This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
159b79d396cc6be73eddeb8db6cd9975c0d95b50f6eb41571ed8f34e088a507fThis Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
ba86f554ff58ec884739058eb80af65e4d58a0973721425b952d586468e13d92Metasploit module that causes the iPhone to vibrate. Only works when the AudioToolkit library has been loaded.
ed30f48ba17221b3e4f5d089490d758e3cb82309e55b91cc7037ed01c2855a88WEBIF from Ifnet.it suffers from a cross site scripting vulnerability.
d58e56e1ada637c6ead66c1183e5e29ce06080a7f10d5c0fb5646a614d015defJeebles Directory suffers from a local file inclusion vulnerability.
1d4657a469e795e85205b1439b4dd6344ea4322d1c35abad8ae68d59a656f8eeFull version of spoofer.pl.txt, a DNS recursion bandwidth amplification attack proof of concept. Written in Perl.
2a615190f79c712238619aa6112564e469fd9325244b4bf47c62fc46d71f75d5Hackish Beta verison 1.1 suffers from a cross site scripting vulnerability.
67f94762a26b61069a1a82d0edb6d4f8ca37707f164ca5ccdab567dc5a60367aDM CMS version 0.l7.0 suffers from a SQL injection vulnerability.
8a95080ee6e0ac26bd8d7b3978fdc82d87a72c6ba41dd35d7ff1cce8d0799bdfReload CMS version 1.2.7 suffers from a local file inclusion vulnerability.
a6f20b483cd6b4be290f55ed1878b3958cddcd5380bcd4c9925da492c8207ba0SearchSimon Lite suffers from a cross site scripting vulnerability.
763fa3c1e6ae0cfad293ee462a67f4e4481902ba25c127d9122a4c0a25912d3aSimple Machines Forum aka SMF version 1.1.3 blind SQL injection exploit.
150c8055dd94f3a16a6ace6999869d9b44af882ca9dcbe3d0378d701dca59ec8A SQL injection vulnerability exist in asterisk-addons and cross site scripting vulnerabilities exist in the web applications of Areski, FreePBX, and Trixbox. Proof of concept exploit included.
ac8845577d7b8ecd690c7c048b6fcd61fa4a4faf29e65522cf671da1bc0d25c4DNS recursion proof of concept exploit. Written in Perl.
b9c347e3e27df568b53b8cd63e6283d6aecf0aa169a324c1f652ea0e220f994fThe Joomla Photo Album component version 1.24 suffers from a remote file inclusion vulnerability.
318d6777b649e658d0761d9421ef7355471656ba28580f7305a468e04664e46dSocketMail versions 2.2.1 and below suffer from cross site scripting vulnerabilities.
42dfab9313f856d4432146f04f234d81fd6dacaa018f7055aefa7da54a4d2c96SocketKB versions 1.1.5 and below suffer from cross site scripting vulnerabilities.
0684c0084d3fb8aae4fe1a04af9378e18f090376164aca236928951d2b9497e6LiteSpeed web server versions 3.2.3 and below suffers from a remote source code disclosure vulnerability.
10f706a81bb0241c74ca93f5df3344a25ac69a97da71e3836c744c71264ece91Apache Tomcat with WEBDAV remote file disclosure exploit that has SSL support.
c8197e01da4f8f5ec83aec7a08aed8290e4c514153bf573a492020ff2651cd93PHP 5.x COM functions safe_mode and disable_function bypass proof of concept exploit.
b03ac80b09e54ac916c4d3025603b3e755263fb91b18652cbbf3c08f9f5b9e1cWeather for PHP version 1.0 suffers from a local file inclusion vulnerability.
93c726ea73bde73582798d1a0d6ea71e40db9889d9fb99c500d9b2df5af28359Simple PHP Blog versions 0.5.1 and below suffer from multiple vulnerabilities including cross site scripting, local file inclusion, and code execution flaws.
55a5a9c2c79638a9c0edde9067c02a342d88b6cce70587c7758addd7add2c95dSocketMail version 2.2.8 suffers from a remote file inclusion vulnerability in fnc-readmail3.php.
93e33d275db5107725169ad118193fc03cb4456e79d8777efd5e98a0a06dde1cTOWeLS version 0.1 suffers from a remote file inclusion vulnerability in scripture.php.
7d125dfc2030a6dfa49e17259ccd57c079ab005b2128702089b4adc4ee854e0dPHP Project Management versions 0.8.10 and below suffer from multiple remote and local file inclusion vulnerabilities.
7db8c61d144355b8d04ae0d1981db5b49f399e526bce59f98e1228180f570d9aVanilla versions 1.1.3 and below remote blind SQL injection exploit.
8fd99afa29242b9435a4b28c55b7a733d5e69860fc93d3084bc57d087d509db1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed