Section: .. / 0605-exploits /
| /// File Name: |
deluxebb.txt |
Description:
|
DeluxeBB versions 1.06 and below attachment momd_mime exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 9191 | | Last Modified: | May 22 01:17:44 2006 |
| MD5 Checksum: | 5782aee529a3ac5c704cf126960aa250 |
|
| /// File Name: |
dir.txt |
Description:
|
Directory Listing Script is susceptible to cross site scripting attacks.
| | Author: | Kiki | | Homepage: | http://kiki91.altervista.org/ | | File Size: | 543 | | Last Modified: | May 21 18:24:01 2006 |
| MD5 Checksum: | e1402600c5ac9adca046681da6a9bbe6 |
|
| /// File Name: |
DMCounter092b.txt |
Description:
|
DMCounter version 0.9.2-b suffers from a remote file inclusion flaw that allows for arbitrary code execution.
| | Author: | beford | | File Size: | 1094 | | Last Modified: | May 2 02:03:30 2006 |
| MD5 Checksum: | 187ac0d1ffb1dc44d1502e5c69d1ae0d |
|
| /// File Name: |
dokeos.txt |
Description:
|
Dokeos Learning Management System version 1.6.4 remote file inclusion exploit.
| | Author: | beford | | File Size: | 2261 | | Last Modified: | May 9 16:32:10 2006 |
| MD5 Checksum: | e403baffbe1d4a6745044faaadce24ee |
|
| /// File Name: |
Drupal-4.7.txt |
Description:
|
Drupal versions less than or equal to 4.7 attachment mod_mime poc exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org | | File Size: | 10995 | | Last Modified: | May 26 19:25:12 2006 |
| MD5 Checksum: | c14c68c560eeda956bd59c8cc892cad3 |
|
| /// File Name: |
DSSExploit.txt |
Description:
|
The default screen saver in Windows XP and Windows 2003 Server runs as a system process. Thus if a malicious person changes logon.scr to cmd.exe or explorer.exe they can take control of the system when the screen saver runs. POC exploit included.
| | Author: | Susam Pal | | Homepage: | http://susampal.blogspot.com/ | | File Size: | 4694 | | Last Modified: | May 25 21:17:41 2006 |
| MD5 Checksum: | d8f174910431a7908e23d89bd2c0a6b2 |
|
| /// File Name: |
e107072.txt |
Description:
|
e107 CMS versions 0.7.2 and below suffer from a SQL injection vulnerability during cookie processing.
| | Author: | socsam | | File Size: | 1250 | | Last Modified: | May 21 23:10:22 2006 |
| MD5 Checksum: | 79fada3bde8e622553df82754bd34d8a |
|
| /// File Name: |
eBD-en.txt |
Description:
|
eBusiness Designer versions 3.1.4 and below suffer from arbitrary file upload, code execution, and cross site scripting flaws. English version of this advisory.
| | Author: | Pedro Andujar | | Homepage: | http://www.digitalsec.es/ | | File Size: | 9858 | | Last Modified: | May 21 14:30:48 2006 |
| MD5 Checksum: | 8e1244d56d06ba6677b6b713ca60b897 |
|
| /// File Name: |
eBD-es.txt |
Description:
|
eBusiness Designer versions 3.1.4 and below suffer from arbitrary file upload, code execution, and cross site scripting flaws. Spanish version of this advisory.
| | Author: | Pedro Andujar | | Homepage: | http://www.digitalsec.es/ | | File Size: | 10305 | | Last Modified: | May 21 14:31:11 2006 |
| MD5 Checksum: | 0205f6041a18dab18e3cc221349d0add |
|
| /// File Name: |
empiredos.zip |
Description:
|
Proof of concept denial of service exploit for Empire versions 4.3.2 and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | empiredos.txt | | File Size: | 6595 | | Last Modified: | May 21 20:54:00 2006 |
| MD5 Checksum: | d3add439b06223e603dc0497beb9b317 |
|
| /// File Name: |
eqdkp.txt |
Description:
|
EQdkp versions 1.3.0 and below suffer from a remote file inclusion flaw.
