Section: .. / 0505-exploits /

Page 2 of 6
<< 1 2 3 4 5 6 >> Files 25 - 50 of 149

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	comersusXSSsql.txt
Description:	Spread The Word, a Comersus based bookstore, is susceptible to multiple cross site scripting and SQL injection flaws.
Author:	Lostmon
File Size:	5816
Last Modified:	Aug 14 22:21:55 2005
MD5 Checksum:	11d03260aa83963bb20b709b917231e2

/// File Name:	gforgeexec.txt
Description:	GForge versions below 4.0 suffer from a remote code execution flaw.
Author:	Filippo Spike Morelli
File Size:	4750
Last Modified:	Aug 14 22:18:21 2005
MD5 Checksum:	5e5c44abd23dafcce0218263e261b418

/// File Name:	bluecoat7111.txt
Description:	Blue Coat Reporter 7.1.1.1 suffers from privilege escalation, HTML injection, and cross site scripting flaws.
Author:	Oliver Karow
Homepage:	http://www.oliverkarow.de/research/bluecoat.htm
File Size:	3373
Last Modified:	Aug 14 22:17:08 2005
MD5 Checksum:	80a34f871f5afa30f91a7ae51459c359

/// File Name:	ZyxelIPHandling.txt
Description:	The Zyxel Prestige 650R-31 ADSL router is susceptible to a denial of service attack using fragmented packets.
Author:	Federico Kirschbaum
Homepage:	http://www.infobyte.com.ar
File Size:	3471
Last Modified:	Aug 14 22:13:23 2005
MD5 Checksum:	3908f18ddb797b6b9d238410b44c6d2d

/// File Name:	sambarXSS.txt
Description:	Sambar Server 6.2 is susceptible to multiple cross site scripting flaws.
Author:	Jamie Fisher
File Size:	22179
Last Modified:	Aug 14 22:09:15 2005
MD5 Checksum:	f44c859653f5d39a26e648ec64323564

/// File Name:	f3r4.txt
Description:	INMOLUXE Premium 2.0 is susceptible to SQL injection attacks.
Author:	F3R4_R4PP3R
File Size:	1842
Last Modified:	Aug 14 10:16:15 2005
MD5 Checksum:	0a200f78eefdacbf9b0bd4836fddb430

/// File Name:	portail13.txt
Description:	PortailPHP version 1.3 suffers from SQL injection flaws.
Homepage:	http://www.svt.nukleon.us
File Size:	1364
Last Modified:	Aug 14 09:38:13 2005
MD5 Checksum:	28c48ae028ca1a7cf31979d33ef81b7c

/// File Name:	postnukeSQL0760rc3.txt
Description:	Postnuke versions 0.760RC3 and below suffer from SQL injection attacks.
Author:	Maksymilian Arciemowicz
File Size:	4584
Last Modified:	Aug 14 09:33:08 2005
MD5 Checksum:	825d4ced1eb00d1db7e5169dbef0099e

/// File Name:	postnuke0760rc3.txt
Description:	Postnuke versions 0.760RC3 and below suffer from cross site scripting and path disclosure flaws.
Author:	Maksymilian Arciemowicz
File Size:	4358
Last Modified:	Aug 14 09:31:43 2005
MD5 Checksum:	cbef98d5d89c1eb9626f182d3a34ded3

/// File Name:	637934.c
Description:	Proof of concept exploit that demonstrates how TCP does not adequately validate segments before updating the timestamp value.
Author:	Daniel Hartmeier
File Size:	8420
Last Modified:	Aug 14 09:28:11 2005
MD5 Checksum:	3709aeffdf04a85af2ec4b2f0e78112f

/// File Name:	postnuke0750.txt
Description:	Postnuke versions 0.750 and below suffer from SQL injection flaws.
Author:	Maksymilian Arciemowicz
File Size:	4540
Last Modified:	Aug 14 09:24:17 2005
MD5 Checksum:	efa953ad1c81d724fe48650047a0b140

/// File Name:	picasm.txt
Description:	picasm versions 1.12b and below suffer from a stack overflow. Exploit included.
Author:	Shaun Colley
File Size:	5653
Last Modified:	Aug 14 09:20:39 2005
MD5 Checksum:	6a33c54f36b4605e72fe3058f268b1e2

/// File Name:	wordpress15sql.txt
Description:	Wordpress versions 1.5 and below suffer from SQL injection and cross site scripting flaws.
Author:	Thomas Waldegger
File Size:	2855
Last Modified:	Aug 14 09:14:34 2005
MD5 Checksum:	861e1a416b2ffd14be3526bbc402f370

