41207 matches found
DMXReady Photo Gallery Manager 1.1 - Contents Change
DMXReady Photo Gallery Manager 1.1 - Contents Change Title : DMXReady Photo Gallery Manager http://target/path//applications/PhotoGalleryManager/incphotogallerymanager.asp Edit - http://target/path//admin/PhotoGalleryManager/addcategory.asp : milw0rm.com 2009-01-14...
nightfall personal diary 1.0 - Cross-Site Scripting File Disclosure
nightfall personal diary 1.0 - Cross-Site Scripting File Disclosure -----------------------------OffensiveTrack------------------------------ ---------------------------- Tunisian Muslim ------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org...
SFS EZ BIZ PRO - SQL Injection
SFS EZ BIZ PRO - SQL Injection | | | EZ BIZ PRO track.php id Remote SQL Injection Vulnerability | | |-------------------- IQ-SecuritY ------------------- | | Author: Hussin X | | Home : WwW.IQ-ty.CoM | | email: darkangelg85atYahooDoTcom | | | | script :...
Vivvo CMS 3.4 - Multiple Vulnerabilities
Vivvo CMS 3.4 - Multiple Vulnerabilities !/usr/bin/perl Vivvo CMS Destroyer [email protected] By Xianur0 -------------CREDITS------------- http://milw0rm.com/exploits/4192 http://milw0rm.com/exploits/3326 http://milw0rm.com/exploits/2339 http://milw0rm.com/exploits/2337...
Foxmail Email Client 6.5 - mailto Buffer Overflow (PoC)
Foxmail Email Client 6.5 - mailto Buffer Overflow PoC source: https://www.securityfocus.com/bid/31294/info Foxmail Email Client is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue will allow an...
CJ Ultra Plus 1.0.4 - Cookie SQL Injection
CJ Ultra Plus 1.0.4 - Cookie SQL Injection !/usr/bin/perl CJ Ultra Plus GretzZz 2: pronoobz.org - Wesker, China Sun and all other memberZz "SID='UNION SELECT b12 from settings/"; $ua = LWP::UserAgent-new; $ua-timeout10; $ua-envproxy; $ua-agent"Mozilla/5.0 Windows; U; Windows NT 5.1; nl; rv:1.8.1....
Postfix 2.4.92.5.52.6-20080902 - .forward Local Denial of Service
Postfix 2.4.92.5.52.6-20080902 - .forward Local Denial of Service / http://www.wekk.net/research/CVE-2008-4042/CVE-2008-4042-exploit.c http://www.wekk.net/research/CVE-2008-3889/CVE-2008-3889-exploit.c Exploit for Postfix 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used...
ACG-PTP 1.0.6 - adid SQL Injection
ACG-PTP 1.0.6 - adid SQL Injection || | | ACG-PTP 1.0.6 adid Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | script...
Words tag script 1.2 - word SQL Injection
Words tag script 1.2 - word SQL Injection || | | Words tag script v1.2 word Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | script :...
Oracle Internet Directory 10.1.4 - Remote Denial of Service
Oracle Internet Directory 10.1.4 - Remote Denial of Service !/usr/bin/python """ Oracle Internet Directory 10.1.4 preauthentication Denial Of Service NOTES: Under 32 bits platforms it crashes immediately. Under 64 bits it may take even hours. Sometimes you need 2 shoots to crash OID completely. T...
Joomla! Component is 1.0.1 - Multiple SQL Injections
Joomla! Component is 1.0.1 - Multiple SQL Injections !/usr/bin/perl -w Joomla Component is v 1.0.1 Multiple Remote SQL Injection variables vuln : marka & motor Found by : Houssamix From H-T Team H-T Team HouSSaMix + ToXiC350 Greetz : Mr.Al3FrItE & Islamic Security Team & Mounita20 & CoNaN and all...
Novell eDirectory 8.7.3 SP 10 8.8.2 - HTTP headers Denial of Service
Novell eDirectory 8.7.3 SP 10 8.8.2 - HTTP headers Denial of Service = Affected software : Editor : Novell Name : eDirectory Version : 8.7.3 SP 10 and 8.8.2 Services : TCP/8028 HTTP and TCP/8030 HTTPS = External references : http://www.novell.com/support/viewContent.do?externalId=3829452&sliceId=...