| | Author: | OLiBekaS | | File Size: | 259 | | Last Modified: | May 9 16:26:53 2006 |
| MD5 Checksum: | ef679ab8be7772a7679d3103b8870f0a |
|
| /// File Name: |
ezusermanager.txt |
Description:
|
ezUserManager versions 1.6 and below suffer from a remote file inclusion vulnerability.
| | Author: | OLiBekaS | | File Size: | 430 | | Last Modified: | May 22 00:28:48 2006 |
| MD5 Checksum: | ed99b8d4d5ca26b801415198b490b982 |
|
| /// File Name: |
fastclick238.txt |
Description:
|
Fast Click versions 2.3.8 and below suffer from a remote file inclusion flaw that can allow for remote command execution. Details provided.
| | Author: | R@1D3N | | Homepage: | http://www.aria-security.net/ | | File Size: | 1202 | | Last Modified: | May 6 15:58:06 2006 |
| MD5 Checksum: | 0012b5860e2224267fffd33dfe4ae08e |
|
| /// File Name: |
fastclicklite113.txt |
Description:
|
Fast Click SQL Lite versions 1.1.3 and below suffer from a remote file inclusion flaw that can allow for remote command execution. Details provided.
| | Author: | R@1D3N | | Homepage: | http://www.aria-security.net/ | | File Size: | 1197 | | Last Modified: | May 6 15:59:24 2006 |
| MD5 Checksum: | b9109950fe9cdaf6487a3a07e75c3734 |
|
| /// File Name: |
FileProtection101.txt |
Description:
|
FileProtection Express versions 1.0.1 and below suffer from a simple authentication bypass flaw.
| | Author: | Nomenumbra | | File Size: | 494 | | Last Modified: | May 6 15:49:25 2006 |
| MD5 Checksum: | aa5f135d1dc092d17da4db1c7fa3c7de |
|
| /// File Name: |
foing-remote-file.txt |
Description:
|
Foing suffers from a remote file inclusion flaw that allows for arbitrary code execution. Versions 0.2.0 through 0.7.0 are susceptible.
| | Author: | botan | | File Size: | 1849 | | Last Modified: | May 21 18:21:37 2006 |
| MD5 Checksum: | 7beb2a9b994d3d120fa78f41ed29b121 |
|
| /// File Name: |
freeadmin.txt |
Description:
|
free-php.net Poll version 1.0 allows for direct /admin/ access.
| | Author: | tugr | | File Size: | 124 | | Last Modified: | May 2 01:59:25 2006 |
| MD5 Checksum: | b585be66030140bd115c1ffdb215813c |
|
| /// File Name: |
freetext.txt |
Description:
|
FreeTextBox and FCKEditor Basic Toolbar Selection suffers from multiple cross site scripting issues.
| | File Size: | 480 | | Last Modified: | May 21 23:31:23 2006 |
| MD5 Checksum: | 2a32c9a83e1d59023d3f081d42b64b34 |
|
| /// File Name: |
galleryadmin.txt |
Description:
|
planetGallery allows for direct administrative access without credentials.
| | Author: | tugr | | File Size: | 208 | | Last Modified: | May 2 02:00:18 2006 |
| MD5 Checksum: | a4d3157c2bcdf265f4b9a87c80e79754 |
|
| /// File Name: |
gawab.txt |
Description:
|
Gawab.com mail services portal system is susceptible to cross site scripting attacks.
| | Author: | rootter | | File Size: | 353 | | Last Modified: | May 21 23:47:28 2006 |
| MD5 Checksum: | 74b235632d08dc98972cd31951e77bc3 |
|
| /// File Name: |
genecysbof.zip |
Description:
|
Proof of concept exploit for Genecys versions 0.2 and below, which suffer from a buffer overflow and a NULL pointer crash.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | genecysbof.txt | | File Size: | 6990 | | Last Modified: | May 21 20:49:06 2006 |
| MD5 Checksum: | b6d569d0788e33d99ad72af2b72898f5 |
|
| /// File Name: |
gphotos.txt |
Description:
|
GPhotos versions 1.5 and below suffer from directory traversal and cross site scripting flaws.
| | Author: | Moroccan Security | | File Size: | 688 | | Last Modified: | May 21 23:11:20 2006 |
| MD5 Checksum: | f4e2552282a5007bb84e7693bc78dac2 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
