Section: .. / Last 100 Exploit Files /
| /// File Name: | cambridge-sql.txt | Description:
| VisitCambridge.org suffers from a remote SQL injection vulnerability. | | Author: | Rohit Bansal | | File Size: | 456 | | Last Modified: | Nov 21 20:05:30 2008 | | MD5 Checksum: | fe7381569ee7882cae4563d0d345edba |
|
| /// File Name: | verlihub-exec.txt | Description:
| Verlihub versions 0.9.8d-RC2 and below suffer from a remote command execution vulnerability due to a lack of input sanitization. | | Author: | v4lkyrius | | File Size: | 4981 | | Last Modified: | Nov 21 20:02:31 2008 | | MD5 Checksum: | fe10bb0dda05e03644f8dfd006b8caab |
|
| /// File Name: | joomlathyme-sql.txt | Description:
| The Joomla Thyme component version 1.0 suffers from a remote SQL injection vulnerability. | | Author: | Ded MustD!e | | Homepage: | http://www.antichat.ru/ | | File Size: | 1394 | | Last Modified: | Nov 21 16:16:09 2008 | | MD5 Checksum: | 71bf55c7600d4a2e9b55df029ae5b2cd |
|
| /// File Name: | BitDefenderDOS.zip | Description:
| Proof of concept malicious pdf file that causes a denial of service and infinite loop in BitDefender using the pdf.xmd module. | | Author: | ProTeuS | | File Size: | 341 | | Last Modified: | Nov 21 16:13:18 2008 | | MD5 Checksum: | 281dee247691fbcd2f34a063ce5d526a |
|
| /// File Name: | kvirc-exec.txt | Description:
| KVIrc version 3.4.2 Shiny URI handler remote code execution exploit. | | Author: | Nine:Situations:Group | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 1675 | | Last Modified: | Nov 21 10:45:42 2008 | | MD5 Checksum: | 9e7af6fa05ea76f0edbed3bb01f87685 |
|
| /// File Name: | vcalendar-disclose.txt | Description:
| VCalendar suffers from a remote database disclosure vulnerability. | | Author: | Swan | | File Size: | 1257 | | Last Modified: | Nov 21 10:44:12 2008 | | MD5 Checksum: | de3c3c63d554069f9c47cd5516878a85 |
|
| /// File Name: | toursmanager-blindsql.txt | Description:
| ToursManager suffers from a blind SQL injection vulnerability in tourview.php. | | Author: | XaDoS | | File Size: | 957 | | Last Modified: | Nov 20 18:21:02 2008 | | MD5 Checksum: | 5e27a04f7e19f49abc57d2ee531d4dae |
|
| /// File Name: | phprsgal-sql.txt | Description:
| phpRS versions 2.6.x and 2.8.x suffer from a remote SQL injection vulnerability in gallery.php. | | Author: | d3v1l | | File Size: | 1487 | | Last Modified: | Nov 20 18:18:25 2008 | | MD5 Checksum: | bd4ad4f70f69fe2928ed6db18879b1ab |
|
| /// File Name: | natterchat-sql.txt | Description:
| Natterchat versions 1.12 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 367 | | Last Modified: | Nov 20 18:02:30 2008 | | MD5 Checksum: | 2701b6b703102dcf9d76e5d299bf1b5c |
|
| /// File Name: | phpfusion7001-sql.txt | Description:
| PHP-Fusion version 7.00.1 remote SQL injection exploit that makes use of messages.php. | | Author: | irk4z | | File Size: | 4155 | | Last Modified: | Nov 20 17:48:52 2008 | | MD5 Checksum: | d59e51b2dc5f5391687c97ac49e609f6 |
|
| /// File Name: | social-sql.txt | Description:
| Social Engine versions 2.7 and below suffer from remote SQL injection and cookie manipulation vulnerabilities. | | Author: | David "Aesthetico" Vieira-Kurz | | File Size: | 2181 | | Last Modified: | Nov 20 17:46:55 2008 | | MD5 Checksum: | 758d1b4945924dfe4bb76542988dab31 |
|
| /// File Name: | vbulletin-xssxsrf.txt | Description:
| The Visitor Messages add-on for vBulletin version 3.7.3 suffers from cross site scripting and cross site request forgery vulnerabilities. This is a worm exploit that takes advantage of these issues. | | Author: | Mx | | File Size: | 2965 | | Last Modified: | Nov 20 17:44:51 2008 | | MD5 Checksum: | a4bd6a31749a23236f15aac1e67d2032 |
