Lucene search
K
ExploitpackMost viewed

41207 matches found

exploitpack
exploitpack
added 2011/10/13 12:0 a.m.33 views

Microsys PROMOTIC 8.1.4 - ActiveX GetPromoticSite Unitialized Pointer

Microsys PROMOTIC 8.1.4 - ActiveX GetPromoticSite Unitialized Pointer Luigi Auriemma Application: Microsys PROMOTIC http://www.promotic.eu/en/promotic/scada-pm.htm Versions: 8.1.4 Platforms: Windows Bug: ActiveX GetPromoticSite unitialized pointer Exploitation: remote Date: 30 Oct 2011 Author:...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2011/09/20 12:0 a.m.33 views

SharePoint 20072010 and DotNetNuke 6 - File Disclosure (via XEE)

SharePoint 20072010 and DotNetNuke 6 - File Disclosure via XEE Exploit Title: File disclosure via XEE in SharePoint and DotNetNuke Date: September 15, 2011 Author: Nicolas Gregoire Version: SharePoint 2007 / 2010, DotNetNuke poc filename: xee.xsl...

4CVSS0.38332EPSS
Exploits6
exploitpack
exploitpack
added 2011/09/12 12:0 a.m.33 views

NetCat CMS - Multiple Vulnerabilities

NetCat CMS - Multiple Vulnerabilities Exploit Title: NetCat CMS Code exec, SQL-injection Google Dork: none Date: 28.11.2010 Author: brainpillow Software Link: http://netcat.ru/ Version: UNKNOWN On different versions of this software next vulnerabilities are availible:...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2011/08/30 12:0 a.m.33 views

CS-Cart 2.2.1 - products.php SQL Injection

CS-Cart 2.2.1 - products.php SQL Injection source: https://www.securityfocus.com/bid/49378/info CS-Cart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Exploits0
exploitpack
exploitpack
added 2011/07/27 12:0 a.m.33 views

PHPJunkYard GBook 1.61.7 - Multiple Cross-Site Scripting Vulnerabilities

PHPJunkYard GBook 1.61.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/48905/info PHPJunkYard GBook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2011/06/30 12:0 a.m.33 views

Kaillera - Multiple Clients Buffer Overflow Vulnerabilities

Kaillera - Multiple Clients Buffer Overflow Vulnerabilities !/usr/bin/perl Exploit Title: Remote Buffer Overflows in Kaillera clients Date: 6/30/11 Author: sil3ntdre4m Software Link: Multiple: 1. Kaillera original client: An emulator to download with this client bundled with it is Project64K 0.13...

Exploits0
exploitpack
exploitpack
added 2011/05/04 12:0 a.m.33 views

ZyWALL USG Appliance - Multiple Vulnerabilities

ZyWALL USG Appliance - Multiple Vulnerabilities Advisory: Authentication Bypass in Configuration Import and Export of ZyXEL ZyWALL USG Appliances Unauthenticated users with access to the management web interface of certain ZyXEL ZyWALL USG appliances can download and upload configuration files,...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2011/03/08 12:0 a.m.33 views

Movavi VideoSuite 8.0 Slideshow - .jpg Local Crash (PoC)

Movavi VideoSuite 8.0 Slideshow - .jpg Local Crash PoC !/usr/bin/perl Title : Movavi VideoSuite 8.0 SlideShow.exe Local Crash PoC Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : Windows Impact : Crashs...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2011/02/28 12:0 a.m.33 views

PHP Exif Extension - exif_read_data() Remote Denial of Service

PHP Exif Extension - exifreaddata Remote Denial of Service Source: http://permalink.gmane.org/gmane.comp.security.oss.general/4198 ===================================================================== PHP Exif 64bit Casting Vulnerability...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2011/01/14 12:0 a.m.33 views

ObjectivityDB - Lack of Authentication

ObjectivityDB - Lack of Authentication !/usr/bin/python obj.py Objectivity/DB Lack of Authentication Remote Exploit Jeremy Brown 0xjbrown41-gmail-com Jan 2011 "Objectivity, Inc. is a leader in distributed, scalable database technology. Our patented data management engine and persistent object sto...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2011/01/09 12:0 a.m.33 views

KingView 6.5.3 - SCADA HMI Heap Overflow

KingView 6.5.3 - SCADA HMI Heap Overflow Exploit Title: KingView 6.53 SCADA HMI Heap Overflow PoC Date: 9/28/2010 Author: Dillon Beresford Software Link: http://download.kingview.com/software/kingview%20English%20Version/kingview6.53EN.rar Version: 6.53 English Tested on: Windows XP SP1 works on...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2011/01/08 12:0 a.m.33 views

VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow

VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2010/12/18 12:0 a.m.33 views

MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload

MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload ============================================== File Upload Vulnerability Plugins tinymce ============================================== http://tinymce.moxiecode.com/pluginsfilemanager.php Major version 3 Minor version 2.2.3 Author :...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2010/12/15 12:0 a.m.33 views

HP Insight Diagnostics Online Edition 8.4 - search.php Cross-Site Scripting

HP Insight Diagnostics Online Edition 8.4 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/45420/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker m...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2010/10/06 12:0 a.m.33 views

Microsoft ASP.NET - Padding Oracle (MS10-070)

Microsoft ASP.NET - Padding Oracle MS10-070 Source: http://blog.mindedsecurity.com/2010/10/breaking-net-encryption-with-or-without.html !/usr/bin/perl Webconfig Bruter - exploit tool for downloading Web.config FOr use this script you need Pudbuster. Padbuster is a great tool and Brian Holyfield...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/09/20 12:0 a.m.33 views

Joomla! Component com_spain - nv SQL Injection

Joomla! Component comspain - nv SQL Injection source: https://www.securityfocus.com/bid/43354/info The Spain component for Joomla is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2010/09/19 12:0 a.m.33 views

Novell iPrint Client Browser Plugin - call-back-url Remote Stack Overflow

Novell iPrint Client Browser Plugin - call-back-url Remote Stack Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+...

9.3CVSS0.5AI score0.35987EPSS
Exploits18
exploitpack
exploitpack
added 2010/09/11 12:0 a.m.33 views

Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow

Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-microsoft-office-word-sprmcmajority-buffer-overflow/...

9.3CVSS0.1AI score0.39813EPSS
Exploits6
exploitpack
exploitpack
added 2010/08/16 12:0 a.m.33 views

123 Flash Chat 7.8 - Multiple Vulnerabilities

123 Flash Chat 7.8 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/42478/info 123 Flash Chat is prone to multiple security vulnerabilities. These vulnerabilities include a cross-site scripting vulnerability, multiple information-disclosure vulnerabilities, and a...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2010/08/13 12:0 a.m.33 views

Plogger - Remote File Disclosure

Plogger - Remote File Disclosure Plogger Remote File Disclosure Vulnerability http://www.plogger.org/ dork : Powered by Plogger! author: Mr.tro0oqy yemeni hacker email : [email protected] exp : Line 117: if $fpsource = @fopen$GET'src','rb'...

7.5AI score
Exploits0
exploitpack
exploitpack
added 2010/07/22 12:0 a.m.33 views

Free PHP photo Gallery script - Remote Command Execution

Free PHP photo Gallery script - Remote Command Execution Exploit Title: Free PHP photo gallery script Remote Command Execution Vulnerability Date: 2010/07/21 Author: ViRuS Qalaa Email: [email protected] My Sites : www.pal-mafia.com & www.vbspiders.com Script home: http://www.phpgalleryscript.org...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2010/07/09 12:0 a.m.33 views

Sun Java Web Server 7.0 u7 - Remote Overflow (DEP Bypass)

Sun Java Web Server 7.0 u7 - Remote Overflow DEP Bypass Exploit Title: SJWSexv2 Date: 09/07/2010 Author: dmc Software Link: download link if available Version: 7.0 u7 Tested on: Windows XP SP3 - with and without DEP CVE : CVE-2010-0361 / Sun Java Web Server Exploit v2 Tested on: Sun Java Web Serv...

10CVSS0.7AI score0.80521EPSS
Exploits20
exploitpack
exploitpack
added 2010/07/08 12:0 a.m.33 views

Inout Ad server Ultimate - Arbitrary File Upload

Inout Ad server Ultimate - Arbitrary File Upload ============================================================== Inout Ad server Ultimate -- Shell upload Vulnerabilty ============================================================== Name : Inout Ad server Ultimate Shell upload Vulnerabilty Date : jul...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2010/07/03 12:0 a.m.33 views

Sun Java Web Server 7.0 u7 - Remote Overflow

Sun Java Web Server 7.0 u7 - Remote Overflow / Sun Java Web Server Exploit Tested on: Sun Java Web Server 7.0 update 7 - XP SP3 Ref: CVE-2010-0361 This vulnerability was identified by Evgeny Legerov Author: Dominic Chell Date: 23/01/2010 / include "stdafx.h" include include include include includ...

