Section:  .. / 0508-exploits  /

Page 3 of 5
<< 1 2 3 4 5 >> Files 50 - 75 of 105
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: lduSQL.txt
Description:
Land Down Under versions 801 and below suffer from multiple SQL injection vulnerabilities. Full details provided.
Author:matrix_killer
Homepage:http://www.h4cky0u.org
File Size:1315
Last Modified:Aug 31 07:45:23 2005
MD5 Checksum:eb9df365250444e4b536d1fb2e55e3aa

 ///  File Name: lduXSS2.txt
Description:
Land Down Under suffers from cross site scripting vulnerabilities in the signature and topic payloads.
Author:spyMASter
File Size:804
Last Modified:Aug 31 07:18:57 2005
MD5 Checksum:38e1144d56f1c9a6cdeb36bb6a7a7238

 ///  File Name: lglass20040427.txt
Description:
Exploit for Looking Glass v20040427 arbitrary command execution / cross site scripting vulnerabilities
Author:rgod
Homepage:http://rgod.altervista.org
File Size:6518
Last Modified:Aug 28 11:31:58 2005
MD5 Checksum:fc4b3d001799b92df265dce9d88d0b2a

 ///  File Name: linksysWLAN20.txt
Description:
The Linksys WLAN Monitor service (WLSVC) that is used to configure settings for various Linksys wireless network cards runs under the context of the LocalSystem account. It is possible to manipulate the administrative interface of the Linksys WLAN Monitor and escalate privileges to that of the LocalSystem account. Linksys WLAN Monitor version 2.0 is susceptible.
Author:Reed Arvin
Homepage:http://reedarvin.thearvins.com/
File Size:1746
Last Modified:Aug 11 06:52:21 2005
MD5 Checksum:880c6418dd76abab4214c0e9146f60e3

 ///  File Name: linsql2.c
Description:
linsql2 is an updated version of the command line client for MS-SQL that can execute arbitrary SQL queries and OS commands, when the username/password of the MS-SQL server is known. This version supports the API of the latest freetds library.
Author:solid, herbless
File Size:29720
Last Modified:Aug 5 09:41:56 2005
MD5 Checksum:b933a852b1dbefb29d1a2d51fac664cb

 ///  File Name: mdaemon_imap.pm.txt
Description:
Mdaemon 8.0.3 IMAP CRAM-MD5 authentication remote buffer overflow exploit.
File Size:2479
Last Modified:Aug 15 07:17:13 2005
MD5 Checksum:379e6bb2e530de9238d0c264ea2ef2d8

 ///  File Name: mediabox404.txt
Description:
mediabox404 WebRadio and WebTV manager is susceptible to a SQL injection attack that allows for login bypass. Versions 1.2 and below are vulnerable.
Author:Cedric Tissieres
Homepage:http://www.objectif-securite.ch
File Size:1669
Last Modified:Aug 18 08:56:24 2005
MD5 Checksum:a1587b7efad1ea40f3b4d70501538bb2

 ///  File Name: ms05038.c
Description:
Microsoft Internet Explorer COM Object remote file down and execute exploit. Makes use of the vulnerability described in MS05-038.
Author:ZwelL
Homepage:http://www.donews.net/zwell
File Size:12345
Related CVE(s):CAN-2005-1990
Last Modified:Aug 12 08:51:35 2005
MD5 Checksum:87d23d7995cf25e628a75fa06f9295bc

 ///  File Name: ms05039.c
Description:
Microsoft Windows 2000 Plug and Play universal remote exploit for the flaw discussed in MS05-039.
File Size:6750
Related CVE(s):CAN-2005-1983
Last Modified:Aug 12 08:56:09 2005
MD5 Checksum:dfe17f8473ec85618b91a9a7f181675a

 ///  File Name: multiVulns.txt
Description:
Multiple vulnerabilities have been discovered in various CMS and forum software. e107 suffers from a cross site scripting flaw, Wordpress suffers from a SQL injection flaw, PHPNews suffers from a remote inclusion flaw, phpBB suffers from a SQL injection flaw, Google suffers from a SQL injection flaw, and myspace.com suffers from a user profile defacement flaw. Oh.. and UBB 6.3.2 suffers from a remote code execution flaw.
Author:pacifico, ratboy
File Size:4505
Last Modified:Aug 31 07:15:14 2005
MD5 Checksum:0b3cc1bdf7c9bc094938f2cf671a24b5

 ///  File Name: MyBBRC4.txt
Description:
Multiple SQL injection vulnerabilities exist in MyBB RC 4.
Author:Phuket
File Size:1875
Last Modified:Aug 13 08:42:47 2005
MD5 Checksum:780f66ab57fa4b0c488ea8c658e9180f

 ///  File Name: mybbSQL.pl.txt
Description:
MyBulletinBoard (MyBB) member.php SQL injection exploit.
Author:W7ED
File Size:1488
Last Modified:Aug 31 07:17:00 2005
MD5 Checksum:9274e58ef338ce1541974c525480a669

