Section: .. / 0903-exploits /

Page 3 of 10
<< 1 2 3 4 5 6 7 8 9 10 >> Files 50 - 75 of 247

Currently sorted by: File Name Sort By: Last Modified, File Size

/// File Name:	cscart200-sql.txt
Description:	CS-Cart version 2.0.0 Beta 3 suffers from a remote SQL injection vulnerability.
Author:	netsoul
File Size:	452
Last Modified:	Mar 9 14:51:46 2009
MD5 Checksum:	625a39610d3d47755cacbe29e2088349

/// File Name:	cve-2009-0360.c
Description:	pam-krb5 versions below 3.13 local privilege escalation exploit.
Author:	Jon Oberheide
File Size:	5346
Related CVE(s):	CVE-2009-0360
Last Modified:	Mar 30 14:57:43 2009
MD5 Checksum:	0d6c524308f164c89e349e687c6e32ad

/// File Name:	CVE-2009-0781.txt
Description:	The calendar application for Apache Tomcat contains invalid HTML which renders the cross site scripting protection for the time parameter ineffective. An attacker can therefore perform an cross site scripting attack using the time attribute. Version affected include Tomcat 6.0.0 to 6.0.18, Tomcat 5.5.0 to 5.5.27, and Tomcat 4.1.0 to 4.1.39.
Author:	Deniz Cevik
Homepage:	http://tomcat.apache.org/
File Size:	1705
Related CVE(s):	CVE-2009-0781
Last Modified:	Mar 6 14:38:04 2009
MD5 Checksum:	4e4b4059d442851979d1c803c67cdf2f

/// File Name:	deluxebb13-sql.txt
Description:	DeluxeBB versions 1.3 and below suffer from a remote SQL injection vulnerability.
Author:	__GiReX__
Homepage:	http://girex.altervista.org/
File Size:	2676
Last Modified:	Mar 18 21:16:43 2009
MD5 Checksum:	2a994c0af3db7ea07e19c6f17dde6426

/// File Name:	dic-change.txt
Description:	Digital Interchange Calendar version 5.7.13 suffers from a contents change vulnerability.
Author:	ByALBAYX
Homepage:	http://www.c4team.org/
File Size:	1020
Last Modified:	Mar 2 16:02:21 2009
MD5 Checksum:	645e3d0877557306837b42257883cc3c

/// File Name:	directadmin-bypass.txt
Description:	DirectAdmin versions 1.33.1 and below suffer from a symlink permission bypass vulnerability.
Author:	S4S-T3rr0r!sT
Homepage:	http://www.hackteach.org/
File Size:	1401
Last Modified:	Mar 25 17:12:20 2009
MD5 Checksum:	c7a322faeba1ea30cb3175da7730be24

/// File Name:	diskos-sql.txt
Description:	Diskos CMS Manager suffers from direct database access and SQL injection vulnerabilities that allows for authentication bypass.
Author:	AnGeL25dZ
File Size:	1847
Last Modified:	Mar 30 14:53:54 2009
MD5 Checksum:	612b63ec150af679d2c0e23dbc3afb5d

/// File Name:	dl-change.txt
Description:	Document Library version 1.0.1 suffers from an arbitrary change administrator vulnerability.
Author:	ByALBAYX
Homepage:	http://www.c4team.org/
File Size:	1043
Last Modified:	Mar 2 16:03:32 2009
MD5 Checksum:	605e0e99d9e20661e0672f968ab3e4da

/// File Name:	drupal-passwdxss.txt
Description:	Small write up regarding a cross site scripting vulnerability on Drupal version 5.15 being used for a password change attack. Attack script included.
Author:	Justin C. Klein Keane
File Size:	6588
Last Modified:	Mar 6 13:49:37 2009
MD5 Checksum:	179bf56e9daff7cd0266b6f1b4edf504

/// File Name:	DSECRG-09-013.txt
Description:	IBM WebSphere Application Server versions 7.0 and 6.1 suffer from multiple cross site scripting vulnerabilities.
Homepage:	http://www.dsec.ru/
File Size:	6624
Last Modified:	Mar 31 21:43:59 2009
MD5 Checksum:	76ca1d583b9195b4358f616c28548b18

/// File Name:	DSECRG-09-016.txt
Description:	SAPDB suffers from multiple cross site scripting vulnerabilities.
Homepage:	http://www.dsec.ru/
File Size:	2977
Last Modified:	Mar 31 21:45:20 2009
MD5 Checksum:	0c9da6072358b8254b3e44c98a78b06c

/// File Name:	DSECRG-09-030.txt
Description:	The PrecisionID Active-X control suffers from an arbitrary file overwriting vulnerability.
Homepage:	http://www.dsec.ru/
File Size:	3012
Last Modified:	Mar 31 21:46:18 2009
MD5 Checksum:	308c22af7057895f54c6f152d5aa5da4

