Urgent Backup 3.20 ABC Backup Pro 5.20 ABC Backup 5.50 - .zip File (SEH)

Urgent Backup 3.20 ABC Backup Pro 5.20 ABC Backup 5.50 - .zip File SEH !/usr/bin/ruby Software : Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 Author : Lincoln Date : April 27, 2010 Reference : http://www.corelan.be:8800/advisories.php?id=CORELAN-10-034 OS : Windows Tested on : XP SP...

WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) - SQL Injection

WHMCompleteSolution WHMCS control WHMCompleteSolution - SQL Injection =Info======================================================================= Software: WHMCS control WHMCompleteSolution Sql Injection Vulnerability: Remote Sql Injection Google Dork: Powered by WHMCompleteSolution - or "...

Virata EmWeb R6.0.1 - Remote Crash

Virata EmWeb R6.0.1 - Remote Crash Exploit Title: Virata EmWeb R6.0.1 Remote Crash Vulnerability Date: 06/04/10 Author: Jobert Abma Online 24 Email: j.abmaatonline24dotnl Version: R6.0.1 Tested on: linux CVE : Code : This was written for educational purpose. Use it at your own risk. Author will b...

Easy-Clanpage 2.2 - Multiple SQL Injections

Easy-Clanpage 2.2 - Multiple SQL Injections ----------------------------Information------------------------------------------------ +Name : Easy-Clanpage 2.2 http://www.easy-clanpage.de /?section=downloads&action=viewdl&id=18 +Price : for free +Language : PHP +Discovered by Easy Laster +Security...

Asp - comersus7F Shopping Cart Software Backup Dump

Asp - comersus7F Shopping Cart Software Backup Dump ======================================================================================== | Title : Asp - comersus7F Shopping Cart Software Backup Dump Vulnerability | Author : indoushka | Home : www.iqs3cur1ty.com | Bug : Database Disclosure...

Interactivefx.ie CMS - SQL Injection

Interactivefx.ie CMS - SQL Injection ================================================ Interactivefx.ie CMS SQL Injection Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ ...

Novaboard 1.1.2 - SQL Injection

Novaboard 1.1.2 - SQL Injection NovaBoard v1.1.2 SQL Injection Vulnerability Plugin Home: http://www.novaboard.net/ Author: Delibey Site: www.1923turk.com Download Script : http://novaboard.googlecode.com/files/NovaBoard1.1.2.zip Exploit:...

Paypal Shopping Cart Script - index.php?cid SQL Injection

Paypal Shopping Cart Script - index.php?cid SQL Injection source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data...

Linux Kernel 2.6.14.6 - procfs Kernel Memory Disclosure

Linux Kernel 2.6.14.6 - procfs Kernel Memory Disclosure / cve-2005-4605.c Linux Kernel http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4605 The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive...

VS PANEL 7.5.5 - results.php?Cat_ID SQL Injection

VS PANEL 7.5.5 - results.php?CatID SQL Injection Homepage: http://www.vspanel.gr/ Product: VS PANEL v.7.5.5 DeScOvRed By:C0D3R-Dz File: results.php ContACt:[email protected] Dork: "Powered by VS PANEL 7.5.5" SQL Injection...

Joomla! Component com_rsgallery2 1.14.x2.x - Remote Backdoor Access

Joomla! Component comrsgallery2 1.14.x2.x - Remote Backdoor Access Vulnerability: Remote code execution back doors Software: RSGallery2 - Gallery Extension for Joomla! We are currently working on a new website. All files are still available at the JoomlaCode project page. Severity: Not a big deal...

Java SE Runtime Environment JRE 6 Update 13 - Multiple Vulnerabilities

Java SE Runtime Environment JRE 6 Update 13 - Multiple Vulnerabilities ------------------------------------------------------------------------- Java SE Runtime Environment - JRE 6 Update 13 Multiple Vulnerabilities url: http://java.sun.com/ Author: shinnai mail: shinnaiatautisticidotorg site:...

webSPELL 4.2.0e - page Blind SQL Injection

webSPELL 4.2.0e - page Blind SQL Injection !/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; use Getopt::Long; '/ -.- ------------------oOO------OOo----------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Research Division //...

