Section: .. / 0807-exploits /

Page 3 of 11
<< 1 2 3 4 5 6 7 8 9 10 11 >> Files 50 - 75 of 268

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	phnews-lfi.txt
Description:	pHNews CMS Alpha 1 suffers from multiple local file inclusion vulnerabilities.
Author:	CraCkEr
File Size:	4531
Last Modified:	Jul 9 21:40:22 2008
MD5 Checksum:	629f0dfecd4607c20eca38023a943b2c

/// File Name:	smbclientparser-exec.txt
Description:	The SmbClientParser perl module suffers from a vulnerability that allows for remote command execution.
Author:	Jesus Olmos Gonzalez
File Size:	4479
Last Modified:	Jul 18 17:16:50 2008
MD5 Checksum:	435e611466edb69599f8c7790d08fce3

/// File Name:	winremote-dos.txt
Description:	WinRemotePC FULL+LITE 2008 r.2server memory and CPU consumption denial of service exploit.
Author:	Shinnok
File Size:	4394
Last Modified:	Jul 15 12:42:00 2008
MD5 Checksum:	9048310bfe66b5a377ce890e8c8a2842

/// File Name:	webwiz-xss.txt
Description:	Web Wiz Rich Text Editor version 4.02 suffers from cross site scripting vulnerabilities.
Author:	CSDT
File Size:	4328
Last Modified:	Jul 28 20:56:26 2008
MD5 Checksum:	cdda215aeb254aa61ff524d2261fbefe

/// File Name:	siol-overflow.txt
Description:	SiOL Komunikator version 1.3 suffers from an ActiveX related stack overflow vulnerability. Denial of service code included.
Author:	Edi Strosar
File Size:	4214
Last Modified:	Jul 29 17:14:31 2008
MD5 Checksum:	2e7fc3092c65abb9e41d3c315d59fc4d

/// File Name:	adv100-K-159-2008.txt
Description:	Comdev Web Blogger versions 4.1.3 and below suffer from a remote SQL injection vulnerability.
Author:	M.Hasran Addahroni
Homepage:	http://advisories.echo.or.id/
File Size:	4161
Last Modified:	Jul 15 12:49:00 2008
MD5 Checksum:	c7b198cf6a45ea9d3b1498ccefab29d9

/// File Name:	auracms-addeditdelete.txt
Description:	AuraCMS versions 2.2.2 and below arbitrary edit/add/delete exploit that makes use of pages_data.php.
Author:	k1tk4t
Homepage:	http://newhack.org/
File Size:	4138
Last Modified:	Jul 10 02:58:15 2008
MD5 Checksum:	d46569d5cae2819634ecc835ba19fbbf

/// File Name:	brewblogger-addadmin.txt
Description:	BrewBlogger version 2.1.0.1 arbitrary add administrator exploit.
Author:	CWH Underground
Homepage:	http://www.citecclub.org/
File Size:	4081
Last Modified:	Jul 10 02:15:02 2008
MD5 Checksum:	894a012e7a19eb398cdb42471cb0d64a

/// File Name:	emc-sql.txt
Description:	EMC's Centera Universal Access product version CUA4.0_4735.p4 suffers from a SQL injection vulnerability.
Author:	Aaron Brown,Lars Heidelberg
File Size:	4007
Last Modified:	Jul 23 19:44:55 2008
MD5 Checksum:	535213a9fae7b8708f9e219a84119c62

/// File Name:	beaweblogic-exec.txt
Description:	Bea Weblogic Apache Connector code execution and denial of service exploit.
Author:	Kingcope
File Size:	3922
Last Modified:	Jul 17 15:25:37 2008
MD5 Checksum:	b89a6b3557f431c1bc3869e6de7751ab

/// File Name:	cisco-sa-20070509-iosftp.c
Description:	Cisco IOS FTP server remote exploit that escalates privileges to level 15. Specific hard-coded addresses are for IOS 12.3(18) on a 2621XM router. Slightly crippled forcing this to only work when the router is connected to a debugger.
Author:	Andy Davis
Related File:	cisco-sa-20070509-iosftp.txt
File Size:	3884
Last Modified:	Jul 29 17:42:32 2008
MD5 Checksum:	7aab39aff433bfa1e79a258092b9ca34

/// File Name:	mambongal-sql.txt
Description:	The Mambo n-gallery component suffers from multiple SQL injection vulnerabilities.
Author:	AlbaniaN-[H]
Homepage:	http://www.khg-crew.ws/
File Size:	3801
Last Modified:	Jul 1 11:37:48 2008
MD5 Checksum:	518ab12f168cd87e8d1f56f8f07ae494

/// File Name:	barenuked-admin.txt
Description:	BareNuked CMS version 1.1.0 arbitrary add administrator exploit.
Author:	CWH Underground
Homepage:	http://www.citecclub.org/
File Size:	3797
Last Modified:	Jul 1 11:19:05 2008
MD5 Checksum:	5ec47feac834cbac9413af2b028e7cd6