10CVSS0.7AI score0.80521EPSS
Exploits20
exploitpack
exploitpack
added 2010/06/30 12:0 a.m.33 views

Joomla! Component Joomanager - SQL Injection

Joomla! Component Joomanager - SQL Injection Note from the vendor received 10Mar11: The old code was using JReguest::GetVar and we change it to JReguest::GetInt so the catid must be an integer only and not text. We updated this over 6 months ago in version 1.1.1 1 1 0 I'm Sid3^effects member from...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2010/06/26 12:0 a.m.33 views

Joomla! Component jesectionfinder - Local File Inclusion

Joomla! Component jesectionfinder - Local File Inclusion Name : Joomla jesectionfinder LFI Vulnerability Date : june, 26 2010 Critical Level : HIGH Vendor Url : http://joomlaextensions.co.in/component/awdsong/ Google Dork: inurl:/component/jesectionfinder/ Price:$25.00 Author : Sid3^effects aKa...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/06/19 12:0 a.m.33 views

Elite Gaming Ladders 3.5 - ladder[id] SQL Injection

Elite Gaming Ladders 3.5 - ladderid SQL Injection - Elite Gaming Ladders v3.5 SQL Injection Vulnerability - ---Date : 2010-06-19 ---Author : ahwak2000 ---Email : z.u5athotmail.com - Script Info - ---Home : http://eliteladders.com/ - Vulnerability - http://site.com/path/standings.php?ladderid=SQL ...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2010/05/07 12:0 a.m.33 views

Administrador de Contenidos - Admin Authentication Bypass

Administrador de Contenidos - Admin Authentication Bypass Administrador de Contenidos Admin Login Bypass vulnerability Prodcut: Administrador de Contenidos Home : www.DZ4All.cOm/Cc Vunlerability : Admin Bypass Risk : High Dork : "Diseño Web Hernest Consulting S.L." Discovred by: Ra3cH From :...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2010/04/29 12:0 a.m.33 views

Ucenter Projekt 2.0 - Insecure crossdomain (Cross-Site Scripting)

Ucenter Projekt 2.0 - Insecure crossdomain Cross-Site Scripting ======================================================================================== | Title : Ucenter Projekt 2.0 Insecure crossdomain XSS Vulnerability | Author : indoushka | email : [email protected] | Home :...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2010/04/23 12:0 a.m.33 views

In-portal 5.0.3 - Arbitrary File Upload

In-portal 5.0.3 - Arbitrary File Upload Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail : submitatinj3ct0r.com 1 0 0 1 1 0 I'm eidelweiss member from Inj3ct0r Team 1 1 0 0-...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2010/04/18 12:0 a.m.33 views

Joomla! Component Archery Scores 1.0.6 - Local File Inclusion

Joomla! Component Archery Scores 1.0.6 - Local File Inclusion ================================================================================================ Title : Joomla Component Archery Scores comarcheryscores v1.0.6 LFI Vulnerability Vendor : http://lispeltuut.org/ Download :...

Exploits0
exploitpack
exploitpack
added 2010/04/11 12:0 a.m.33 views

Joomla! Component com_ticketbook - Local File Inclusion

Joomla! Component comticketbook - Local File Inclusion ================================================================================================================ o Joomla Component Ticketbook Local File Inclusion Vulnerability Software : comticketbook version 1.0.1 Vendor :...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/04/09 12:0 a.m.33 views

Joomla! Component JA Voice 2.0 - Local File Inclusion

Joomla! Component JA Voice 2.0 - Local File Inclusion !===========================================================================! Joomla Component JA Voice LFI vulnerability Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : 9 april, 2010...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2010/03/31 12:0 a.m.33 views

Joomla! Component DW Graph - Local File Inclusion

Joomla! Component DW Graph - Local File Inclusion --------------------------------------------------------------------------------- Joomla Component DW Graph Local File Inclusion --------------------------------------------------------------------------------- Author : Chip D3 Bi0s Group :...

Exploits0
exploitpack
exploitpack
added 2010/03/11 12:0 a.m.33 views

Skype - URI Handler Input Validation

Skype - URI Handler Input Validation Description The Windows Skype client implements two URI handlers, Skype: and Skype-Plugin. Both handlers allow for easy browser integration and are supported by all modern browsers. When a Skype link is clicked, the Skype.exe process is spawned with the /URI:...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2010/02/23 12:0 a.m.33 views

bispage - Bypass

bispage - Bypass Exploit Title: bispage Bypass Vulnerability Author: SaMir-BonD [email protected] Organization : TEAM-DZ Formal sites : t00ls.org - h4kz.com Software Link: N/A Script's Language: ASP Tested on: Windows PHP/4.3.11 os Dork :"Developed by Bispage.com" CVE : if exists Code : exploit cod...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/01/18 12:0 a.m.33 views

Serialsystem 1.0.4 Beta - list Cross-Site Scripting

Serialsystem 1.0.4 Beta - list Cross-Site Scripting source: https://www.securityfocus.com/bid/40236/info Serialsystem is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script cod...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2010/01/06 12:0 a.m.33 views

KubeLabs PHPDug 2.0 - upcoming.php Cross-Site Scripting

KubeLabs PHPDug 2.0 - upcoming.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40554/info KubeLabs PHPDug is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2009/12/21 12:0 a.m.33 views

Joomla! Component com_mediaslide - Directory Traversal

Joomla! Component commediaslide - Directory Traversal Joomla Component commediaslide Directory Traversal Vuln author : Mr.tro0oqy from Yemen mail : [email protected] fuck 2 community college sanaa exp : http://server/components/commediaslide/viewer.php?path=/../.. dork :...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2009/10/18 12:0 a.m.33 views

Mambo Component com_koesubmit 1.0.0 - Remote File Inclusion

Mambo Component comkoesubmit 1.0.0 - Remote File Inclusion Mambo comkoesubmit 1.0.0 Remote File Inclusion Author : Don Tukulesto rootatindonesiancoderdotcom Homepage : http://www.indonesiancoder.com Date : Friday, Semptember 18, 2009...

