Section: .. / 0804-exploits /
| /// File Name: |
subedit-poc.txt |
Description:
|
Python code that creates a file that is able to trigger a buffer overflow vulnerability in SubEdit Player build 4066.
| | Author: | grzdyl | | File Size: | 1539 | | Last Modified: | Apr 21 16:00:39 2008 |
| MD5 Checksum: | e1c89d73a12ff999075ab8be597d902c |
|
| /// File Name: |
joovili-sql.txt |
Description:
|
Joovili version 3.1 suffers from a SQL injection vulnerability in browse.videos.php.
| | Author: | HaCkeR_EgY | | Homepage: | http://www.PaL-HaCker.com/ | | File Size: | 1519 | | Last Modified: | Apr 29 19:45:24 2008 |
| MD5 Checksum: | f6d847f5d10bf8432cba6c95daee39dc |
|
| /// File Name: |
webcal-sql.txt |
Description:
|
Web Calendar versions 4.1 and below blind SQL injection exploit.
| | Author: | t0pp8uzz | | File Size: | 1505 | | Last Modified: | Apr 23 12:54:24 2008 |
| MD5 Checksum: | e2eeea398987da35bec690489639c266 |
|
| /// File Name: |
harris-rfi.txt |
Description:
|
Harris WapChat version 1 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | k1n9k0ng | | Homepage: | http://www.sekuritionline.net/ | | File Size: | 1499 | | Last Modified: | Apr 30 20:47:40 2008 |
| MD5 Checksum: | c50142918bfb808f92aebb9988fee9bb |
|
| /// File Name: |
oxyproject-exec.txt |
Description:
|
OxYProject version 0.85 suffers from a remote code execution vulnerability in edithistory.php.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1496 | | Last Modified: | Apr 30 20:42:13 2008 |
| MD5 Checksum: | b1c26370752d69b0820b1c528f25ceff |
|
| /// File Name: |
mgl-sql.txt |
Description:
|
My Gaming Ladder versions 7.5 and below suffer from a remote SQL injection vulnerability.
| | Author: | t0pp8uzz | | File Size: | 1478 | | Last Modified: | Apr 8 01:07:57 2008 |
| MD5 Checksum: | a88c573a762a219a2c5501fb9b783aa4 |
|
| /// File Name: |
mamboahsshop-sql.txt |
Description:
|
The Mambo ahsShop component versions 1.51 and below suffer from a remote SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1463 | | Last Modified: | Apr 1 22:12:09 2008 |
| MD5 Checksum: | 6995ef6adf3675dac55aa1945d06642d |
|
| /// File Name: |
postcard-insecure.txt |
Description:
|
PostCard version 1.0 suffers from a remote insecure handling of cookie data.
| | Author: | t0pp8uzz | | File Size: | 1440 | | Last Modified: | Apr 14 16:20:37 2008 |
| MD5 Checksum: | 94e707dc173d68b7c8ed0d266c749d3b |
|
| /// File Name: |
clevercopy-sql.txt |
Description:
|
Clever Copy version 3.0 suffers from a SQL injection vulnerability in postview.php.
| | Author: | U238 | | Homepage: | http://noexec.blogspot.com/ | | File Size: | 1421 | | Last Modified: | Apr 28 10:59:12 2008 |
| MD5 Checksum: | 6e2b5bd1b495e5e5df8c7b523fb685f6 |
|
| /// File Name: |
simplecustomer-sql.txt |
Description:
|
Simple Customer version 1.2 suffers from a SQL injection vulnerability in contact.php.
| | Author: | t0pp8uzz | | File Size: | 1413 | | Last Modified: | Apr 21 16:06:48 2008 |
| MD5 Checksum: | 8f8f630b3a1769af6517764faea43c1b |
|
| /// File Name: |
mybbcp-sql.txt |
Description:
|
The MyBulletinBoard aka MyBB plugin Custom Pages version 1.0 suffers from a remote SQL injection vulnerability.
| | Author: | Lidloses_Auge | | File Size: | 1410 | | Last Modified: | Apr 8 00:01:59 2008 |
| MD5 Checksum: | 3eabd830c3b54349f43c1bbafafa7d35 |
|
| /// File Name: |
links-sql.txt |
Description:
|
Links Directory version 1.1 suffers from a SQL injection vulnerability.
| | Author: | t0pp8uzz,xprog | | File Size: | 1392 | | Last Modified: | Apr 7 23:59:21 2008 |
| MD5 Checksum: | 4b6941ef5e8f4a62087314e394165412 |
|
| /// File Name: |
ccmail-insecure.txt |
Description:
|
CcMail version 1.01 and below suffer from an insecure handling of cookie data.