Dream4 Koobi Pro 6.25 Gallery - galid SQL Injection
Dream4 Koobi Pro 6.25 Gallery - galid SQL Injection Koobi Pro V6.25 gallerygalid AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 BLOG : http://my.opera.com/SQL-Injection/blog/ MAiL : [email protected] DORK 1 : allinurl: galid "index.php?p=gallerypic" EXPLOiT :...
AuraCMS 2.2.1 - X-Forwarded-For HTTP Header Blind SQL Injection
AuraCMS 2.2.1 - X-Forwarded-For HTTP Header Blind SQL Injection !/usr/bin/perl -w Indonesian Newhack Security Advisory ------------------------------------ AuraCMS 2.x online.php - Remote Blind SQL Injection Exploit Waktu : Feb 15 2008 01:00PM Software : AuraCMS Versi : 2.0 2.1 2.2.1 Vendor :...
Mapbender 2.4.4 - gaz SQL Injection
Mapbender 2.4.4 - gaz SQL Injection Advisory: SQL-Injections in Mapbender During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in Mapbender. A remote attacker is able to execute arbitrary SQL commands and therefore can get e.g. valid usernames and password hashes of the...
Solaris 8910 - fifofs I_PEEK Local Kernel Memory Leak
Solaris 8910 - fifofs IPEEK Local Kernel Memory Leak / $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp $ raptorpeek.c - Solaris fifofs IPEEK kernel memory leak Copyright c 2007 Marco Ivaldi Lame integer signedness error in FIFO filesystems named pipes on Sun Solaris 8 through 10 allows loc...
X.Org xorg-x11-xfs 1.0.2-3.1 - Local Race Condition
X.Org xorg-x11-xfs 1.0.2-3.1 - Local Race Condition !/bin/sh Xorg-x11-xfs Race Condition Vuln local root exploit CVE-2007-3103 Another lame xploit by vl4dZ : works on redhat el5 and before $ id uid=1001kecos gid=1001user groups=1001user $ sh xfs-RaceCondition-root-exploit.sh Generate large data...
XOOPS Module myTopics - articleId SQL Injection
XOOPS Module myTopics - articleId SQL Injection XOOPS Module myTopics-print SQL Injectionarticleid AUTHOR : S@BUN HOME 1 : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORK 1 : allinurl: "/modules/myTopics/" you can add expliot after mytopics EXPLOIT :...
Joomla! Component ChronoForms 2.3.5 - Remote File Inclusion
Joomla! Component ChronoForms 2.3.5 - Remote File Inclusion +By CrackersChild+ Script.......: CHRONOFORMS version V2.3.5 Down.........: http://www.joomlaos.de/option,comremository/Itemid,41/func,startdown/id,2810.html Author.......: CrackersChild | [email protected] &...
Hot or Not Clone by Jnshosts.com - Database Backup Dump
Hot or Not Clone by Jnshosts.com - Database Backup Dump Name : Hot or Not Clone by Jnshosts.com Dump backup And See Password Admin Download From : http://www.jnshosts.com/downloads/hot-or-not-clone-script/index.php Found By : RoMaNcYxHaCkEr Home Page : Not Yet : Google Dork : Copyright @ 2007...
Apple QuickTime 7.27.3 (OSXWindows) - RSTP Response Universal
Apple QuickTime 7.27.3 OSXWindows - RSTP Response Universal Copyright C 2007 Subreption LLC. All rights reserved. Visit http://blog.subreption.com for exploit development notes. References: http://www.milw0rm.com/exploits/4648 original Microsoft Windows code http://www.milw0rm.com/exploits/4651...
RichFX Basic Player 1.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities
RichFX Basic Player 1.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/26573/info RichFX Basic Player ActiveX Control is prone a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied...
PHP 5.x COM - Safe Mode Disable Functions Bypass
PHP 5.x COM - Safe Mode Disable Functions Bypass sounds good //The windows version of PHP has built in support for this extension. You do not need to //load any additional extension in order to use these functions. //You are responsible for installing support for the various COM objects that you...
Simple Machines Forum (SMF) 1.1.3 - Blind SQL Injection
Simple Machines Forum SMF 1.1.3 - Blind SQL Injection !/usr/bin/perl Written By Michael Brooks contact: th3dotr00katgmaildotcom SMF 1.1.3 Extremely fast Blind SQL Injection Exploit! -Binary Search -Multi-Threaded -NO benchmark's Two SQL Injection flaws. Works with magicquotesgpc=On or Off. Total...
