41207 matches found
Microsys PROMOTIC 8.1.4 - ActiveX GetPromoticSite Unitialized Pointer
Microsys PROMOTIC 8.1.4 - ActiveX GetPromoticSite Unitialized Pointer Luigi Auriemma Application: Microsys PROMOTIC http://www.promotic.eu/en/promotic/scada-pm.htm Versions: 8.1.4 Platforms: Windows Bug: ActiveX GetPromoticSite unitialized pointer Exploitation: remote Date: 30 Oct 2011 Author:...
SharePoint 20072010 and DotNetNuke 6 - File Disclosure (via XEE)
SharePoint 20072010 and DotNetNuke 6 - File Disclosure via XEE Exploit Title: File disclosure via XEE in SharePoint and DotNetNuke Date: September 15, 2011 Author: Nicolas Gregoire Version: SharePoint 2007 / 2010, DotNetNuke poc filename: xee.xsl...
NetCat CMS - Multiple Vulnerabilities
NetCat CMS - Multiple Vulnerabilities Exploit Title: NetCat CMS Code exec, SQL-injection Google Dork: none Date: 28.11.2010 Author: brainpillow Software Link: http://netcat.ru/ Version: UNKNOWN On different versions of this software next vulnerabilities are availible:...
CS-Cart 2.2.1 - products.php SQL Injection
CS-Cart 2.2.1 - products.php SQL Injection source: https://www.securityfocus.com/bid/49378/info CS-Cart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
PHPJunkYard GBook 1.61.7 - Multiple Cross-Site Scripting Vulnerabilities
PHPJunkYard GBook 1.61.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/48905/info PHPJunkYard GBook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...
Kaillera - Multiple Clients Buffer Overflow Vulnerabilities
Kaillera - Multiple Clients Buffer Overflow Vulnerabilities !/usr/bin/perl Exploit Title: Remote Buffer Overflows in Kaillera clients Date: 6/30/11 Author: sil3ntdre4m Software Link: Multiple: 1. Kaillera original client: An emulator to download with this client bundled with it is Project64K 0.13...
ZyWALL USG Appliance - Multiple Vulnerabilities
ZyWALL USG Appliance - Multiple Vulnerabilities Advisory: Authentication Bypass in Configuration Import and Export of ZyXEL ZyWALL USG Appliances Unauthenticated users with access to the management web interface of certain ZyXEL ZyWALL USG appliances can download and upload configuration files,...
Movavi VideoSuite 8.0 Slideshow - .jpg Local Crash (PoC)
Movavi VideoSuite 8.0 Slideshow - .jpg Local Crash PoC !/usr/bin/perl Title : Movavi VideoSuite 8.0 SlideShow.exe Local Crash PoC Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : Windows Impact : Crashs...
PHP Exif Extension - exif_read_data() Remote Denial of Service
PHP Exif Extension - exifreaddata Remote Denial of Service Source: http://permalink.gmane.org/gmane.comp.security.oss.general/4198 ===================================================================== PHP Exif 64bit Casting Vulnerability...
ObjectivityDB - Lack of Authentication
ObjectivityDB - Lack of Authentication !/usr/bin/python obj.py Objectivity/DB Lack of Authentication Remote Exploit Jeremy Brown 0xjbrown41-gmail-com Jan 2011 "Objectivity, Inc. is a leader in distributed, scalable database technology. Our patented data management engine and persistent object sto...
KingView 6.5.3 - SCADA HMI Heap Overflow
KingView 6.5.3 - SCADA HMI Heap Overflow Exploit Title: KingView 6.53 SCADA HMI Heap Overflow PoC Date: 9/28/2010 Author: Dillon Beresford Software Link: http://download.kingview.com/software/kingview%20English%20Version/kingview6.53EN.rar Version: 6.53 English Tested on: Windows XP SP1 works on...
VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow
VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable...
MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload
MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload ============================================== File Upload Vulnerability Plugins tinymce ============================================== http://tinymce.moxiecode.com/pluginsfilemanager.php Major version 3 Minor version 2.2.3 Author :...
HP Insight Diagnostics Online Edition 8.4 - search.php Cross-Site Scripting
HP Insight Diagnostics Online Edition 8.4 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/45420/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker m...
Microsoft ASP.NET - Padding Oracle (MS10-070)
Microsoft ASP.NET - Padding Oracle MS10-070 Source: http://blog.mindedsecurity.com/2010/10/breaking-net-encryption-with-or-without.html !/usr/bin/perl Webconfig Bruter - exploit tool for downloading Web.config FOr use this script you need Pudbuster. Padbuster is a great tool and Brian Holyfield...
Joomla! Component com_spain - nv SQL Injection
Joomla! Component comspain - nv SQL Injection source: https://www.securityfocus.com/bid/43354/info The Spain component for Joomla is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
Novell iPrint Client Browser Plugin - call-back-url Remote Stack Overflow
Novell iPrint Client Browser Plugin - call-back-url Remote Stack Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+...
Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow
Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-microsoft-office-word-sprmcmajority-buffer-overflow/...
123 Flash Chat 7.8 - Multiple Vulnerabilities
123 Flash Chat 7.8 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/42478/info 123 Flash Chat is prone to multiple security vulnerabilities. These vulnerabilities include a cross-site scripting vulnerability, multiple information-disclosure vulnerabilities, and a...
Plogger - Remote File Disclosure
Plogger - Remote File Disclosure Plogger Remote File Disclosure Vulnerability http://www.plogger.org/ dork : Powered by Plogger! author: Mr.tro0oqy yemeni hacker email : [email protected] exp : Line 117: if $fpsource = @fopen$GET'src','rb'...
Free PHP photo Gallery script - Remote Command Execution
Free PHP photo Gallery script - Remote Command Execution Exploit Title: Free PHP photo gallery script Remote Command Execution Vulnerability Date: 2010/07/21 Author: ViRuS Qalaa Email: [email protected] My Sites : www.pal-mafia.com & www.vbspiders.com Script home: http://www.phpgalleryscript.org...
Sun Java Web Server 7.0 u7 - Remote Overflow (DEP Bypass)
Sun Java Web Server 7.0 u7 - Remote Overflow DEP Bypass Exploit Title: SJWSexv2 Date: 09/07/2010 Author: dmc Software Link: download link if available Version: 7.0 u7 Tested on: Windows XP SP3 - with and without DEP CVE : CVE-2010-0361 / Sun Java Web Server Exploit v2 Tested on: Sun Java Web Serv...
Inout Ad server Ultimate - Arbitrary File Upload
Inout Ad server Ultimate - Arbitrary File Upload ============================================================== Inout Ad server Ultimate -- Shell upload Vulnerabilty ============================================================== Name : Inout Ad server Ultimate Shell upload Vulnerabilty Date : jul...
Sun Java Web Server 7.0 u7 - Remote Overflow
Sun Java Web Server 7.0 u7 - Remote Overflow / Sun Java Web Server Exploit Tested on: Sun Java Web Server 7.0 update 7 - XP SP3 Ref: CVE-2010-0361 This vulnerability was identified by Evgeny Legerov Author: Dominic Chell Date: 23/01/2010 / include "stdafx.h" include include include include includ...
Joomla! Component Joomanager - SQL Injection
Joomla! Component Joomanager - SQL Injection Note from the vendor received 10Mar11: The old code was using JReguest::GetVar and we change it to JReguest::GetInt so the catid must be an integer only and not text. We updated this over 6 months ago in version 1.1.1 1 1 0 I'm Sid3^effects member from...
Joomla! Component jesectionfinder - Local File Inclusion
Joomla! Component jesectionfinder - Local File Inclusion Name : Joomla jesectionfinder LFI Vulnerability Date : june, 26 2010 Critical Level : HIGH Vendor Url : http://joomlaextensions.co.in/component/awdsong/ Google Dork: inurl:/component/jesectionfinder/ Price:$25.00 Author : Sid3^effects aKa...
Elite Gaming Ladders 3.5 - ladder[id] SQL Injection
Elite Gaming Ladders 3.5 - ladderid SQL Injection - Elite Gaming Ladders v3.5 SQL Injection Vulnerability - ---Date : 2010-06-19 ---Author : ahwak2000 ---Email : z.u5athotmail.com - Script Info - ---Home : http://eliteladders.com/ - Vulnerability - http://site.com/path/standings.php?ladderid=SQL ...
Administrador de Contenidos - Admin Authentication Bypass
Administrador de Contenidos - Admin Authentication Bypass Administrador de Contenidos Admin Login Bypass vulnerability Prodcut: Administrador de Contenidos Home : www.DZ4All.cOm/Cc Vunlerability : Admin Bypass Risk : High Dork : "Diseño Web Hernest Consulting S.L." Discovred by: Ra3cH From :...
Ucenter Projekt 2.0 - Insecure crossdomain (Cross-Site Scripting)
Ucenter Projekt 2.0 - Insecure crossdomain Cross-Site Scripting ======================================================================================== | Title : Ucenter Projekt 2.0 Insecure crossdomain XSS Vulnerability | Author : indoushka | email : [email protected] | Home :...
In-portal 5.0.3 - Arbitrary File Upload
In-portal 5.0.3 - Arbitrary File Upload Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail : submitatinj3ct0r.com 1 0 0 1 1 0 I'm eidelweiss member from Inj3ct0r Team 1 1 0 0-...
Joomla! Component Archery Scores 1.0.6 - Local File Inclusion
Joomla! Component Archery Scores 1.0.6 - Local File Inclusion ================================================================================================ Title : Joomla Component Archery Scores comarcheryscores v1.0.6 LFI Vulnerability Vendor : http://lispeltuut.org/ Download :...
Joomla! Component com_ticketbook - Local File Inclusion
Joomla! Component comticketbook - Local File Inclusion ================================================================================================================ o Joomla Component Ticketbook Local File Inclusion Vulnerability Software : comticketbook version 1.0.1 Vendor :...
Joomla! Component JA Voice 2.0 - Local File Inclusion
Joomla! Component JA Voice 2.0 - Local File Inclusion !===========================================================================! Joomla Component JA Voice LFI vulnerability Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : 9 april, 2010...
Joomla! Component DW Graph - Local File Inclusion
Joomla! Component DW Graph - Local File Inclusion --------------------------------------------------------------------------------- Joomla Component DW Graph Local File Inclusion --------------------------------------------------------------------------------- Author : Chip D3 Bi0s Group :...
Skype - URI Handler Input Validation
Skype - URI Handler Input Validation Description The Windows Skype client implements two URI handlers, Skype: and Skype-Plugin. Both handlers allow for easy browser integration and are supported by all modern browsers. When a Skype link is clicked, the Skype.exe process is spawned with the /URI:...
bispage - Bypass
bispage - Bypass Exploit Title: bispage Bypass Vulnerability Author: SaMir-BonD [email protected] Organization : TEAM-DZ Formal sites : t00ls.org - h4kz.com Software Link: N/A Script's Language: ASP Tested on: Windows PHP/4.3.11 os Dork :"Developed by Bispage.com" CVE : if exists Code : exploit cod...
Serialsystem 1.0.4 Beta - list Cross-Site Scripting
Serialsystem 1.0.4 Beta - list Cross-Site Scripting source: https://www.securityfocus.com/bid/40236/info Serialsystem is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script cod...
KubeLabs PHPDug 2.0 - upcoming.php Cross-Site Scripting
KubeLabs PHPDug 2.0 - upcoming.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40554/info KubeLabs PHPDug is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
Joomla! Component com_mediaslide - Directory Traversal
Joomla! Component commediaslide - Directory Traversal Joomla Component commediaslide Directory Traversal Vuln author : Mr.tro0oqy from Yemen mail : [email protected] fuck 2 community college sanaa exp : http://server/components/commediaslide/viewer.php?path=/../.. dork :...
