Section: .. / 0601-exploits /

Page 3 of 6
<< 1 2 3 4 5 6 >> Files 50 - 75 of 137

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	EV0017.txt
Description:	TheWebForum version 1.2.1 is susceptible to cross site scripting and SQL injection attacks. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
File Size:	1693
Last Modified:	Jan 8 06:35:14 2006
MD5 Checksum:	bae4e106cc7612ff061fa6c458a550d0

/// File Name:	winrar330.c
Description:	WinRAR version 3.30 suffers from a buffer overflow vulnerability when processing a long file name. Proof of concept exploit provided.
Author:	Alpha_Programmer
File Size:	1597
Last Modified:	Jan 4 06:19:13 2006
MD5 Checksum:	6febae945f6edab57176fea3e2651d71

/// File Name:	EV0001.txt
Description:	VEGO Web Forum versions 1.26 and below suffer from SQL injection flaws. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
File Size:	1541
Last Modified:	Jan 4 05:34:04 2006
MD5 Checksum:	0ac527c4e0ac44134a4a7114cd55dc14

/// File Name:	sqmailchpasswd.c
Description:	Multiple buffer overflows are present in the handling of command line arguments in chpasswd leading to the execution of arbitrary code.
Author:	rod hedor
Homepage:	http://lezr.com
File Size:	1524
Last Modified:	Jan 25 09:20:16 2006
MD5 Checksum:	185e1fca8a67c4be6a34dff677df1376

/// File Name:	MiniNukeSQL-2.txt
Description:	MiniNuke CMS System versions 1.8.2 and below suffer from a flaw where an authenticated user can change any password via membership.asp.
Author:	nukedx
Homepage:	http://www.nukedx.com
File Size:	1515
Last Modified:	Jan 15 18:01:33 2006
MD5 Checksum:	0b9270f90b1f336310b682775ceb9e28

/// File Name:	EV0007.txt
Description:	Chimera Web Portal System version 0.2 is susceptible to SQL injection and cross site scripting attacks. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
File Size:	1505
Last Modified:	Jan 4 05:40:01 2006
MD5 Checksum:	d1b0ac8378f55aebcccf71d22f4738a1

/// File Name:	ironwallTraverse.txt
Description:	IronWall version 7.41 is susceptible to a classic directory traversal attack.
Author:	hwclock
File Size:	1479
Last Modified:	Jan 11 07:18:42 2006
MD5 Checksum:	479a75485b8bf209a4591e71760ef822

/// File Name:	MSIEDoS.txt
Description:	Microsoft(R) Internet Explorer 5 and 6 suffer from a remote denial of service flaw using IMG and XML elements. Proof of concept code included.
Author:	Inge Henriksen
Homepage:	http://ingehenriksen.blogspot.com/
File Size:	1441
Last Modified:	Jan 21 20:03:48 2006
MD5 Checksum:	624ee3829bec9e7afa29fcf02a6044ea

/// File Name:	EV0015.txt
Description:	ADNForum version 1.0b is susceptible to SQL injection and cross site scripting vulnerabilities. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
File Size:	1427
Last Modified:	Jan 8 06:15:20 2006
MD5 Checksum:	f56b32e64169be4a853e63ddc387ecdb

/// File Name:	MyBB-search.txt
Description:	MyBB v1.0.2 updated suffers from XSS via search.php
Author:	imei
File Size:	1389
Last Modified:	Jan 27 08:44:26 2006
MD5 Checksum:	d29a2eb7c73d6da7c970cb840531dff3

/// File Name:	EV0019.txt
Description:	NavBoard BBcode version 16 Stable (2.6.0) is susceptible to cross site scripting attacks. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
File Size:	1387
Last Modified:	Jan 8 19:28:12 2006
MD5 Checksum:	795dcec7a4b3981f729c758dd838b026

/// File Name:	e-moBLOG.txt
Description:	e-moBLOG v1.3 suffers from SQL injection bugs leading to login bypass and information disclosure.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/vulns/43/summary.html
File Size:	1385
Last Modified:	Jan 26 10:28:57 2006
MD5 Checksum:	8f48cc7e8eac77c7787a18ddd91fa98f

/// File Name:	vis.pl.txt
Description:	Vis.pl is a perl script which manages files as part of e-cms. It suffers from a directory transversal vulnerability.
Author:	spher3
Homepage:	http://www.hackerscenter.com/
File Size:	1374
Last Modified:	Jan 27 09:08:49 2006
MD5 Checksum:	f835573c3d690ce10f395098c3e0078e