|
| /// File Name: | askpert-sql.txt | Description:
| AskPert suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | TR-ShaRk | | File Size: | 1127 | | Last Modified: | Nov 20 17:42:34 2008 | | MD5 Checksum: | 12573dddae1f6c71d57f5d8527f8dcc1 |
|
| /// File Name: | backlinkspider-sql.txt | Description:
| The BackLinkSpider Exchange Links script suffers from remote SQL injection vulnerabilities in links.asp and links.php. | | Author: | d3v1l | | File Size: | 1838 | | Last Modified: | Nov 20 15:18:10 2008 | | MD5 Checksum: | 4a61726e2c223e482fc8c834067d96b7 |
|
| /// File Name: | exodus-injection.txt | Description:
| Exodus version 0.10 suffers from an URI handler arbitrary parameter injection vulnerability. | | Author: | Nine:Situations:Group | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 1107 | | Last Modified: | Nov 20 15:15:45 2008 | | MD5 Checksum: | c0c091b687a3e2eccfb4d3201993ab31 |
|
| /// File Name: | wportfolio-upload.txt | Description:
| wPortfolio versions 0.3 and below remote arbitrary file upload exploit. | | Author: | Osirys | | File Size: | 1926 | | Last Modified: | Nov 20 14:26:35 2008 | | MD5 Checksum: | a6d0b79dc4160fd1a42267f9f46dbf37 |
|
| /// File Name: | boastmachine-sql.txt | Description:
| BoastMachine version 3.1 suffers from a remote SQL injection vulnerability. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1942 | | Last Modified: | Nov 20 14:22:36 2008 | | MD5 Checksum: | a68e3a773a51a05f93575744cf367a59 |
|
| /// File Name: | punportal-lfi.txt | Description:
| PunPortal PunBB module version 0.1 local file inclusion exploit. | | Author: | StAkeR | | File Size: | 2770 | | Last Modified: | Nov 20 14:18:38 2008 | | MD5 Checksum: | c74197b9cc2ffa66839c60e8759a6b6a |
|
| /// File Name: | prejobboard-sql.txt | Description:
| Pre Job Board suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 970 | | Last Modified: | Nov 20 13:20:04 2008 | | MD5 Checksum: | cce036725cb757bbdfeadad1f0e18b75 |
|
| /// File Name: | revsense-sql.txt | Description:
| RevSense suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | d3b4g | | File Size: | 830 | | Last Modified: | Nov 19 18:45:36 2008 | | MD5 Checksum: | 6aa053d65dd314b32171368e6bf84ae6 |
|
| /// File Name: | maurycms-upload.txt | Description:
| MauryCMS versions 0.53.2 and below remote shell upload exploit. | | Author: | StAkeR | | File Size: | 2246 | | Last Modified: | Nov 19 18:31:00 2008 | | MD5 Checksum: | 63cc458d0d8e69152b1c8c27b36a2bf7 |
|
| /// File Name: | linksautomation-sql.txt | Description:
| LinksAutomation Script suffers from a remote SQL injection vulnerability. | | Author: | d3v1l | | File Size: | 1679 | | Last Modified: | Nov 19 18:29:13 2008 | | MD5 Checksum: | 0ff9ea758f37cbf93c812e824cb8af98 |
|
| /// File Name: | linksxs-sql.txt | Description:
| Linksxs Script suffers from a remote SQL injection vulnerability. | | Author: | d3v1l | | File Size: | 1685 | | Last Modified: | Nov 19 18:28:32 2008 | | MD5 Checksum: | 165976435e2cf54668de8896135ccc8e |
|
| /// File Name: | ethiclinks-sql.txt | Description:
| Ethiclinks suffers from a remote SQL injection vulnerability. | | Author: | d3v1l | | File Size: | 1883 | | Last Modified: | Nov 19 18:27:15 2008 | | MD5 Checksum: | 840182c3b5760545c2554f36f44507c5 |
|
| /// File Name: | easyeditcms-sql.txt | Description:
| Easyedit CMS suffers from multiple remote SQL injection vulnerabilities. | | Author: | d3v1l | | File Size: | 705 | | Last Modified: | Nov 19 18:25:43 2008 | | MD5 Checksum: | ddd126108668940b95b0c3f58edc0366 |