IBM Director 5.20.3su2 CIM Server - Remote Denial of Service

IBM Director 5.20.3su2 CIM Server - Remote Denial of Service SEC-CONSULT Security Advisory ========================================================================================= title: IBM Director CIM Server Remote Denial of Service Vulnerability program: IBM Director for Windows vulnerable...

powermovielist 0.14b - SQL Injection Cross-Site Scripting

powermovielist 0.14b - SQL Injection Cross-Site Scripting =============================================================================================== Found : brainpillow Dork : "PowerMovieList 0.14 Beta Copyright" Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail :...

Nokia Phoenix 2008.4.7 Service Software - ActiveX Controls Multiple Buffer Overflow Vulnerabilities

Nokia Phoenix 2008.4.7 Service Software - ActiveX Controls Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/33726/info Nokia Phoenix Service Software ActiveX controls are prone to multiple buffer-overflow vulnerabilities because they fail to properly bounds-check...

WebStudio eCatalogue - Blind SQL Injection

WebStudio eCatalogue - Blind SQL Injection WebStudio eCatalogue pageid Blind SQL Injection Vulnerability Author: Hussin X Home : www.IQ-TY.com & www.TrYaG.cc script : http://www.bdigital.biz/index.php?pageid=218 DorK : ""Powered by WebStudio eCatalogue"" Demo :...

YourFreeWorld Forced Matrix Script - SQL Injection

YourFreeWorld Forced Matrix Script - SQL Injection Forced Matrix Script id Remote SQL Injection Vulnerability Author: Hussin X Home : www.IQ-TY.com & www.TrYaG.cc script : http://www.yourfreeworld.com/script/subscriptionforcedmatrix.php DorK : inurl:"tr1.php?id=" Forced Matrix Exploit :...

VideoLAN VLC Media Player 0.9.2 Media Player - XSPF Memory Corruption

VideoLAN VLC Media Player 0.9.2 Media Player - XSPF Memory Corruption -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ VLC media player XSPF Memory Corruption 1. Advisory Information Title: VLC media player XSPF...

Acoustica Beatcraft 1.02 Build 19 - .bcproj Local Buffer Overflow

Acoustica Beatcraft 1.02 Build 19 - .bcproj Local Buffer Overflow !/usr/bin/perl Acoustica Beatcraft bcproj file Local BOF Exploit Author: Koshi Date: 08-30-08 0day Application: Acoustica Beatcraft Versions: v1.02 Build 19 Site: http://acoustica.com/beatcraft/index.htm Tested On: Windows XP SP3...

Jokes Funny Pics Script - sb_jokeid SQL Injection

Jokes Funny Pics Script - sbjokeid SQL Injection Jokes & Funny Pics Script SQL Injection Vulnerability ======================================================== Author: Hussin X Home : www.tryag.cc/cc email: darkangelg85atYahooDoTcom hussin.xathotmailDoTcom...

VHCS 2.4.7.1 - vhcs2_daemon Remote Code Execution

VHCS 2.4.7.1 - vhcs2daemon Remote Code Execution !/usr/bin/php -q http://acid-root.new.fr/ [email protected] Exploit: + Logged in Administrator + The administrator has 2 resellers / Changing dareseller's password / Trying to connect as dareseller:thatpwnz + Login successful + The reseller...

Mitra Informatika Solusindo cart - SQL Injection

Mitra Informatika Solusindo cart - SQL Injection SolpotCrew Community Mitra Informatika Solusindo cart Remote Sql Injection Exploit vendor : http://www.mitrainformatika.com/ Bug Found By : homeedition2001 a.k.a bius 4-03-2008 contact: [email protected] Website :...

PHP Live! 3.2.2 - questid SQL Injection (1)

PHP Live! 3.2.2 - questid SQL Injection 1 !Info! PHP Live! © OSI Codes Inc. enables live help and live customer support communication directly from your website. With PHP Live!, you can provide one-on-one chat assistance in real-time, answer visitor questions and add that extra human touch to yo...

Mambo Component Sermon 0.2 - gid SQL Injection

Mambo Component Sermon 0.2 - gid SQL Injection netadvantist@copyright 2006 SQL Injectioncomnaxxx AUTHOR : S@BUN HOME : http://www.hackturkiye.com DORKS 1 : allinurl:"comnacontent" DORK 2 : allinurl:"comnabible" DORKS 3 : allinurl:"comnaevents" DORKS 4 : allinurl:"comnacontent" DORKS 5 :...

