Section: .. / 0709-exploits /
| /// File Name: |
socialnet-sql.txt |
Description:
|
The myprofile.php code from www.social-networking.tv is susceptible to a SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 515 | | Last Modified: | Sep 10 15:11:12 2007 |
| MD5 Checksum: | ee808f7e2c53c073da109211c3ba8a5b |
|
| /// File Name: |
softbiz-sql.txt |
Description:
|
Softbiz Classifieds PLUS suffers from a remote SQL injection vulnerability.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1733 | | Last Modified: | Sep 26 22:41:52 2007 |
| MD5 Checksum: | 19dba9c69c9a38272686d797dd91548d |
|
| /// File Name: |
stphp-rfi.txt |
Description:
|
STPHPLibrary suffers from a remote file inclusion vulnerability.
| | Author: | leetsecurity | | Homepage: | http://leetsecurity.org/ | | File Size: | 3504 | | Last Modified: | Sep 5 00:04:35 2007 |
| MD5 Checksum: | c23ced2459e49e4c557e56e8a7dbf811 |
|
| /// File Name: |
streamline-rfi.txt |
Description:
|
Streamline PHP Media Server version 1.0-beta4 suffers from a remote file inclusion vulnerability.
| | Author: | BiNgZa | | File Size: | 679 | | Last Modified: | Sep 20 04:21:11 2007 |
| MD5 Checksum: | ad30d84d02d9411294ad87cba00c052e |
|
| /// File Name: |
tc701-traverse.txt |
Description:
|
The Total Commander FTP client versions 7.01 and below suffer from a remote directory traversal vulnerability. Proof of concept code included.
| | Author: | Gynvael Coldwind | | File Size: | 5770 | | Last Modified: | Sep 7 03:02:23 2007 |
| MD5 Checksum: | ed64e7ad4378b16d1b810bbc50936c36 |
|
| /// File Name: |
timbuktu_sploit.txt |
Description:
|
Motorola Timbuktu Pro version 8.6.3 arbitrary file deletion/creation exploit.
| | Author: | titon | | File Size: | 4263 | | Last Modified: | Sep 25 21:33:07 2007 |
| MD5 Checksum: | aea197f6e7d8dfeaf01a565807e58b82 |
|
| /// File Name: |
tomcat-func-xss.txt |
Description:
|
Apache Tomcat version 5.2.28 is susceptible to cross site scripting attacks in functions.jsp.
| | Author: | Handrix | | Homepage: | http://www.morx.org/ | | File Size: | 554 | | Last Modified: | Sep 7 02:10:36 2007 |
| MD5 Checksum: | bd09a32ca1d51a3b6430e1f2abf74de5 |
|
| /// File Name: |
tomcat4131-xss.txt |
Description:
|
Apache Tomcat version 4.1.31 ships with cal2.jsp that suffers from cross site scripting and cross site request forgery vulnerabilities.
| | Author: | Tushar Vartak | | File Size: | 433 | | Last Modified: | Sep 5 00:27:41 2007 |
| MD5 Checksum: | 84ffe83965ef4435d7d7f4eea492dfc9 |
|
| /// File Name: |
tomsgb10-xss.txt |
Description:
|
Toms Gästebuch version 1.0 suffers from a cross site scripting vulnerability.
| | Author: | cod3in | | File Size: | 424 | | Last Modified: | Sep 5 00:16:03 2007 |
| MD5 Checksum: | dd108ca1bf03cb60ce4620995916615c |
|
| /// File Name: |
tor01216-rewrite.txt |
Description:
|
Tor versions below 0.1.2.16 ControlPort remote rewrite exploit.
| | Author: | elgCrew | | File Size: | 1998 | | Last Modified: | Sep 30 02:16:55 2007 |
| MD5 Checksum: | 77fb45cee39d5aa961bd1a6a6c903981 |
|
| /// File Name: |
trendmicro-overflow.txt |
Description:
|
Trend Micro ServerProtect remote stack overflow exploit that takes advantage of a boundary error condition within eng50.dll via a specially crafted RPC request to the SpntSvc.exe service. Binds a shell to TCP port 4444.