|
| /// File Name: | msvista-overflow.txt | Description:
| The Microsoft Device IO Control wrapped by the iphlpapi.dll API shipping with Windows Vista 32 bit and 64 bit contains a possibly exploitable, buffer overflow corrupting kernel memory. Proof of concept test code included. | | Author: | Carson Hounshell,Marius Wachtler,Michael Burgbacher,Michael Craggs,Thomas Unterleitner | | Homepage: | http://www.phion.com/ | | File Size: | 10901 | | Last Modified: | Nov 19 18:22:36 2008 | | MD5 Checksum: | 8d9062372b98a602f3a22fe236506963 |
|
| /// File Name: | mytopix-sql.txt | Description:
| MyTopix versions 1.3.0 and below remote SQL injection exploit. | | Author: | cOndemned | | Homepage: | http://condemned.r00t.la/ | | File Size: | 4746 | | Last Modified: | Nov 19 18:19:35 2008 | | MD5 Checksum: | 8e0559a875dc85728184e0a26a62eb96 |
|
| /// File Name: | punbb-lfi.txt | Description:
| PunBB (Private Messaging System versions 1.2.x) multiple local file inclusion exploit. | | Author: | StAkeR | | File Size: | 7837 | | Last Modified: | Nov 19 18:18:10 2008 | | MD5 Checksum: | 4e17d4daf83b92da03922224ce17aa79 |
|
| /// File Name: | PR07-40.txt | Description:
| The 3Com AP 8760 suffers from authentication bypass, password leakage, and SNMP injection vulnerabilities. Details provided. | | Author: | Adrian Pastor | | Homepage: | http://www.procheckup.com/ | | File Size: | 4569 | | Last Modified: | Nov 19 18:08:39 2008 | | MD5 Checksum: | de90de2dfb7bb15c9207cdcfb1dc6b7e |
|
| /// File Name: | PR07-11.txt | Description:
| Sun Java System Identity suffers from a cross site request forgery vulnerability. Proof of concept code included. | | Author: | Adrian Pastor,Jan Fry | | Homepage: | http://www.procheckup.com/ | | File Size: | 3836 | | Last Modified: | Nov 19 18:07:07 2008 | | MD5 Checksum: | 8a27d91e43fbb3bc2fb530f8741b2c77 |
|
| /// File Name: | alexarticle-upload.txt | Description:
| Alex Article-Engine version 1.3.0 suffers from a remote arbitrary file upload vulnerability. | | Author: | Batter | | File Size: | 1168 | | Last Modified: | Nov 19 17:04:26 2008 | | MD5 Checksum: | 8fa701b438aefcdc974a713bbb55d89a |
|
| /// File Name: | alexnews-upload.txt | Description:
| Alex News-Engine version 1.5.1 suffers from a remote arbitrary file upload vulnerability. | | Author: | Batter | | File Size: | 1151 | | Last Modified: | Nov 19 17:02:53 2008 | | MD5 Checksum: | 71f4fe9cb8a232d39997f21b36f87ebf |
|
| /// File Name: | DSECRG-08-039.txt | Description:
| Pluck CMS version 4.5.3 suffers from a local file inclusion vulnerability in data/inc/lib/pcltar.lib.php. | | Author: | Digital Security Research Group | | Homepage: | http://www.dsec.ru/ | | File Size: | 2103 | | Last Modified: | Nov 18 20:09:35 2008 | | MD5 Checksum: | 75fd4e17221c2d6c784ac7ab1a410e8b |
|
| /// File Name: | directory-rfi.txt | Description:
| Free Directory Script version 1.1.1 suffers from a remote file inclusion vulnerability.vulnerability. | | Author: | Ghost Hacker | | Homepage: | http://www.real-hack.net/ | | File Size: | 2225 | | Last Modified: | Nov 18 19:41:44 2008 | | MD5 Checksum: | 7f8bed2e75d5eaeb1c1b72536868bae2 |
|
| /// File Name: | cups-dos.txt | Description:
| CUPS version 1.3.7 cross site request forgery remote crash exploit that makes use of the add rss subscription functionality. | | Author: | Adrian Pastor | | File Size: | 437 | | Last Modified: | Nov 18 19:28:06 2008 | | MD5 Checksum: | 1ef452ec2c616d611a578d9e2fb24e5e |
|
