Exploit the possiblities
Showing 1 - 25 of 105 RSS Feed

Files

0508-exploits.tgz
Posted Aug 31, 2005
Authored by Todd J. | Site packetstormsecurity.com

New Packet Storm exploits for August, 2005.

tags | exploit
MD5 | 02ccdc9a05ba0798d3558b6f698c0350
flat256.html
Posted Aug 31, 2005
Authored by rgod | Site retrogod.altervista.org

FlatNuke version 2.5.6 suffers from remote command execution, cross site scripting, and path disclosure flaws. Detailed exploitation provided.

tags | exploit, remote, xss
MD5 | 11acdd9d2ced8d0e8654998fccb7e62b
fud.html
Posted Aug 31, 2005
Authored by rgod | Site retrogod.altervista.org

Remote code execution exploit for FUD Forum versions 2.7 and below.

tags | exploit, remote, code execution
MD5 | 0a6890ae0ddec4b2fbf9dafb1a53e299
HP_OV_NNM_RCE.c
Posted Aug 31, 2005
Authored by Lympex | Site l-bytes.net

Remote command execution exploit for HP OpenView Network Node Manager versions 6.2, 6.4, 7.01, and 7.50.

tags | exploit, remote
MD5 | f52cf58231344c9d88f6eb0cd01adc82
AD20050830.txt
Posted Aug 31, 2005
Authored by Sowhat | Site secway.org

BNBT EasyTracker is susceptible to a remote denial of service vulnerability when accepting a malformed HTTP request. Demonstration exploit provided. Versions 7.7r3.2004.10.27 and below are affected.

tags | exploit, remote, web, denial of service
MD5 | 2ac337d4908927ed071926acbb6d4270
phpldap.html
Posted Aug 31, 2005
Authored by rgod | Site retrogod.altervista.org

phpLDAPadmin versions 0.9.6 through 0.9.7/alpha5 suffer from directory traversal, remote code execution and cross site scripting vulnerabilities. Detailed exploitation provided.

tags | exploit, remote, vulnerability, code execution, xss
MD5 | 3a75a213f873a5a71289eba8299c2757
bfccown.zip
Posted Aug 31, 2005
Authored by Luigi Auriemma | Site aluigi.altervista.org

Proof of concept exploit for the flaws relating to BFCC versions 1.22_A and below and BFVCC versions 2.14_B and below.

tags | exploit, proof of concept
MD5 | 0918b1298c512f28393bf9f2d5603a9b
lduSQL.txt
Posted Aug 31, 2005
Authored by matrix killer | Site h4cky0u.org

Land Down Under versions 801 and below suffer from multiple SQL injection vulnerabilities. Full details provided.

tags | exploit, vulnerability, sql injection
MD5 | eb9df365250444e4b536d1fb2e55e3aa
sphpblog_vulns.pl.txt
Posted Aug 31, 2005
Authored by Kenneth F. Belva | Site ftusecurity.com

Exploit that demonstrates a vulnerability in the comment_delete_cgi.php from SimplePHPBlog. The PHP script allows for the arbitrary deletion of files. This vulnerability, in combination with the fact that the installation scripts are left on the server after installation, allows an arbitrary user to reset the admin password to one of the attacker's choosing.

tags | exploit, arbitrary, php
MD5 | d5a02f6fa42800a232858d4f054b1541
SqWebMail.txt
Posted Aug 31, 2005
Authored by Jakob Balle | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered a vulnerability in SqWebMail, which can be exploited by malicious people to conduct script insertion attacks. The vulnerability is caused due to SqWebMail failing to properly sanitize HTML emails. This can be exploited to include arbitrary script code in HTML emails, which will be executed in context of the SqWebMail server, as soon as the user views a received email. Version 5.0.4 is affected.

tags | exploit, arbitrary
MD5 | 57470dc10cef0798ea3aec873b6095dd
Echo Security Advisory 2005.22
Posted Aug 31, 2005
Authored by y3dips, Echo Security | Site echo.or.id

PunBB 1.2.6 suffers from a script injection flaw in its use of IMG tags.

tags | exploit
MD5 | e745714402a160c0bbd36c5fd17862fe
cosmoshop81078.txt
Posted Aug 31, 2005
Authored by l0om | Site excluded.org

Cosmoshop versions 8.10.78 and below suffer from SQL injection flaws, clear text passwords, and directory traversal flaws.

tags | exploit, sql injection
MD5 | 43eb2a684a72cba7453b395b76af5865
phpfusionXSS2.txt
Posted Aug 31, 2005
Authored by slacker4ever_1

PHP-Fusion versions 6.00.107 and below are susceptible to cross site scripting attacks.

tags | exploit, php, xss
MD5 | 899b8a9751b5a4ffdc795c68056c4f44
autolinks21.txt
Posted Aug 31, 2005
Authored by NewAngels Team

AutoLinks Pro 2.1 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
MD5 | a9273540bd7022124f6c8cb05c02da63
lduXSS2.txt
Posted Aug 31, 2005
Authored by spyMASter

Land Down Under suffers from cross site scripting vulnerabilities in the signature and topic payloads.

