Section: .. / 0711-exploits /
| /// File Name: |
runcms-lfi.txt |
Description:
|
RunCMS versions 1.6 and below suffer from a local file inclusion vulnerability.
| | Author: | trueend5 | | Homepage: | http://www.kapda.ir/ | | File Size: | 3077 | | Last Modified: | Nov 26 21:53:15 2007 |
| MD5 Checksum: | 877a97e8d6dd5d91794c19bddff832a9 |
|
| /// File Name: |
nahc-sql.txt |
Description:
|
NetAuctionHelp Classified Ads version 1.0 suffers from a remote SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 1215 | | Last Modified: | Nov 26 21:52:14 2007 |
| MD5 Checksum: | 80554503317b0cc731ccee1d18176c6a |
|
| /// File Name: |
vbtube-xss.txt |
Description:
|
vBTube version 1.1 Beta suffers from a cross site scripting vulnerability.
| | Author: | Crackers_Child | | File Size: | 523 | | Last Modified: | Nov 26 21:51:20 2007 |
| MD5 Checksum: | 6af0745b06438a592f25c74af9f7fa27 |
|
| /// File Name: |
cygwin-overflow.txt |
Description:
|
Cygwin is vulnerable to a buffer overflow when checking filename lengths. cygwin1.dll versions up to 1.5.7 are susceptible.
| | Author: | Jesus Olmos Gonzalez | | File Size: | 3872 | | Last Modified: | Nov 26 21:49:20 2007 |
| MD5 Checksum: | 20fb5ba384fafc5019b93acaf0190eb4 |
|
| /// File Name: |
aquick-seh.txt |
Description:
|
Apple QuickTime versions 7.2 and 7.3 RTSP response remote SEH overwrite proof of concept exploit.
| | Author: | h07 | | File Size: | 2188 | | Last Modified: | Nov 26 21:31:24 2007 |
| MD5 Checksum: | c2038dcdccec92fa74e06320fb96f136 |
|
| /// File Name: |
aquick-universal.txt |
Description:
|
Apple QuickTime versions 7.2 and 7.3 RTSP response universal exploit that works with Internet Explorer 7, Firefox, and Opera.
| | Author: | Muts | | Homepage: | http://www.offensive-security.com/ | | File Size: | 5788 | | Last Modified: | Nov 26 21:29:45 2007 |
| MD5 Checksum: | 5276a65f660773d81f0ffca84dc66f41 |
|
| /// File Name: |
aquick-rstp.txt |
Description:
|
Apple QuickTime versions 7.2 and 7.3 remote code execution exploit that makes use of the RSTP response vulnerability.
| | Author: | InTeL | | Homepage: | http://pentium-xeon.blogspot.com/ | | File Size: | 9436 | | Last Modified: | Nov 26 21:27:17 2007 |
| MD5 Checksum: | da3aa524f3d3cb4d90d3344c20d91f8a |
|
| /// File Name: |
wow-sql.txt |
Description:
|
WorkingOnWeb version2.0.1400 suffers from a remote SQL injection vulnerability.
| | Author: | ka0x | | File Size: | 1044 | | Last Modified: | Nov 26 21:24:44 2007 |
| MD5 Checksum: | 0a79c1248df5f1acffaffc70f6b03ffd |
|
| /// File Name: |
amber-lfi.txt |
Description:
|
Amber Script version 1.0 suffers from a local file inclusion vulnerability in show_content.php.
| | Author: | Crackers_Child | | File Size: | 1551 | | Last Modified: | Nov 26 21:23:51 2007 |
| MD5 Checksum: | 5a0d13af6e70751c1eb9176c9f1a930c |
|
| /// File Name: |
pblang499-exec.txt |
Description:
|
PBLang versions 4.99.17.q and below suffer from remote file rewriting and remote command execution vulnerabilities.
| | Author: | KiNgOfThEwOrLd | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 4237 | | Last Modified: | Nov 26 21:22:43 2007 |
| MD5 Checksum: | 07f43d0ebc55161dd7e5b856552868d5 |
|
| /// File Name: |
coolshot-sql.txt |
Description:
|
CoolShot E-Lite POS version 1.0 suffers from a SQL injection vulnerability.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 650 | | Last Modified: | Nov 26 21:20:30 2007 |
| MD5 Checksum: | ab262b3ca5635fb91d7918de989fa7b1 |
|
| /// File Name: |
bitcomet-xss.txt |
Description:
|
Bitcomet Resource Browser version 1.1 is susceptible to cross site scripting attacks.