| /// File Name: | etopbizlinkback-insecure.txt | Description:
| E-topbiz Link Back Checker 1 suffers from an insecure cookie handling vulnerability that allows for administrative take-over. | | Author: | X0r | | File Size: | 466 | | Last Modified: | Nov 18 19:23:41 2008 | | MD5 Checksum: | 3d645ee9d2340964a69cb6cb2555b35a |
|
| /// File Name: | musicbox238-sql.txt | Description:
| Musicbox versions 2.3.8 and below suffer from a remote SQL injection vulnerability. This was discovered in the last version and the vendor still has not fixed it. | | Author: | Snakespc | | Homepage: | http://www.snakespc.com/sc | | Related Exploit: | musicbox-sql.txt | | File Size: | 3041 | | Last Modified: | Nov 18 19:10:56 2008 | | MD5 Checksum: | 0cfd65ddce5aa54f6ea1a290f20efd38 |
|
| /// File Name: | noIPwn3r.c | Description:
| No-IP DUC versions 2.1.7 and below remote code execution exploit with reverse shell functionality. | | Author: | XenoMuta | | Homepage: | http://xenomuta.blogspot.com/ | | File Size: | 8103 | | Last Modified: | Nov 18 19:05:55 2008 | | MD5 Checksum: | 94f7539a2f526191e3041ebd0c0eaa10 |
|
| /// File Name: | videoscript-password.txt | Description:
| VideoScript versions 4.0.1.50 and below administrative password changing exploit. | | Author: | G4N0K | | File Size: | 7648 | | Last Modified: | Nov 18 00:40:33 2008 | | MD5 Checksum: | 120245d21bb302fad23e901c4a649add |
|
| /// File Name: | chilkat-create.txt | Description:
| Chilkat Socket Active-X control (ChilkatSocket.DLL) version 2.3.1.1 remote arbitrary file creation exploit. | | Author: | Underz0ne Crew | | Homepage: | http://www.underz0ne.net/ | | File Size: | 925 | | Last Modified: | Nov 18 00:23:01 2008 | | MD5 Checksum: | 1f4383764c48b7133cf0de514e038cc2 |
|
| /// File Name: | jobsiteinet-sql.txt | Description:
| Job Site Script Design by i-netsolution suffers from a remote SQL injection vulnerability. | | Author: | d3b4g | | File Size: | 1549 | | Last Modified: | Nov 18 00:19:24 2008 | | MD5 Checksum: | 24995a6391c630e455b40312c95dda7f |
|
| /// File Name: | jadugalaxies-sql.txt | Description:
| Jadu Galaxies suffers from a blind SQL injection vulnerability. | | Author: | ZoRLu | | File Size: | 1010 | | Last Modified: | Nov 18 00:17:58 2008 | | MD5 Checksum: | 09c80a4bae33498859e6e1fd0f8bed3c |
|
| /// File Name: | cnn-xss.txt | Description:
| CNN.com suffers from cross site scripting and content modification vulnerabilities. | | Author: | Anonymous | | File Size: | 3913 | | Last Modified: | Nov 17 23:06:16 2008 | | MD5 Checksum: | 92c84de2d5d9b7b3c25913b34e95cdef |
|
| /// File Name: | simplecustomer12-sql.txt | Description:
| Simple Customer version 1.2 suffers a SQL injection vulnerability that allows for authentication bypass. | | Author: | d3b4g | | File Size: | 737 | | Last Modified: | Nov 17 23:01:46 2008 | | MD5 Checksum: | 0cb715cd07f5414f57f34f266f13d6d2 |
|
| /// File Name: | opera962-overflow.txt | Description:
| Opera version 9.62 local heap overflow exploit that makes use of file://. | | Author: | k'sOSe | | Homepage: | http://www.pornosecurity.org/ | | File Size: | 1188 | | Last Modified: | Nov 17 23:00:28 2008 | | MD5 Checksum: | 80f8e7302996a3a72243d95efb5201c1 |
|
| /// File Name: | phpfan-rfi.txt | Description:
| phpfan version 3.3.4 suffers from a remote file inclusion vulnerability in init.php. | | Author: | ahmadbady | | File Size: | 924 | | Last Modified: | Nov 17 22:59:13 2008 | | MD5 Checksum: | f88cadb8524969ddedc732306f19b19c |
|
| /// File Name: | saturncms-sql.txt | Description:
| SaturnCMS suffers from a blind SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1156 | | Last Modified: | Nov 17 21:11:45 2008 | | MD5 Checksum: | de9fc0673b993786fe3b287fc5ab7334 |
|
| /// File Name: | qshop-sqlxss.txt | Description:
| Q-Shop version 3.0 suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Bl@ckbe@rd | | File Size: | 3247 | | Last Modified: | Nov 17 21:10:03 2008 | | MD5 Checksum: | b65ee8bf3b67d192ba02b0b7effeee69 |
|
| /// File Name: | ultrastats-sql.txt | Description:
| Ultrastats versions 0.3.11 and 0.2.144 suffer from a remote SQL injection vulnerability. | | Author: | EEK | | File Size: | 3350 | | Last Modified: | Nov 17 21:05:32 2008 | | MD5 Checksum: | 40e45fb4ccd942e795867ab21af1fefa |
|
| /// File Name: | etopbizadmanager-sql.txt | Description:
| E-topbiz AdManager version 4 suffers from a blind SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 901 | | Last Modified: | Nov 17 21:02:21 2008 | | MD5 Checksum: | f3d7862cdc63ef260c436809c3b0034a |
|
| /// File Name: | openasp-sql.txt | Description:
| OpenASP versions 3.0 and below suffer from a blind SQL injection vulnerability. | | Author: | StAkeR | | File Size: | 487 | | Last Modified: | Nov 17 20:05:00 2008 | | MD5 Checksum: | 687f8eab55264d06f66e60db27204a1d |
|
| /// File Name: | mxcamarchive-download.txt | Description:
| mxCamArchive version 2.2 suffers from a configuration bypass download vulnerability. | | Author: | ahmadbady | | File Size: | 1068 | | Last Modified: | Nov 17 20:03:57 2008 | | MD5 Checksum: | 3fe2d1033df81e3874550376a7d31c7a |
|
| /// File Name: | wholesale-sql.txt | Description:
| phpstore Wholesale suffers from a remote SQL injection vulnerability in track.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1139 | | Last Modified: | Nov 17 02:49:54 2008 | | MD5 Checksum: | 0af0942f525084a5e667204b5b3e5d75 |
|
| /// File Name: | flosites-sql.txt | Description:
| FloSites Blog suffers from multiple remote SQL injection vulnerabilities. | | Author: | Vrs-hCk | | File Size: | 1246 | | Last Modified: | Nov 16 19:27:15 2008 | | MD5 Checksum: | 19c55fb85eeb952842a989a8dcbc9b48 |
|
| /// File Name: | phpstoreyahoo-sql.txt | Description:
| The PHPStore Yahoo! Answers functionality suffers from a remote SQL injection vulnerability. | | Author: | Snakespc | | Homepage: | http://www.snakespc.com/sc | | File Size: | 3172 | | Last Modified: | Nov 16 19:20:00 2008 | | MD5 Checksum: | 4c7fe32558c6cdd638e91187056abb4a |
|
| /// File Name: | minigal-disclose.txt | Description:
| MiniGal b13 remote file disclosure exploit that leverages index.php. | | Author: | Alfons Luja | | File Size: | 1662 | | Last Modified: | Nov 16 19:17:48 2008 | | MD5 Checksum: | 04113ba88926e89f7273e8c1659f4424 |
|
| /// File Name: | boutikone-xss.txt | Description:
| BoutikOne CMS suffers from a cross site scripting vulnerability. | | Author: | d3v1l | | File Size: | 333 | | Last Modified: | Nov 16 19:12:37 2008 | | MD5 Checksum: | 13d680d9ff76ce4009f866643488a7e1 |
|
| /// File Name: | gsrealestate-sql.txt | Description:
| GS Real Estate Portal suffers from multiple SQL injection vulnerabilities. | | Author: | InjEctOrS | | File Size: | 2353 | | Last Modified: | Nov 16 19:09:15 2008 | | MD5 Checksum: | 5ec0caf232a540900bac31f8a9d1774a |
|
| /// File Name: | x7chat-sql.txt | Description:
| X7 Chat version 2.0.5 suffers a SQL injection vulnerability that allows for authentication bypass. | | Author: | ZoRLu | | File Size: | 830 | | Last Modified: | Nov 16 18:30:16 2008 | | MD5 Checksum: | fcb9d1bf73a86b5ec0ba4607031f99b6 |
|
| /// File Name: | textlinksales-sqlxss.txt | Description:
