accept no compromises

Register | Login

FilesNewsUsersAuthors

Home Files News About Contact Add New

Showing 1 - 18 of 18

Files from Exploit Labs

Exploit Labs Security Advisory 2006.5

Posted Oct 20, 2006

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

EXPL-A-2006-005 exploitlabs.com Retro Advisory 002 - SHTTPD: SHTTPD is vulnerable to an overly long GET request.

tags | advisory

MD5 | d3ac9730dc6805f0c45cac59d422fccf

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2006.4

Posted Jul 2, 2006

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

EXPL-A-2006-004 exploitlabs.com Advisory 049 - phpFormGenerator forces insecure usage of permissions for the application to work.

tags | exploit

MD5 | eb43566c33e9eb5cdb5bfdf9a35a95f9

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2006.1

Posted Jan 11, 2006

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

exploitlabs.com Advisory 047 - AspTopSites is susceptible to SQL injection attacks. Details on exploitation provided.

tags | exploit, sql injection

MD5 | f9c2e8e3609609e6f71aa5bf40246ae8

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.17

Posted Dec 28, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

EXPL-A-2005-017 exploitlabs.com Advisory 046 - Dev hound suffers from multiple vulnerabilities including XSS and path disclosure.

tags | advisory, vulnerability

MD5 | 19d65df37958a7f4e2ff7516fa1ef21e

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.15

Posted Oct 6, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

TellMe versions 1.2 and below are susceptible to cross site scripting attacks.

tags | exploit, xss

MD5 | 3ddd430c42f0a27aecf330497720b583

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.14

Posted Sep 23, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

Perldiver versions 1.x and 2.x suffer from cross site scripting flaws.

tags | exploit, xss

MD5 | f972471c8c7a2fe83c55efcb0fab0724

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.10

Posted Aug 17, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

Mac OS X Weblog Server version 10.4.0 is susceptible to cross site scripting attacks.

tags | exploit, xss

systems | apple, osx

advisories | CVE-2005-2523

MD5 | e5ce4d28fb2dfcc5e952b605f9659858

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.8

Posted Aug 7, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

Site Studio guestbook does not filter HTML code from user-supplied input. A remote user can create a specially crafted entry that, when the page rendered, will cause arbitrary scripting to be executed by the user's browser.

tags | advisory, remote, arbitrary

MD5 | 5a2b722241399517731c7db31f88c06c

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.7

Posted Aug 7, 2005

Authored by Donnie Werner, Exploit Labs

H-Sphere allows for local username and password disclosure.

tags | advisory, local

MD5 | 43a61bfcd185e2d238a5f6318b214871

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.11

Posted Jul 7, 2005

Authored by Donnie Werner, Exploit Labs

QuickBlogger version 1.4 and below is susceptible to a cross site scripting attack.

tags | advisory, xss

MD5 | 18983de17da8e48a7d3b604c10e0c7b6

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.9

Posted Jun 21, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

Cool Cafe Chat 1.2.1 suffers from a SQL injection vulnerability via an unsanitized password variable.

tags | exploit, sql injection

MD5 | e392b48b21b9e092a495d83dbad304b0

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.6

Posted Apr 18, 2005

Authored by Exploit Labs, Morning Wood | Site exploitlabs.com

XAMPP contains multiple vulnerabilities, including default usernames / passwords and Cross-site scripting issues. Example exploit URLs provided as part of advisory.

tags | exploit, vulnerability, xss

MD5 | 6bba4395d9f460bc982e51b85993f88a

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.3

Posted Mar 30, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

Adventia Chat Server Pro 3.0 suffers from cross site scripting flaw.

tags | advisory, xss

MD5 | a6956316d898034912852cfee77d9930

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.3

Posted Mar 30, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

E-Data 2.0 is susceptible to cross site scripting flaws in its search functionality.

tags | advisory, xss

MD5 | ad56f701ddca6fb2c5f24d09ac98a9a8

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.2

Posted Mar 22, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

EXPL-A-2005-002 exploitlabs.com Advisory 031 - The Samsung ADSL Modem ships with default root, admin, and user accounts and also allows for arbitrary file access on the underlying filesystem.

tags | exploit, arbitrary, root

MD5 | 6c2865c8bed350e5eb21b7d572dd1f9f

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2005.1

Posted Feb 22, 2005

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

EXPL-A-2005-001 exploitlabs.com Advisory 030 - A vulnerability in Microsoft Outlook Web Access allows malicious attackers to redirect the login to any URL they wish.

tags | exploit, web

MD5 | 1e5022304657de2626e4ce60781930ba

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2004.2

Posted Jun 7, 2004

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

SurgeMail 1.x is susceptible to a cross site scripting attack.

tags | advisory, xss

MD5 | 7d2e70cab8c22723c1d0d45e6265eb38

Download | Favorite | Comments (0)

Exploit Labs Security Advisory 2003.27

Posted May 12, 2004

Authored by Donnie Werner, Exploit Labs | Site exploitlabs.com

Exploitlabs.com Advisory 27 - Microsoft Windows Help and Support Center has a vulnerability due to an unspecified input validation error. This can be exploited via the HCP protocol on Microsoft Windows XP and Microsoft Windows 2003 through Internet Explorer or Outlook and allows for arbitrary code execution.

tags | advisory, arbitrary, code execution, protocol

systems | windows, xp

MD5 | 69d0842c5d6c23ea20c9d1091c103d08

Download | Favorite | Comments (0)