56796 matches found
SAS Hotel Management System user_login.asp SQL Injection Vulnerability
No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...
LoveCMS 1.4 install/index.php step Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/22675/info LoveCMS is prone to multiple input-validation vulnerabilities, including an arbitrary-file-upload issue, a remote file-include issue, a local file-include issue, and a cross-site scripting issue. An attacker ca...
OReilly WebSite 1.x/2.0 win-c-sample.exe Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2078/info O'Reilly WebSite Pro is a Windows 95/NT Web Server package. Versions 2.0 and below contained a vulnerable sample script, win-c-sample.exe, placed by default in /cgi-shl/ off the web root directory. This program ...
PowerShell XP 3.0.1 - Buffer Overflow 0day
No description provided by source. !/usr/bin/python vuln finders : kmkz, zadyree, hellpast author : m101 site : http://binholic.blogspot.com/ Exploit Title: PowerShell XP 3.0.1 0day Date: 11/12/2010 Author: m101 Software Link: http://www.softpedia.com/progDownload/PowerShell-XP-Download-22529.htm...
Firebird 1.0 - Remote Pre-Authentication Database Name Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling database names. A...
ASPNuke 0.80 Language_Select.ASP HTTP Response Splitting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14063/info ASPNuke is prone to an HTTP response splitting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote attacker may exploit this vulnerability to...
Borland InterBase isc_create_database() Buffer Overflow
No description provided by source. $Id: ibisccreatedatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
HP OpenView NNM - webappmon.exe execvp_nc Remote Code Execution
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : HP OpenView NNM webappmon.exe execvpnc Remote Code Execution Version : OpenView Network Node Manager 7.53 Analysis :...
Duyuru Scripti Goster.ASP SQL injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22910/info Duyuru Scripti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this vulnerability could permit remot...
PHP 5.2.6 'create_function()' Code Injection Weakness (2)
No description provided by source. source: http://www.securityfocus.com/bid/31398/info PHP is prone to a code-injection weakness because it fails to sufficiently sanitize input to 'createfunction'. Note that the anonymous function returned need not be called for the supplied code to be executed. ...
Borland InterBase 2007 - PWD_db_aliased Buffer Overflow
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
linux chroot()/execve() code
No description provided by source. / This is Linux chroot/execve code.It is 80 bytes long.I have some ideas how to make it smaller, but till then use this one. signed predator linux registered user : 181116 preedatoratsendmaildotru / char...
Joomla Component Expose <= RC35 Remote File Upload Vulnerability
No description provided by source. HHHHHHH HHHHHH HH HHHHHHHH HHHHHH HHHHHHHH IHHI HH HH HHHHHHHH HH HH HH HH HH HHHHHHHH HH IHHI HH HHH HH HHHHHHHH HH HH HH HH HH HH HH HH HH HHHH HH HH HHHHHHH HHHHHH HH HHHHHHH HHHHHH HH HH HH HH HH HHHHHHHH HH HH HH HH HH HH HH HH HH HHHH HH HH HH HH HH HHHHHH...
ABC2PS/JCABC2PS 1.2 Voice Field Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12024/info abc2ps and jcabc2ps are prone to a buffer overflow vulnerability. This issue is exposed when the program is used to process the voice field in ABC music notation files. Since the ABC files may originate from an...
Firebird Relational Database isc_attach_database() Buffer Overflow
No description provided by source. $Id: fbiscattachdatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
Solution Scripts Home Free 1.0 search.cgi Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/921/info Home Free is a suite of Perl cgi scripts that allow a website to support user contributions of various types. One of the scripts, search.cgi, accepts a parameter called letter which can be any text string. The...
WebHost Automation Helm Control Panel 3.1.x Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/11586/info Helm Control Panel is reported prone to multiple vulnerabilities. These include an SQL injection issue and an HTML injection vulnerability. A remote attacker can execute arbitrary HTML and script code in a user...
Online Grades & Attendance 3.2.6 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...
PHPBB2 Admin_Ug_Auth.PHP Administrative Security Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22730/info PHPBB2 is prone to a vulnerability that will let attackers gain administrative access to the application because it fails to properly validate access. Successful exploits may result in a complete compromise of...
