exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 101 - 125 of 127

Files

otscms-multi.txt

Posted Feb 8, 2007

Authored by GregStar | Site c4f.pl

OTSCMS version 2.1.5 suffers from cross site scripting and SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection

SHA-256 | 0565f561bef62cdc8351a4435fbf79816311b335df5eff1de7171a29f225e829

Download | Favorite | View

maian-rfi.txt

Posted Feb 8, 2007

Authored by Denven

Maian Recipe version 1.0 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 0d73f9ccb38e3eeca9e28a978c76404bc3996e8a1b0ff0819b503264147ebfb6

Download | Favorite | View

lightro-rfi.txt

Posted Feb 8, 2007

Authored by ajann

LightRO CMS version 1 beta suffers from a remote file inclusion vulnerability in inhalt.php.

tags | exploit, remote, php, code execution, file inclusion

SHA-256 | 270f4e58bdac1ef845bc43b4c1b29b2a53d69063255d592528bd31d8061aac75

Download | Favorite | View

02062007-raptor_winudf.tgz

Posted Feb 8, 2007

Authored by Marco Ivaldi

This is a MySQL backdoor kit for Windows based on the UDFs (User Defined Functions) mechanism. It can be used to spawn a reverse shell (netcat UDF on port 80/tcp) or to execute single OS commands (exec UDF). Tested on MySQL 4.0.18-win32 (running on Windows XP SP2), MySQL 4.1.22-win32 (running on Windows XP SP2), MySQL 5.0.27-win32 (running on Windows XP SP2).

tags | exploit, shell, tcp

systems | windows

SHA-256 | 15313890177e90628311c6c464cf5a183ed19e89a0eb0fae3370dd041b770aea

Download | Favorite | View

oracle-sql.txt

Posted Feb 6, 2007

Authored by Andrea Purificato | Site rawlab.mindcreations.com

Oracle 9i/10g DBMS_EXPORT_EXTENSION SQL injection exploit.

tags | exploit, sql injection

SHA-256 | 5da3679527ba84f7b21f36ba7d9b950eca072f5b36d1fd021648d1a4da8fd4c0

Download | Favorite | View

geeklog-rfi.txt

Posted Feb 6, 2007

Authored by GolD_M

Geeklog version 2 suffers from a remote file inclusion vulnerability in BaseView.php.

tags | exploit, remote, php, code execution, file inclusion

SHA-256 | 020a17a5d039bcd5f6cb9badf8370da0737693fe9553451ebc835e5a1281336f

Download | Favorite | View

smadb-rfi.txt

Posted Feb 6, 2007

Authored by The Death

SMA-DB versions 0.3.9 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 51617bc83ceb460927bb96383e952935fb60cd6bc42a7284a233569c1544cdbe

Download | Favorite | View

ggcms-exec.txt

Posted Feb 6, 2007

Authored by Kacper | Site rahim.webd.pl

GGCMS versions 1.1.0 RC1 and below remote code execution exploit.

tags | exploit, remote, code execution

SHA-256 | 9c4a046334dab11a9dab1b9164db0c1f49ffc786f32fdb20bdfeb3e81412f917

Download | Favorite | View

msie6-npd.txt

Posted Feb 6, 2007

Authored by AmesianX

Microsoft Internet Explorer 6 mshtml.dll null pointer derefence exploit.

tags | exploit

SHA-256 | 3d73f7db428d98af7dbd722e320dd226e577a86ac0031666cacc354105d2604a

Download | Favorite | View

mina-rfi.txt

Posted Feb 6, 2007

Authored by Gokhan, BLaCKWHITE

Mina Ajans Script suffers from a remote file inclusion flaw.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 8fa8941eb4ca19e4bde94c86e22ee7e00f59884c0e272f5aae02943dce8278b8

Download | Favorite | View

cold-xss.txt

Posted Feb 6, 2007

Authored by digi7al64

The Cold Fusion web server suffers from a cross site scripting vulnerability.

tags | exploit, web, xss

SHA-256 | c6134e49f82cb3a72792bf007c285e2438ecca4f849550526c75b89ecbf0f72e

Download | Favorite | View

uphotogallery-xss.txt

Posted Feb 6, 2007

Authored by DoZ | Site hackerscenter.com

Uphotogallery version 1.1 is susceptible to cross site scripting attacks.

tags | exploit, xss

SHA-256 | 59252f18f2ce50937d9715492ada82d603c7e61eefec55763422383eacaeefa6

Download | Favorite | View

dvddb06-rfi.txt

Posted Feb 6, 2007

Authored by Blaster

dvddb version 0.6 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 88703db88496df688d24e0d1cacc0eb44effd92e50a589aa29f366cb36639206