Joomla! Component JContentSubscription 1.5.8 - Multiple Remote File Inclusions
Joomla! Component JContentSubscription 1.5.8 - Multiple Remote File Inclusions JContentSubscription Joomla Component 1.5.8 Multiply Remote File Include Vulnerability Component : comjcs version 1.5.8 - payable component Dicovered by : NoGe Contact : [email protected]...
Mambo Component Mambads 1.5 - SQL Injection
Mambo Component Mambads 1.5 - SQL Injection Mambads = 1.5 Sql Injection Autor:Sniper456 Contact:Sniper456atgmail.kom Greetss: PescaoDeth, Daemon21, Vampirin456, Shh-2, CodeBreak and the chilean People ; SQL: index.php?option=commambads&Itemid=0&func=detail&cacat=1&casb=1&caid=inyecta maricon...
Airsensor M520 - HTTPd Remote Denial of Service Buffer Overflow (PoC)
Airsensor M520 - HTTPd Remote Denial of Service Buffer Overflow PoC !/usr/bin/perl -w Airsensor M520 HTTPD Remote Preauth Denial Of Service and Buffer Overflow PoC The vulnerability is caused due to an unspecified error in the cgis files filter used for configure propierties. This can be exploite...
Joomla! Component Joomlaradio 5.0 - Remote File Inclusion
Joomla! Component Joomlaradio 5.0 - Remote File Inclusion Joomla Radio v5 Component RFI Bug in : administrator/components/comjoomlaradiov5/admin.joomlaradiov5.php Variable : $mosConfiglivesite Download : http://www.joomlaos.de/option,comremository/Itemid,41/func,fileinfo/id,2661.html Dork:...
RW::Download 2.0.3 lite - index.php?dlid SQL Injection
RW::Download 2.0.3 lite - index.php?dlid SQL Injection RW::Download v2.0.3 lite - Remote SQL Injection Vendor : http://www.rwscripts.com/ Ditemukan oleh : k1tk4t - k1tk4t4tnewhack.org Lokasi : Indonesia -- newhackdotorg @ irc.dal.net Dork : "Powered by RW::Download v2.0.3 lite"...
PHPMytourney - menu.php Remote File Inclusion
PHPMytourney - menu.php Remote File Inclusion Title : phpMytourney functionsfile Remote File Inclusion Vulnerability Author : S.W.A.T. Contact : [email protected] S.Page : http://script.vanta.ru/download.php?id=1178&clas=0 $$ : Free Site : Http://www.XmorS-Security.CoM - Http://www.xmors.com...
AutoIndex PHP Script 2.2.1 - index.php Cross-Site Scripting
AutoIndex PHP Script 2.2.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/25448/info AutoIndex PHP Script is prone a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute...
Joomla! Component RSfiles 1.0.2 - path File Download
Joomla! Component RSfiles 1.0.2 - path File Download Title : Joomla Component RSfiles = 1.0.2 path Remote File Download Vulnerability Author : ajann Contact : : S.Page : http://www.rsjoomla.com $$ : 10 $ Dork : inurl:"/index.php?option=comrsfiles" DorkEx :...
Coppermine Photo Gallery 1.31.4 - YABBSE.INC.php Remote File Inclusion
Coppermine Photo Gallery 1.31.4 - YABBSE.INC.php Remote File Inclusion source: https://www.securityfocus.com/bid/25243/info Coppermine Photo Gallery is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an...
Microsoft Windows RSH daemon 1.7 - Remote Buffer Overflow
Microsoft Windows RSH daemon 1.7 - Remote Buffer Overflow / Attached and in-line is an exploit for a newly announced item on the WabiSabiLabi auction block. I hope this completely devalues the item so that the original finder dies of starvation. DON'T SELL BUGS THROUGH WABISABILABLA USE EXPLOITS ...
Oracle 9i10g - Evil Views Change Passwords
Oracle 9i10g - Evil Views Change Passwords -- -- bunkerview.sql -- -- Oracle 9i/10g - evil view exploit CVE-2007-3855 -- Uses evil view to perform unauthorized password update -- -- by Andrea "bunker" Purificato - http://rawlab.mindcreations.com -- 37F1 A7A1 BB94 89DB A920 3105 9F74 7349 AF4C BFA...
HP Tru64 - Remote Secure Shell User Enumeration
HP Tru64 - Remote Secure Shell User Enumeration !/usr/bin/perl use warnings; use strict; Remember: you need to accept ssh key first! use Tie::File; use Fcntl 'ORDONLY'; use Expect; use Time::HiRes qwgettimeofday; tru64-sshenum.pl HP Tru64 Remote Secure Shell user enumeration exploit CVE-2007-2791...