 ///  File Name: mybbSQLinject.txt
Description:
MyBulletinBoard (MyBB) versions 1.00 RC1 through RC4 suffer from SQL injection flaws. Perl exploit included.
Author:Devil-00
File Size:2193
Last Modified:Aug 24 03:04:17 2005
MD5 Checksum:49f040c0a085c912cd267235e83f12de

 ///  File Name: NAePolicy.txt
Description:
A privilege escalation flaw exists in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3). Exploitation details provided.
Author:Reed Arvin
Homepage:http://reedarvin.thearvins.com/
File Size:1748
Last Modified:Aug 12 09:00:22 2005
MD5 Checksum:3ca0a4e98d960f6e2e41e2b844bed4f7

 ///  File Name: naxtorShop.txt
Description:
Naxtor Shopping Cart 1.0 is susceptible to cross site scripting, SQL injection, and information disclosure vulnerabilities.
Author:John Cobb
Homepage:http://www.NoBytes.com
File Size:1355
Last Modified:Aug 5 09:13:36 2005
MD5 Checksum:c1109170d635c65df586c88031bbdf51

 ///  File Name: nbSMTP_fsexp.c
Description:
nbSMTP version 0.99 remote format string exploit. Tested on Slackware Linux 9.0, 10.0, and 10.1.
Author:CoKi
Homepage:http://www.nosystem.com.ar
Related File:glsa-200508-03.txt
File Size:9664
Last Modified:Aug 6 08:09:25 2005
MD5 Checksum:7b03f489ef56c1c6f12b4ebe55f21c9e

 ///  File Name: nephp304.txt
Description:
Nephp Publisher 3.04 is susceptible to a cross site scripting flaw.
Homepage:http://www.shabgard.org
File Size:494
Last Modified:Aug 24 06:48:16 2005
MD5 Checksum:42d0f230af8832e1f33e8398d4a25c2c

 ///  File Name: netquery311.html
Description:
Netquery 3.11 remote command execution proof of concept exploit.
Author:rgod
Homepage:http://www.rgod.altervista.org/
File Size:7124
Last Modified:Aug 24 06:43:42 2005
MD5 Checksum:83c1382cfd28ff684814dc00390654d1

 ///  File Name: netquerypoc.html
Description:
Netquery 3.1 remote command execution proof of concept exploit.
Author:rgod
Homepage:http://www.rgod.altervista.org/
File Size:6667
Last Modified:Aug 5 08:22:33 2005
MD5 Checksum:9f00edade0ac5d2b6e71b0f9b1abbc31

 ///  File Name: nordXSS.txt
Description:
Nordstrom's website is susceptible cross site scripting attacks.
Author:Jeff Peadro
File Size:499
Last Modified:Aug 17 07:04:00 2005
MD5 Checksum:ccde934bcb2be4c445b17f410caaf369

 ///  File Name: onunload.txt
Description:
In nearly all browsers you can overwrite the window location in the 'onunload' event. This has been tested against Firefox, Opera, and Internet Explorer.
Author:Tobias Boonstoppel
File Size:773
Last Modified:Aug 25 06:57:48 2005
MD5 Checksum:cb19d56d011a3ec5af3696705135f266

 ///  File Name: openSQL.txt
Description:
Open Bulletin Board is susceptible to multiple SQL injection attacks. All versions are affected. Sample exploitation provided.
Author:Abducter
Homepage:http://www.s4a.cc
File Size:890
Last Modified:Aug 10 07:29:36 2005
MD5 Checksum:e05ba222117ffe789e97f548d5aae8e8

 ///  File Name: OS2A-1001.txt
Description:
ePing is a ping utility plugin for e107, a PHP-based content management system that uses a MySQL backend database. ePing versions 1.02 and prior are vulnerable to a file creation vulnerability caused by improper validation of user-supplied input in the doping.php script.
File Size:2122
Last Modified:Aug 9 10:46:58 2005
MD5 Checksum:cd56bc67a5d28cae77bfe3fd1a9d2063

 ///  File Name: PaFileDB31SQL.txt
Description:
PaFileDB 3.1 is susceptible to a SQL injection attack that allows for login bypass.
Author:deluxe89, Astovidatu
Homepage:http://security-project.org
File Size:1833
Last Modified:Aug 25 07:09:21 2005
MD5 Checksum:5ebb7571066d1cee27025c2990ccbf0e

 ///  File Name: phpAdsNew205.txt
Description:
phpAdsNew and phpPgAds versions 2.0.5 and below suffer from an arbitrary file inclusion flaw. Detailed exploitation provided.
Author:Maksymilian Arciemowicz
File Size:3018
Last Modified:Aug 18 09:23:35 2005
MD5 Checksum:1ed20310705df1b100b9b0f847ea67a1