Section: .. / 0509-exploits /

Page 3 of 4
<< 1 2 3 4 >> Files 50 - 75 of 78

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	phpnukeXSS.txt
Description:	The modules.php script in PHP-Nuke is susceptible to cross site scripting attacks via the query variable.
Author:	bhfh
File Size:	468
Last Modified:	Sep 7 09:16:38 2005
MD5 Checksum:	8591a54f60962364fb91114dad6fc937

/// File Name:	phpcal.txt
Description:	phpCommunityCalendar 4.0.3 suffers from login bypass, SQL injection, and cross site scripting vulnerabilities. Full exploitation details are provided.
Author:	rgod
Homepage:	http://rgod.altervista.org
File Size:	2438
Last Modified:	Sep 7 09:09:59 2005
MD5 Checksum:	45e9b6694028deb005356f830802fa90

/// File Name:	dl-mancgi.c
Description:	Man-cgi/Man2web/ManView remote command execution exploit. Tested against Man-cgi 1.11. All versions are affected.
Author:	tracewar
File Size:	4900
Last Modified:	Sep 7 09:07:32 2005
MD5 Checksum:	85812cee9ec0565cb9e394e09991259d

/// File Name:	dl-cups.c
Description:	CUPs 1.x denial of service exploit.
Author:	tracewar
File Size:	1979
Last Modified:	Sep 7 09:06:03 2005
MD5 Checksum:	b650d33eba4a186d7579dee6006ffd21

/// File Name:	pblang465.txt
Description:	PBLang 4.65 and possibly prior versions suffers from remote code execution, administrative credentials disclosure, system information disclosure, cross site scripting and path disclosure vulnerabilities.
Author:	rgod
Homepage:	http://rgod.altervista.org/pblang465.html
File Size:	9064
Last Modified:	Sep 7 09:02:45 2005
MD5 Checksum:	51be931553378c61f187b04af3948651

/// File Name:	freeSMTP.pl.txt
Description:	Proof of concept exploit for the Free SMTP server versions 2.2 and below spam filter vulnerability.
Homepage:	http://nfamous.2hell.com/
File Size:	2339
Last Modified:	Sep 7 09:00:00 2005
MD5 Checksum:	61087dc9d7f27d06ec3546b22ef58928

/// File Name:	ms05-018.c
Description:	MS05-018 windows CSRSS.EXE stack overflow local exploit version 1.0. Systems affected: Windows 2000 SP3/SP4 (all languages).
Author:	eyas
Homepage:	http://www.xfocus.net/
File Size:	5853
Last Modified:	Sep 7 08:57:25 2005
MD5 Checksum:	4fb30891a7dbd3754cf3c85610729680

/// File Name:	mybbXSS.txt
Description:	All versions of MyBB suffer from cross site scripting attacks.
Author:	robokoder
File Size:	1141
Last Modified:	Sep 7 08:45:19 2005
MD5 Checksum:	bf18c9d0c91614f1c04bd48b6039f24d

/// File Name:	aMemberPro234.txt
Description:	aMember Pro 2.3.4 is susceptible to a remote PHP file include vulnerability.
Author:	NewAngels Team
File Size:	2323
Last Modified:	Sep 7 08:22:41 2005
MD5 Checksum:	e63a88a6ec724c8692573a397772918d

/// File Name:	realchat_PoC.tgz
Description:	Proof of concept exploit for Realchat version 3.5.1b that allows for user impersonation.
Author:	Andreas
Homepage:	http://www.bedatec.de/
Related File:	bedatecRealchat.txt
File Size:	2931
Last Modified:	Sep 7 08:21:13 2005
MD5 Checksum:	3b28ecb9b72cbfacc956ea5a2c740977

/// File Name:	urbanGame.txt
Description:	Urban 1.5.3_1, part of the FreeBSD ports collection, is vulnerable to a stack overflow when handling the $HOME environmental variable. Since urban is installed with setgid games privileges, privilege escalation is possible. Earlier versions may also be susceptible. Proof of concept exploit included.
Author:	Shaun Colley
File Size:	6738
Last Modified:	Sep 7 08:18:43 2005
MD5 Checksum:	7b58bfa9889fd92a18fb97d8fa8a63fb

/// File Name:	openXSS.txt
Description:	Open Webmail 2.41 is susceptible to cross site scripting attacks.
Author:	s3cure
File Size:	432
Last Modified:	Sep 7 08:12:27 2005
MD5 Checksum:	559c19c051b6d38f0a2bddadeb423edd

/// File Name:	midicartInject.txt
Description:	MidiCart ASP Shopping Cart, evaluation/standard/pro versions 7, are susceptible to cross site scripting and SQL injection attacks.
Author:	John Cobb
Homepage:	http://www.NoBytes.com
File Size:	1459
Last Modified:	Sep 7 06:49:45 2005
MD5 Checksum:	24e7ca324c0390f45bfc77653b3b3222