| | Author: | jplopezy | | File Size: | 382 | | Last Modified: | Nov 26 21:19:18 2007 |
| MD5 Checksum: | 5367d2cb4db4a6741e2ebe6147d44b32 |
|
| /// File Name: |
phpkit-sql.txt |
Description:
|
PHPKIT version 1.64pl1 remote SQL injection exploit that makes use of article.php.
| | Author: | shadowleet | | File Size: | 5772 | | Last Modified: | Nov 26 21:15:41 2007 |
| MD5 Checksum: | 58d938ba5d0fea7bdd76cde9a4944636 |
|
| /// File Name: |
ci-sql.txt |
Description:
|
Content Injector versions 1.52 suffers from a remote SQL injection vulnerability in index.php.
| | Author: | S.W.A.T. | | Homepage: | http://www.xmors.com/ | | File Size: | 1544 | | Last Modified: | Nov 26 21:14:43 2007 |
| MD5 Checksum: | 7b35fd24cf1e1033cf7e49ed37283e75 |
|
| /// File Name: |
devmass-rfi.txt |
Description:
|
DevMass Shopping Cart versions 1.0 and below suffer from a remote file inclusion vulnerability.
| | Author: | S.W.A.T. | | Homepage: | http://www.xmors.com/ | | File Size: | 3212 | | Last Modified: | Nov 26 21:13:59 2007 |
| MD5 Checksum: | c99fcfeba52d250d10489b09a2acdea5 |
|
| /// File Name: |
mp3toolbox-rfi.txt |
Description:
|
MP3 ToolBox version 1.0 beta 5 suffers from a remote file inclusion vulnerability.
| | Author: | Crackers_Child | | File Size: | 1581 | | Last Modified: | Nov 26 21:12:28 2007 |
| MD5 Checksum: | 0d99bbe5897f7f98b96fa847edf6bd48 |
|
| /// File Name: |
irola-sql.txt |
Description:
|
Irola My-Time version 3.5 is vulnerable to SQL injection attacks.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 715 | | Last Modified: | Nov 26 21:07:03 2007 |
| MD5 Checksum: | 648c3eea77fa1dbc53b1b32cb4aae44f |
|
| /// File Name: |
vigilecms-exec.txt |
Description:
|
VigileCMS versions 1.8 and below stealth remote command execution exploit written in Python.
| | Author: | The:Paradox | | File Size: | 9087 | | Last Modified: | Nov 26 21:00:47 2007 |
| MD5 Checksum: | 9097a497242196110618416b3bdab98e |
|
| /// File Name: |
mps-insertion.txt |
Description:
|
The MySpace Poll Creator script is susceptible to a cross site scripting vulnerability.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1464 | | Last Modified: | Nov 26 20:58:22 2007 |
| MD5 Checksum: | fa92a18952e21cb189d7acca12ff7228 |
|
| /// File Name: |
kbbestell-exec.txt |
Description:
|
KB-Bestellsystem suffers from a remote code execution vulnerability due to a lack of sanitized user input.
| | Author: | Zero X | | File Size: | 469 | | Last Modified: | Nov 26 20:56:14 2007 |
| MD5 Checksum: | 4a785a57e11e127ee03505f79151140c |
|
| /// File Name: |
getblog-lfi.txt |
Description:
|
GetBlog suffers from a local file inclusion vulnerability.
| | Author: | HACKERS PAL | | Homepage: | http://www.soqor.net/ | | File Size: | 296 | | Last Modified: | Nov 26 20:52:43 2007 |
| MD5 Checksum: | 050f56c167f1df72b6e08a6eae1aeaf9 |
|
| /// File Name: |
nah-sql.txt |
Description:
|
NetAuctionHelp suffers from a remote SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 765 | | Last Modified: | Nov 26 18:08:19 2007 |
| MD5 Checksum: | 41a2c90839c20b1b56debdc6d721e3a5 |
|
| /// File Name: |
aurigma-overflows.txt |
Description:
|
Proof of concept exploit for multiple stack overflows in Aurigma ImageUploader ActiveX control version 4.1.
| | Author: | Elazar Broad | | File Size: | 831 | | Last Modified: | Nov 26 18:07:21 2007 |
| MD5 Checksum: | 89a2d6bee0208fe86ae2fc32955302b1 |
|
| /// File Name: |
ucms-backdoor.txt |
Description:
|
Ucms version 1.4, 1.7, and 1.8 suffer from a backdoor vulnerability allowing for remote code execution.
| | Author: | D4m14n, shadowleet | | Homepage: | http://www.opencosmo.com/ | | File Size: | 2566 | | Last Modified: | Nov 26 18:05:06 2007 |
| MD5 Checksum: | 6a5aa795bdc40928324f9ff3666bcbb6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
