Section: .. / 0801-exploits /
| /// File Name: |
0DayDB-bypass.txt |
Description:
|
0DayDB version 2.3 remote admin bypass exploit.
| | Author: | Pr0metheuS | | File Size: | 799 | | Last Modified: | Jan 11 20:34:35 2008 |
| MD5 Checksum: | e9de546797aa02f1a974310c390a7f51 |
|
| /// File Name: |
26211-jumbodos.txt |
Description:
|
Linux Kernel versions 2.6.20 through 2.6.21.1 IPv6 Jumbo bug remote denial of service exploit.
| | Author: | Clemens Kurtenbach | | File Size: | 3793 | | Last Modified: | Jan 11 13:01:48 2008 |
| MD5 Checksum: | 9cda55eac812ffe42a21c8dc1b7c550a |
|
| /// File Name: |
360-sql.txt |
Description:
|
360 Web Manager version 3.0 suffers from a SQL injection vulnerability.
| | Author: | Ded MustD!e | | File Size: | 584 | | Last Modified: | Jan 21 20:10:41 2008 |
| MD5 Checksum: | 904cc6b6c4da1afe893909ea684ba118 |
|
| /// File Name: |
8e6-bypass.txt |
Description:
|
The HTTP URL filtering function provided by the 8e6 Technologies R3000 Internet Filter can be bypassed by simply splitting the HTTP request line (which contains the URI) into multiple packets.
| | Author: | nnposter | | File Size: | 1093 | | Last Modified: | Jan 17 00:03:15 2008 |
| MD5 Checksum: | cfb478e555033f51de080a891c1db3c5 |
|
| /// File Name: |
aconon-traverse.txt |
Description:
|
Aconon Mail 2004 suffers from a remote directory traversal vulnerability.
| | Author: | Arno Toll | | Homepage: | http://burnachurch.com/ | | File Size: | 1562 | | Last Modified: | Jan 24 00:10:26 2008 |
| MD5 Checksum: | 930b4c49e651b2dd87e9aa6ea8aa58d1 |
|
| /// File Name: |
aflog-sqlxss.txt |
Description:
|
aflog version 1.01 suffers from cross site scripting and SQL injection vulnerabilities in comments.php.
| | Author: | shinmai | | File Size: | 1664 | | Last Modified: | Jan 23 23:15:00 2008 |
| MD5 Checksum: | c534e4b85bf8c741058d134b9d0b92d3 |
|
| /// File Name: |
agares-sql.txt |
Description:
|
Agares PhpAutoVideo version 2.21 suffers from a remote SQL injection vulnerability.
| | Author: | ka0x | | File Size: | 971 | | Last Modified: | Jan 12 18:48:06 2008 |
| MD5 Checksum: | 3567340117999a5f608a7c9ec5500e58 |
|
| /// File Name: |
agares-xssrfi.txt |
Description:
|
Agares PhpAutoVideo versions 2.21 and below suffer from cross site scripting and remote file inclusion vulnerabilities.
| | Author: | H-T Team | | Homepage: | http://no-hack.fr/ | | File Size: | 1393 | | Last Modified: | Jan 18 20:12:04 2008 |
| MD5 Checksum: | 7d9ed7c10f240b49e7f01e53d2501ebf |
|
| /// File Name: |
agares221-sql.txt |
Description:
|
Agares PhpAutoVideo version 2.21 remote SQL injection exploit.
| | Author: | ka0x | | File Size: | 1981 | | Last Modified: | Jan 14 14:07:02 2008 |
| MD5 Checksum: | dcc451873891ff7192fdbf89996c27b3 |
|
| /// File Name: |
agency-disclose.txt |
Description:
|
AGENCY4NET WEBFTP version 1 suffers from a file disclosure vulnerability in download2.php.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1362 | | Last Modified: | Jan 1 17:28:24 2008 |
| MD5 Checksum: | 93ae36bba87a0113edb5074e1ebe07e9 |
|
| /// File Name: |
ajchat-sql.txt |
Description:
|
AJchat version 0.10 suffers from a remote SQL injection vulnerability due to unset() usage in directory.php.
| | Author: | Eugene Minaev | | Homepage: | http://itdefence.ru/ | | File Size: | 1561 | | Last Modified: | Jan 11 13:30:06 2008 |
| MD5 Checksum: | 9030d3446231e1cfbc51d2d0859d4d56 |
|
| /// File Name: |
alice_gate2_pluswifi_PoC.zip |
Description:
|
The Alice Gate 2 Plus Wifi ADSL modem suffers from a cross site request forgery vulnerability.