Racer 0.5.3 beta 5 - Remote Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl Credit's to n00b. Racer v0.5.3 beta 5 12-03-07 remote exploit. Racer is also prone to a buffer over flow in the server and client.Automatically the game open's Udp port 26000 and is waiting for a msg buffer. If we send an overly long buffer we are...
mini_httpd <= 1.18 HTTP Request Escape Sequence Terminal Command Injection
No description provided by source. source: http://www.securityfocus.com/bid/37714/info Acme 'thttpd' and 'minihttpd' are prone to a command-injection vulnerability because they fail to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to execute arbitrary...
Joomla Component Saber Cart com_sebercart Local File Inclusion Vulnerability
No description provided by source. ========================================================================================================= o Joomla Component Saber Cart Local File Inclusion Vulnerability Software : comsebercart version 1.0.0.12 Vendor : http://www.seber.com.au/ Author :...
nuseo php enterprise 1.6 - Remote File Inclusion Vulnerability
No description provided by source. Vulnerability Type: Remote File Inclusion Vulnerable file: /NuSEO PHP Enterprise.v1.6 Nulled by DGT/NuSEO.PHP.Enterprise.v1.6.PHP.NULL-DGT/nuseo/admin/nuseoadmind.php Exploit URL:...
Multiple Vendor Telnet Client Env_opt_add Heap-Based Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12919/info Multiple vendors' Telnet client applications are reported prone to a remote buffer-overflow vulnerability. This vulnerability reportedly occurs in the 'envoptadd' function in the 'telnet.c' source file, which i...
K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer DoS PoC
No description provided by source. K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC. Version:3.5.7.0 vsfilter.dllVersion 1.0.1.4 that comes bundled with the above Codec Pack crashes when we try to use,select or even highlight the attached Test7.flv file in Windows Explorer,causing...
Aperto Blog 0.1.1 - Local File Inclusion / SQL Injection Vulnerabilities
No description provided by source. =========================================================================================================== o Aperto Blog 0.1.1 Local File Inclusion and SQL Injection Vulnerabilities Software : Aperto Blog version 0.1.1 Vendor :...
phpsyncml <= 0.1.2 - Remote File Include Vulnerabilities
No description provided by source. ======================================================================== || || || || || || || || || || || || ======================================================================== ======================================================================== phpsync...
Joomla Component equotes 0.9.4 - Remote SQL injection Vulnerability
No description provided by source. /---------------------------------------------------------------\ \ / / Joomla Component equotes Remote SQL injection \ \ / ---------------------------------------------------------------/ Author : His0k4 ALGERIAN HaCkEr Dork : inurl:comeQuotes POC :...
91 bytes nc -lp 31337 -e /bin//sh polymorphic linux shellcode .
No description provided by source. / Title : nc -lp 31337 -e /bin//sh polymorphic linux shellcode . Name : 91 bytes nc -lp 31337 -e /bin//sh polymorphic linux shellcode . Date : Mon Jul 5 16:58:50 WIT 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog :...
phpmygallery 1.0beta2 (rfi/lfi) Multiple Vulnerabilities
No description provided by source. PHPmyGallery v1.0beta2 RFi/LFi Multiple Remote Vuln. download: http://phpmygallery.kapierich.net/en/downloads/?dir=PHP/&getfile=PKphpmygallery-1.0beta2.zip ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected]...
MyYoutube MyBB Plugin 1.0 - SQL Injection
No description provided by source. Exploit Title: MyYoutube MyBB plugin SQL UPDATE injection. Google Dork: inurl:member.php intext:Youtube Video intitle:Profile of Date: 12.10.2012 Exploit Author: Zixem Vendor Homepage: http://www.mybb-es.com Software Link: http://mods.mybb.com/view/myyoutube...
PHP Link Manager 1.7 - Url Redirection Bug
No description provided by source. PHP Link Manager Version 1.7 Url Redirection Bug Title: PHP link manager Version 1.7 Vendor: http://www.phpjunkyard.com/php-link-manager.php AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original...
Yektaweb Academic Web Tools CMS 1.4.2.8/1.5.7 Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/33944/info Yektaweb Academic Web Tools CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attacker-supplied HTML and script code would execute in t...
Joomla Component MMS Blog com_mmsblog Local File Inclusion Vulnerability
No description provided by source. ============================================================================================================= o Joomla Component MMS Blog Local File Inclusion Vulnerability Software : commmsblog version 2.3.0 Vendor : http://mms.pipp.no/ Author : AntiSecurity No...
ardeacore 2.2 - Remote File Inclusion Vulnerability
No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...