| turnkeyforms Text Link Sales suffers from cross site scripting and SQL injection vulnerabilities. | | Author: | ZoRLu | | File Size: | 1047 | | Last Modified: | Nov 16 18:28:26 2008 | | MD5 Checksum: | 0f9b4ce0f51dca6431c191145636a653 |
|
| /// File Name: | sudo-local.txt | Description:
| sudo versions 1.6.9p18 and below local privilege escalation exploit. | | Author: | Kingcope | | File Size: | 1552 | | Last Modified: | Nov 16 18:25:45 2008 | | MD5 Checksum: | 26ffab57d0b621d877b892fec2020d3f |
|
| /// File Name: | verypdf-activex.txt | Description:
| VeryPDF PDFView OCX Active-X related OpenPDF heap overflow proof of concept exploit. | | Author: | r0ut3r | | File Size: | 815 | | Last Modified: | Nov 16 18:20:48 2008 | | MD5 Checksum: | 991d153bf1c0a388e1c4ed9f8cf0b515 |
|
| /// File Name: | discuz-exec.txt | Description:
| Discuz! versions 6.x and 7.x remote code execution exploit. | | Author: | 80vul | | Homepage: | http://www.80vul.com/ | | File Size: | 2359 | | Last Modified: | Nov 14 15:39:17 2008 | | MD5 Checksum: | e8d963d20334b2c8a9ef79cbdba000d8 |
|
| /// File Name: | bankoi-sql.txt | Description:
| Bankoi Webhost Panel version 1.20 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 758 | | Last Modified: | Nov 14 15:32:56 2008 | | MD5 Checksum: | 622c76881814de0635160fde80671cde |
|
| /// File Name: | slimcms-sql.txt | Description:
| SlimCMS versions 1.0.0 and below remote SQL injection exploit that makes use of edit.php. | | Author: | StAkeR | | File Size: | 2580 | | Last Modified: | Nov 14 15:29:49 2008 | | MD5 Checksum: | d65e3efa7a3591b0990cd3fde37597ea |
|
| /// File Name: | webhostdir-sqlbypass.txt | Description:
| AlstraSoft Web Host Directory version 1.2 suffers from remote SQL injection, insecure cookie, and arbitrary database backup vulnerabilities. | | Author: | G4N0K | | File Size: | 2466 | | Last Modified: | Nov 14 14:49:59 2008 | | MD5 Checksum: | b53d68cbb2a06a3092dc0e43ef3762f4 |
|
| /// File Name: | textlink-bypass.txt | Description:
| turnkeyforms Text Link Sales suffers from an authentication bypass vulnerability. | | Author: | G4N0K | | File Size: | 1939 | | Last Modified: | Nov 14 14:47:56 2008 | | MD5 Checksum: | 7fac4582de5a1ecf26898b9e04e196b2 |
|
| /// File Name: | memhtportal-sql.txt | Description:
| MemHT Portal version 4.0.1 remote SQL injection code execution exploit. | | Author: | Ams | | Related Exploit: | memht40-exec.txt | | File Size: | 3990 | | Last Modified: | Nov 14 14:43:44 2008 | | MD5 Checksum: | 67a51bee76add88e6ba0455400a83145 |
|
| /// File Name: | bandsite-insecure.txt | Description:
| BandSite CMS version 1.1.4 suffers from an insecure cooking handling vulnerability. | | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 402 | | Last Modified: | Nov 14 14:38:32 2008 | | MD5 Checksum: | c2e71e1c27fa5bf57d4ef41c3e7b9294 |
|
| /// File Name: | sfrlp-upload.txt | Description:
| ScriptsFeed Recipes Listing Portal software suffers from a remote file upload vulnerability. | | Author: | ZoRLu | | File Size: | 1687 | | Last Modified: | Nov 14 14:34:53 2008 | | MD5 Checksum: | a5dded1ebb7ebb57fa07e076dd9e01aa |
|
| /// File Name: | sfacs-upload.txt | Description:
| ScriptsFeed Auto Classifieds software suffers from a remote file upload vulnerability. | | Author: | ZoRLu | | File Size: | 1341 | | Last Modified: | Nov 14 14:33:59 2008 | | MD5 Checksum: | 9b2090c8fc4aa9f4e9f148f32031a218 |
|
| /// File Name: | sfrec-upload.txt | Description:
| ScriptsFeed Real Estate Classifieds software suffers from a remote file upload vulnerability. | | Author: | ZoRLu | | File Size: | 1337 | | Last Modified: | Nov 14 14:32:26 2008 | | MD5 Checksum: | 8e7a9ea3b15a9eeecd29fd101c71e250 |
|
| /// File Name: | gsrealestate-sqlrfuxss.txt | Description:
| The GS Real Estate Portal US/Internal module suffers from cross site scripting, SQL injection, and remote file upload vulnerabilities. | | Author: | ZoRLu | | File Size: | 2050 | | Last Modified: | Nov 14 14:30:29 2008 | | MD5 Checksum: | b62ae011225fd6086574d6404cd04337 |
|
| /// File Name: | netgear-dos.txt | Description:
| The Netgear WGR614v9 administrator interface can cause a denial of service condition on the router when a simple question mark is appended to the URL. | | Author: | staticrez | | File Size: | 523 | | Last Modified: | Nov 13 19:42:23 2008 | | MD5 Checksum: | fd3f5451cd1c3e5c4ed88d356fbf86c9 |
|
| /// File Name: | pi3web-dos.txt | Description:
| The Pi3Web ISAPI interface suffers from a denial of service vulnerability that causes the server to crash. Versions 2.0.13 and below are affected. | | Author: | Hamid Ebadi | | Homepage: | http://www.bugtraq.ir/ | | File Size: | 1418 | | Last Modified: | Nov 13 19:37:22 2008 | | MD5 Checksum: | 51ecfc6d32b8e3d6dac63a9c5a13b252 |
|
| /// File Name: | webhostdir-insecure.txt | Description:
| turnkeyforms Web Hosting Directory suffers from an arbitrary database backup and insecure cookie handling vulnerabilities. | | Author: | G4N0K | | File Size: | 2725 | | Last Modified: | Nov 13 18:53:58 2008 | | MD5 Checksum: | eb084bee26ea1a5a92a6d9c0d985e183 |
|
| /// File Name: | localclassifieds-bypass.txt | Description:
| turnkeyforms Local Classifieds suffers from a direct access vulnerability that allow for authentication bypass. | | Author: | G4N0K | | File Size: | 1666 | | Last Modified: | Nov 13 18:52:37 2008 | | MD5 Checksum: | 88593280e1c08906d8ef436acb9231e8 |
|
| /// File Name: | webhost-sql.txt | Description:
| AlstraSoft Web Host Directory suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | ZoRLu | | File Size: | 831 | | Last Modified: | Nov 12 19:24:59 2008 | | MD5 Checksum: | 728c4f5f95a646047e2a3fb7c9a4efe1 |
|
| /// File Name: | articlemanager-sql.txt | Description:
| AlstraSoft Article Manager Pro suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | ZoRLu | | File Size: | 877 | | Last Modified: | Nov 12 19:19:43 2008 | | MD5 Checksum: | b12f3425b7390898e2c5e11f010f8c3e |
|
| /// File Name: | senditpro-upload.txt | Description:
| AlstraSoft SendIt Pro suffers from a remote file upload vulnerability. | | Author: | ZoRLu | | File Size: | 1252 | | Last Modified: | Nov 12 19:16:55 2008 | | MD5 Checksum: | 66c946dbbea3834e2e2e89033e1e2d93 |
|
| /// File Name: | castlerock-overflow.txt | Description:
| Castle Rock Computing SNMPc versions below 7.1.1 remote buffer overflow proof of concept exploit. | | Author: | Praveen Darshanam | | File Size: | 2196 | | Last Modified: | Nov 12 18:35:46 2008 | | MD5 Checksum: | cdbf934f90c0dea4908a83a31caa4d9d |
|
| /// File Name: | joomlamarketplace-sql.txt | Description:
| The Joomla Marketplace component version 1.2.1 suffers from a remote SQL injection vulnerability. | | Author: | TR-ShaRk | | File Size: | 1175 | | Last Modified: | Nov 12 18:32:00 2008 | | MD5 Checksum: | 869ce1a26d06b99dfbc519feb4afb8e1 |
|
| /// File Name: | joomlarss-rfi.txt | Description:
| The Joomla Simple RSS Reader component version 1.0 suffers from a remote file inclusion vulnerability. | | Author: | NoGe | | File Size: | 1466 | | Last Modified: | Nov 12 18:30:00 2008 | | MD5 Checksum: | 25dbbb76e44a175a8fdb7f805e40cc34 |
