56796 matches found
Kmail <= 1.9.1 (IMG SRC) Remote Denial of Service Vulnerability
No description provided by source. nnp at silenthack.co.uk http://silenthack.co.uk Kmail = 1.9.1 latest suffers from a crash when trying to parse an incorrectly formatted img tag. HTML parsing must be enabled for this. This can be done by going to Settings - Configure Kmail -Security - and tick...
interuse Website Builder & design (index2.php) SQL Injection Vulnerability
No description provided by source. ------------------------------------------------------------------------------------------- interuse Website Builder & design index2.php SQL Injection Vulnerability ------------------------------------------------------------------------------------------- Autho...
Microsoft Windows win32k.sys Driver "CreateDIBPalette()" Buffer Overflow
No description provided by source...
Super Player 3500 (.m3u) - Local Stack Based Buffer Overflow
No description provided by source. !/usr/bin/perl SuperPlayer3500 Local stack based buffer overflow Author:jun Email:[email protected] Date:Tue Jul 22 2013 Vendor Link:http://www.haojie.cn Software Link:http://www.haojie.cn/download/setup3500.exe App Version:3500 Tested on:windows xp sp3 $file ...
Ciamos 0.9.2 Highlight.PHP File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12854/info Ciamos is reported prone to a file disclosure vulnerability. The full scope of this vulnerability is not currently known, however, it is demonstrated that this issue may be leveraged to disclose the source of P...
Iatek Knowledge Base 'content_by_cat.asp' - SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28376/info Iatek Knowledge Base is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
Exim <= 4.41 dns_build_reverse Local Exploit PoC
No description provided by source. / This proof-of-concept demonstrates the existence of the vulnerability reported by iDEFENSE iDEFENSE Security Advisory 01.14.05. It has been tested against exim-4.41 under Debian GNU/Linux. Note that setuid is not included in the shellcode to avoid...
chillyCMS 1.3.0 - Multiple Vulnerabilities
No description provided by source. Exploit Title: chillyCMS 1.3.0 Multiple Vulnerabilities Google Dork: powered by chillyCMS Date: 15 February 2013 Exploit Author: Abhi M Balakrishnan Vendor Homepage: http://chillycms.bplaced.net/ Software Link:...
lulieblog 1.2 - Multiple Vulnerabilities
No description provided by source. LulieBlog 1.2 Multiple Remote Vulnerabilities Admin Auth Bypass, Upload File, Blind SQL Injection Author: Cod3rZ Site: http://cod3rz.helloweb.eu Site: http://devilsnight.altervista.org Date: 06/05/2008 dd/mm/yyyy Admin Auth Bypass: Modify Articles: send a reques...
kpopup 0.9.x Privileged Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8915/info It has been alleged that it is possible for local attackers to gain root privileges through kpopup, which is is installed setuid root by default. According to the report, kpopup uses the system3 C-library functi...
Content Builder 0.7.5 postComment.php Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25914/info ContentBuilder CB is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...
GoAhead Webserver 2.1.x ASP Script File Source Code Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9239/info A vulnerability in GoAhead webserver may result in the disclosure of the source code of ASP script files. The vulnerability occurs because the application fails to sanitize HTTP requests. An attacker can append...
QtWeb 3.0 - Remote DoS/Crash Exploit
No description provided by source. !/usr/bin/perl File Name :QtWeb Web Browser Vuln : Remote Dos/Crash Auther : Zer0 Thunder Msn : [email protected] Look at the task manager after u run this ==------ Exploit Title: QtWeb 3.0 Remote DoS/Crash Exploit Date: 22/01/2010 Author: Zer0...
Hybrid Networks Cable Broadband Access System 1.0 - Remote Configuration Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/695/info Hybrid Network's cable modems are vulnerable to several different types of attack due to a lack of authentication for the remote administration/configuration system. The cable modems use a protocol called HSMP,...
SPAW Editor 2.0.8.1 - Local File Inclusion Vulnerability
No description provided by source. Exploit Title: local file include Date: Author: soorakh kos Software Link: http://sourceforge.net/projects/spaw/files/spaw-php/SPAW%20PHP%20v.2.0.8.1/spaw-php-2081-gpl.zip/download Version: SPAW Editor v.2 Thanks: kose roya , kose soosan , kose amam,kose dokhtar...
Pulse Pro 1.4.3 Persistent XSS Vulnerability
No description provided by source. Exploit Title: Pulse Pro 1.4.3 Persistent XSS Vulnerability Date: 24-10-2010 Author: Th3 RDX Software Link: http://pulsecms.com/ Version: 1.4.3 Tested on: Demo Site category: webapp Code : n/a...
PhpTax 0.8 - File Manipulation(newvalue,field) Remote Code Execution
No description provided by source. ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / \ / / XXXXXX /\ / XXXXXX / / XXXXXX / ------' Exploit Title : PhpTax File...
