Showing 101 - 125 of 306

Files

Skybluecanvas 1.1-r248 Cross Site Request Forgery: Posted Sep 23, 2010; Authored by Sweet; Skybluecanvas version 1.1-r248 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 5f2d732729618307cdfbe7efbc00f84f; Download | Favorite | Comments (0)

Acoustica Audio Converter Pro 1.1 Heap Overflow: Posted Sep 21, 2010; Authored by Carlos Hollmann; Acoustica Audio Converter Pro version 1.1 suffers from a heap overflow vulnerability.; tags | exploit, overflow; MD5 | 5be5cb42b79b25e93aaba678eb290e95; Download | Favorite | Comments (0)

WebSuite SQL Injection: Posted Sep 21, 2010; Authored by jos_ali_joe; WebSuite suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | a688832f2068989f49ac3eaadd6eda98; Download | Favorite | Comments (0)

Atmail WebMail Cross Site Scripting: Posted Sep 21, 2010; Authored by Vicente Aguilera Diaz; Atmail Webmail suffers from a cross site scripting vulnerability. Versions prior to 6.2.0 are affected.; tags | exploit, xss; MD5 | 6269664e25f288c80b1c27ac1706590f; Download | Favorite | Comments (0)

Tuenti.com Insecure Direct Object Reference: Posted Sep 21, 2010; Authored by Vicente Aguilera Diaz; Tuenti.com suffers from an insecure direct object reference vulnerability allowing anyone to read arbitrary blog posts.; tags | exploit, arbitrary; MD5 | 85d8ff22e0e8fa88a47d5a589d279db8; Download | Favorite | Comments (0)

SnowFox Total Video Converter DLL Hijacking: Posted Sep 21, 2010; Authored by anT!-Tr0J4n; SnowFox Total Video Converter DLL hijacking exploit.; tags | exploit; MD5 | 80c294ada1144897a6bb580ff188b66d; Download | Favorite | Comments (0)

Softek Barcode Reader Toolkit Active-X 7.1.4.14 Buffer Overflow: Posted Sep 21, 2010; Authored by LiquidWorm | Site zeroscience.mk; Softek Barcode Reader Toolkit version 7.1.4.14 Active-X related buffer overflow proof of concept exploit.; tags | exploit, overflow, activex, proof of concept; MD5 | 8aa99dc0ba8a0fc008402b9f2de625cc; Download | Favorite | Comments (0)

wpQuiz 2.7 SQL Injection: Posted Sep 21, 2010; Authored by KnocKout; wpQuiz version 2.7 suffers from a remote SQL injection vulnerability that allows for authentication bypass.; tags | exploit, remote, sql injection; MD5 | b95a0267ec3254d2181cca903235ce41; Download | Favorite | Comments (0)

ibPhotohost 1.1.2 SQL Injection: Posted Sep 21, 2010; Authored by fred777; ibPhotohost version 1.1.2 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | e461d1dc666787bbdbe1c1912a630c3c; Download | Favorite | Comments (0)

Month Of Abysssec Undisclosed Bugs - Microsoft Excel WOPT: Posted Sep 21, 2010; Authored by Abysssec, Shahin | Site abysssec.com; Month Of Abysssec Undisclosed Bugs - Microsoft Excel suffers from a WOPT record parsing heap memory corruption vulnerability. Proof of concept included.; tags | exploit, proof of concept; advisories | CVE-2010-0824; MD5 | 312e375131ffd5c847ea5ffed7b32309; Download | Favorite | Comments (0)

Month Of Abysssec Undisclosed Bugs - Personal.Net Portal: Posted Sep 21, 2010; Authored by Abysssec | Site abysssec.com; Month Of Abysssec Undisclosed Bugs - Personal.Net Portal version 2.8.1 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 5130c835c14bff57dbe9bae50467f6dd; Download | Favorite | Comments (0)

Novell iPrint Client ActiveX Control call-back-url Buffer Overflow: Posted Sep 21, 2010; Authored by Trancer | Site metasploit.com; This Metasploit module exploits a stack-based buffer overflow in Novell iPrint Client 5.42. When sending an overly long string to the 'call-back-url' parameter in an op-client-interface-version action of ienipp.ocx an attacker may be able to execute arbitrary code.; tags | exploit, overflow, arbitrary; advisories | CVE-2010-1527; MD5 | 80269d9e5705e85962cc7e26d8957a01; Download | Favorite | Comments (0)

Novell iPrint Client ActiveX Control debug Buffer Overflow: Posted Sep 21, 2010; Authored by Trancer | Site metasploit.com; This Metasploit module exploits a stack-based buffer overflow in Novell iPrint Client 5.40. When sending an overly long string to the 'debug' parameter in ExecuteRequest() property of ienipp.ocx an attacker may be able to execute arbitrary code.; tags | exploit, overflow, arbitrary; advisories | CVE-2010-3106; MD5 | 4c82e48d18c60cbb339bae8863c7b2e3; Download | Favorite | Comments (0)