/// File Name:	unb153.html
Description:	UNB 1.5.3 suffers from a cross site scripting vulnerability.
Author:	rgod
Homepage:	http://rgod.altervista.org
File Size:	443
Last Modified:	Sep 5 09:17:58 2005
MD5 Checksum:	d3f5b4c66c1e4f831f4db71bbd253698

/// File Name:	chitchat.html
Description:	Cyber-Cats ChitChat 2.0 permits cross site scripting attacks, allows for user launched attacks, permits insecure file deletion, and suffers from other vulnerabilities.
Author:	rgod
Homepage:	http://rgod.altervista.org
File Size:	2953
Last Modified:	Sep 5 09:17:13 2005
MD5 Checksum:	f266a7158672df8a2cac3d031bd26c58

/// File Name:	filezillaWeak.txt
Description:	The FileZilla client stores passwords using a weak XOR 'encryption'. The value of the cipher key is static and can be found in the source code. This vulnerability has been successfully tested on versions 2.2.14b and 2.2.15. However, it is suspected that most previous versions are also affected.
Author:	Adrian Pastor
Homepage:	http://www.ikwt.com
File Size:	7849
Last Modified:	Sep 5 09:01:17 2005
MD5 Checksum:	b691adde53fbe91eb1abc1c237557b2d

/// File Name:	phorum5x.txt
Description:	Phorum versions 5.0.17a and below suffer from multiple vulnerabilities. These include cross site scripting, session hijacking, and insecure creation of client cookies.
Author:	Scott Dewey
File Size:	7619
Last Modified:	Sep 5 08:53:55 2005
MD5 Checksum:	71806d1f033150bf32f3846613dcd53b

/// File Name:	cybsecApps.txt
Description:	Multiple vendor web scanning utilities suffer from script injection vulnerabilities. These include N-Stealth Commercial Edition versions below 5.8.0.38, N-Stealth Free Edition versions below 5.8.1.03, and Nikto versions 1.35 and below.
Author:	mnunez
Homepage:	http://www.cybsec.com
File Size:	3079
Last Modified:	Sep 5 08:48:37 2005
MD5 Checksum:	7d45be9fc959f3bd67d24fc2fd803a96

/// File Name:	2005.1.txt
Description:	The Barracuda Spam Firewall Appliance firmware versions 3.1.17 and below suffer from directory traversal, remote command execution, and password retrieval vulnerabilities.
Author:	Francois Harvey
Homepage:	http://www.securiweb.net/wiki/Ressources/AvisDeSecurite/2005.1
File Size:	4453
Last Modified:	Sep 5 08:46:34 2005
MD5 Checksum:	b0000488614fe541cc3161be683560c0

/// File Name:	froxRead.txt
Description:	frox is susceptible to an arbitrary file reading vulnerability.
Author:	c1zc0
Homepage:	http://c1zc0.com/
File Size:	986
Last Modified:	Sep 5 08:28:29 2005
MD5 Checksum:	a8c2c3678e6149edaf495a8ec325ed5e

/// File Name:	CMS010.txt
Description:	CMS Made Simple versions 0.10 and below suffer from a PHP injection vulnerability.
Author:	Filip Groszynski
File Size:	1809
Last Modified:	Sep 1 08:48:55 2005
MD5 Checksum:	f97d86241624e32246c09b339bd09cd6

/// File Name:	symantecPassword.txt
Description:	Symantec Anti Virus Corporate Edition version 9.x suffers from a local password disclosure flaw where anyone on a machine can view the LiveUpdate password.
Author:	golovast
File Size:	2487
Last Modified:	Sep 1 08:44:55 2005
MD5 Checksum:	1671caf407757f5ecc6b846d70580f7a

/// File Name:	greymatterXSS.txt
Description:	The Greymatter web log is susceptible to cross site scripting attacks due to a lack of sanitizing user input variables.
Homepage:	http://www.securityinfo.ru
File Size:	1665
Last Modified:	Sep 1 08:22:35 2005
MD5 Checksum:	5414bda33084e874c1fc5d1fec45ab83

/// File Name:	flatnuke256.txt
Description:	FlatNuke version 2.5.6 suffers from directory traversal, cross site scripting, and path disclosure flaws. Detailed exploitation provided.
Author:	rgod
Homepage:	http://www.rgod.altervista.org/
File Size:	1094
Last Modified:	Sep 1 08:18:47 2005
MD5 Checksum:	ef2acec961bba663e45f93a3be00e275

/// File Name:	cpanel-9x_RCE.c
Description:	Exploit for cPanel versions below and equal to 9x that takes advantage of a remote command execution vulnerability.
Author:	lympex
Homepage:	http://l-bytes.ne
File Size:	2660
Last Modified:	Sep 1 08:14:21 2005
MD5 Checksum:	b3cb28851cd689683bd079e8f6b054e4