OpenSupports 2.x - Auth Bypass/CSRF Vulnerabilities
No description provided by source. + Author: TUNISIAN CYBER + Exploit Title: OpenSupports v2.x AuthBypass/CSRF Vulnerabilities + Date: 15-03-2014 + Category: WebApp + Version: 2.x + Tested on: KaliLinux/Windows 7 Pro + CWE: CWE-302/CWE-89 + Vendor: http://www.opensupports.com/ + Friendly Sites:...
ID Software Quake 3 "smurf attack" Denial of Service vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3060/info Quake 3 network play features contain a remotely exploitable denial of service vulnerability. A hostile client program can be used by to generate a large number of forged client queries on behalf of a target use...
pSys 0.7.0 Alpha - (chatbox.php) Remote SQL Injection Vulnerability
No description provided by source. '/ -.- ---------------------oOO------OOo-------------------- | pSys v0.7.0 Alpha chatbox.php Remote SQL Injection | | works only with magic quotes = off | | coded by DNX | -------------------------------------------------------- ! Discovered.: DNX ! Vendor.....:...
CCMPlayer 1.5 Stack based Buffer Overflow (.m3u)
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Solaris 7.0/8 Xsun Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1140/info A buffer overrun vulnerability exists in the Xsun X11 server, as shipped as part of Solaris 7 and 8 from Sun Microsystems. By supplying a long argument to the -dev option normally used to set the output device, ...
ESET Smart Security <= 3.0.672 (epfw.sys) Privilege Escalation Exploit
No description provided by source. //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | ESET, LLC. - http://www.eset.com/ | // // | | // // | Affected Software: | //...
CafeLog B2 0.6.1 Weblog and News Publishing Tool b2mail.php b2inc Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/23659/info B2 is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the...
Free Image Hosting <= 1.0 (forgot_pass.php) File Include Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' | \\ | \\ | \ . . |\ \ \ /\ \ / /| || | | | | \ | \ Y / | || | | \ | \ \ / | || | |/ // / / ||| \ | / / \ / \ |\ /\ / / \ / \ | | | | / /\ \ / \ / \ | | | | / | / Y \ || / /| /| /...
TorrentTrader Classic 1.x - 'scrape.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29451/info TorrentTrader Classic is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
E-Xoopport - Samsara <= 3.1 - (eCal module) Blind SQL Injection Exploit
No description provided by source...
PHP <= 4.4.6 ibase_connect() Local Buffer Overflow Exploit
No description provided by source. ?php // PHP = 4.4.6 ibaseconnect & ibasepconnect local buffer overflow // poc exploit // windows 2000 sp3 en / seh overwrite // by rgod // site: http://retrogod.altervista.org if !extensionloadedinterbase dieonly works with interbase extension ; $scode= \xeb\x1b...
ArGoSoft FTP Server <= 1.4.2.8 - Denial of Service Exploit
No description provided by source. / ArGoSoft Ftp Server remote overflow exploit author : c0d3r kaveh razavi [email protected] [email protected] package : ArGoSoft 1.4.2.29 and prior advisory : packetstormsecurity.nl/0503-advisories/argosoftFTP1428.txt company address : argosoft.com the bug wa...
Portable OpenSSH <= 3.6.1p-PAM / 4.1-SUSE Timing Attack Exploit
No description provided by source. !/bin/bash $Id: raptorsshtime,v 1.1 2007/02/13 16:38:57 raptor Exp $ raptorsshtime - OpenSSH remote timing attack exploit Copyright c 2006 Marco Ivaldi [email protected] OpenSSH-portable 3.6.1p1 and earlier with PAM support enabled immediately sends an erro...
Freeway 1.4.1.171 templates/Freeway/boxes/whos_online.php language Parameter Traversal Local File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to view...
lightneasy sqlite / no database <= 1.2.2 - Multiple Vulnerabilities
No description provided by source. Author: GiReX mySite: girex.altervista.org Date: 14/04/08 CMS: LightNEasy SQLite / no database = 1.2.2 Site: lightneasy.org Advisory: Multiple Remote Vulnerabilities Need: magicquotesgpc = Off magicquotesgpc = On / Off for SQL Injections Bug 1: Remote File...
GNU Sharutils <= 4.2.1 - Local Format String PoC Exploit
No description provided by source. / GNU sharutils = 4.2.1 Local Format String POC Code C0ded by n4rk0tix a.k.a nrktx [email protected] Below is a l4m3 proof of concept code for da recently reported lame bug; These binaryz have not only format bugz, but also buffer overflowz,etc.We also...