DigitalHive 2.0 RC2 - user_id SQL Injection

DigitalHive 2.0 RC2 - userid SQL Injection body margin:3%; font-size:10px; color:FFFFFF; font-family:Verdana,Arial; background-color:1a1a1a; text-align: center; input background:303030; color:FFFFFF; font-family:Verdana,Arial; font-size:10px; vertical-align:middle; border-left:1px solid 5d5d5d;...

TikiWiki 1.9.8 - Remote PHP Injection

TikiWiki 1.9.8 - Remote PHP Injection TikiWiki 1.9.8 Remote PHP Injection Vulnerability Example: http:/server/tikiwiki/tiki-graphformula.php?w=1&h=1&s=1&min=1&max=2&f=x.tan.phpinfo&t=png&title= milw0rm.com 2007-10-10...

PhpHostBot 1.06 - svr_rootscript Remote File Inclusion

PhpHostBot 1.06 - svrrootscript Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV83$2007 ----------------------------------------------------------------------------------------- ECHOADV83$2007 PhpHostBot = 1.06 svrrootscript Remote...

XOOPS Module Kshop 1.17 - id SQL Injection

XOOPS Module Kshop 1.17 - id SQL Injection !/usr/bin/perl Script Name: XOOPS Module Kshop : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User ID uid: "; $id = ; chop $id; $target =...

@lex Guestbook 4.0.2 - Remote Command Execution

@lex Guestbook 4.0.2 - Remote Command Execution !/usr/bin/php @lex Guestbook ======================================================== | status Retrieving the administrator password | sploit AdminUsername::root | sploit AdminPassword::toor | status Trying to get logged in | sploit Done | status...

RedBlog 0.5 - index.php Remote File Inclusion

RedBlog 0.5 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19658/info RedBLoG is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing...

MVNForum Activatemember 1.0 - Cross-Site Scripting

MVNForum Activatemember 1.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/18663/info mvnForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to hav...

RahnemaCo - page.php PageID Remote File Inclusion

RahnemaCo - page.php PageID Remote File Inclusion source: https://www.securityfocus.com/bid/18490/info RahnemaCo is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of t...

vBulletin ImpEx 1.74 - Remote Command Execution

vBulletin ImpEx 1.74 - Remote Command Execution " ."turl:" ."hurl:" ."cmd:" ."" .""; if !isset$POST'submit' echo $form; else $file = fopen "test.txt", "w+"; fwrite$file, ""; fclose$file; $file = fopen $turl.$hurl, "r"; if !$file echo "Unable to get output.\n"; exit; echo $form; while !feof $file...

Microsoft Windows Plug-and-Play - Umpnpmgr.dll Denial of Service (MS05-047) (2)

Microsoft Windows Plug-and-Play - Umpnpmgr.dll Denial of Service MS05-047 2 // tested and approved /str0ke / Program: Denial of Service attack for MS UMPNPMGR PNPGetDeviceList Author: Winny Thomas Vulnerability: no length checking on passed parameter to PNPGetDeviceList in UMPNPMGR.dll Note: The...

ATutor 1.4.3 - content.php?cid Cross-Site Scripting

ATutor 1.4.3 - content.php?cid Cross-Site Scripting source: https://www.securityfocus.com/bid/13972/info ATutor is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of...

3Com 3CDaemon FTP - Unauthorized USER Remote Buffer Overflow

3Com 3CDaemon FTP - Unauthorized USER Remote Buffer Overflow / Added " on line 86 /str0ke / / 3com 3CDaemon FTP Unauthorized "USER" Remote BOverflow The particularity of this exploit is to exploits a FTP server without the need of any authorization. Homepage: www.3com.com version: 3CDaemon v2.0...

Operator Shell (osh) 1.7-12 - Local Privilege Escalation

Operator Shell osh 1.7-12 - Local Privilege Escalation !/usr/bin/perl Tested and working uid=50str0ke gid=100users euid=0root groups=100users /str0ke OSH 1.7 Exploit EDUCATIONAL purposes only.... :- by Charles Stevenson core Description: The Operator Shell Osh is a setuid root, security enhanced,...

Solaris 789 CDE LibDTHelp - Local Buffer Overflow (1)

Solaris 789 CDE LibDTHelp - Local Buffer Overflow 1 / $Id: raptorlibdthelp.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorlibdthelp.c - libDtHelp.so local, Solaris/SPARC 7/8/9 Copyright c 2003-2004 Marco Ivaldi Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code...