/// File Name:	editeurscripts-xss.txt
Description:	Multiple modules from editeurscripts.com suffer from cross site scripting vulnerabilities.These include EsContacts version 1.0, EsBaseAdmin version 2.1, EsPartenaires version 1.0, and EsNews version 1.2.
Author:	Jonathan Salwan
Homepage:	http://www.shell-storm.org/
File Size:	1358
Last Modified:	Mar 12 17:24:51 2009
MD5 Checksum:	a76dce87254159cf71ccc697e99defe5

/// File Name:	efs-disclose.txt
Description:	Easy File Sharing web server version 4.8 suffers from a remote file disclosure vulnerability.
Author:	Stack
Homepage:	http://v4-team.com/
File Size:	573
Last Modified:	Mar 4 20:27:50 2009
MD5 Checksum:	88532d2a1477277e00a6e40cd0c904ab

/// File Name:	efs-passwd.txt
Description:	EFS Easy Chat Server cross site request forgery exploit that changes the administrator password.
Author:	Stack
Homepage:	http://v4-team.com/
File Size:	1465
Last Modified:	Mar 4 20:28:57 2009
MD5 Checksum:	0ff7b2e8976924475a49072c87acc003

/// File Name:	efsauth-overflow.txt
Description:	EFS Easy Chat Server authentication request buffer overflow exploit that spawns a bindshell on port 9999.
Author:	Dr4sH
File Size:	3047
Last Modified:	Mar 4 20:19:20 2009
MD5 Checksum:	93488cf43d49186e1048363a4b439bfe

/// File Name:	efseasychat-overflow.txt
Description:	EFS Easy Chat Server authentication request SEH buffer overflow exploit that spawns calc.exe.
Author:	His0k4
File Size:	1438
Last Modified:	Mar 3 13:56:16 2009
MD5 Checksum:	a0987575b06fdc182501da0473c5a2b8

/// File Name:	ElbyCDIO_Exp.zip
Description:	Local privilege escalation exploit for ElbyCDIO.sys versions below 6.0.3.2 as used in CloneCD, CloneDVD, Virtual CloneDrive, and AnyDVD.
Author:	Alex from NT Internals
Homepage:	http://www.ntinternals.org/
File Size:	6753
Last Modified:	Mar 24 00:21:01 2009
MD5 Checksum:	0afd6c0d8feb742b9e71db2d2c88076c

/// File Name:	EMORY-2009-01.txt
Description:	Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker with access to an unprivileged account within Cascade Server could exploit this vulnerability to run arbitrary commands on the system with the privileges of the user who started Cascade Server. Exploit included.
Author:	Elliot Kendall
Homepage:	http://www.emory.edu/
File Size:	5735
Last Modified:	Mar 19 23:46:02 2009
MD5 Checksum:	280833b32b1f2ae6542830086cbd3650

/// File Name:	eovideo-sehoverwrite.txt
Description:	EO Video version 1.36 playlist SEH overwrite exploit.
Author:	His0k4,j0rgan
Homepage:	http://www.jorgan.users.cg.yu/
File Size:	3483
Last Modified:	Mar 9 13:17:57 2009
MD5 Checksum:	77341b62ab7bbec1d606638eb95ebc33

/// File Name:	ewp-corrupt.txt
Description:	Easy Web Password version 1.2 local heap memory consumption proof of concept exploit.
Author:	Stack
Homepage:	http://v4-team.com/
File Size:	864
Last Modified:	Mar 4 20:38:25 2009
MD5 Checksum:	2568e9460cf7f5cc9aa6bc503a9c13e2

/// File Name:	exescope-overflow.txt
Description:	eXeScope version 6.50 local buffer overflow exploit that creates a malicious .exe file.
Author:	Koshi
File Size:	2273
Last Modified:	Mar 24 00:31:37 2009
MD5 Checksum:	7fcba59fcee494aa868e5ea878e51e9c

/// File Name:	exoops108-sql.txt
Description:	E-Xoops versions 1.08 and below suffer from the same SQL injection vulnerability discovered in version 1.05 back in December of 2007.
Author:	Dante90
Homepage:	http://www.warwolfz.org/
Related Exploit:	exoops-sql.txt
File Size:	632
Last Modified:	Mar 6 19:41:24 2009
MD5 Checksum:	1aa0854bd6f2760d7794fc3ecea0fce4

/// File Name:	extplorer-exec.txt
Description:	The eXtplorer file management component for Joomla! and Mambo suffers from a local file inclusion vulnerability that allows for remote code execution. Versions below 2.0.0 are vulnerable.
Author:	Juan Galiana Lara
File Size:	5779
Last Modified:	Mar 2 16:57:36 2009
MD5 Checksum:	82573ca57da50101b63b4574e53c8d70

/// File Name:	ezblog-sql.txt
Description:	EZ-Blog version 1b suffers from post deletion and remote SQL injection vulnerabilities.
Author:	Salvatore Fresta
File Size:	1240
Last Modified:	Mar 2 16:21:10 2009
MD5 Checksum:	3489a8060310d8e1208bdbd0d122fe15