Section: .. / 0802-exploits /

Page 3 of 14
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 >> Files 50 - 75 of 334

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	DSECRG-08-013.txt
Description:	MODx CMS versions 0.9.6.1 and 0.9.6.1p1 suffer from cross site scripting and cross site request forgery vulnerabilities.
Author:	Sh2kerr, Stas Svistunovich
Homepage:	http://www.dsec.ru/
File Size:	4397
Last Modified:	Feb 7 20:20:57 2008
MD5 Checksum:	aab6484a7aa480a41f823397cdf045c1

/// File Name:	punbb-blindpasswd.txt
Description:	PunBB versions 1.2.16 and below blind password recovery exploit.
Author:	EpiBite
Related File:	SE-2008-01.txt
File Size:	4329
Last Modified:	Feb 21 00:30:59 2008
MD5 Checksum:	a6ab2960f28c522ad67633a821fe3579

/// File Name:	multicart-blindsql.txt
Description:	MultiCart version 2.0 remote SQL injection exploit that leverages productdetails.php.
Author:	t0pp8uzz, xprog
File Size:	4159
Last Modified:	Feb 20 23:52:13 2008
MD5 Checksum:	081be277b7230808c29c7db576e01320

/// File Name:	xnu-ipv6-ipcomp.c
Description:	Apple Mac OS X xnu versions 1228.3.13 and below ipv6-ipcomp remote kernel denial of service proof of concept exploit.
Author:	mu-b
Homepage:	http://www.digit-labs.org/
File Size:	4014
Last Modified:	Feb 26 18:49:21 2008
MD5 Checksum:	d81eb122c53132981eba29d286edc696

/// File Name:	eazyportal-sql.txt
Description:	EazyPortal versions 1.0 and below cookie-related remote SQL injection exploit.
Author:	Iron
Homepage:	http://ironwarez.info/
File Size:	3962
Last Modified:	Feb 27 13:27:38 2008
MD5 Checksum:	13e541481db75adc5d988fdfac0c56a7

/// File Name:	msdirectspeech-overflow.txt
Description:	Microsoft DirectSpeechSynthesis module remote buffer overflow exploit that makes use of XVoice.dll version 4.0.4.3303.
Author:	rgod
Homepage:	http://retrogod.altervista.org/
File Size:	3949
Last Modified:	Feb 11 14:25:28 2008
MD5 Checksum:	2eb987a41f571fad1ca6e410894fec4a

/// File Name:	PR06-12.txt
Description:	BEA Plumtree Foundation portal version 6.0 and BEA AquaLogic Interaction version 6.1 are both vulnerable to a cross site scripting vulnerability.
Author:	Jan Fry, Adrian Pastor
Homepage:	http://www.procheckup.com/
File Size:	3746
Last Modified:	Feb 20 00:45:12 2008
MD5 Checksum:	dc1477e78b6d8ae015da20f40d8399ed

/// File Name:	PR08-01.txt
Description:	Several cross site scripting flaws, a cross domain redirect, and a webroot disclosure exist in Spyce - Python Server Pages (PSP).
Author:	Richard Brain, Jan Fry, Bruno Kovacs
Homepage:	http://www.procheckup.com/
File Size:	3635
Last Modified:	Feb 20 00:10:37 2008
MD5 Checksum:	68df521d657fa95bfec5fd3c0a54fd58

/// File Name:	dlink-overflow.txt
Description:	D-Link MPEG4 SHM Audio Control remote overflow exploit that makes use of VAPGDecoder.dll version 1.7.0.5.
Author:	rgod
Homepage:	http://retrogod.altervista.org/
File Size:	3536
Last Modified:	Feb 26 18:09:10 2008
MD5 Checksum:	03004cfc84f9d51667c6b4b2d6bf8b14

/// File Name:	wsftp-disclose.txt
Description:	WS_FTP Server versions 6.1.0.0 and below and Ipswitch What's Up Gold version 11.03 suffer from source disclosure and authorization bypass vulnerabilities.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
File Size:	3402
Last Modified:	Feb 6 17:41:09 2008
MD5 Checksum:	81b64097e04c318bfabd766d172695cb

/// File Name:	serendipityfreetag-xss.txt
Description:	The Serendipity Freetag-plugin versions 2.95 and below suffers from a cross site scripting vulnerability.
Author:	Alexander Brachmann
File Size:	3304
Last Modified:	Feb 8 17:29:19 2008
MD5 Checksum:	010d3142279bbc16e61aecbf456a0bf9

/// File Name:	nukeditadmin-sql.txt
Description:	Nukedit version 4.9.x remote create admin SQL injection exploit.
Author:	r3dm0v3
Homepage:	http://r3dm0v3.persianblog.ir/
File Size:	3260
Last Modified:	Feb 26 18:53:41 2008
MD5 Checksum:	dadf6fde3e0b8263c3eb11bff2af6fb8

