the original cloud security
Showing 1 - 25 of 92 RSS Feed

Files

0507-exploits.tgz
Posted Aug 5, 2005
Authored by Todd J.

Packet Storm new exploits for July, 2005.

tags | exploit
MD5 | b244db6b75485b65184830adfd1dfe38
BusMail_SMTPDOS.pl.txt
Posted Aug 5, 2005
Authored by Reed Arvin | Site reedarvin.thearvins.com

A buffer overflow in BusinessMail email server system 4.60.00 allows for a denial of service attack. Proof of concept exploit included.

tags | exploit, denial of service, overflow, proof of concept
MD5 | f3fa06fa76a7d8c2d9706b6e4b130403
phpList.txt
Posted Aug 5, 2005
Authored by ziot

A SQL injection flaw exists in phpList. Proper exploitation requires that a user be authenticated.

tags | exploit, sql injection
MD5 | 3587bfcc5b9052d5e35e53e784f6e583
eventum.pl.txt
Posted Aug 5, 2005
Authored by James Bercegay | Site gulftech.org

MySQL AB Eventum versions 1.5.5 and below proof of concept SQL injection exploit.

tags | exploit, sql injection, proof of concept
MD5 | e5b1ffe7254aad864d06c87eebd15e8f
mysqlEventum.txt
Posted Aug 5, 2005
Authored by James Bercegay | Site gulftech.org

MySQL AB Eventum versions 1.5.5 and below suffer from cross site scripting and SQL injection attacks.

tags | exploit, xss, sql injection
MD5 | c8b779ab6b2e1864f7cb003b1be9e023
phpeasynews.html
Posted Aug 5, 2005
Authored by rgod | Site retrogod.altervista.org

Phpeasynews version 1.13 RC2 is susceptible to cross site scripting, path disclosure, and user check bypass vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 88d33b4f87015b77fdc764fd3c416ee1
kayakoBad.txt
Posted Aug 5, 2005
Authored by James Bercegay | Site gulftech.org

Kayako liveResponse versions 2.x suffer from cross site scripting, SQL injection, script insertion, and other vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | d12783db84eb4ba42f09805d1c50be4b
Easyxp41.txt
Posted Aug 5, 2005
Authored by FalconDeOro

Easyxp41 suffers from multiple cross site scripting and data disclosure flaws. An excessive amount of detailed exploitation is provided.

tags | exploit, xss
MD5 | 2895b06398aa7518a481acc5a04b9899
pluggedBlog.txt
Posted Aug 5, 2005
Authored by FalconDeOro

Plugged-Blog 0.4.8 suffers from multiple cross site scripting, SQL injection, and other flaws. Detailed exploitation provided.

tags | exploit, xss, sql injection
MD5 | 561b5c650671ccdc4cc6e3e0fd4d5556
kshoutaxs.txt
Posted Aug 5, 2005
Authored by SoulBlack | Site soulblack.com.ar

Kshout versions 2.x and 3.x allow for direct file access to their configuration files.

tags | exploit
MD5 | fd54c77c253ed96ef9fbab2190066717
qlite.html
Posted Aug 5, 2005
Authored by rgod | Site retrogod.altervista.org

qliteNews arbitrary database manipulation and cross site scripting proof of concept exploit.

tags | exploit, arbitrary, xss, proof of concept
MD5 | 2c8ef5b4e893b6077a239dae97667d55
kentbb.txt
Posted Aug 5, 2005
Authored by l--s | Site 3asfh.net

Kent's Guestbook allows for direct database file access.

tags | exploit
MD5 | 67b78be508320b88e0c2e27981286f9d
webc.html
Posted Aug 5, 2005
Authored by rgod | Site retrogod.altervista.org

Web Content Management News System administrative account creation and cross site scripting proof of concept exploit.

tags | exploit, web, xss, proof of concept
MD5 | 8c384ffa562818b79786f14e70f0140b
phpfreenews.html
Posted Aug 5, 2005
Authored by rgod | Site retrogod.altervista.org

PHPFreeNews versions 1.32 and below are susceptible to SQL injection, login bypass, and cross site scripting attacks.