CuteNews <= 1.4.1 (shell inject) Remote Command Execution Exploit
No description provided by source. ?php ---cuten141xpl.php 7.13 03/11/2005 CuteNews 1.4.1 shell injection by rgod site: http://rgod.altervista.org usage: launch form Apache, fill in requested fields, then go! make these changes in php.ini if you have troubles with this script:...
CompleteFTP Server Directory Traversal
No description provided by source. Exploit Title: CompleteFTP Server Directory Traversal Date: 2010-03-30 Author: zombiefx [email protected]:[email protected] Software Link: http://www.enterprisedt.com/products/completeftp/download/CompleteFTPSetup.exe Version: CompleteFTP Server v 3.3....
CompactCMS 1.4.1 - SQL Injection Vulnerability
No description provided by source...
Open Web Analytics 1.2.3 multi file include
No description provided by source. =========================================================================== Topic : Open Web Analytics 1.2.3 Bug type : multi file include Download : http://downloads.openwebanalytics.com/owa/owa123.tar Advisory :...
SonicWALL GMS/VIEWPOINT 6.x Analyzer 7.x Remote Root/SYSTEM Exploit
No description provided by source. !/usr/bin/perl Title: SonicWALL GMS/VIEWPOINT 6.x Analyzer 7.x Remote Root/SYSTEM exploit Name: sgmsRCE.pl Author: Nikolas Sotiriu lofi lofiatsotiriu.de Use it only for education or ethical pentesting! The author accepts no liability for damage caused by this...
Microsoft Internet Explorer 5 Shell: IFrame Cross-Zone Scripting Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Computer Zone. This issue is related to ho...
FlexBB <= 0.6.3 Cookies Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl use Tk; use Tk::BrowseEntry; use Tk::DialogBox; use LWP::UserAgent; $mw = new MainWindowtitle = UnderWHAT?! ; $mw-geometry '420x343' ; $mw-resizable0,0; $mw-Label-text = '', -font = 'Verdana 8',-foreground='red'-pack; $mw-Label-text = 'FlexBB =...
ZoomStats <= 1.0.2 (mysql.php) Remote File Include Vulnerability
No description provided by source. ToXiC BuG FounD by Drago84 Application Affect:ZoomStats Source Code: http://prdownloads.sourceforge.net/zoomstats/ZoomStats-v1.0.2.zip?usemirror=kent Problem: $GLOBALS'lib''db''path' array not declare Solution : $GLOBALS'lib''db''path' Page Vulnerable : mysql.ph...
Mozilla Thunderbird DLL Hijacking Exploit (dwmapi.dll)
No description provided by source. / Exploit Title: Mozilla Thunderbird DLL Hijacking Exploit dwmapi.dll Date: 26/08/2010 Author: h4ck3r47 http://twitter.com/hxteam Version: Latest Mozilla Thunderbird 3.1.2 Tested on: Windows XP SP3 The code is based on the exploit from TheLeader Vulnerable...
GWExtranet Multiple Directory Traversal Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26525/info GWExtranet is prone to multiple directory-traversal vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from the...
PHP-Update <= 2.7 extract() Auth Bypass / Shell Inject Exploit
No description provided by source. ?php printr' --------------------------------------------------------------------------- PHPUpdate = 2.7 extract auth bypass / shell inject by rgod dork: Powered by PHP-Update -site:www.php-update.co.uk mail: retrog at alice dot it site:...
BMForum 3.0 forums.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14396/info BMForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to...
File Sharing Wizard 1.5.0 - (SEH) Exploit
No description provided by source. !/usr/bin/python print \n print Team Hackers Garage print www.garage4hackers.com print print File Sharing Wizard Version 1.5.0 print Remote Command Execution print Author: b0nd print [email protected] print print Greetz to: The Hackers Garage Family print...
feedDemon 3.1.0.9 - opml File Buffer Overflow Exploit
No description provided by source. /Download latest vuln app :http://www.newsgator.com/Individuals/FeedDemon/Default.aspx This exploit identifies your OS and searches in memory for a RETCODE thus working 100%./ includestdio.h includestring.h includegetopt.h includewindows.h void banner; void...
LightNEasy 3.1.x Multiple Vulnerabilite
No description provided by source. Title: LightNEasy 3.1.x Multiple Vulnerabilites Vendor: http://lightneasy.org/ Dork: "Powered by LightNEasy" AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory:...
Qualiteam X-Cart 3.x general.php perl_binary Parameter Arbitrary Command Execution
No description provided by source. source: http://www.securityfocus.com/bid/9560/info X-Cart has been reported to be prone to an issue that may allow remote attackers to execute arbitrary commands on the affected system. The issue is caused by a failure of the application to sanitize values...
Rae Media Real Estate Multi Agent SQL Injection Vulnerability
No description provided by source. Source: http://www.securityfocus.com/bid/45212/discuss Multi Agent System is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...