11 matches found
Max's File Uploader File Upload Vulnerability
Max's File Uploader File Upload Vulnerability Homepage: http://www.phpf1.com/ Download: http://www.phpf1.com/download.html?item=9 Dork: intitle:"Max's File Uploader" maybe ^^ Found by : Xcross87 | xcross87.info | hcegroup.net Simply upload a shell .php, it will be stored in the same level. Exampl...
max-upload.txt
Max's File Uploader File Upload Vulnerability Homepage: http://www.phpf1.com/ Download: http://www.phpf1.com/download.html?item=9 Dork: intitle:"Max's File Uploader" maybe ^^ Found by : Xcross87 | xcross87.info | hcegroup.net Simply upload a shell .php, it will be stored in the same level. Exampl...
MicroNews Admin Direct Access vulnerability
MicroNews Authentication Bypass Homepage: http://phptoys.com/ Download: http://www.phptoys.com/download.php?view.31 Found by Xcross87 | xcross87.info | hcegroup.net Simply access news input http://site/path/admin.php ^$^ Enjoy ! - by Xcross -...
[Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar
Software : phpBasic Music Module Homepage : http://phpbasic.com/ 1. SQL Injection by Xcross87 : Proof of concept : http://victim.com/phpbasic/?php=music&basic=view&id='SQL Injection Xploit admin user account :...
phpbasic-sqlrfi.txt
Software : phpBasic Music Module Homepage : http://phpbasic.com/ 1. SQL Injection by Xcross87 : Proof of concept : http://victim.com/phpbasic/?php=music&basic=view&id='SQL Injection Xploit admin user account :...
[Vulz] Seeblick 1.0 Beta File Upload Vulz
Software: SeeBlick 1.0 Beta Found by : Xcross87 Xploit : http://victim.com/path/seeblick-admin/upload.php http://victim.com/path/seeblick/admin/upload.php Demo : cm.bs-24.net/seeblick-admin/upload.php Upload all kind of files , in server will be rename into .html === Xcross87 | HCETeam Xploiter |...
koreanghboard-multi.txt
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
Korean GHBoard Multiple Vulnerabilities by Xcross87
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
[Vulz] PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar
Software : phpBasic Music Module Homepage : http://phpbasic.com/ 1. SQL Injection by Xcross87 : Proof of concept : http://victim.com/phpbasic/?php=music&basic=view&id='SQL Injection Xploit admin user account :...
[Vulz] eLouai's Download Script Remote File Download Vulnerability
Software : eLuisa's Download Script Bug found by : Xcross87 Xploit : http://victim.com/downloadfile.php?file=filepath Sample : http://victim.com/downloadfile.php?file=index.php http://victim.com/downloadfile.php?file=/include/config.php === Xcross87 | HCETeam Xploiter | HCEGroup.Vn ===...
eluisa-download.txt
Software : eLuisa's Download Script Bug found by : Xcross87 Xploit : http://victim.com/downloadfile.php?file=filepath Sample : http://victim.com/downloadfile.php?file=index.php http://victim.com/downloadfile.php?file=/include/config.php === Xcross87 | HCETeam Xploiter | HCEGroup.Vn ===...