|
| /// File Name: | netsnmp-overflow.txt | Description:
| Net-SNMP versions 5.1.4 and below, 5.2.4 and below, and 5.4.1 and below perl module buffer overflow proof of concept exploit. | | Author: | Praveen Darshanam | | File Size: | 2417 | | Last Modified: | Nov 12 18:27:20 2008 | | MD5 Checksum: | 3cf753c33e191a49edb84ba1d80c6aed |
|
| /// File Name: | businessdirectory-sql.txt | Description:
| PozScripts Business Directory Script suffers from a remote SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1213 | | Last Modified: | Nov 12 18:25:10 2008 | | MD5 Checksum: | e34785963daab4217cafbb18a6fea274 |
|
| /// File Name: | ms08-067..txt | Description:
| Microsoft Windows Server Service code execution exploit that takes advantage of the vulnerability listed in MS08-067. | | Author: | Polymorphours | | Homepage: | http://www.whitecell.org/ | | Related Exploit: | ms08-067.zip | | File Size: | 8167 | | Last Modified: | Nov 12 18:12:40 2008 | | MD5 Checksum: | 64c18aa7eaea647afd1485e300988dc7 |
|
| /// File Name: | joomlacatalogprod-sql.txt | Description:
| The com_catalogproduction Joomla/Mambo component suffers from a remote SQL injection vulnerability. | | Author: | boom3rang | | Homepage: | http://www.khq-crew.ws/ | | File Size: | 1159 | | Last Modified: | Nov 11 17:50:24 2008 | | MD5 Checksum: | b099e330f2d4e51392d6d4db97ec6fb3 |
|
| /// File Name: | joomlabooks-sql.txt | Description:
| The com_books Joomla Component suffers from a remote SQL injection vulnerability. | | Author: | boom3rang | | Homepage: | http://www.khq-crew.ws/ | | File Size: | 930 | | Last Modified: | Nov 11 17:50:09 2008 | | MD5 Checksum: | 8b0fa055f05778ba385485b30da8c247 |
|
| /// File Name: | joomlacontact-sql.txt | Description:
| The com_contactinfo Joomla component version 1.0 suffers from a remote SQL injection vulnerability. | | Author: | boom3rang | | Homepage: | http://www.khq-crew.ws/ | | File Size: | 1117 | | Last Modified: | Nov 11 17:48:25 2008 | | MD5 Checksum: | 4067b6408335450bcfbabe36ba8832fb |
|
| /// File Name: | linux-panic.txt | Description:
| Linux Kernel versions below 2.4.36.9 and below 2.6.27.5 Unix sockets local kernel panic exploit. | | Author: | Andrea Bittau | | File Size: | 2574 | | Last Modified: | Nov 11 17:42:58 2008 | | MD5 Checksum: | 8ca1708f6ff1c68baa8b0957acc47a93 |
|
| /// File Name: | ajclassifieds-bypass.txt | Description:
| AJ Classifieds suffers from direct access vulnerabilities that allow for authentication bypass. | | Author: | G4N0K | | File Size: | 1966 | | Last Modified: | Nov 11 15:56:25 2008 | | MD5 Checksum: | 4efa772f6cb8fce5a9324144f63fbd1b |
|
| /// File Name: | ajauction-bypass.txt | Description:
| AJ Auction suffers from direct access vulnerabilities that allow for authentication bypass. | | Author: | G4N0K | | File Size: | 2891 | | Last Modified: | Nov 11 15:55:27 2008 | | MD5 Checksum: | cb8dc1afe85fbcdfc4520ac1eb12ed07 |
|
| /// File Name: | freepolling-sql.txt | Description:
| AJ Square Free Polling Script suffers from blind SQL injection and vote reset vulnerabilities. | | Author: | G4N0K | | File Size: | 2529 | | Last Modified: | Nov 11 15:54:06 2008 | | MD5 Checksum: | 1883377cb3930320082a4a6c54f31dd6 |
|
| /// File Name: | prerealestate-sqlupload.txt | Description:
| Pre Real Estate Listings suffers from shell upload and SQL injection vulnerabilities. | | Author: | BackDoor | | File Size: | 566 | | Last Modified: | Nov 11 15:45:09 2008 | | MD5 Checksum: | 759888202053ad74042cda494f743520 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