Microsoft Print Spooler Service Impersonation Vulnerability: Posted Sep 21, 2010; Authored by H D Moore, jduck | Site metasploit.com; This Metasploit module exploits the RPC service impersonation vulnerability detailed in Microsoft Bulletin MS10-061. By making a specific DCE RPC request to the StartDocPrinter procedure, an attacker can impersonate the Printer Spooler service to create a file. The working directory at the time is %SystemRoot%\\\\system32. An attacker can specify any file name, including directory traversal or full paths. By sending WritePrinter requests, an attacker can fully control the content of the created file. In order to gain code execution, this module writes an EXE and then (ab)uses the impersonation vulnerability a second time to create a secondary RPC connection to the \\\\PIPE\\\\ATSVC named pipe. We then proceed to create a remote AT job using a blind NetrJobAdd RPC call.; tags | exploit, remote, code execution; advisories | CVE-2010-2729; MD5 | 0580f4d44dd64fd3314f7ef5a0b654d1; Download | Favorite | Comments (0)

IB Promotion Advanced Business Web Suite Cross Site Scripting: Posted Sep 21, 2010; Authored by MustLive; IB Promotion Advanced Business Web Suite suffers from a cross site scripting vulnerability.; tags | exploit, web, xss; MD5 | 0257fb75668e7c06518966721e1c6963; Download | Favorite | Comments (0)

BifrosT DLL Hijacking: Posted Sep 21, 2010; Authored by anT!-Tr0J4n; BifrosT DLL hijacking exploit.; tags | exploit; MD5 | 4da02dd48e7bdd3eaf62a990e2abf098; Download | Favorite | Comments (0)

Linux udev Local Proof Of Concept: Posted Sep 21, 2010; Authored by fuzz; Local proof of concept exploit that demonstrates a vulnerability with mountall where a udev rule is created with world-writable permissions.; tags | exploit, local, proof of concept; advisories | CVE-2010-2961; MD5 | ae2972ba5af4ed1176f2f3bacf6c2eda; Download | Favorite | Comments (0)

Joomla Spain SQL Injection: Posted Sep 21, 2010; Authored by Fl0riX; The Joomla Spain component suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | 193849dc55688bffac2043cf28828b7c; Download | Favorite | Comments (0)

e107 0.7.23 SQL Injection: Posted Sep 21, 2010; Authored by High-Tech Bridge SA | Site htbridge.ch; e107 version 0.7.23 suffers from multiple remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; MD5 | 73f05268f1c3c57fd1313bd5c7f0c32b; Download | Favorite | Comments (0)

SWiSHmax DLL Hijacking: Posted Sep 21, 2010; Authored by anT!-Tr0J4n; SWiSHmax DLL hijacking exploit that leverages swishmaxres.dll.; tags | exploit; MD5 | 659a7c7f61b374ae6d6145c80118d721; Download | Favorite | Comments (0)

Basic Web Server 1.0 Directory Traversal: Posted Sep 21, 2010; Authored by AutoSec Tools; Basic Web Server version 1.0 suffers from a directory traversal vulnerability.; tags | exploit, web, file inclusion; MD5 | e1a5f96dbc19da308d12b23dac842e6c; Download | Favorite | Comments (0)

Basic Web Server 1.0 Denial Of Service: Posted Sep 21, 2010; Authored by AutoSec Tools; Basic Web Server version 1.0 suffers from a denial of service vulnerability.; tags | exploit, web, denial of service; MD5 | ae3d2a138a9cc23764217da57c8ae956; Download | Favorite | Comments (0)

SmarterMail 7.1.3876 Directory Traversal: Posted Sep 21, 2010; Authored by sqlhacker; SmarterMail version 7.1.3876 suffers from a directory traversal vulnerability.; tags | exploit, file inclusion; MD5 | 198a340c0462c2c61592a8c59c2dfe5a; Download | Favorite | Comments (0)

Pinky 1.0 Directory Traversal: Posted Sep 21, 2010; Authored by AutoSec Tools; Pinky version 1.0 suffers from a directory traversal vulnerability.; tags | exploit, file inclusion; MD5 | dbe31b077aa6c02b1e5e1f245577f28c; Download | Favorite | Comments (0)

Primitive CMS 1.0.9 HTML Injection / SQL Injection: Posted Sep 21, 2010; Authored by Stephan Sattler; Primitive CMS version 1.0.9 suffers from html and remote blind SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; MD5 | 95341ffee52a8a6a78866eb18beead7f; Download | Favorite | Comments (0)

Page 5 of 13 Back 3 4 5 6 7 Next

Top Authors In Last 30 Days

Heine Pedersen 29 files
Torben Jensen 29 files
Red Hat 27 files
Debian 27 files
Farbod Mahini 26 files
Ubuntu 23 files
HauntIT 22 files
Mandriva 17 files
sinn3r 11 files
HP 10 files

Files

Top Authors In Last 30 Days

Recent News