| | Author: | t0pp8uzz | | File Size: | 1376 | | Last Modified: | Apr 14 16:23:50 2008 |
| MD5 Checksum: | a099015858da4fd785b318376fcc9c91 |
|
| /// File Name: |
lightnhard-multi.txt |
Description:
|
LightNEasy version 1.2.2 suffers from cross site scripting, directory traversal, and arbitrary file creation vulnerabilities.
| | Author: | Attila Gerendi | | File Size: | 1375 | | Last Modified: | Apr 18 14:17:42 2008 |
| MD5 Checksum: | 99a44b61dfac128a58014fe0de832e24 |
|
| /// File Name: |
blogator-passwd.txt |
Description:
|
Blogator-script version 0.95 suffers from a change user password vulnerability.
| | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 1369 | | Last Modified: | Apr 7 23:28:07 2008 |
| MD5 Checksum: | 37c450d4ffc0f1b9bc9b0aa2758ff78f |
|
| /// File Name: |
trnews-sql.txt |
Description:
|
TR News version 2.1 suffers from a remote SQL injection vulnerability.
| | Author: | His0k4 | | File Size: | 1366 | | Last Modified: | Apr 21 18:27:23 2008 |
| MD5 Checksum: | ee448441d742b66883034afc16a0fa32 |
|
| /// File Name: |
supernet-sql.txt |
Description:
|
SuperNET Shop version 1.0 suffers from remote SQL injection vulnerabilities.
| | Author: | U238 | | Homepage: | http://ugur238.org/ | | File Size: | 1354 | | Last Modified: | Apr 8 22:54:00 2008 |
| MD5 Checksum: | 863409d7e4c1f2debe85be25f1d6d9f6 |
|
| /// File Name: |
prozilla-delete.txt |
Description:
|
Prozilla Reviews Script version 1.0 suffers from an arbitrary delete user vulnerability.
| | Author: | t0pp8uzz | | File Size: | 1324 | | Last Modified: | Apr 8 00:45:39 2008 |
| MD5 Checksum: | d8145ab97d6057be02df892494c5b977 |
|
| /// File Name: |
blogator-sql.txt |
Description:
|
Blogator-script version 0.95 suffers from a remote SQL injection vulnerability.
| | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 1291 | | Last Modified: | Apr 7 23:26:31 2008 |
| MD5 Checksum: | c7d954a01d602730f66663c6f8065fab |
|
| /// File Name: |
f5bigip-inject.txt |
Description:
|
The F5 BIG-IP management interface fails to sanitize user input allowing for arbitrary code execution. Verified in version 9.4.3.
| | Author: | nnposter | | File Size: | 1289 | | Last Modified: | Apr 8 00:15:52 2008 |
| MD5 Checksum: | 396c06ab89919b0c23b2e8fabe609b5a |
|
| /// File Name: |
joomlapaxx-blindsql.txt |
Description:
|
Blind SQL injection exploit for the Joomla PaxxGallery component.
| | Author: | ZAMUT | | Homepage: | http://www.antichat.ru/ | | File Size: | 1289 | | Last Modified: | Apr 28 18:35:50 2008 |
| MD5 Checksum: | b4c5f0b90e8e9740db3a64a189dae6ca |
|
| /// File Name: |
alkaconsessions-xss.txt |
Description:
|
The Alkacon OpenCMS suffers from a cross site scripting vulnerability in sessions.jsp. Version 7.0.3 is susceptible.
| | Author: | nnposter | | File Size: | 1276 | | Last Modified: | Apr 8 00:16:48 2008 |
| MD5 Checksum: | 6af6c734c302c7767e78f5001f15a5ff |
|
| /// File Name: |
sabros-disclose.txt |
Description:
|
sabros.us version 1.75 suffers from a remote file disclosure vulnerability in thumbnails.php.
| | Author: | HaCkeR_EgY | | Homepage: | http://www.PaL-HaCker.com/ | | File Size: | 1274 | | Last Modified: | Apr 4 18:46:29 2008 |
| MD5 Checksum: | b322314495a3bf9662dae5aa6e660c20 |
|
| /// File Name: |
kwsphparc-sql.txt |
Description:
|
The KwsPHP Archives module suffers from a remote SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1263 | | Last Modified: | Apr 4 17:38:39 2008 |
| MD5 Checksum: | 5b4c1ef6c0c987e7499439503ae6a9ab |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