| | Author: | WarGame | | File Size: | 95117 | | Last Modified: | Jan 21 20:31:08 2008 |
| MD5 Checksum: | 19ab322520d8a42e1d57051cb6a45c8c |
|
| /// File Name: |
alitalk-multi.txt |
Description:
|
ALITALK version 1.9.1.1 suffers from severe remote SQL injection vulnerabilities.
| | Author: | tomplixsee | | File Size: | 4525 | | Last Modified: | Jan 16 23:55:49 2008 |
| MD5 Checksum: | 5bb7248777544f0cff8035d5ee8fbb18 |
|
| /// File Name: |
alstraforum-sql.txt |
Description:
|
AlstraSoft Forum Pay Per Post Exchange version 2.0 suffers from a SQL injection vulnerability.
| | Author: | t0pp8uzz, xprog | | File Size: | 1079 | | Last Modified: | Jan 21 20:45:10 2008 |
| MD5 Checksum: | 4e75e9bb47dc04b17b1b7e356fe81403 |
|
| /// File Name: |
ampjuke-xss.txt |
Description:
|
AmpJuke version 0.7.0 suffers from a cross site scripting vulnerability in index.php.
| | Author: | ShaFuck31 | | File Size: | 432 | | Last Modified: | Jan 29 21:55:40 2008 |
| MD5 Checksum: | 6de86c60eaac6a44afe7a1785360c5e7 |
|
| /// File Name: |
apache-mod-rewrite.rb.txt |
Description:
|
Apache mod_rewrite escape_absolute_uri() off-by-one buffer overflow Metasploit exploit module. This affects Apache versions 1.3.28 through 1.3.36, 2.0.46 through 2.0.58, and 2.2.1 through 2.2.2.
| | Author: | Marcin Kozlowski | | File Size: | 2052 | | Related OSVDB(s): | 27588 | | Related CVE(s): | CVE-2006-3747 | | Last Modified: | Jan 7 18:37:17 2008 |
| MD5 Checksum: | e71e56d7bfd5e229f331137228932628 |
|
| /// File Name: |
apachemodneg-splitxss.txt |
Description:
|
mod_negotiation as shipped with Apache versions 1.3.39 and below, 2.0.61 and below, and 2.2.6 and below suffers from cross site scripting and http response splitting vulnerabilities.
| | Author: | Stefano Di Paola | | Homepage: | http://www.mindedsecurity.com/ | | File Size: | 6523 | | Last Modified: | Jan 22 19:01:44 2008 |
| MD5 Checksum: | e18caed342360e46f868a14e0dd9a259 |
|
| /// File Name: |
aspired-sql.txt |
Description:
|
ASPired2Protect suffers from a login bypass vulnerability via SQL injection.
| | Homepage: | http://aria-security.net/ | | File Size: | 262 | | Last Modified: | Jan 28 12:31:02 2008 |
| MD5 Checksum: | a6b4345c35f881d627298b2115e8c907 |
|
| /// File Name: |
auracms-exec.txt |
Description:
|
AuraCMS version 1.62 remote code execution exploit that makes use of stat.php.
| | Author: | k1tk4t | | Homepage: | http://newhack.org/ | | File Size: | 4706 | | Last Modified: | Jan 18 04:29:54 2008 |
| MD5 Checksum: | 9423f819b3ceefe1488484a92c7d86b3 |
|
| /// File Name: |
axigen-format.c |
Description:
|
AXIGEN version 5.0.x AXIMilter format string exploit that binds a shell to port 4141.
| | Author: | hempel | | File Size: | 3436 | | Last Modified: | Jan 21 20:51:13 2008 |
| MD5 Checksum: | c2c1760cfad111e6e0b5723e03c58e3a |
|
| /// File Name: |
bannerss-xsrfxss.txt |
Description:
|
Banner Student version 7.3 suffers from cross site request forgery and cross site scripting vulnerabilities.
| | Author: | Brendan M. Hickey | | Homepage: | http://www.bhickey.net/ | | File Size: | 2377 | | Last Modified: | Jan 29 21:51:17 2008 |
| MD5 Checksum: | 82815fecb3a6885d9c5d0930c2b08875 |
|
| /// File Name: |
belong-bypass.txt |
Description:
|
It appears that Belong Site Builder version 0.1b allows for direct administrative access without credentials.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 1908 | | Last Modified: | Jan 22 15:15:29 2008 |
| MD5 Checksum: | b95f01a3eb2a67e262e0351c9b0be7b8 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