Download | Favorite | View

joomla150beta-sql.txt

Posted Feb 6, 2007

Authored by Omid | Site hackers.ir

Joomla! version 1.5.0 Beta suffers from SQL injection vulnerabilities.

tags | exploit, vulnerability, sql injection

advisories | CVE-2007-0373, CVE-2007-0374, CVE-2007-0375, CVE-2007-0387

SHA-256 | b7622a565def445ec0da61a9e888f37a0de5e91edaa09b53cb64ab04c7303807

Download | Favorite | View

wps1-rfi.txt

Posted Feb 6, 2007

Authored by rUnViRuS | Site sec-area.com

Wap Portal Server version 1.x suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 918b8f998f6aadbdf4b3b953ea6945b76631821843a635718da845398c7436e7

Download | Favorite | View

directadmin-xss.txt

Posted Feb 6, 2007

Authored by DoZ | Site hackerscenter.com

DirectAdmin version 1.29.0 is susceptible to cross site scripting attacks.

tags | exploit, xss

SHA-256 | 3950b590fd870a9cd54567c11ca1f1aac504bfe917265d299eacf0c16d8e6c7d

Download | Favorite | View

uebimiau-xss.txt

Posted Feb 6, 2007

Authored by DoZ | Site hackerscenter.com

Uebimiau version 2.7.10 is susceptible to cross site scripting attacks.

tags | exploit, xss

SHA-256 | 26130e128e95433dd90db36a156d883554374b2bb9b459c40af4997b62dca22f

Download | Favorite | View

cotv2-dos.txt

Posted Feb 6, 2007

Authored by poplix

cotv 2.0 suffers from a client-side denial of service vulnerability due to a lack of validation. Demonstration exploit included.

tags | exploit, denial of service

SHA-256 | f707ee93bda1d6d72d269716afca6da52d47a31e6d5abc8bec288f711a10b6e2

Download | Favorite | View

pwp-rfilfi.txt

Posted Feb 6, 2007

Authored by laurent gaffie | Site s-a-p.ca

PHP Web Portail suffers from a classic directory traversal flaw and a remote file inclusion vulnerability.

tags | exploit, remote, web, php, code execution, file inclusion

SHA-256 | 879e4ea28d38fb4e6d238913d060ea127a12373af39eb460346e5a3b6ca73162

Download | Favorite | View

XSS_Vulnerability_EasymoBlog.txt

Posted Feb 6, 2007

Authored by Tal Argoni | Site zion-security.com

EasyMoblog version 0.5.1 suffers from a cross site scripting vulnerability. Details provided.

tags | exploit, xss

SHA-256 | a6989f7a88416dc8794900029b76069370eb1c18cb0a28e181ff5ef68854b3ee

Download | Favorite | View

Sql_Vulnerability_EasymoBlog-2.txt

Posted Feb 6, 2007

Authored by Tal Argoni | Site zion-security.com

EasyMoblog version 0.5.1 suffers from another SQL injection vulnerability. Details provided.

tags | exploit, sql injection

SHA-256 | e7290bd738849c3b7fdd17d859d2ca260504c556b0813e946fc41060084d6492

Download | Favorite | View

Sql_Vulnerability_EasymoBlog.txt

Posted Feb 6, 2007

Authored by Tal Argoni | Site zion-security.com

EasyMoblog version 0.5.1 suffers from a SQL injection vulnerability. Details provided.

tags | exploit, sql injection

SHA-256 | 4eb11a7e29c6256280092b5dd8e6e23faf1fe708f1484122c8151780b860f341

Download | Favorite | View

BTP00000P005CF.zip

Posted Feb 6, 2007

Site matousec.com

Denial of service exploit that demonstrates a lack of argument validation in Comodo Firewall Pro. Affected versions include Comodo Firewall Pro 2.4.16.174 and Comodo Personal Firewall 2.3.6.81.

tags | exploit, denial of service

SHA-256 | 13c68b8539dddd068e1f16bec0b64cffb60f21947bb4920eac788e41781dc7f6

Download | Favorite | View

omegaboard-rfi.txt

Posted Feb 6, 2007

Authored by XORON

Omegaboard version 1.0b4 suffers from a remote file inclusion flaw in phpbb_root_path.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 2556450b15b5eb4d95e3dde961e5bb7fddda9b0c857a34fcb7b1b306c0ea312e

Download | Favorite | View

cerulean-rfi.txt

Posted Feb 6, 2007

Authored by XORON

Cerulean Portal System suffers from a remote file inclusion flaw in phpbb_root_path.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 683e57cbdcc617fec0863e350e8532ad01ca481518c5d6a226f658dc56b4ae62

Download | Favorite | View