Section: .. / 0701-exploits /

Page 7 of 8
<< 1 2 3 4 5 6 7 8 >> Files 150 - 175 of 195

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	fcCMS10-xss.txt
Description:	Fix and Chip CMS version 1.0 suffers from cross site scripting flaws.
Author:	Luny
File Size:	1025
Last Modified:	Jan 13 22:08:48 2007
MD5 Checksum:	9bdf726f3e557f0ae598977fa4b054af

/// File Name:	oohasp-mdb.txt
Description:	oohASP suffers from a password disclosure vulnerability.
Homepage:	http://aria-security.com/
File Size:	480
Last Modified:	Jan 13 22:07:59 2007
MD5 Checksum:	57e6e3611fe1548ba5c87822b00dd6ef

/// File Name:	flog112-disclose.txt
Description:	Flog version 1.1.2 suffers from a remote administrative password disclosure flaw.
Author:	CorryL
Homepage:	http://www.x0n3-h4ck.org
File Size:	1127
Last Modified:	Jan 13 21:34:40 2007
MD5 Checksum:	d4afdf04bc63ed5aef6a7af6151398de

/// File Name:	edittag12-xss.txt
Description:	EditTag version 1.2 is susceptible to local file inclusion and cross site scripting vulnerabilities.
Author:	NetJackal
File Size:	722
Last Modified:	Jan 7 01:52:07 2007
MD5 Checksum:	4150246ef823a1967e51831f10e33f7d

/// File Name:	kolayindir-sql.txt
Description:	Kolayindir Download is susceptible to SQL injection attacks.
Author:	ShaFuq31
File Size:	355
Last Modified:	Jan 7 01:51:04 2007
MD5 Checksum:	9c8bf9b0d54f569f246df1bc8a9d00d5

/// File Name:	riblog-xss.txt
Description:	RI Blog version 1.3 is susceptible to cross site scripting attacks.
Author:	ShaFuq31
File Size:	427
Last Modified:	Jan 7 01:50:14 2007
MD5 Checksum:	076dd6e8634da33338cae7c40c3c1c32

/// File Name:	coppermine-php.txt
Description:	Coppermine Photo Gallery versions 1.4.10 and below remote SQL injection exploit.
Author:	DarkFig
File Size:	5488
Last Modified:	Jan 7 01:31:19 2007
MD5 Checksum:	ea64282edbe571b82dfc58e8439e717b

/// File Name:	ios-mdb.txt
Description:	Intranet Open Source suffers from a remote password database disclosure vulnerability.
Homepage:	http://aria-security.com/
File Size:	465
Last Modified:	Jan 7 01:30:27 2007
MD5 Checksum:	d86e02c24d79ca34b1bc56d35c3f31eb

/// File Name:	uberupload.txt
Description:	Uber Uploader 4.2 suffers from a code execution flaw via uploading a malicious PHP file.
Author:	Null
Homepage:	http://www.gammahack.com
File Size:	655
Last Modified:	Jan 7 01:24:13 2007
MD5 Checksum:	9092d04f130796a15695c2667dcaf882

/// File Name:	cmsms102-xss.txt
Description:	CMS Made Simple version 1.0.2 suffers from multiple cross site scripting vulnerabilities.
Author:	nanoymaster
Homepage:	http://www.nanoy.org/
File Size:	1605
Last Modified:	Jan 5 09:00:15 2007
MD5 Checksum:	45b660cfd50cbfca60bd1965aa475e17

/// File Name:	igcal10-sql.txt
Description:	IG Calendar version 1.0 suffers from a SQL injection vulnerability in user.php.
Author:	Michael Brooks
File Size:	444
Last Modified:	Jan 5 08:55:08 2007
MD5 Checksum:	6f4111a1f68b9b2adcf3129ec819d0ca

/// File Name:	igshop10-multiple.txt
Description:	IG Shop version 1.0 suffers from multiple remote vulnerabilities relating to eval usage and SQL injection.
Author:	Michael Brooks
File Size:	1115
Last Modified:	Jan 5 08:53:33 2007
MD5 Checksum:	eebdab6c03e2deb92ec884f0aeea8c20

/// File Name:	MOAB-04-01-2007.rb.txt
Description:	Proof of concept exploit for a format string vulnerability in the handling of iPhoto XML feeds title field that allows for potential remote arbitrary code execution.
Author:	Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
Related File:	DMA-2007-0104a.txt
File Size:	1690
Last Modified:	Jan 5 08:32:27 2007
MD5 Checksum:	43c08a1cc97fc323401c9da3bb5e0083