NapShare 1.2 - Remote Buffer Overflow (1)

NapShare 1.2 - Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/11967/info It is reported that NapShare is susceptible to a remote buffer overflow vulnerability. This is due to a failure of the application to properly bounds check user-supplied data prior to copying it to a...

Jordan Windows Telnet Server 1.01.2 - Username Stack Buffer Overrun (1)

Jordan Windows Telnet Server 1.01.2 - Username Stack Buffer Overrun 1 source: https://www.securityfocus.com/bid/9316/info Jordan Windows Telnet Server has been reported prone to a remote buffer overrun vulnerability. The issue has been reported to present itself when a username of excessive lengt...

Microsoft Windows - RPC DCOM Scanner (MS03-039)

Microsoft Windows - RPC DCOM Scanner MS03-039 / dcom2scanner.c scan for second dcom vulnerability MS03-039 by Doke Scott, doke at udel.edu, 10 Sep 2003 based on work by: buildtheb0x presents : dcom/rpc scanner --------------------------------------- by: kid and farp and on packet sniffs of MS's...

Mah-Jong 1.4 - ClientServer Remote sscanf() Buffer Overflow

Mah-Jong 1.4 - ClientServer Remote sscanf Buffer Overflow // source: https://www.securityfocus.com/bid/8557/info A remote buffer overflow vulnerability when calling the sscanf function has been reported to affect the mah-jong game client and server programs. The issue occurs within seperate sourc...

Prishtina FTP Client 1.x - Remote Denial of Service

Prishtina FTP Client 1.x - Remote Denial of Service source: https://www.securityfocus.com/bid/7671/info Prishtina FTP client is allegedly prone to a denial of service vulnerability. The condition is reportedly triggered when processing FTP server banners of excessive length. As a result, a...

Apache 2.x - Memory Leak

Apache 2.x - Memory Leak / apache-massacre.c Test code for Apache 2.x Memory Leak By Matthew Murphy DISCLAIMER: This exploit tool is provided only to test networks for a known vulnerability. Do not use this tool on systems you do not control, and do not use this tool on networks you do not own...

Apache mod_ssl OpenSSL 0.9.6d 0.9.7-beta2 - openssl-too-open.c SSL2 KEY_ARG Overflow

Apache modssl OpenSSL 0.9.6d 0.9.7-beta2 - openssl-too-open.c SSL2 KEYARG Overflow / openssl-too-open.c - OpenSSL remote exploit Spawns a nobody/apache shell on Apache, root on other servers. by Solar Eclipse Thanks to Core, HD Moore, Zillion, Dvorak and Black Berry for their help. This code or a...

Microsoft SQL Server 7.02000 Data Engine 1.02000 - xp_displayparamstmt Buffer Overflow

Microsoft SQL Server 7.02000 Data Engine 1.02000 - xpdisplayparamstmt Buffer Overflow // source: https://www.securityfocus.com/bid/2030/info The API Srvparaminfo, which is implemented by Extended Stored Procedures XPs in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow...

CandidATS 2.1.0 - Cross-Site Request Forgery (Add Admin)

CandidATS 2.1.0 - Cross-Site Request Forgery Add Admin Title: CandidATS 2.1.0 - Cross-Site Request Forgery Add Admin Date: 2020-02-21 Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/u/auieo/profile/ Software Link: https://sourceforge.net/projects/candidats/files/Version 2.1.0...

P2PWIFICAM2 for iOS 10.4.1 - Camera ID Denial of Service (PoC)

P2PWIFICAM2 for iOS 10.4.1 - Camera ID Denial of Service PoC Exploit Title: P2PWIFICAM2 for iOS 10.4.1 - 'Camera ID' Denial of Service PoC Discovery by: Ivan Marmolejo Discovery Date: 2020-02-02 Vendor Homepage: https://apps.apple.com/mx/app/p2pwificam2/id663665207 Software Link: App Store for iO...

Torrent 3GP Converter 1.51 - Stack Overflow (SEH)

Torrent 3GP Converter 1.51 - Stack Overflow SEH Exploit Title: Torrent 3GP Converter 1.51 - Stack Overflow SEH Exploit Author: boku Date: 2020-01-24 Software Vendor: torrentrockyou Vendor Homepage: http://www.torrentrockyou.com Software Link:...