Section: .. / 0602-exploits /

Page 2 of 7
<< 1 2 3 4 5 6 7 >> Files 25 - 50 of 152

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	NSAG-196-23.02.2006.txt
Description:	NSA Group Advisory - FCKeditor version 2.2 allows for arbitrary file creation.
Homepage:	http://www.nsag.ru/
File Size:	1651
Last Modified:	Feb 26 05:03:00 2006
MD5 Checksum:	fca5e35b66c0300213711861c96d9103

/// File Name:	NSAG-195-23.02.2006.txt
Description:	NSA Group Advisory - FCKeditor version 2.0 FC is susceptible to a directory creation and browsing flaw.
Homepage:	http://www.nsag.ru/
File Size:	1516
Last Modified:	Feb 26 05:01:45 2006
MD5 Checksum:	d33ba6e53dfb508844378cd1569df0f9

/// File Name:	vuSQL.pl.txt
Description:	Simple perl exploit that makes use of a flaw in VU Site Engine version 2.0 that allows for unauthenticated addition of administrative users.
Author:	GeW, censored
Homepage:	http://www.security.nitro.ru
File Size:	1414
Last Modified:	Feb 26 04:59:07 2006
MD5 Checksum:	75085f71818bbd10217bebbaf1a3d5ac

/// File Name:	HYSA-2006-003.txt
Description:	HYSA-2006-003 h4cky0u.org Advisory 012 - Oi! Email Marketing version 3.0 is susceptible to SQL injection attacks.
Author:	Illuminatus
Homepage:	http://www.h4cky0u.org
File Size:	2296
Last Modified:	Feb 26 04:56:06 2006
MD5 Checksum:	9109bf4ab6e816ee8bfcfad1e0d171be

/// File Name:	EV0075.txt
Description:	Teca Diary PE version 1.0 is susceptible to SQL injection attacks. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/
File Size:	1066
Last Modified:	Feb 26 04:52:05 2006
MD5 Checksum:	c937b0a487e08d188219bba7144e571b

/// File Name:	downloadingbirds.txt
Description:	All versions of DownloadingBirds software have been found susceptible to a remote file inclusion flaw.
Author:	Silitoad
Homepage:	http://www.silitoad.org/
File Size:	1720
Last Modified:	Feb 26 04:45:17 2006
MD5 Checksum:	046e786f2508d1fe34482c95b053f95b

/// File Name:	noccw_10_incl_xpl.txt
Description:	NOCC Webmail versions 1.0 and below suffer from arbitrary local file inclusion, PHP injection, remote code execution, and cross site scripting flaws. Exploit included.
Author:	rgod
Homepage:	http://retrogod.altervista.org
File Size:	26011
Last Modified:	Feb 26 04:40:59 2006
MD5 Checksum:	4d3b9d4aac222e9b667ee87dabc67164

/// File Name:	rubronegrodotnet.txt
Description:	www.rubronegro.net is susceptible to cross site scripting and SQL injection attacks.
Author:	Rephumos
File Size:	1215
Last Modified:	Feb 26 04:34:19 2006
MD5 Checksum:	4f5151d022a964fa9621ec82b683f9f2

/// File Name:	mozThunDoS.txt
Description:	Mozilla Thunderbird's WYSIWYG rendering engine insufficiently filters javascript scripts. It is possible to write javascript in the SRC attribute of the IFRAME tag. This leads to execution when the email is edited (for instance when replying to the email), even if javascript is disabled in the preferences. Versions 1.0.7 and below are affected.
Author:	nono2357
File Size:	1957
Last Modified:	Feb 26 02:41:46 2006
MD5 Checksum:	9b25ea654be43f4e46167eb5b6bda9f8

/// File Name:	NoahMultiple.txt
Description:	Noah's Classifieds versions 1.3 and below are susceptible to path disclosure, SQL injection, cross site scripting, local file inclusion, and remote code execution flaws.
Author:	trueend5
Homepage:	http://www.kapda.ir
File Size:	3827
Last Modified:	Feb 26 02:39:39 2006
MD5 Checksum:	8467134875225b6b9062ea09abb89bdd

/// File Name:	ipswitch_dos.txt
Description:	IPSwitch WhatsUp Professional 2006 is susceptible to a denial of service condition. Details provided.
Author:	Josh Zlatin-Amishav
File Size:	1330
Last Modified:	Feb 26 02:37:45 2006
MD5 Checksum:	aac876847b84a06fa4cdc5291afbe90d

/// File Name:	runcmsXSS.txt
Description:	Runcms 1.x is susceptible to cross site scripting attacks.
Author:	Roozbeh Afrasiabi
Homepage:	http://www.kapda.ir
File Size:	1779
Last Modified:	Feb 26 02:30:36 2006
MD5 Checksum:	89023b9287375c0f75cf440226e2cecb

