Section: .. / 0805-exploits /
| /// File Name: |
easycms-multi.txt |
Description:
|
easyCMS versions 0.4.2 and below suffer from insecure cookie handling and SQL injection vulnerabilities.
| | Author: | t0pp8uzz | | File Size: | 1796 | | Last Modified: | May 19 19:00:19 2008 |
| MD5 Checksum: | 4d1798b6991d464156b7c4a6a78af100 |
|
| /// File Name: |
alkalinephp-admin.txt |
Description:
|
AlkalinePHP versions 0.77.35 and below suffer from an arbitrary add administrator vulnerability in adduser.php.
| | Author: | t0pp8uzz | | File Size: | 1788 | | Last Modified: | May 19 18:58:54 2008 |
| MD5 Checksum: | c164ed88d4b99e7f659369344b22bbd2 |
|
| /// File Name: |
lifetype-xss.txt |
Description:
|
Lifetype version 1.2.7 suffers from cross site scripting vulnerabilities.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1778 | | Last Modified: | May 2 15:20:28 2008 |
| MD5 Checksum: | 87260380f013097777b9c436864d5480 |
|
| /// File Name: |
phpfix-sql.txt |
Description:
|
phpFix version 2 suffers from multiple SQL injection vulnerabilities.
| | Author: | unohope | | Homepage: | http://www.chroot.org/ | | File Size: | 1754 | | Last Modified: | May 27 18:18:03 2008 |
| MD5 Checksum: | 9ab02a936dffedfd0303a88b0e86ef8a |
|
| /// File Name: |
cpanel-root.txt |
Description:
|
It appears that there is a remote compromise vulnerability in cPanel in relation to reseller accounts.
| | Author: | Ali Jasbi | | File Size: | 1753 | | Last Modified: | May 19 21:18:02 2008 |
| MD5 Checksum: | 780309ce3bbe1412e71ac6907a34cec8 |
|
| /// File Name: |
how2asp-sql.txt |
Description:
|
How2ASP.net Webboard versions 4.1 and below suffer from a remote SQL injection vulnerability.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1731 | | Last Modified: | May 19 18:09:49 2008 |
| MD5 Checksum: | 6678b80f285614fe6b2058a28d9b7482 |
|
| /// File Name: |
phpeasydata-sql.txt |
Description:
|
PHPEasyData version 1.5.4 suffers from a remote SQL injection vulnerability.
| | Author: | InjEctOrS | | File Size: | 1730 | | Last Modified: | May 6 17:07:00 2008 |
| MD5 Checksum: | db0f31cf6606867f7d28653cfbd057d0 |
|
| /// File Name: |
e107blog-blindsql.txt |
Description:
|
The e107 BLOG engine plugin version 2.2 suffers from a blind SQL injection vulnerability.
| | Author: | Saime | | File Size: | 1725 | | Last Modified: | May 13 11:15:16 2008 |
| MD5 Checksum: | b05712a59df33220ff5ee6e3f89dc461 |
|
| /// File Name: |
minicwb-xss.txt |
Description:
|
Mini-CWB versions 2.1.1 and below suffer form a remote cross site scripting vulnerability.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1719 | | Last Modified: | May 27 18:06:46 2008 |
| MD5 Checksum: | 0f58e4417c26f22345135b9e87a029f3 |
|
| /// File Name: |
fipscms-sql.txt |
Description:
|
fips CMS suffers from a blind SQL injection vulnerability in print.asp.
| | Author: | InjEctOrS | | File Size: | 1716 | | Last Modified: | May 7 20:34:11 2008 |
| MD5 Checksum: | 7826a169d66eba1519c1d6ce5107704f |
|
| /// File Name: |
exteen-disclose.txt |
Description:
|
Exteen Blog suffers from a cookie disclosure flaw using a cross site scripting vulnerability.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1693 | | Last Modified: | May 22 19:42:36 2008 |
| MD5 Checksum: | ae182887969eb5e037a793cdedb4bb93 |
|
| /// File Name: |
e107blog-sql.txt |
Description:
|
The e107 BLOG Engine plugin version 2.2 suffers from another blind SQL injection vulnerability.
| | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 1689 | | Last Modified: | May 23 18:45:21 2008 |
| MD5 Checksum: | 57377df079d50a8ec69355d1b3cc0286 |
|
| /// File Name: |
appservopen-xss.txt |
Description:
|
AppServ Open Project versions 2.5.10 and below suffer from a cross site scripting vulnerability.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1688 | | Last Modified: | May 20 16:28:53 2008 |
| MD5 Checksum: | 55c3025076b6e369ac78c52ac1e2021e |
|
| /// File Name: |
ezcontents-sql.txt |
Description:
|
ezContents CMS version 2.0.0 suffers from SQL injection vulnerabilities.
| | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 1652 | | Last Modified: | May 9 13:12:32 2008 |
| MD5 Checksum: | 4cceca8194600947d6abfc652d6b98f4 |
|
| /// File Name: |
debian-sploit.txt |
Description:
|
A nice walk through discussing step by step how to brute force ssh logins using the recent Debian OpenSSL random number generator vulnerability.
| | Author: | Markus Mueller | | File Size: | 1649 | | Last Modified: | May 15 04:21:12 2008 |
| MD5 Checksum: | bc660b433dce3c75055028112f9966d3 |
|
| /// File Name: |
zomplog-admin.txt |
Description:
|
Zomplog versions 3.8.2 and below arbitrary add administrator exploit that takes advantage of newuser.php.
| | Author: | ArxWolf | | Homepage: | http://webxakep.net/ | | File Size: | 1641 | | Last Modified: | May 19 14:48:46 2008 |
| MD5 Checksum: | ea08cb832ac6c644f08eec41cd509384 |
|
| /// File Name: |
hordeturba-xss.txt |
Description:
|
Horde and Turbo Contact Manager suffers from multiple cross site scripting vulnerabilities.
| | Author: | Ivan Sanchez | | Homepage: | http://www.nullcode.com.ar/ | | File Size: | 1639 | | Last Modified: | May 15 03:41:40 2008 |
| MD5 Checksum: | 6eadbbe84f8cd8b298ef48dbfbf36532 |
|
| /// File Name: |
powereditor-disclose.txt |
Description:
|
Power Editor version 2.0 suffers from remote file disclosure and edit vulnerabilities.
| | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 1637 | | Last Modified: | May 6 16:09:13 2008 |
| MD5 Checksum: | 9e67c9ab395de010106ae9def92b0c83 |
|
| /// File Name: |
wgcc-sql.txt |
Description:
|
Web Group Communication Center versions 1.0.3 PreRelease #1 and below suffer from cross site scripting and SQL injection vulnerabilities.
| | Author: | myvx | | File Size: | 1636 | | Last Modified: | May 13 15:43:17 2008 |
| MD5 Checksum: | 0cb95f9f4ef457ba2b4bacab721211ed |
|
| /// File Name: |
maianuploader-xss.txt |
Description:
|
Maian Uploader version 4.0 suffers from cross site scripting vulnerabilities.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1629 | | Last Modified: | May 5 13:26:53 2008 |
| MD5 Checksum: | bba0a4206410bfee5fc12dcb7b415c81 |
|
| /// File Name: |
debianssh-ruby.txt |
Description:
|
Debian SSH exploit that uses the OpenSSL predictable PRNG vulnerability. Written in Ruby.
| | Author: | L4teral | | File Size: | 1626 | | Last Modified: | May 19 14:46:31 2008 |
| MD5 Checksum: | 1497bcaede33ed1554b4a28c5fe64a18 |
|
| /// File Name: |
maianweblog-xss.txt |
Description:
|
Maian Weblog version 4.0 suffers from cross site scripting vulnerabilities.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1622 | | Last Modified: | May 5 13:24:13 2008 |
| MD5 Checksum: | 8412c93c15890d17a66a8c8a4892e471 |
|
| /// File Name: |
emo-sql.txt |
Description:
|
EMO Realty Manager suffers from a SQL injection vulnerability in news.php.
| | Author: | HaCkeR_EgY | | Homepage: | http://www.PaL-HaCker.com/ | | File Size: | 1599 | | Last Modified: | May 15 01:10:54 2008 |
| MD5 Checksum: | 913ecff89e5dda1d8edc211a9ecdb13a |
|
| /// File Name: |
msword-xss.txt |
Description:
|
Microsoft Word versions 2003 and 2007 are susceptible to crash and cross site scripting vulnerabilities via malicious javascript execution.
| | Author: | Juan Pablo Lopez Yacubian | | File Size: | 1599 | | Last Modified: | May 19 21:19:45 2008 |
| MD5 Checksum: | 46abbad0f6fa4a499ede6ed3df30f7c5 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
