Section: .. / 0803-exploits /
| /// File Name: |
phpnukeplat-sql.txt |
Description:
|
PHP-Nuke Platinum version 7.6.b.5 remote SQL injection exploit that makes use of dynamic_titles.php.
| | Author: | Inphex | | File Size: | 2575 | | Last Modified: | Mar 24 17:18:17 2008 |
| MD5 Checksum: | ead8b2526cf5dd244fd7aa6d03c15bbc |
|
| /// File Name: |
joomlacustompages-rfi.txt |
Description:
|
The Joomla Custompages component versions 1.0 and below suffer from a remote file inclusion vulnerability.
| | Author: | Sniper456 | | File Size: | 735 | | Last Modified: | Mar 24 17:17:11 2008 |
| MD5 Checksum: | 4beb8a0dc2c199801dfee62cafdb0e95 |
|
| /// File Name: |
mitsu-pwnz.py.txt |
Description:
|
Mitsubishi GB-50A exploit that allows you to turn on/off every aircon unit attached to a GB-50. This is due to the web controller using a nasty set of Java applets to interact with itself without any sort of authentication in place.
| | Author: | Chris Withers | | Homepage: | http://www.simplistix.co.uk/ | | File Size: | 1060 | | Last Modified: | Mar 24 17:15:12 2008 |
| MD5 Checksum: | e6850e46d3961597192b4a732770e314 |
|
| /// File Name: |
cpanel11183-xss.txt |
Description:
|
It appears that cPanel versions 11.18.3 and 11.21.0-BETA suffer from a cross site scripting vulnerability.
| | Author: | Linux_Drox | | Homepage: | http://www.LeZr.com | | File Size: | 444 | | Last Modified: | Mar 24 17:10:29 2008 |
| MD5 Checksum: | b3eb11bc5af345eff3bb61e05e8a7d3c |
|
| /// File Name: |
asuxdpc.tgz |
Description:
|
ASUS Remote Control versions 2.0.0.24 and below suffer from a remote buffer overflow vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 858 | | Last Modified: | Mar 21 18:31:52 2008 |
| MD5 Checksum: | 59c9e0408230071be67f3dc36f8728f3 |
|
| /// File Name: |
webutil-exec.txt |
Description:
|
Webutil.pl versions 2.3 and 2.7 suffer from remote code execution vulnerabilities.
| | Author: | Zero X | | File Size: | 371 | | Last Modified: | Mar 21 18:30:08 2008 |
| MD5 Checksum: | 543055974cc84e5e38035d4b75b96326 |
|
| /// File Name: |
dotnetnuke-expose.txt |
Description:
|
DotNetNuke versions 4.8.1 and below suffer from a default machine key exposure vulnerability.
| | Author: | Brian Holyfield | | File Size: | 5499 | | Last Modified: | Mar 21 18:26:21 2008 |
| MD5 Checksum: | 4c61159bd37138c7d273b199c38bf92a |
|
| /// File Name: |
wowroster-sql.txt |
Description:
|
WowRoster versions 1.7.3 and below suffer from a SQL injection vulnerability that appears non-critical.
| | Author: | SaKu | | File Size: | 622 | | Last Modified: | Mar 21 18:21:06 2008 |
| MD5 Checksum: | 86f9c226f03346c1a01032014f9c7beb |
|
| /// File Name: |
INFIGO-2008-03-07.txt |
Description:
|
A remote vanilla stack overflow vulnerability exists in the Surgemail IMAP server. The vulnerability is caused due to a boundary error in the IMAP server, when processing overly long arguments of the 'LSUB' command. The vulnerability results in a simple stack overflow condition that can be trivially exploited.
| | Author: | Leon Juranic | | Homepage: | http://www.infigo.hr/ | | File Size: | 2389 | | Last Modified: | Mar 21 18:15:01 2008 |
| MD5 Checksum: | 24f9e88e859b27d13e51d860ae9e0d0a |
|
| /// File Name: |
zha0_ms08_014.rar |
Description:
|
Microsoft Office Excel code execution exploit that makes use of the vulnerability noted in MS08-014.
| | Author: | zha0 | | Homepage: | http://chroot.org/ | | File Size: | 105031 | | Last Modified: | Mar 21 17:31:13 2008 |
| MD5 Checksum: | 98c61b24ed45d40016da5211b9d5d0b4 |
|
| /// File Name: |
runcmsphoto-sql.txt |
Description:
|
The RunCMS Photo module version 3.02 suffers from a remote SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1105 | | Last Modified: | Mar 21 17:29:01 2008 |
| MD5 Checksum: | 7e63c6cdc4bf0f27776c25d96788b80e |
|
| /// File Name: |
phpaddressbook-lfi.txt |
Description:
|
phpAddressBook version 2.11 suffers from multiple local file inclusion vulnerabilities.