/// File Name:	wmp-profiteer.zip
Description:	Exploit for the Windows Media Player vulnerabilities discussed in MS06-006. Written in Perl.
Author:	Matthew Murphy
File Size:	2120
Last Modified:	Feb 26 02:27:16 2006
MD5 Checksum:	ae7a8fdf06e709fd53afeb8f04bfae1b

/// File Name:	bbXSS.txt
Description:	Blockbuster.com is susceptible to cross site scripting attacks.
Author:	Matthew Benenati
File Size:	403
Last Modified:	Feb 25 23:18:47 2006
MD5 Checksum:	ed20c72dcd2fb6ad26f21d4fffa43e27

/// File Name:	guestbook06.txt
Description:	Login - Guestbox version 0.6 suffers from cross site scripting and administrative bypass flaws.
Author:	l0om
Homepage:	http://www.excluded.org
File Size:	2771
Last Modified:	Feb 25 23:09:24 2006
MD5 Checksum:	524976647523d018bdecb03ae121f0db

/// File Name:	schooltools.htm.txt
Description:	Schooltools Site Builder Educator Edition remote SQL injection exploit.
Author:	MurderSkillz, uid0
Homepage:	http://www.g00ns.net
File Size:	1839
Last Modified:	Feb 25 22:56:50 2006
MD5 Checksum:	14a55eb4e06fd4df973d243b69079c19

/// File Name:	PHPNuke-sp3x.c
Description:	PHPNuke versions 7.8 and below remote SQL injection exploit that makes use of the vulnerability in the Your_Account module.
Author:	sp3x
Homepage:	http://www.securityreason.com/
File Size:	3447
Last Modified:	Feb 25 02:17:20 2006
MD5 Checksum:	ae7a89cb77d6ee2b1f417f96db41addd

/// File Name:	155022006-nokia_n70.txt
Description:	The Bluetooth stack on Nokia N70 cellular phones is susceptible to a remote denial of service attack.
Author:	Pierre BETOUIN
Homepage:	http://www.secuobs.com/
File Size:	2606
Last Modified:	Feb 25 02:13:10 2006
MD5 Checksum:	9256b6a4f5115440cb1e63a12ff9b211

/// File Name:	PHPNuke-Your_Account.txt
Description:	PHPNuke version 7.8 "Your_Account" SQL injection exploit.
Author:	sp3x
Homepage:	http://securityreason.com/achievement_exploitalert/7
File Size:	11206
Last Modified:	Feb 22 21:39:27 2006
MD5 Checksum:	2a7cde876d2a3e35d794920dfbb5dcb8

/// File Name:	dragonflycms9.0.6.1.txt
Description:	dragonflycms 9.0.6.1 suffers from multiple XSS vulnerabilities.
Homepage:	http://lostmon.blogspot.com/2006/02/
File Size:	4730
Last Modified:	Feb 22 21:11:54 2006
MD5 Checksum:	9cf3b9a2007b7801dba483ae5aa82dfa

/// File Name:	EV0073.txt
Description:	Magic Downloads 1.1.3 allows untrusted users to make changes to config.php.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/
File Size:	1289
Last Modified:	Feb 22 20:44:28 2006
MD5 Checksum:	d5a391cbd20fe4750602836d4ea98074

/// File Name:	EV0072.txt
Description:	Reamday Enterprises Magic News Lite version 1.2.3 is vulnerable to remote code execution.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/
File Size:	1791
Last Modified:	Feb 22 20:43:02 2006
MD5 Checksum:	2d244d68e32852cd9e0c7a79b2925e18

/// File Name:	EV0074.txt
Description:	BirthSys 3.1 suffers from SQL injection.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/
File Size:	1094
Last Modified:	Feb 22 20:40:51 2006
MD5 Checksum:	ada3e000fd0b7f44b73b741458622fdd

/// File Name:	geeklog-1.3.11.txt
Description:	Geeklog is vulnerable to a number of different attacks such as SQL Injection, and arbitrary file inclusion. These attacks can be combined to ultimately execute code on the vulnerable web server in a very reliable manner.
Author:	GulfTech Security Research
Homepage:	http://www.gulftech.org/?node=research&article_id=00102-02192006
File Size:	4908
Last Modified:	Feb 22 20:33:09 2006
MD5 Checksum:	b8d327eed304a17382aeea3644d954b8

/// File Name:	MiniNukeCMS.txt
Description:	The MiniNuke CMS system suffers from a SQL injection vulnerability in pages.asp. Detailed exploitation provided.
Author:	nukedx a.k.a nuker
Homepage:	http://www.nukedx.com/
File Size:	3418
Last Modified:	Feb 22 20:29:47 2006
MD5 Checksum:	fefcb5dd1aeaff6889c62dfd06aface4