tags | exploit, xss, sql injection
MD5 | 48c666e16e02b14265a50e344fa2a745
phpnews.html
Posted Aug 5, 2005
Authored by rgod | Site retrogod.altervista.org

PHP News Manager versions 1.45 through 1.47 are susceptible to login bypass, SQL injection, cross site scripting and path disclosure flaws.

tags | exploit, php, xss, sql injection
MD5 | f6ac2b10357b4417f4691d349a47b070
phplistSQL.txt
Posted Aug 5, 2005
Authored by tgo

PHPList is susceptible to SQL injection and path disclosure flaws.

tags | exploit, sql injection
MD5 | 2f065a958972a18f02d3f7de846612a4
gforgeXSS.txt
Posted Aug 5, 2005
Authored by Joxean Koret

GForge version 4.5 is susceptible to multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 7c50c2216c8acfa27145c82dee23fc73
pc26sql.txt
Posted Jul 28, 2005
Authored by Zinho | Site hackerscenter.com

Product Cart 2.6 is susceptible to a SQL injection attack.

tags | exploit, sql injection
MD5 | cef1d8f6a210a35f96070664dacd3f5e
atmailXSS.txt
Posted Jul 28, 2005
Authored by Lostmon

@Mail 4.03 WebMail for Windows and 4.11 for Unix variants suffers from multiple cross site scripting flaws. Detailed exploitation provided.

tags | exploit, xss
systems | windows, unix
MD5 | 3cd06324574d1aef55b883431ef25f49
HPRadiaManagement.txt
Posted Jul 28, 2005
Authored by David Morgan, Dominic Beecher | Site ngssoftware.com

NGSSoftware Insight Security Research Advisory - HP OpenView Radia Management Portal versions 2.x and 1.x running the Radia Management Agent suffer from a remote command execution flaw via a directory traversal. By connecting to the TCP port and sending a crafted packet, it is possible to traverse out of C:\Program Files\Novadigm and run any executable that is located on the same logical disk partition.

tags | exploit, remote, tcp
MD5 | 746992e1a974b65a8b4f2abc6eab9a03
mu-imap4d_fsexp.c
Posted Jul 28, 2005
Authored by CoKi | Site nosystem.com.ar

GNU Mailutils imap4d version 0.6 remote format string exploit. Tested on Slackware Linux versions 9.0, 10.0, and 10.1.

tags | exploit, remote
systems | linux, slackware
MD5 | da0de44e2242607117540ff5e260dca5
cleverNotSo.txt
Posted Jul 28, 2005
Authored by Lostmon

Clever Copy suffers from multiple cross site scripting and path disclosure flaws. Versions 2.0 and 2.0a are affected.

tags | exploit, xss
MD5 | 7e31b64773a60d4db45f35bab4fa8e73
bmforumXSS.txt
Posted Jul 28, 2005
Authored by Lostmon

BMForum Datium! 3.0 RC1-4, Plus! 3.0 RC1-4, Plus! 2.6.1, and PlusMX 3.0.0.5 all suffer from multiple cross site scripting flaws.

tags | exploit, xss
MD5 | ea70bf5ccd6f398a6c4cdb84fdca4c28
cartWIZxss.txt
Posted Jul 28, 2005
Authored by Zinho | Site hackerscenter.com

CartWIZ suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 641fccc90e9b9e36e4f04c678a73a290
simplicityRemote.txt
Posted Jul 28, 2005
Authored by rgod | Site retrogod.altervista.org

Simplicity OF Upload 1.3 allows for remote code execution and cross site scripting attacks.

tags | exploit, remote, code execution, xss
MD5 | c1c29ac201c7889dd7f93fb2b306a1e1
Page 1 of 4
Back1234Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Phishers Getting Smarter By Making Use Of User Location
Posted Oct 20, 2017

tags | headline, malware, cybercrime, fraud, phish
OSX Malware Spread Via Compromised Software Downloads
Posted Oct 20, 2017

tags | headline, malware, apple
Canadian Spooks Release Their Own Malware Detection Tool
Posted Oct 20, 2017

tags | headline, government, malware, canada, spyware
Judge: MalwareTech Is No Longer Under Curfew, GPS Monitoring
Posted Oct 20, 2017

tags | headline, hacker, government, malware, usa, conference
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close