/// File Name:	DSECRG-08-008.txt
Description:	Txp CMS version 4.0.5 suffers from denial of service and cross site scripting vulnerabilities.
Author:	Sh2kerr, Stas Svistunovich
Homepage:	http://www.dsec.ru/
File Size:	3195
Last Modified:	Feb 4 14:49:13 2008
MD5 Checksum:	e1001219ec55f03a7fe81c20c9281f66

/// File Name:	jspwiki-multi.txt
Description:	An input validation problem in JSPWiki allows the execution of arbitrary local .jsp files. Cross site scripting vulnerabilities also exist. Versions 2.4.104 and 2.5.139 are vulnerable. Earlier versions may also be susceptible.
Author:	Moshe BA
Homepage:	http://www.bugsec.com/
File Size:	3182
Last Modified:	Feb 13 19:37:28 2008
MD5 Checksum:	f47e521f82f1a19f74584fcba6558722

/// File Name:	CiscoCallManager_sql_07_016.txt
Description:	Portcullis Security Advisory - The Cisco Unified CallManager is vulnerable to multiple SQL injections in the user interface as well as in the administration interface. Affected versions include 5.0.4.2000-1, 5.1, 6.0, and 6.1.
Author:	Nico Leidecker
File Size:	3176
Related CVE(s):	CVE-2008-0026
Last Modified:	Feb 21 19:59:10 2008
MD5 Checksum:	16e2742e79111521839150fa86e6f2aa

/// File Name:	netoffice-exec.txt
Description:	netOffice Dwins versions 1.3 suffers from remote code execution vulnerabilities.
Author:	dB
File Size:	3075
Last Modified:	Mar 3 14:23:18 2008
MD5 Checksum:	0b9b3369a59031e6305282004d0246b3

/// File Name:	auracms22-sql.txt
Description:	AuraCMS version 2.2 suffers from a remote SQL injection vulnerability in gallery_data.php.
Author:	DNX
File Size:	3065
Last Modified:	Feb 12 21:56:52 2008
MD5 Checksum:	a4027f081eb855c64018892dab2c17b3

/// File Name:	gkrellweather2sh.c
Description:	Local stack overflow exploit for the gkrellweather plugin version 0.2.7 that works with gkrellm version 2.2.9. Note that this is a proof of concept and only escalates privileges if the binary is setuid or spawned with sudo. By default, this binary is not normally setuid.
Author:	Manuel Gebele
File Size:	3034
Last Modified:	Feb 13 19:40:17 2008
MD5 Checksum:	f41fa689c86509020b4e6d2bf676f3ec

/// File Name:	DSECRG-08-009.txt
Description:	XOOPS version 2.0.18 suffers from local file inclusion and URL redirection vulnerabilities.
Author:	Sh2kerr, Stas Svistunovich
Homepage:	http://www.dsec.ru/
File Size:	2961
Last Modified:	Feb 4 14:49:59 2008
MD5 Checksum:	fb76134961718355d10eba6eec8d8c87

/// File Name:	wbb-blindsql.txt
Description:	Woltlab Burning Board version 3.0.x remote blind SQL injection exploit.
Author:	NBBN
File Size:	2954
Last Modified:	Feb 20 23:43:54 2008
MD5 Checksum:	95093184b721b66508eaea65302f1521

/// File Name:	wpmu-exec.txt
Description:	Wordpress MU versions below 1.3.2 active_plugins option code execution exploit.
Author:	Alexander Concha
Homepage:	http://www.buayacorp.com/
File Size:	2870
Last Modified:	Feb 5 20:46:44 2008
MD5 Checksum:	cff73c0816f110093c1d8760dbdb41a4

/// File Name:	DSECRG-08-016.txt
Description:	Jinzora Media Jukebox version 2.7.5 suffers from multiple cross site scripting vulnerabilities.
Author:	Sh2kerr, Stas Svistunovich
Homepage:	http://www.dsec.ru/
File Size:	2869
Last Modified:	Feb 20 00:42:17 2008
MD5 Checksum:	10082ff9ad8e464e5774e99ad5183951

/// File Name:	DSECRG-08-012.txt
Description:	Azucar CMS version 1.3 suffers from a local file inclusion vulnerability.
Author:	Sh2kerr, Stas Svistunovich
Homepage:	http://www.dsec.ru/
File Size:	2861
Last Modified:	Feb 5 20:11:25 2008
MD5 Checksum:	23e797818c14c48d5a24969006f3fb57

/// File Name:	diane_lane_fucked_hard.c
Description:	Linux kernel versions 2.6.23 through 2.6.24 vmsplice local root exploit.
Author:	qaaz
File Size:	2856
Last Modified:	Feb 11 15:55:32 2008
MD5 Checksum:	8123ba9a532639b010143d80373a1c7d

/// File Name:	evision-sql.txt
Description:	e-Vision version 2.02 suffers from multiple remote SQL injection vulnerabilities.
Author:	Cod3rZ
Homepage:	http://cod3rz.helloweb.eu/
File Size:	2741
Last Modified:	Feb 25 15:47:19 2008
MD5 Checksum:	d324b0be32c0e0f79d7186640bd2a53a