Section: .. / 0902-exploits /

Page 4 of 10
<< 1 2 3 4 5 6 7 8 9 10 >> Files 75 - 100 of 247

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	mtvyouth-sql.txt
Description:	mtvyouthicon.in.com, the site for the TV show, suffers from a remote SQL injection vulnerability.
Author:	Jaydeep Dave
File Size:	955
Last Modified:	Feb 18 17:12:26 2009
MD5 Checksum:	35280e96f7da3726284d9f98a1b627f1

/// File Name:	bigboss2-sql.txt
Description:	bigboss2.in.com, the site for the TV show, suffers from a remote SQL injection vulnerability.
Author:	Jaydeep Dave
File Size:	654
Last Modified:	Feb 18 17:11:20 2009
MD5 Checksum:	9ae3ca0c0cfdac1919466dd68039f16e

/// File Name:	sashmsbypass-sql.txt
Description:	SAS Hotel Management System suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:	Pouya Server
File Size:	729
Last Modified:	Feb 18 17:10:17 2009
MD5 Checksum:	06f4b8881e83617610a1d2f79dbc3594

/// File Name:	oracle10-sql.txt
Description:	This Metasploit module will escalate a Oracle DB user to MDSYS by exploiting a SQL injection bug in the MDSYS.SDO_TOPO_DROP_FTBL trigger. After that, the exploit escalates the user to DBA using "CREATE ANY TRIGGER" privilege given to the MDSYS user by creating an evil trigger in system scheme (2-stage attack).
Author:	Sh2kerr
Homepage:	http://www.dsec.ru/
File Size:	4169
Last Modified:	Feb 18 17:07:38 2009
MD5 Checksum:	25ef4210f8f699c598c6d20415cbdbdf

/// File Name:	phnews-disclose.txt
Description:	pHNews Alpha 1 suffers from a remote database disclosure vulnerability in genbackup.php.
Author:	X0r
File Size:	736
Last Modified:	Feb 17 16:25:40 2009
MD5 Checksum:	41c55ecba4321f9595f2b3dd418525d4

/// File Name:	phnews-sql.txt
Description:	pHNews Alpha 1 suffers from a remote SQL injection vulnerability in header.php.
Author:	X0r
File Size:	1134
Last Modified:	Feb 17 16:24:53 2009
MD5 Checksum:	8ebcfe909d4061c51652fa1366dc560a

/// File Name:	scms-insecure.txt
Description:	S-CMS version 1.1 Stable suffers from insecure cookie handling and page deletion vulnerabilities.
Author:	X0r
File Size:	1456
Last Modified:	Feb 17 16:23:49 2009
MD5 Checksum:	1afcc6502c21bdc661197e9364be8432

/// File Name:	grestul-sql.txt
Description:	Grestul version 1.x suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:	X0r
File Size:	1407
Last Modified:	Feb 17 16:23:00 2009
MD5 Checksum:	df24eba2aafb8d6ed9ddf2250087794b

/// File Name:	sashms-upload.txt
Description:	The SAS Hotel Management System suffers from a remote shell upload vulnerability.
Author:	ZoRLu
Homepage:	http://www.yildirimordulari.org/
File Size:	1262
Last Modified:	Feb 17 16:22:06 2009
MD5 Checksum:	8733b079dc88aba8e795651683ddf0cb

/// File Name:	yacs-rfi.txt
Description:	YACS CMS version 8.11 suffers from a remote file inclusion vulnerability in update_trailer.php.
Author:	ahmadbady
File Size:	1175
Last Modified:	Feb 16 16:31:01 2009
MD5 Checksum:	b96b1822b85878259eae9bebc1db2e07

/// File Name:	waraxe-2009-SA072.txt
Description:	RavenNuke version 2.3.0 suffers from multiple code execution and SQL injection vulnerabilities.
Author:	Janek Vind aka waraxe
Homepage:	http://www.waraxe.us/
File Size:	6947
Last Modified:	Feb 16 16:29:16 2009
MD5 Checksum:	ba986b0ac645ca6c541bcc20a131d516

/// File Name:	sashms-sql.txt
Description:	SAS Hotel Management System suffers from a remote SQL injection vulnerability in myhotel_info.asp.
Author:	DarkB0X
File Size:	475
Last Modified:	Feb 16 16:24:38 2009
MD5 Checksum:	b77f1797a9e58cd097f8aa120c3e53be