/// File Name:	TOPo22.txt
Description:	TOPo 2.2 is susceptible to various cross site scripting attacks.
Author:	Lostmon
File Size:	4475
Last Modified:	Aug 14 09:12:59 2005
MD5 Checksum:	f9c07426f1c2805a2a97d9d5e20f98e1

/// File Name:	phpATMinclude.txt
Description:	phpATM 1.21 suffers from a remote file inclusion flaw.
Author:	Ingvar Gilbert
File Size:	1014
Last Modified:	Aug 14 09:09:48 2005
MD5 Checksum:	0735e37f040ad0f8453965036537e4fb

/// File Name:	x_aix5_bellmail.pl.txt
Description:	Exploit for the race condition vulnerability in /usr/bin/bellmail on AIX5.
Author:	watercloud
Homepage:	http://www.xfocus.org
File Size:	6781
Last Modified:	Aug 14 08:34:33 2005
MD5 Checksum:	08479a3697ad750d4653272cdf3a33e0

/// File Name:	helpcenterBad.txt
Description:	Help Center Live is susceptible to cross site scripting, SQL injection, and various other flaws.
Author:	James Bercegay
Homepage:	http://www.gulftech.org/
File Size:	5931
Last Modified:	Aug 14 08:13:15 2005
MD5 Checksum:	13310637c7cb3fcc0aec25f11e95acf7

/// File Name:	lk26.txt
Description:	Two locally exploitable flaws have been found in the Linux rawdevice and pktcdvd block device ioctl handler that allows local users to gain root privileges and also execute arbitrary code at kernel privilege level. Proof of concept denial of service exploit included.
Author:	alert7
File Size:	6196
Related CVE(s):	CAN-2005-1589
Last Modified:	Aug 14 08:06:32 2005
MD5 Checksum:	7021ebab06494338b5912504b72aca23

/// File Name:	JGSvulns.txt
Description:	JGS-Portal versions 3.0.2 and below suffer from a ton of SQL injection, cross site scripting, and path disclosure vulnerabilities.
Homepage:	http://www.security-project.org
File Size:	2552
Last Modified:	Aug 14 08:00:20 2005
MD5 Checksum:	f0c437339a3fb6c21c7c3686f7df5f24

/// File Name:	rt-sa-2005-012.txt
Description:	RedTeam found a information disclosure vulnerability in Pico Server (pServ) which results in a local user reading all files on the server with pServ's permissions. Versions 3.2 and below are susceptible.
Homepage:	http://tsyklon.informatik.rwth-aachen.de/redteam/
File Size:	3259
Related CVE(s):	CAN-2005-1367
Last Modified:	Aug 14 07:58:47 2005
MD5 Checksum:	77bebc31323469afc333466945bb1096

/// File Name:	rt-sa-2005-011.txt
Description:	RedTeam found a information disclosure vulnerability in Pico Server (pServ) which gives an attacker the ability to read all files from cgi-bin. Versions 3.2 and below are susceptible.
Homepage:	http://tsyklon.informatik.rwth-aachen.de/redteam/
File Size:	2905
Related CVE(s):	CAN-2005-1366
Last Modified:	Aug 14 07:55:09 2005
MD5 Checksum:	74cef72f0fa2e3eccfde8e4535c01e5f

/// File Name:	pservBad.txt
Description:	RedTeam found a remote command injection flaw in Pico Server (pServ) versions 3.2 and below that allows a remote attacker to issue arbitrary commands on the server.
Homepage:	http://tsyklon.informatik.rwth-aachen.de/redteam/
File Size:	3350
Last Modified:	Aug 14 07:36:41 2005
MD5 Checksum:	b0f692f32d343524077e670943b48c6a

/// File Name:	gurgens21.txt
Description:	Gurgens Guest Book 2.1 is susceptible to a password disclosure flaw.
Author:	basher13
File Size:	3050
Last Modified:	Aug 14 07:21:59 2005
MD5 Checksum:	9033ccf9d2bab056549f9aeb91a4129f

/// File Name:	ultimatedisclose.txt
Description:	Ultimate Forum 1.0 is susceptible to a password disclosure flaw.
Author:	basher13
File Size:	2541
Last Modified:	Aug 14 07:20:33 2005
MD5 Checksum:	0af956729b0bc6c0ac4c2f7a34dc60a2

/// File Name:	Skull-splitter_adv.txt
Description:	Skull-Splitter's Guestbook is susceptible to cross site scripting and html injection flaws.
Author:	Morinex Eneco
Homepage:	http://w00pie.nl
File Size:	1617
Last Modified:	Aug 14 07:18:26 2005
MD5 Checksum:	dd753ddfc2dcca01e410a7ebd06bfaa5