what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 76 - 100 of 174

Files

dalai-rfi.txt

Posted Aug 21, 2007

Authored by DarKdewiL

Dalai Forum suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 1cf145147fc494de7f02b8fce8cb2ceb259871a5a6b2bb59fc30989a953b4adb

Download | Favorite | View

toribashish.zip

Posted Aug 20, 2007

Authored by Luigi Auriemma | Site aluigi.org

Proof of concept exploit for vulnerabilities in Toribash versions 2.71 and below.

tags | exploit, vulnerability, proof of concept

SHA-256 | bc7f5880bd7b38c848149f860d5730d6ded7c35e331dd519f7c18c903a4602cb

Download | Favorite | View

unrwebdos.zip

Posted Aug 20, 2007

Authored by Luigi Auriemma | Site aluigi.org

Denial of service exploit that demonstrates a buffer overflow in the logging function of the Unreal engine.

tags | exploit, denial of service, overflow

SHA-256 | 256616a46fd983fd5ab187b9b434b3f728d79cf9edac8d029f1e4dce45b796bc

Download | Favorite | View

belgacom_xss.txt

Posted Aug 20, 2007

Authored by Tosser

Belgacom suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 8ab58d37525d6a6542d5eb3bb46aa6df3411a25f2be4e56bd3a6088a2131408c

Download | Favorite | View

mercury-poc.txt

Posted Aug 20, 2007

Authored by eliteb0y

Mercury SMTP remote preauth stack based overrun proof of concept exploit.

tags | exploit, remote, overflow, proof of concept

SHA-256 | 5269ff7da8174aa44d0cb1467b56b47b2697e9bda21d10d34f14eeaa3def9b29

Download | Favorite | View

discussmaster_2-xss.txt

Posted Aug 20, 2007

Authored by nfw0rm

discussMaster version 2.0 suffers from a cross site scripting vulnerability in forum.asp.

tags | exploit, xss, asp

SHA-256 | 977a0c9a0ee0e72488f752f1bd8c16a4a7201e7734840349f7ab8ef123991b9b

Download | Favorite | View

vbul368-xss.txt

Posted Aug 20, 2007

Authored by Hasadya Raed

vBulletin version 3.6.8 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss

SHA-256 | 8c03dda12ce7d1b518b319542f638585350aa1e97c86953599391c8807734a79

Download | Favorite | View

squirrelcart-rfi.txt

Posted Aug 20, 2007

Authored by ShaiMagal

Squirrelcart versions 1.x.x and below suffer from a remote file inclusion vulnerability in cart.php.

tags | exploit, remote, php, code execution, file inclusion

SHA-256 | 39d0ce655f4bb0e38b5a090eaee614ee276852a083b19d7b1d10ee2943c62918

Download | Favorite | View

aspnet-xss.txt

Posted Aug 17, 2007

Authored by GeFORC3

The ASP.NET version of Text File Search suffers from a cross site scripting vulnerability.

tags | exploit, xss, asp

SHA-256 | 66263ba1b03a3bc49325c2ae5abed2036b824a42558fbb63ba016b1bcac46d90

Download | Favorite | View

tfsc-xss.txt

Posted Aug 17, 2007

Authored by GeFORC3

Text File Search Classic ASP suffers from a cross site scripting vulnerability.

tags | exploit, xss, asp

SHA-256 | d9304302bd0601615327d029228a49aee51781e275fd51fa35cf5596ebc7ccbd

Download | Favorite | View

TS-2007-003-0.txt

Posted Aug 17, 2007

Authored by forloop

Template Security has discovered a root privilege escalation vulnerability in the BlueCat Networks Adonis DNS/DHCP appliance which allows the admin user to gain root privilege from the Command Line Interface (CLI). Adonis version 5.0.2.8 is susceptible. Exploit details included.

tags | exploit, root

SHA-256 | 219aa7d9b7cf70a7456a29006c7032444b70633a33926ddf828895ebe52d9a93

Download | Favorite | View

edraw-insecure.txt

Posted Aug 17, 2007

Authored by shinnai | Site shinnai.altervista.org

EDraw Office Viewer Component version 5.1 HttpDownloadFile() insecure method exploit.

tags | exploit

SHA-256 | 0087365c213a194631e52cec6d5a488a7e66652d404dc2be8c61f20c07488d4c

Download | Favorite | View

2wire-csrf.txt

Posted Aug 16, 2007

Authored by hkm

2wire routers versions 1701HG and 2071 Gateway are susceptible to cross site request forgery attacks.

tags | exploit, csrf

SHA-256 | 6e7c23ea90ad8a1a27332592fa4fb20f3c7323f8e82e7c0ce27f431e06c7a3ab

Download | Favorite | View

systemedevote-rfi.txt

Posted Aug 16, 2007

Authored by Crackers_Child

Systeme de vote en temps version 1 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion

SHA-256 | 34c3272761112f763b48754f773655644abcd5449e12e80d542c3d77622da7cc

Download | Favorite | View

zoidboom2.zip

Posted Aug 15, 2007

Authored by Luigi Auriemma | Site aluigi.org

Zoidcom versions 0.6.7 and below proof of concept exploit that demonstrates a crash vulnerability.

tags | exploit, proof of concept

SHA-256 | 138fd40e2de6eb84ad1259c781269ae1077d0bedea7a2ecaa48a56bea5fe28a1

Download | Favorite | View

bv2x.zip

Posted Aug 15, 2007

Authored by Luigi Auriemma | Site aluigi.org

Babo Violent 2 versions 2.08.00 and below proof of concept exploit that demonstrates multiple vulnerabilities.

tags | exploit, vulnerability, proof of concept

SHA-256 | bd1d92a75ce86e15b8e3df93845f1ad8307b2d173d06b3178b1ed0ea01de1ad3

Download | Favorite | View

lfsfp.zip

Posted Aug 15, 2007

Authored by Luigi Auriemma | Site aluigi.org

Live For Speed versions 0.5X10 and below proof of concept exploit that demonstrates buffer overflow vulnerabilities.

tags | exploit, overflow, vulnerability, proof of concept

SHA-256 | 0c6a89beb4a07b95ba34a7e6422d06439298f78de9f2f3aeece9e5828367709a

Download | Favorite | View

ecs-dos.txt

Posted Aug 15, 2007

Authored by Nima Ghotbi | Site netjackal.by.ru

Easy Chat Server version 2.2 remote denial of service exploit.

tags | exploit, remote, denial of service

SHA-256 | e808d4c896bb783af02f943cc5328938b5c1135d16e27970900772552d7acf12

Download | Favorite | View

ibm-sql.txt

Posted Aug 15, 2007

Authored by sasquatch, rel1k | Site securestate.com

IBM Rational ClearQuest Web suffers from a SQL injection vulnerability that allows for login bypass.

tags | exploit, web, sql injection

SHA-256 | 1a8eca469402af864b35b5c2315573875eaca2bb769839401f4544dd6d947838

Download | Favorite | View

wireshark-dos.txt

Posted Aug 15, 2007

Authored by Zwell | Site nosec.org

WireShark versions below 0.99.6 suffer from a denial of service vulnerability when parsing MMS messages. Denial of service exploit included.

tags | exploit, denial of service

SHA-256 | 90ada8e6d8d19f8c14348b012635138ac41888d2f21e0390cdda97eac4b912b5

Download | Favorite | View

CVE-2007-3386.txt

Posted Aug 14, 2007

Authored by Mark Thomas | Site tomcat.apache.org

Tomcat versions 5.5.0 to 5.5.24 and 6.0.0 to 6.0.13 suffer from a cross site scripting vulnerability in the host manager functionality.

tags | exploit, xss

advisories | CVE-2007-3386

SHA-256 | 84aa48ad32c84fc16f0e577cc862d655e1f81b84b1b780d61e5ec1d8d0ba64d7

Download | Favorite | View

egs-fuckphpbluedragon300.pl.txt

Posted Aug 14, 2007

Authored by Emanuele Gentili | Site emanuele-gentili.com

PHP Blue Dragon CMS version 3.0.0 remote file inclusion exploit that makes use of activecontent.php.

tags | exploit, remote, php, file inclusion

SHA-256 | 787c73177eeb6c46b9235d0b3b8653a8d573a4e7f7cbd7a372ae1fb6d76c5b20

Download | Favorite | View

SURGEMAIL.py.txt

Posted Aug 14, 2007

Authored by Joey Mengele

Surgemail 38k 0-day exploit that binds a shell to TCP/9999.

tags | exploit, shell, tcp

SHA-256 | 2052618648a56a9ccd597ea688048dd537cfebbf52f8785381bc86f1e8435311

Download | Favorite | View

diskeeper-disclose.txt

Posted Aug 14, 2007

Authored by Pravus

Diskeeper suffers from a remote memory disclosure vulnerability. Exploit included.

tags | exploit, remote, info disclosure

SHA-256 | 70b1ac6a87eb969c45bd180714db1c04207811ba0e89f4133de0a96569224a90

Download | Favorite | View

joblister-sql.txt

Posted Aug 14, 2007

Authored by Joseph Giron

JobLister3 by SkilMatch Staffing Systems is susceptible to multiple SQL injection vulnerabilities.

tags | exploit, vulnerability, sql injection

SHA-256 | 8378fbfda1a01be6ba640c5e923cc4bedd7795765b448ddb07773378d9ddbdf4

Download | Favorite | View