/// File Name:	pivot-disclosure.txt
Description:	Pivot version 1.40.5 Dreamwind load_template() credential disclosure exploit.
Author:	Nine:Situations:Group
Homepage:	http://retrogod.altervista.org/
File Size:	3721
Last Modified:	Jul 1 11:35:32 2008
MD5 Checksum:	3aa95a0656fbb05e1de96366a7bc772d

/// File Name:	quickbite.pl.txt
Description:	Safari using Quicktime versions 7.3 and below RTSP Content-Type remote buffer overflow exploit. Binds a shell to port 4444.
Author:	krafty
File Size:	3673
Last Modified:	Jul 10 00:12:36 2008
MD5 Checksum:	27f46f371aef38640ed13d8e403a281d

/// File Name:	mybloggie-sql.txt
Description:	myBloggie version 2.1.6 suffers from multiple remote SQL injection vulnerability.
Author:	Jesper Jurcenoks
Homepage:	http://www.netvigilance.com/
File Size:	3653
Related CVE(s):	CVE-2007-1899
Last Modified:	Jul 1 11:02:11 2008
MD5 Checksum:	e9b34428bf379bf84fc15a1fc314f32b

/// File Name:	DSECRG-08-033.txt
Description:	Pixelpost PhotoBlog version 1.7.1 suffers from a local file inclusion vulnerability.
Author:	Digital Security Research Group
Homepage:	http://www.dsec.ru/
File Size:	3644
Last Modified:	Jul 28 11:47:20 2008
MD5 Checksum:	1ad92363fa032fc004349c966a6a12b1

/// File Name:	ashop-sql.txt
Description:	AShop Deluxe version 4.x remote SQL injection exploit that takes advantage of catalogue.php.
Author:	n0c0py
Homepage:	http://n0c0py.uni.cc/
File Size:	3498
Last Modified:	Jul 1 11:03:52 2008
MD5 Checksum:	0b77fa10fe8a2227dc7f73298d9ed400

/// File Name:	endonesia-sql.txt
Description:	eNdonesia version 8.4 remote SQL injection exploit that takes advantage of the calendar module.
Author:	Jack
File Size:	3349
Last Modified:	Jul 31 11:15:53 2008
MD5 Checksum:	8bff5e54cb510b4b387b287c56efe645

/// File Name:	hrsmulti-sql.txt
Description:	HRS Multi blind SQL injection exploit that makes use of picture_pic_bv.asp.
Author:	Mr.SQL
Homepage:	http://www.pal-hacker.com/
File Size:	3171
Last Modified:	Jul 21 17:11:00 2008
MD5 Checksum:	e8b51069e112a014af886b27d46e9a6a

/// File Name:	afurlxss-08_005.txt
Description:	Affinium Campaign version 7.2.1.0.55 suffers from multiple cross site scripting vulnerabilities.
Author:	Tim Brown
Homepage:	http://www.portcullis-security.com/
File Size:	3118
Last Modified:	Jul 30 23:38:12 2008
MD5 Checksum:	a40af2b210279d4f88bbd6a9f78d411d

/// File Name:	DSECRG-08-030.txt
Description:	Claroline eLearning and eWorking Platform version 1.8.9 suffers from cross site scripting, unsigned redirect, and cross site request forgery vulnerabilities.
Author:	Digital Security Research Group
Homepage:	http://www.dsec.ru/
File Size:	3112
Last Modified:	Jul 18 17:20:57 2008
MD5 Checksum:	a1d98b6503e897b1b91cf0455730d9b4

/// File Name:	digileave-sql.txt
Description:	Digileave version 1.2 blind SQL injection exploit that makes use of info_book.asp.
Author:	Mr.SQL
Homepage:	http://www.pal-hacker.com/
File Size:	3086
Last Modified:	Jul 21 15:41:26 2008
MD5 Checksum:	8213af1ff76ff6ba7ba06c244bb5dba4

/// File Name:	vbulletin-adminxss.txt
Description:	vBulletin versions 3.7.2 and below and 3.6.10 PL2 and below suffer from a persistent cross site scripting flaw in the administrator logs.
Author:	Jessica Hope
File Size:	3051
Last Modified:	Jul 10 02:28:37 2008
MD5 Checksum:	5f8ab239ec82f84f54b050d90240b5bd

/// File Name:	myblog-multi.txt
Description:	MyBlog versions 0.9.8 and below suffer from information leak and cross site scripting vulnerabilities.
Author:	AmnPardaz Security Research Team
Homepage:	http://www.bugreport.ir/
File Size:	3038
Last Modified:	Jul 21 15:51:54 2008
MD5 Checksum:	1b2c8fb7ab831ff9736afa28118a3d2b