Section: .. / 0901-exploits /

Page 2 of 15
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 >> Files 25 - 50 of 373

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	wowwee-access.txt
Description:	WowWee Rovio suffers from insufficient access control vulnerabilities that allow for snooping.
Author:	Brian Dowling
Homepage:	http://www.simplicity.net/
File Size:	5468
Last Modified:	Jan 14 20:00:22 2009
MD5 Checksum:	6da363fe3360c9f7027fab42c4010524

/// File Name:	evisioncms20-exec.txt
Description:	eVision CMS version 2.0 remote command execution exploit that uses local file inclusion and a file upload vulnerability in conjunction with each other.
Author:	Osirys
Homepage:	http://osirys.org/
File Size:	5307
Last Modified:	Jan 30 19:01:28 2009
MD5 Checksum:	0f2142fee41f615b11c8f2dce00d31cc

/// File Name:	drupal-uploadxss.txt
Description:	The Drupal Imagefield module version 5.x-2.2 on Drupal 5.15 suffers file upload and cross site scripting vulnerabilities.
Author:	Andrew Rosborough,Justin C. Klein Keane
File Size:	5053
Last Modified:	Jan 29 16:49:22 2009
MD5 Checksum:	42dcac014374fceaf9b98649d9045170

/// File Name:	coolplayer_bof.txt
Description:	CoolPlayer Build 219 PlaylistSkin buffer overflow exploit that binds a shell to tcp port 4444.
Author:	Jeremy Brown
Homepage:	http://jbrownsec.blogspot.com/
File Size:	4702
Last Modified:	Jan 6 19:54:21 2009
MD5 Checksum:	05fddae4d28c5d0faa6f35d57712960f

/// File Name:	cutenew-xssexec.txt
Description:	CuteNews versions 1.4.6 and below remote cross site scripting and remote command execution exploit.
Author:	StAkeR
File Size:	4614
Last Modified:	Jan 8 17:23:43 2009
MD5 Checksum:	e66dbbde1a7ce181267950221f7ed84c

/// File Name:	viartshopping-xssdisclose.txt
Description:	ViArt Shopping Cart version 3.5 suffers from cross site scripting / code injection and path / information disclosure vulnerabilities.
Author:	Florinu
File Size:	4565
Last Modified:	Jan 1 14:10:39 2009
MD5 Checksum:	5846cee9cc0d166c35404f291012c261

/// File Name:	teamspeak-disclose.txt
Description:	TeamSpeak versions 2.0.23.17 and below suffer from a remote file disclosure vulnerability.
Author:	c411k
Homepage:	https://forum.antichat.ru/
File Size:	4447
Last Modified:	Jan 14 17:17:05 2009
MD5 Checksum:	1225b30130d15cbb7b200c6bd24ad1ae

/// File Name:	oracleexecqr-inject.txt
Description:	The Oracle January 2009 Critical Patch Update fixes a vulnerability which allows a remote pre-authenticated attacker to execute arbitrary code in the context of the user running the web server of Oracle Secure Backup.In Windows environments, the vulnerability allows execution of arbitrary code as SYSTEM. In Unix and GNU/Linux environments, however, just as a normal user(oracle usually). Proof of concept code included.
Author:	Joxean Koret
File Size:	4440
Last Modified:	Jan 14 19:02:40 2009
MD5 Checksum:	84873beab7c49c709f85db26533ac9c0

/// File Name:	amaya-seh.txt
Description:	Remote SEH overwrite exploit for the Amaya Web Editor version 11.
Author:	LiquidWorm
Homepage:	http://www.zeroscience.org/
File Size:	4227
Last Modified:	Jan 30 15:00:33 2009
MD5 Checksum:	79e19afd11fb10ec7dcf2e031de3c092

/// File Name:	elecard-overflow.txt
Description:	EleCard MPEG Player local stack overflow exploit that creates a malicious .m3u file that binds a shell to port 4444.
Author:	AlpHaNiX
File Size:	4213
Last Modified:	Jan 25 14:34:03 2009
MD5 Checksum:	483e3151eda44b9b3012b735c8f7cbf3

/// File Name:	oraclecompress-sql.txt
Description:	Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL injection exploit that grants DBA access and creates a new user.
Author:	Sh2kerr
Homepage:	http://www.dsec.ru/
Related File:	shatter-workspace.txt
File Size:	4100
Last Modified:	Jan 6 20:18:03 2009
MD5 Checksum:	d7ca754a730ae0e2096873b3c3a9b961

/// File Name:	SunOSipv6.c
Description:	SunOS Release 5.11 Version snv_101b remote IPv6 kernel crash zero day exploit.
Author:	Kingcope
File Size:	3951
Last Modified:	Jan 26 16:55:28 2009
MD5 Checksum:	c908acfe0ee303ba60ff4ad0b03f1431