Ol BookMarks Manager 0.7.4 - root Remote File Inclusion
Ol BookMarks Manager 0.7.4 - root Remote File Inclusion Olbookmarks =0.7.4 multiple RFI root Download script : D0rk : allintitle:ol'bookmarks Thanks Str0ke Exploit : http://mesh.dl.sourceforge.net/sourceforge/olbookmarks/olbookmarks-0.7.4.tar.gz...
MolyX BOARD 2.5.0 - index.php?lang Local File Inclusion
MolyX BOARD 2.5.0 - index.php?lang Local File Inclusion =============== MolyX BOARD 2.5.0 Local File Inclusion ==== Possibly other versions =============== Vulnerability found by MurderSkillz ============================================== =============== d0rk "Powered by MolyX BOARD 2.5.0"...
Jetbox CMS 2.1 - viewsupplynews Multiple Cross-Site Scripting Vulnerabilities
Jetbox CMS 2.1 - viewsupplynews Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/23999/info Jetbox CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow...
XOOPS Module MyConference 1.0 - index.php SQL Injection
XOOPS Module MyConference 1.0 - index.php SQL Injection !/usr/bin/perl Script Name: XOOPS Module MyConference 1.0 index.php Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : Dork : "inurl:/modules/myconference/" S.Page :...
XOOPS Module Glossarie 1.7 - sid SQL Injection
XOOPS Module Glossarie 1.7 - sid SQL Injection !/usr/bin/perl Script Name: XOOPS Module Glossarie : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User ID uid: "; $id = ; chop $id;...
aForum 1.32 - CommonAbsDir Remote File Inclusion
aForum 1.32 - CommonAbsDir Remote File Inclusion AForum =1.33 Remote file inclusion Func.php Download Script : http://www.agner.org/software/msgbrd2/aforum.zip Thanks Str0ke D0rk:allintitle:List of messageboards Exploit : http://localhost/aforumpath/common/func.php?CommonAbsDir=shell.txt?...
CNStats 2.9 - who_r.php?bj Remote File Inclusion
CNStats 2.9 - whor.php?bj Remote File Inclusion CNStats 2.9 whor.php Remote File Include Vulnerability ----------------------------------------------------------------------------------------- Scripts : CNStats 2.9 Discovered By : irvian scripts site : http://www.cnstats.com/ dork : "CNStats 2.9"...
PHP 5.1.6 - Imap_Mail_Compose() Remote Buffer Overflow
PHP 5.1.6 - ImapMailCompose Remote Buffer Overflow source: https://www.securityfocus.com/bid/23234/info PHP is prone to a buffer-overflow vulnerability because the application fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker ca...
McGallery 0.5b - download.php Arbitrary File Download
McGallery 0.5b - download.php Arbitrary File Download Piker McGallery 0.5b Arbitrary File Download Vulnerability Affected software: McGallery 0.5b Vendor: http://sourceforge.net/projects/mcgallery/ Dork: allintitle: "MCgallery 0.5b" http://target/path/download.php?filename=main.php Found by Piker...
Spyce 2.1.3 - spyceexamplesautomaton.spy Direct Request Error Message Information Disclosure
Spyce 2.1.3 - spyceexamplesautomaton.spy Direct Request Error Message Information Disclosure source: https://www.securityfocus.com/bid/27898/info Spyce is prone to multiple input-validation vulnerabilities that can lead to information disclosure or client-side script execution. An attacker may...
PHPFootball 1.6 - Remote Database Disclosure
PHPFootball 1.6 - Remote Database Disclosure Title : PHPFootball 1.6 show.php Remote Database Disclosure Vulnerability Author : ajann Contact : : S.Page : http://phpfootball.sourceforge.net $$ : Free Dork : inurl:/phpfootball/ DBREAD---------------------------------------------------------...
Casinosoft Casino Script 3.2 - config.php SQL Injection
Casinosoft Casino Script 3.2 - config.php SQL Injection source: https://www.securityfocus.com/bid/20646/info Casinosoft Casino Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue coul...
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation (1)
Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation 1 source: https://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this iss...
PPA Gallery 1.0 - functions.inc.php Remote File Inclusion
PPA Gallery 1.0 - functions.inc.php Remote File Inclusion ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:...