| | Author: | devcode | | File Size: | 5655 | | Related CVE(s): | CVE-2007-1070 | | Last Modified: | Sep 6 11:15:18 2007 |
| MD5 Checksum: | 6043e19f8ad08ab86b47a2925fb37874 |
|
| /// File Name: |
ultra-acquire.txt |
Description:
|
Ultra Crypto Component remote buffer overflow exploit that makes use of CryptoX.dll versions 2.0 and below using the AcquireContext() function.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 3443 | | Last Modified: | Sep 10 17:38:42 2007 |
| MD5 Checksum: | 051f8ca58a195bafd8aecfbb1be103b1 |
|
| /// File Name: |
ultra-cryptox20.txt |
Description:
|
Ultra Cryto Component suffers from an insecure method vulnerability in CryptoX.dll versions 2.0 and below in the SaveToFile() function.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 1386 | | Last Modified: | Sep 10 17:37:21 2007 |
| MD5 Checksum: | c69b58cb545cf1e6de078a045961074c |
|
| /// File Name: |
vigilecms-xss.txt |
Description:
|
Vigile CMS version 1.8 suffers from multiple cross site scripting vulnerabilities.
| | Author: | x0kster | | File Size: | 758 | | Last Modified: | Sep 20 22:31:55 2007 |
| MD5 Checksum: | 59e9875c3b156b1dba29359a4d272bc6 |
|
| /// File Name: |
virtualdj-overflow.txt |
Description:
|
Virtual DJ version 5.0 local buffer overflow exploit.
| | Author: | 0x58 | | File Size: | 1613 | | Last Modified: | Sep 5 00:06:20 2007 |
| MD5 Checksum: | b58646273397d266f964aa20182832b6 |
|
| /// File Name: |
waraxe-2007-SA052.txt |
Description:
|
dBlog CMS is susceptible to a direct database download vulnerability.
| | Author: | waraxe | | Homepage: | http://www.waraxe.us/ | | File Size: | 2071 | | Last Modified: | Sep 20 04:16:35 2007 |
| MD5 Checksum: | 4857d269c5d84522220d4d7f38f81dbf |
|
| /// File Name: |
waraxe-2007-SA054.txt |
Description:
|
The Dance Music module for PHP-Nuke suffers from a local file inclusion vulnerability.
| | Author: | waraxe | | Homepage: | http://www.waraxe.us/ | | File Size: | 2612 | | Last Modified: | Sep 25 21:47:37 2007 |
| MD5 Checksum: | ce3bacd662121a8748a89b38a862f699 |
|
| /// File Name: |
waraxe-2007-SA057.txt |
Description:
|
SiteX CMS is susceptible to an unauthorized file upload vulnerability.
| | Author: | waraxe | | Homepage: | http://www.waraxe.us/ | | File Size: | 3567 | | Last Modified: | Sep 27 21:07:45 2007 |
| MD5 Checksum: | 05102e83373625b3de5cb5a8e21092e8 |
|
| /// File Name: |
wbr-xss.txt |
Description:
|
The WBR3404TX broadband router suffers from a cross site scripting vulnerability in the web based management interface.
| | Author: | azizov | | File Size: | 453 | | Last Modified: | Sep 20 04:39:28 2007 |
| MD5 Checksum: | c18e371c0722c81031ca3c2952e3a109 |
|
| /// File Name: |
webace-sql.txt |
Description:
|
Webace-Linkscript version 1.3 SE suffers from a remote SQL injection vulnerability in start.php.
| | Author: | k1tk4t | | Homepage: | http://newhack.org/ | | File Size: | 1648 | | Last Modified: | Sep 7 19:11:39 2007 |
| MD5 Checksum: | 3dbc3121b60190a348e126be8af4c3cf |
|
| /// File Name: |
webbatch-xss.txt |
Description:
|
WebBatch from Wilson WindowWare, Inc. suffers from a cross site scripting vulnerability.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1250 | | Last Modified: | Sep 20 21:38:45 2007 |
| MD5 Checksum: | d322697468759b4af62bef337ce8d5ba |
|
| /// File Name: |
webed-rfi.txt |
Description:
|
WebED version 0.8999 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | Seph1roth | | File Size: | 641 | | Last Modified: | Sep 20 21:41:18 2007 |
| MD5 Checksum: | 5d287f647ec9b03af8317fe34eec6e4c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