Mambo Component com_koesubmit 1.0.0 - Remote File Inclusion
Mambo Component comkoesubmit 1.0.0 - Remote File Inclusion Mambo comkoesubmit 1.0.0 Remote File Inclusion Author : Don Tukulesto rootatindonesiancoderdotcom Homepage : http://www.indonesiancoder.com Date : Friday, Semptember 18, 2009...
EMC Captiva PixTools 2.2 Distributed Imaging - ActiveX Control Multiple Insecure Method Vulnerabilities
EMC Captiva PixTools 2.2 Distributed Imaging - ActiveX Control Multiple Insecure Method Vulnerabilities source: https://www.securityfocus.com/bid/36566/info The EMC Captiva PixTools Distributed Imaging ActiveX control is prone to multiple insecure-method vulnerabilities that affect the...
Joomla! Component com_pms 2.0.4 - Ignore-List SQL Injection
Joomla! Component compms 2.0.4 - Ignore-List SQL Injection PMS Enhanced-Config Tab: Backend - Ingorlist: Yes Create a valid User on the target Joomla 1.0.15 System with Community Builder, login and copy the cookieinformation into the $cookie var below, adjust the User-Agent on your Post Header...
Messages Library 2.0 - cat.php?CatID SQL Injection
Messages Library 2.0 - cat.php?CatID SQL Injection +===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ \ \ \2009 | \ | | / / / \ /\ / ||\ \ ||/ ...
Ghostscript 8.64 - gdevpdtb.c Local Buffer Overflow
Ghostscript 8.64 - gdevpdtb.c Local Buffer Overflow Ghostscript is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into a finite-sized buffer. Exploiting this issue allows remote attackers to overwrite a sensitive...
D-Bus Daemon 1.2.4 - libdbus Denial of Service
D-Bus Daemon 1.2.4 - libdbus Denial of Service / cve-2008-3834.c D-Bus Daemon Denial of Service http://jon.oberheide.org Usage: $ gcc pkg-config dbus-1 --cflags cve-2008-3834.c pkg-config dbus-1 --libs -o cve-2008-3834 $ ./cve-2008-3834 Information:...
DMXReady Billboard Manager 1.1 - Arbitrary File Upload
DMXReady Billboard Manager 1.1 - Arbitrary File Upload Title : DMXReady Billboard Manager http://target/path//applications/BillboardManager/incbillboardmanager.asp Edit - http://target/path//admin/BillboardManager/uploaddocument.asp?ItemID=ItemID : milw0rm.com 2009-01-15...
PHPmotion 2.1 - Cross-Site Request Forgery
PHPmotion 2.1 - Cross-Site Request Forgery PHPmotion Source of pwned.html file: Once your victim has visited your evil page, You may now be able to log into their PHP...
Rapid Classified 3.1 - Database Disclosure
Rapid Classified 3.1 - Database Disclosure --------------------------------------------------------------------------- Script Name: Rapid Classified Version: v3.1 Google Dork: intext:©2003-2008 RC v3.1 Developed by: GA Soft Author: CoBRa21 My Web Site: www.ipbul.org...
Microsoft XML Core Services DTD - Cross-Domain Scripting (MS08-069)
Microsoft XML Core Services DTD - Cross-Domain Scripting MS08-069 KB955218 - CVE-2008-4029 - JA var dom = new ActiveXObject"Msxml2.DOMDocument.3.0"; dom.async = false; var url = "http://www.milw0rm.com/forfun.dtd"; var xml = ""; if dom.loadXMLxml == 0 alert"Blue or Red Pill? " +...
Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow (PoC)
Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow PoC !usr/bin/perl -w Buffer overflow in the snprintvalue function in snmpget in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via ...