/// File Name:	geronimo_css.txt
Description:	Apache Geronimo version 1.0 suffers from cross site scripting vulnerabilities.
Author:	Oliver Karow
Homepage:	http://www.oliverkarow.de
File Size:	1361
Last Modified:	Jan 21 21:41:13 2006
MD5 Checksum:	246d64556b8377602e7647db2718be1c

/// File Name:	2005-23-12-brainsquad-team-cms.txt
Description:	The CMS system from brainsquad-team suffers from a cross site scripting vulnerability in the user profile section and also may be susceptible to SQL injection attacks.
Author:	yorn
File Size:	1353
Last Modified:	Jan 9 19:27:12 2006
MD5 Checksum:	b304061cc1e355228534d3d9cd8b9988

/// File Name:	xfocus-SD-060101.txt
Description:	getCommand and getShell under AIX 5.3 still suffer from multiple exposure flaws.
Homepage:	http://www.xfocus.org
File Size:	1337
Last Modified:	Jan 3 03:44:22 2006
MD5 Checksum:	07a1b07775be3bad6d588df88ef20ec4

/// File Name:	RCBlog-1.0.3.txt
Description:	RCBlog v1.0.3 suffers from several vulnerabilities which can be used to open arbitrary files and compromise the admin's md5 password hash.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/
File Size:	1337
Last Modified:	Jan 26 08:49:06 2006
MD5 Checksum:	62859679907231bd1f64813cbc0459b7

/// File Name:	EV0014.txt
Description:	TinyPHPForum versions 3.6 and below suffer from directory traversal, cross site scripting, and information disclosure flaws. Exploitation details provided.
Author:	Aliaksandr Hartsuyeu
File Size:	1337
Last Modified:	Jan 8 03:24:34 2006
MD5 Checksum:	90693ed76e197a01401b1c05b494c36b

/// File Name:	SaralBlog-sql.txt
Description:	SaralBlog 1.0 suffers from XSS and SQL injection due to lack of sanitized user input.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/
File Size:	1301
Last Modified:	Jan 25 08:52:39 2006
MD5 Checksum:	556ea9849aac0689c41740364ae1f22d

/// File Name:	termsh.c
Description:	SCO Openserver 5.0.7 termsh local privilege escalation exploit.
Author:	RoD hEDoR
File Size:	1270
Related CVE(s):	CAN-2005-0351
Last Modified:	Jan 4 06:12:52 2006
MD5 Checksum:	7eb534c3390752e4d676fd49101944ba

/// File Name:	webftpInclude.txt
Description:	A file inclusion vulnerability exists in WebFTP version 1.2.6 in webftp.php.
Author:	Thomas Henlich
File Size:	1260
Last Modified:	Jan 8 03:01:11 2006
MD5 Checksum:	28b26f75d55cc9d465dd46388dec480d

/// File Name:	LizardCart.txt
Description:	The Lizard Cart CMS version 1.04 suffers from an SQL injection vulnerability in the "id" variable.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/vulns/12/summary.html
File Size:	1251
Last Modified:	Jan 5 02:24:05 2006
MD5 Checksum:	77c466bb102824b0596cf05408e2fa1a

/// File Name:	geoBlog-MOD_1.0.txt
Description:	geoBlog MOD_1.0 suffers from an SQL injection vulnerability in the $tmpCategory variable.
Author:	Aliaksandr Hartsuyeu
Homepage:	http://evuln.com/vulns/33/summary/bt/
File Size:	1245
Last Modified:	Jan 26 06:20:04 2006
MD5 Checksum:	3747e3e14c10b3aeca505ddb2462b3c5

/// File Name:	Critical-006.txt
Description:	Critical Security - 22:03 2006.01.19 - Tftpd32 2.81 Format String + DoS PoC
Author:	Critical Security
Homepage:	http://www.critical.lt
File Size:	1227
Last Modified:	Jan 25 09:17:13 2006
MD5 Checksum:	bf21480dd37e3cf8eacfc12738f2255a

/// File Name:	pwned-vpasp.txt
Description:	VP-ASP Shopping Cart version 5.50 is susceptible to SQL injection attacks.
Author:	tracewar
File Size:	1214
Last Modified:	Jan 29 23:25:08 2006
MD5 Checksum:	f7775e5cbc389819c373c3ac3508f55f