7.5AI score
Exploits0
exploitpack
exploitpack
added 2009/10/01 12:0 a.m.33 views

EMC Captiva PixTools 2.2 Distributed Imaging - ActiveX Control Multiple Insecure Method Vulnerabilities

EMC Captiva PixTools 2.2 Distributed Imaging - ActiveX Control Multiple Insecure Method Vulnerabilities source: https://www.securityfocus.com/bid/36566/info The EMC Captiva PixTools Distributed Imaging ActiveX control is prone to multiple insecure-method vulnerabilities that affect the...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2009/08/07 12:0 a.m.33 views

Joomla! Component com_pms 2.0.4 - Ignore-List SQL Injection

Joomla! Component compms 2.0.4 - Ignore-List SQL Injection PMS Enhanced-Config Tab: Backend - Ingorlist: Yes Create a valid User on the target Joomla 1.0.15 System with Community Builder, login and copy the cookieinformation into the $cookie var below, adjust the User-Agent on your Post Header...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2009/06/29 12:0 a.m.33 views

Messages Library 2.0 - cat.php?CatID SQL Injection

Messages Library 2.0 - cat.php?CatID SQL Injection +===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ \ \ \2009 | \ | | / / / \ /\ / ||\ \ ||/ ...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2009/02/03 12:0 a.m.33 views

Ghostscript 8.64 - gdevpdtb.c Local Buffer Overflow

Ghostscript 8.64 - gdevpdtb.c Local Buffer Overflow Ghostscript is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a finite-sized buffer. Exploiting this issue allows remote attackers to overwrite a sensitive...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2009/01/19 12:0 a.m.33 views

D-Bus Daemon 1.2.4 - libdbus Denial of Service

D-Bus Daemon 1.2.4 - libdbus Denial of Service / cve-2008-3834.c D-Bus Daemon Denial of Service http://jon.oberheide.org Usage: $ gcc pkg-config dbus-1 --cflags cve-2008-3834.c pkg-config dbus-1 --libs -o cve-2008-3834 $ ./cve-2008-3834 Information:...

2.1CVSS0.04623EPSS
Exploits8
exploitpack
exploitpack
added 2009/01/15 12:0 a.m.33 views

DMXReady Billboard Manager 1.1 - Arbitrary File Upload

DMXReady Billboard Manager 1.1 - Arbitrary File Upload Title : DMXReady Billboard Manager http://target/path//applications/BillboardManager/incbillboardmanager.asp Edit - http://target/path//admin/BillboardManager/uploaddocument.asp?ItemID=ItemID : milw0rm.com 2009-01-15...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2008/12/23 12:0 a.m.33 views

PHPmotion 2.1 - Cross-Site Request Forgery

PHPmotion 2.1 - Cross-Site Request Forgery PHPmotion Source of pwned.html file: Once your victim has visited your evil page, You may now be able to log into their PHP...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2008/12/02 12:0 a.m.33 views

Rapid Classified 3.1 - Database Disclosure

Rapid Classified 3.1 - Database Disclosure --------------------------------------------------------------------------- Script Name: Rapid Classified Version: v3.1 Google Dork: intext:©2003-2008 RC v3.1 Developed by: GA Soft Author: CoBRa21 My Web Site: www.ipbul.org...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2008/11/23 12:0 a.m.33 views

Microsoft XML Core Services DTD - Cross-Domain Scripting (MS08-069)

Microsoft XML Core Services DTD - Cross-Domain Scripting MS08-069 KB955218 - CVE-2008-4029 - JA var dom = new ActiveXObject"Msxml2.DOMDocument.3.0"; dom.async = false; var url = "http://www.milw0rm.com/forfun.dtd"; var xml = ""; if dom.loadXMLxml == 0 alert"Blue or Red Pill? " +...

4.3CVSS0.1AI score0.26737EPSS
Exploits6
exploitpack
exploitpack
added 2008/11/12 12:0 a.m.33 views

Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow (PoC)

Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow PoC !usr/bin/perl -w Buffer overflow in the snprintvalue function in snmpget in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via ...

6.8CVSS0.08443EPSS
Exploits7
Total number of security vulnerabilities5000