/// File Name:	LS-20061102.rar
Description:	LSsec has discovered a vulnerability in Business Objects Crystal Reports XI Professional, which could be exploited by an attacker in order to execute arbitrary code on an affected system. The .RPT files in this rar archive will exploit this flaw.
Homepage:	http://www.lssec.com/
Related File:	LS-20061102.pdf
File Size:	8758
Last Modified:	Jan 5 08:24:27 2007
MD5 Checksum:	6bfbecdd427ac17223e345a6dd4c1247

/// File Name:	gmx-xss.txt
Description:	The German free mail provider, GMX, suffers from a cross site scripting vulnerability.
Author:	commander keen
File Size:	2127
Last Modified:	Jan 5 07:57:04 2007
MD5 Checksum:	92169507c46934f5bd707ff904f8846e

/// File Name:	mkportalfun.txt
Description:	Fun little exploit to make all guests administrators on MkPortal using a malicious Shockwave Flash file.
Author:	info
Homepage:	http://headburn.altervista.org/
File Size:	1254
Last Modified:	Jan 5 06:38:05 2007
MD5 Checksum:	409d15ac5cf9552294d0a8f6813a2d4b

/// File Name:	MOAB-03-01-2007.rb.txt
Description:	Month Of Apple Bugs - A vulnerability in the handling of the HREFTrack field in Apple QuickTime allows cross-zone scripting, leading to potential remote arbitrary code execution.
Author:	LMH, Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
File Size:	3414
Last Modified:	Jan 4 09:16:03 2007
MD5 Checksum:	14d84ba7efc399a2effe828124ed3a6c

/// File Name:	VLCMediaSlayer-ppc.pl.txt
Description:	Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This is just a vanilla format string exploit for OSX on ppc.
Author:	LMH, Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
File Size:	1403
Related CVE(s):	CVE-2007-0017
Last Modified:	Jan 4 09:15:37 2007
MD5 Checksum:	a2bdc5495f04b820780a295997ff9d4c

/// File Name:	VLCMediaSlayer-x86.pl.txt
Description:	Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code.
Author:	LMH, Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
File Size:	1422
Related CVE(s):	CVE-2007-0017
Last Modified:	Jan 4 09:15:18 2007
MD5 Checksum:	7be8a31aa5f26b9929610d23d102a6bc

/// File Name:	MOAB-01-01-2007.rb.txt
Description:	Month Of Apple Bugs - Apple Quicktime stack buffer overflow exploit that makes use of the rtsp URL Handler vulnerability.
Author:	LMH, Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
File Size:	2622
Related CVE(s):	CVE-2007-0015
Last Modified:	Jan 4 09:14:38 2007
MD5 Checksum:	713b82304bdccf5138b011cddb3fce73

/// File Name:	adobeplugin.txt
Description:	The Adobe Acrobat Reader plugin is susceptible to session riding and cross site scripting vulnerabilities.
Author:	Stefano Di Paola
Homepage:	http://www.wisec.it/
File Size:	5025
Last Modified:	Jan 4 08:31:20 2007
MD5 Checksum:	cdcfb7f0fe7c3c08289067140c9c2be4

/// File Name:	gb03-db.txt
Description:	GuestBook version 0.3a suffers from a direct database download vulnerability.
Homepage:	http://aria-security.com/
File Size:	492
Last Modified:	Jan 4 05:19:23 2007
MD5 Checksum:	2750e63d3bf09c2a3ae926a670128d6d

/// File Name:	carbon-db.txt
Description:	Carbon Communities suffers from a direct database download vulnerability.
Homepage:	http://aria-security.com/
File Size:	419
Last Modified:	Jan 4 05:18:25 2007
MD5 Checksum:	2206870e3bede20bccc0b90cdde40947

/// File Name:	wine-db.txt
Description:	WineGlass suffers from a direct database download vulnerability.
Homepage:	http://aria-security.com/
File Size:	417
Last Modified:	Jan 4 05:17:11 2007
MD5 Checksum:	a1e2aca7d50b058d60c4f5542d4368c3

/// File Name:	swcms.php.txt
Description:	Simple Web Content Management System remote SQL injection exploit.
Author:	DarkFig
File Size:	5106
Last Modified:	Jan 4 05:15:50 2007
MD5 Checksum:	102c88548cc2d6b1cbc6f313c941c250