed file Buffer Overflow Vulnerability
No description provided by source. Exploit Title: FlatOut Malformed .bed file Buffer Overflow Date: 11-29-11 Author: Silent Dream Software Link: http://www.gog.com/en/gamecard/flatout Version: Latest Tested on: Windows 7 Tested on GOG.com copy of FlatOut. Exception offset = 61616161 Multiple .bed...
Safari JS JITed shellcode - exec calc (ASLR/DEP bypass)
No description provided by source. !-- JIT-SPRAY for Safari 4.0.5 - 5.0.0 JavaScript JIT SHELLCODE and spray for ASLR / DEP bypass Win x32 By Alexey Sintsov from Digital Security Research Group Special for Hack In The Box 2010 Amsterdam PAYLOAD - exec calc Tested on Windows7 and Windows XP. Sorry...
The KMPlayer 3.0.0.1440 .mp3 Buffer Overflow Exploit (Win7 + ASLR bypass mod)
No description provided by source. !/usr/bin/python Exploit Title: The KMPlayer 3.0.0.1440 .mp3 Buffer Overflow Exploit Win7 + ASLR bypass Date: Jun 10th, 2011 Authors: dookie and ronin initial XPSP3 DEP bypass PoC xsploitedsec xsploitedsecurityatgmaildotcom Win7 + ASLR mod Software Link:...
Soco CMS Local File Include Vulnerability
No description provided by source. Exploit Title: Soco CMS Local File Include Google Dork: Powered by Soco Date: 28/04/2012 Author: BHG Security Center H0me : www.black-hg.org Software Link: http://hentan.eu/php/Soco/ Version: last version Tested on: Linux/Ubuntu - Windows7 p0c :...
Immunity Canvas: IE_CARDSPACECLAIMCOLLECTION
Name| iecardspaceclaimcollection ---|--- CVE| CVE-2013-3918 Exploit Pack| CANVAS Description| iecardspaceclaimcollection Notes| CVE Name: CVE-2013-3918 VENDOR: Microsoft NOTES: - This exploits leaks a vtable pointer of a CTable object in order to bypass ASLR - We also leak the shellcode's address...
ArticleSetup - Multiple Vulnerabilities
ArticleSetup - Multiple Vulnerabilities Exploit Title : ArticleSetup Multiple Vulnerabilities Author : DevilScreaM Date : 21/09/2013 Category : Web Applications Vendor : http://www.articlesetup.com/ Version : 1.0 Dork intext:Powered By Article Marketing Vulnerability : Cross Site Scripting , SQL...
[Nishang v0.3.0] The PowerShell for Penetration Testing released (introducing Powerpreter)
Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security and post exploitation during Penetraion Tests. The scripts are written on the basis of requirement by the author during real Penetration Tests. Powerpreter is a powershell module...
OmegaBB 0.9.3 CSRF / Shell Upload
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
Matterdaddy Market 1.4.2 Cross Site Request Forgery / Arbitrary File Upload
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
Dsl Router D-link BZ_1.06 Multiple Vulnerabilities
Exploit for hardware platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1...
Windows7 Disable Task Manager Shellcode - 326 chars
/------------------------------------------------ == By Ayrbyte ====== Geng Simbe @ TKJ 1 Club ======================================== Greets To : Adit Groundd SAndd Notte, Agos Wahyo, Aguenkk Rebel Black Sweet, Ahmad Bagoes, Alvin Putra Marcdyto, Arieb Shezhaniea, Aviep Autiez, Chusnie Mubarok,...
Windows7 Force Shutdown Shellcode - 215 chars
/------------------------------------------------ == By Ayrbyte ====== Geng Simbe @ TKJ 1 Club ======================================== Greets To : Adit Groundd SAndd Notte, Agos Wahyo, Aguenkk Rebel Black Sweet, Ahmad Bagoes, Alvin Putra Marcdyto, Arieb Shezhaniea, Aviep Autiez, Chusnie Mubarok,...
Windows7 Force Terminate Explorer Shellcode - 255 chars
/------------------------------------------------ == By Ayrbyte ====== Geng Simbe @ TKJ 1 Club ======================================== Greets To : Adit Groundd SAndd Notte, Agos Wahyo, Aguenkk Rebel Black Sweet, Ahmad Bagoes, Alvin Putra Marcdyto, Arieb Shezhaniea, Aviep Autiez, Chusnie Mubarok,...
EasyPHP Webserver PHP Command Execution
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
EasyPHP WebServer v.(all) <= Multiple Vulnerabilities
EasyPHP is Suffer from : + Auth Bypass + Remote Shell Injection / Remote Code Execute The Bug in EasyPHP WebServer Manager found because the PORTAL of Administration doesn't protected ! so just when you found the Admin-Portal - you can bypass the auth directly and remote attacker can get some...
PHPBoost 4.0 <= (FileUpload/Disclosure) Multiple Vulnerabilities
PHPBoost 4.0 Multiple Vulnerabilities - Remote File Upload - Full Informations Disclosure 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type...
KindEditor 4.1.5 Shell Upload
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
Windows7 Sub_Xor MessageBox Exec Shellcode - 265 Bytes
Windows7 SubXor MessageBox Exec Shellcode 265 Bytes + Msg.&.Title / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS,...
Joomla GarysCookBook 3.0.x Shell Upload
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
Wordpress massimo theme Full Path Disclosure vulnerability
Exploit for php platform in category web applications ------------------------------------------------------------------------------------------------------------------ Exploit Title: Wordpress massimo theme Full Path Disclosure vulnerability Date: 14/01/2012 Author: terrorist Tested on: Fedora17...