| | Author: | Guns | | Homepage: | http://www.0x90.com.ar/ | | File Size: | 637 | | Last Modified: | Mar 21 17:28:03 2008 |
| MD5 Checksum: | c198d4d8914d57cb4cd7d32de5cbf143 |
|
| /// File Name: |
xinehof.zip |
Description:
|
Proof of concept exploit for xine-lib versions 1.1.11 and below which suffer from six heap overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | xinehof.txt | | File Size: | 6408 | | Last Modified: | Mar 20 17:18:44 2008 |
| MD5 Checksum: | d02c0ba73314b12c4d3e8add20c0d98b |
|
| /// File Name: |
centerim-exec.txt |
Description:
|
CenterIM versions 4.22.3 and below suffer from a remote command execution vulnerability.
| | Author: | Brian Fonfara | | Homepage: | http://newb.kicks-ass.net/ | | File Size: | 1139 | | Last Modified: | Mar 20 16:46:37 2008 |
| MD5 Checksum: | ff10cb5f945b8973ad9ef3e9509b8b63 |
|
| /// File Name: |
ypk2008.tar.gz |
Description:
|
Sun Solaris versions 10 and below rpc.ypupdated remote root exploit that makes use of an input validation vulnerability. Originally discovered in 1994 but still looms in the SunOS 5.10 source code tree.
| | Author: | kcope | | File Size: | 2175 | | Last Modified: | Mar 20 16:45:18 2008 |
| MD5 Checksum: | 17c1f54cb3194f366e1d68b6f3a89e38 |
|
| /// File Name: |
joomladatso-sql.txt |
Description:
|
The Joomla Datsogallery component version 1.3.1 suffers from a remote SQL injection vulnerability.
| | Author: | Cr@zy_King | | File Size: | 508 | | Last Modified: | Mar 20 16:42:25 2008 |
| MD5 Checksum: | 1edecf74274985a69f7dd6991278bf67 |
|
| /// File Name: |
mamborestaurante-sql.txt |
Description:
|
The Mambo com_restaurante component version 1.0 suffers from a SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1629 | | Last Modified: | Mar 19 19:32:14 2008 |
| MD5 Checksum: | 033650d0caec54d5fb76eb04b10535f2 |
|
| /// File Name: |
mamboalberghi-sql.txt |
Description:
|
The Mambo com_alberghi component versions 2.1.3 and below suffer from a SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1976 | | Last Modified: | Mar 19 19:31:03 2008 |
| MD5 Checksum: | 0dafd413bfcb41d3214ca7d904f6fc6a |
|
| /// File Name: |
cscart-xss.txt |
Description:
|
CS-Cart version 1.3.2 suffers from a cross site scripting vulnerability.
| | Author: | sasquatch | | Homepage: | http://www.securestate.com/ | | File Size: | 666 | | Last Modified: | Mar 19 19:28:24 2008 |
| MD5 Checksum: | 3117fe19bdbfac7fad0a7a1f7d611a80 |
|
| /// File Name: |
aspapp-sql.txt |
Description:
|
ASPapp suffers from a remote SQL injection vulnerability in links.asp.
| | Author: | xcorpitx | | Homepage: | http://www.Hayalet-hack.com/ | | File Size: | 1711 | | Last Modified: | Mar 19 19:19:40 2008 |
| MD5 Checksum: | 73fd0ac030e63afda60e931722fa1e5d |
|
| /// File Name: |
mamboaccombo-sql.txt |
Description:
|
The Mambo accombo component version 1.x suffers from a SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1530 | | Last Modified: | Mar 19 19:01:21 2008 |
| MD5 Checksum: | f8411e79431fc50e7734777211c0ed3c |
|
| /// File Name: |
joomlajoovideo-sql.txt |
Description:
|
The Joomla joovideo component version 1.2.2 suffers from a SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1681 | | Last Modified: | Mar 19 19:00:44 2008 |
| MD5 Checksum: | 9c0ed2fb322781aafa37ce13b176886c |
|
| /// File Name: |
peelcms-upload.txt |
Description:
|
PEEL CMS administrative hash extraction and remote upload exploit.
| | Author: | real | | File Size: | 24750 | | Last Modified: | Mar 19 18:55:55 2008 |
| MD5 Checksum: | a6df4f28ff0b9aece407aef838a642c1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