tags | exploit, vulnerability, xss
MD5 | 38e1144d56f1c9a6cdeb36bb6a7a7238
mybbSQL.pl.txt
Posted Aug 31, 2005
Authored by W7ED

MyBulletinBoard (MyBB) member.php SQL injection exploit.

tags | exploit, php, sql injection
MD5 | 9274e58ef338ce1541974c525480a669
multiVulns.txt
Posted Aug 31, 2005
Authored by pacifico, ratboy

Multiple vulnerabilities have been discovered in various CMS and forum software. e107 suffers from a cross site scripting flaw, Wordpress suffers from a SQL injection flaw, PHPNews suffers from a remote inclusion flaw, phpBB suffers from a SQL injection flaw, Google suffers from a SQL injection flaw, and myspace.com suffers from a user profile defacement flaw. Oh.. and UBB 6.3.2 suffers from a remote code execution flaw.

tags | exploit, remote, vulnerability, code execution, xss, sql injection
MD5 | 0b3cc1bdf7c9bc094938f2cf671a24b5
phpwebnotes.txt
Posted Aug 28, 2005
Authored by Norbert

phpWebNotes version 2.0.0-pr1 suffers from a remote inclusion vulnerability that may allow for cross site scripting attacks.

tags | exploit, remote, xss
MD5 | 6771a439057aac9e9acef007389b8f28
DMA-2005-0826a.txt
Posted Aug 28, 2005
Authored by Kevin Finisterre | Site digitalmunition.com

The Nokia Affix Bluetooth btsrv makes poor use of a popen() that in turn allows for privileged code execution as root.

tags | exploit, root, code execution
MD5 | 61e981f322c2f459330e5ada5d8ff244
lglass20040427.txt
Posted Aug 28, 2005
Authored by rgod | Site retrogod.altervista.org

Exploit for Looking Glass v20040427 arbitrary command execution / cross site scripting vulnerabilities

tags | exploit, arbitrary, vulnerability, xss
MD5 | fc4b3d001799b92df265dce9d88d0b2a
qnx-inputtrap.txt
Posted Aug 25, 2005
Authored by Julio Cesar Fort

QNX inputtrap from QNX RTOS versions 6.3 and 6.1.0 suffers from an arbitrary file read vulnerability.

tags | exploit, arbitrary
MD5 | 6485b7c7501a5b7eee39fd1c2b6d013c
foojanInject.txt
Posted Aug 25, 2005
Authored by ali202

Foojan PHP Weblog suffers from an injection flaw when trusting an unsanitized HTTP_REFERER payload.

tags | exploit, php
MD5 | 8d7c5ecdfa9b64b6f5372f8fa0e32db2
PaFileDB31SQL.txt
Posted Aug 25, 2005
Authored by deluxe89, Astovidatu | Site security-project.org

PaFileDB 3.1 is susceptible to a SQL injection attack that allows for login bypass.

tags | exploit, sql injection
MD5 | 5ebb7571066d1cee27025c2990ccbf0e
beaXSS.txt
Posted Aug 25, 2005
Authored by GomoR | Site GomoR.org

BEA WebLogic versions 8.1 SP4 and below suffer from a cross site scripting flaw in the Administration console.

tags | exploit, xss
MD5 | 75cb275908dde195433f902633155e90
onunload.txt
Posted Aug 25, 2005
Authored by Tobias Boonstoppel

In nearly all browsers you can overwrite the window location in the 'onunload' event. This has been tested against Firefox, Opera, and Internet Explorer.

tags | exploit
MD5 | cb19d56d011a3ec5af3696705135f266
Page 1 of 5
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Language Bugs Infest Downstream Software
Posted Dec 11, 2017

tags | headline, flaw
German Spy Agency Warns Of Chinese LinkedIn Espionage
Posted Dec 11, 2017

tags | headline, government, china, cyberwar, germany, spyware, social
Dynamics 365 Sandbox Leaked TLS Certificates
Posted Dec 11, 2017

tags | headline, privacy, microsoft, data loss, flaw, cryptography
Keylogger Uncovered On Hundreds Of HP PCs
Posted Dec 11, 2017

tags | headline, flaw, spyware, backdoor
PlexCoin Scam Founder Sentenced To Jail And Fined $10k
Posted Dec 10, 2017

tags | headline, cybercrime, fraud, scam, cryptography
Google Lifts Lid On FBI Data Requests: Now You Can Read Actual Letters Online
Posted Dec 9, 2017

tags | headline, government, privacy, usa, google, fbi
Android Flaw Lets Attack Code Slip Into Signed Apps
Posted Dec 9, 2017

tags | headline, malware, phone, flaw, google
Millions Stolen In NiceHash Bitcoin Heist
Posted Dec 9, 2017

tags | headline, hacker, cybercrime, fraud, cryptography
Apple HomeKit Flaw Left Smart Gadgets Vulnerable
Posted Dec 9, 2017

tags | headline, flaw, apple
Intel Management Engine Pwned By Buffer Overflow
Posted Dec 7, 2017

tags | headline, hacker, flaw, conference, intel
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close