IBM Lotus Domino iCalendar MAILTO Buffer Overflow
No description provided by source. $Id: dominoicalendarorganizer.rb 12236 2011-04-04 17:43:34Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing an...
clanlite 2.x (SQL Injection/xss) Multiple Vulnerabilities
No description provided by source. CANAKKALE GECiLMEZ yildirimordulari.org z0rlu.ownspace.org ClanLite V2 SQL inj. & XSS dork: Créé par Narfight, ClanLite V2.2006.05.20 © 2000-2005 dork: Themed By Ray © 2003, 2004 iOptional readme script / Fichier : Copyright : C 2004 ClanLite V2 Email :...
snetworks php classifieds 5.0 - Remote File Inclusion Vulnerability
No description provided by source. +By CrackersChild+ Script.......: SNETWORKS PHP CLASSIFIEDS Page.........: http://www.snetworks.biz/ Author.......: CrackersChild | [email protected] & [email protected] Class........: Remote File İnclude Vulnerability Demo.........:...
Windows XP Pro Sp2 English "Message-Box" Shellcode
No description provided by source. +-----------------------------------------------------+ | Windows XP Pro Sp2 English Message-Box Shellcode. | +-----------------------------------------------------+ Size : 16 Bytes, Null-Free. Author : Aodrulez. Email : [email protected] Shellcode =...
dagger web engine <= 23jan2007 - Remote File Inclusion Vulnerability
No description provided by source. Dagger-web enginecal.func.phpRemote File Inclusion download: http://kent.dl.sourceforge.net/sourceforge/dagger/daggerr23jan2007. zip found by: katatafish [email protected] code: cal.func.php include$diredgelang.'callang.inc.php'; exploit:...
ActFax 5.01 RAW Server Buffer Overflow
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
HP NNM CGI webappmon.exe execvp Buffer Overflow
No description provided by source. $Id: hpnnmwebappmonexecvp.rb 12086 2011-03-23 03:38:46Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
ultrize timesheet 1.2.2 - Remote File Inclusion Vulnerability
No description provided by source. ===================================================================================== o Ultrize TimeSheet 1.2.2 Remote File Inclusion Vulnerability Software : Ultrize TimeSheet version 1.2.2 Vendor : http://www.ultrize.com/ Download :...
JustPORTAL 1.0 - 'site' Parameter Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/29426/info JustPORTAL is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
ActiveCampaign 1-2-All Broadcast Email 4.0 Admin Control Panel Username SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15400/info ActiveCampaign 1-2-All Broadcast Email is prone to an SQL-injection vulnerability. This is an input-validation issue related to data that will be used in SQL queries, allowing a remote user to influence the...
Solaris 2.5.1/2.6/7/8 rlogin /bin/login - Buffer Overflow Exploit (SPARC)
No description provided by source. / $Id: raptorrlogin.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorrlogin.c - rlogin, Solaris/SPARC 2.5.1/2.6/7/8 Copyright c 2004 Marco Ivaldi [email protected] Buffer overflow in login in various System V based operating systems allows remote attackers to...
PHPKick 0.8 - statistics.php SQL Injection Exploit
No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class TestPOCPOCBase: vulID = '69551' version = '1' author = 'RickGray' vulDate = '2010-08-08' createDate = '2015-10-15'...
Joomla component com_universal Remote File Inclusion Vulnerability exploit
No description provided by source. Joomla component comuniversal = Remote File Inclusion Vulnerability exploit +Software: Joomla component comuniversal UWCMS Universal Web CMS +Version: 1.0.0 +License: http://www.gnu.org/copyleft/gpl.html GNU/GPL +Source: http://uwcms.sourceforge.net +CWE ID : 98...
DeWeS 0.4.2 - Directory Traversal Vulnerability
0 0 0 0...
SIESTTA 2.0 (LFI/XSS) Multiple Vulnerabilities
No description provided by source. SIESTTA 2.0 LFI/XSS Multiple Vulnerabilities download: http://ramoncastro.es/siesttaold/ Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://www.hack0wn.com/ team: Spanish Hackers Team - SHT Hack0wn Security Project!! Thi...