/// File Name:	openxorderdir-xss.rar
Description:	OpenX version 2.6.3 orderdirection and listorder parameter cross site scripting vulnerability details with screen shots.
Author:	Vinod Sharma
File Size:	334935
Last Modified:	Feb 16 16:20:00 2009
MD5 Checksum:	89954169073bd957c07d216727cddee7

/// File Name:	openxclient-xss.rar
Description:	OpenX version 2.6.3 clientid parameter cross site scripting vulnerability details with screen shots.
Author:	Vinod Sharma
File Size:	455332
Last Modified:	Feb 16 16:19:59 2009
MD5 Checksum:	f50403eabd97f35a33805cfcce0572b4

/// File Name:	tptest-overflow.txt
Description:	TPTEST versions 3.1.7 and below stack buffer overflow proof of concept exploit.
Author:	ffwd
File Size:	1199
Last Modified:	Feb 16 16:18:52 2009
MD5 Checksum:	a6b94f6760d5cd48464b0ff5c5be7624

/// File Name:	geovision-activex.txt
Description:	GeoVision LiveX_v8200 Active-X Control remote file corruption proof of concept exploit.
Author:	Nine:Situations:Group
Homepage:	http://retrogod.altervista.org/
File Size:	2182
Last Modified:	Feb 16 15:57:04 2009
MD5 Checksum:	ddc2474bf358f6944d6117641ee960b7

/// File Name:	memhtportal-delete.txt
Description:	MemHT Portal versions 4.0.1 and below delete all private messages exploit.
Author:	StAkeR
File Size:	3381
Last Modified:	Feb 16 15:54:08 2009
MD5 Checksum:	f43dc234e3cc03ee05241482645725ea

/// File Name:	novaboard-lfisqlupload.txt
Description:	NovaBoard version 1.0.0 suffers from shell upload, local file inclusion, and multiple remote SQL injection vulnerabilities.
Author:	brain[pillow]
File Size:	2275
Last Modified:	Feb 16 15:50:36 2009
MD5 Checksum:	90230bf6910242b62417b7c417f56bfd

/// File Name:	enomaly-multi.txt
Description:	All versions of Enomaly ECP/Enomalism before 2.2.1 have multiple issues relating to the use of temporary files in an insecure manner.
Author:	Sam Johnston
File Size:	2534
Related CVE(s):	CVE-2008-4990, CVE-2009-0390
Last Modified:	Feb 16 15:46:24 2009
MD5 Checksum:	9f1dbe1ba46da08718f5634e5251cbce

/// File Name:	powermovielist-sqlxss.txt
Description:	PowerMovieList version 0.14b suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:	brain[pillow]
File Size:	2041
Last Modified:	Feb 16 15:45:13 2009
MD5 Checksum:	91ccf6889cec563ad1241e915d4fc705

/// File Name:	falt4cms-upload.txt
Description:	Falt4 CS RC4 arbitrary file upload exploit.
Author:	Sp3shial
File Size:	2994
Last Modified:	Feb 16 15:43:47 2009
MD5 Checksum:	7d6febe39bfb63a699e5b3467c156fb1

/// File Name:	inselphoto-xss.txt
Description:	InselPhoto version 1.1 suffers from a persistent cross site scripting vulnerability.
Author:	rAWjAW
Homepage:	http://rawjaw-security.blogspot.com/
File Size:	691
Last Modified:	Feb 16 15:42:36 2009
MD5 Checksum:	1ccf952ceb15ae8a85991b972f3e1676

/// File Name:	simplepms-exec.txt
Description:	simplePMS CMS version 0.1.3A remote command execution exploit that also notes local file inclusion vulnerabilities.
Author:	Osirys
Homepage:	http://osirys.org/
File Size:	4607
Last Modified:	Feb 15 17:56:18 2009
MD5 Checksum:	26909052fdbf69affca8056d7a8affab

/// File Name:	falt4-cms-xsrf.txt
Description:	Falt4 Extreme RC4,10.9.2007 CMS cross site request forgery exploit.
Author:	d14l,marcoj
File Size:	34126
Last Modified:	Feb 15 15:05:42 2009
MD5 Checksum:	5d1b7404c5adecf86f2a6fabef7b4c2d

/// File Name:	pirelli-router-xsrf.txt
Description:	Alice Gate2 plus Wi-Fi arbitrary port forward cross site request forgery exploit.
Author:	RingZero
Homepage:	http://www.w00tz0ne.org/
File Size:	890
Last Modified:	Feb 15 15:01:54 2009
MD5 Checksum:	a90730709143b4579cbf305d39097608