/// File Name:	fxcms-lfi.txt
Description:	FX Content Manager local file inclusion exploit.
Author:	baltazar
Homepage:	http://www.darkc0de.com/
File Size:	3862
Last Modified:	Jan 14 19:00:14 2009
MD5 Checksum:	df7b97c49cfb00f7892508ceed729043

/// File Name:	gomplayerasx-overflow.txt
Description:	GOM Player version 2.0.12 stack overflow exploit that creates a malicious .ASX file which will spawn calc.exe.
Author:	DATA_SNIPER
File Size:	3730
Last Modified:	Jan 8 17:34:42 2009
MD5 Checksum:	7d19ca40734d4d1003d8de26c737a0ee

/// File Name:	phpnuke80downloads-sql.txt
Description:	The Downloads module in PHP-Nuke 8.0 suffers from a blind remote SQL injection vulnerability.
Author:	IRCRASH
Homepage:	http://ircrash.com/
Related Exploit:	phpnukedownloads-sql.txt
File Size:	3724
Last Modified:	Jan 23 15:07:06 2009
MD5 Checksum:	dd07a0c24a86adc358bd9715e062b68d

/// File Name:	nctvs-insecure.txt
Description:	NCTVideoStudio Active-X DLLs version 1.6 insecure method file creation exploit.
Author:	Stack
Homepage:	http://v4-team.com/
File Size:	3627
Last Modified:	Jan 26 19:04:52 2009
MD5 Checksum:	929c975a3164ed453ddcdd5ddaa4ddbc

/// File Name:	coppermine-upload.txt
Description:	Coppermine Photo Gallery version 1.4.19 suffers from a remote PHP file upload vulnerability.
Author:	Michael Brooks
File Size:	3338
Last Modified:	Jan 29 15:59:05 2009
MD5 Checksum:	6bd93a3ad3b295df2c45bc0e7182c7d7

/// File Name:	gb-exec.txt
Description:	PerlSoft Gastebuch version 1.7b bruteforcer and remote code execution exploit.
Author:	Perforin
File Size:	3291
Last Modified:	Jan 30 14:54:41 2009
MD5 Checksum:	47c2b8013be89664265730b5badd0153

/// File Name:	DSECRG-09-002.txt
Description:	Oracle BEA Weblogic 10 suffers from multiple cross site scripting vulnerabilities.
Author:	Sh2kerr
Homepage:	http://www.dsec.ru/
File Size:	3249
Last Modified:	Jan 14 19:09:18 2009
MD5 Checksum:	e4126f30320369a8f4164da70cb103bc

/// File Name:	xoops232-exec.txt
Description:	XOOPS version 2.3.2 remote php code execution exploit.
Author:	StAkeR
File Size:	3244
Last Modified:	Jan 8 17:29:52 2009
MD5 Checksum:	d14a5e2a777fb2fb6ec444174efe968c

/// File Name:	socialengineblog-sql.txt
Description:	Social Engine suffers from a remote SQL injection vulnerability in blog.php.
Author:	Snakespc
Homepage:	http://www.snakespc.com/sc
File Size:	3205
Last Modified:	Jan 28 17:10:50 2009
MD5 Checksum:	ef66ea8a726c9de4b31c01304aaa96ad

/// File Name:	DSECRG-09-003.txt
Description:	The Oracle Database 11G is vulnerable to PL/SQL injection in the Extended filter system (EXFSYS).
Author:	Sh2kerr
Homepage:	http://www.dsec.ru/
File Size:	3203
Last Modified:	Jan 14 19:11:00 2009
MD5 Checksum:	7cf76f51ddd4b094ee35dcdf369b7400

/// File Name:	comersus-passwd.txt
Description:	Comersus Shopping Cart versions 6 and below remote user password exploit.
Author:	ajann
File Size:	3180
Last Modified:	Jan 12 14:54:09 2009
MD5 Checksum:	e4c6c5ac8d63138673c934ea4ec45725

/// File Name:	vuplayerwax-overflow.txt
Description:	VUPlayer .wax file local buffer overflow crash exploit.
Author:	Assad edin
File Size:	3149
Last Modified:	Jan 26 13:32:05 2009
MD5 Checksum:	c88f0745a9c13b13d3544d659b274718

/// File Name:	socialengine-sql.txt
Description:	Social Engine suffers from a remote SQL injection vulnerability in browse_classifieds.php.
Author:	Snakespc
Homepage:	http://www.snakespc.com/sc
File Size:	3138
Last Modified:	Jan 12 13:58:20 2009
MD5 Checksum:	5036e03f7afb1f37e9dcfeff136f402c