exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 76 - 100 of 246 RSS Feed

Files

biggboss2 SQL Injection
Posted Feb 18, 2009
Authored by Jaydeep Dave

bigboss2.in.com, the site for the TV show, suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 217062dc52bab5c9c4d8fc316ffb173f73d13db45beabfa3c9aac6cfa34347b3
SAS Hotel Management System Authentication Bypass
Posted Feb 18, 2009
Authored by Pouya Server

SAS Hotel Management System suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | 585341fa02961eaffc8aa4656a64bf3e17d9e2a57f06258cd16f21e46151189c
Oracle 10g SQL Injection
Posted Feb 18, 2009
Authored by Sh2kerr | Site dsecrg.com

This Metasploit module will escalate a Oracle DB user to MDSYS by exploiting a SQL injection bug in the MDSYS.SDO_TOPO_DROP_FTBL trigger. After that, the exploit escalates the user to DBA using "CREATE ANY TRIGGER" privilege given to the MDSYS user by creating an evil trigger in system scheme (2-stage attack).

tags | exploit, sql injection
SHA-256 | 84bfd4cbb0c258c978b6b3a520766d1e250483da872d06460174b4cdb2b222b5
pHNews Alpha 1 Database Disclosure
Posted Feb 17, 2009
Authored by X0r

pHNews Alpha 1 suffers from a remote database disclosure vulnerability in genbackup.php.

tags | exploit, remote, php, info disclosure
SHA-256 | a2cbfa10e68b0a9f1c49b967c1aeb01ea423ad03813f51b0da48d20fcf6e96a9
pHNews Alpha 1 SQL Injection
Posted Feb 17, 2009
Authored by X0r

pHNews Alpha 1 suffers from a remote SQL injection vulnerability in header.php.

tags | exploit, remote, php, sql injection
SHA-256 | 6ec7a36bc2f0da5725d4bfa6053d567f941684bfe5f281586f21aa9317161f68
S-CMS 1.1 Insecure Cookie Handling
Posted Feb 17, 2009
Authored by X0r

S-CMS version 1.1 Stable suffers from insecure cookie handling and page deletion vulnerabilities.

tags | exploit, vulnerability, insecure cookie handling
SHA-256 | a8a83dc86698b9c2a8f66081ffe259500b74125f1ed9082b3884c8f3d11564df
Grestul SQL Injection
Posted Feb 17, 2009
Authored by X0r

Grestul version 1.x suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | dc7ffd268101ab6a5796ae577c5f031beb6cf547b91fe53d77e86daff1d1bb2c
SAS Hotel Management System Shell Upload
Posted Feb 17, 2009
Authored by ZoRLu | Site yildirimordulari.org

The SAS Hotel Management System suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
SHA-256 | adce8906e70141e31297727df259b698a4961dae44c7fb2d6a3f21a3b80f4155
YACS CMS 8.11 Remote File Inclusion
Posted Feb 16, 2009
Authored by ahmadbady

YACS CMS version 8.11 suffers from a remote file inclusion vulnerability in update_trailer.php.

tags | exploit, remote, php, code execution, file inclusion
SHA-256 | 0a921702a6b193271c0846b5db6240e1121e3f6b6c9b2658a7dd02a6dc6a034d
RavenNuke 2.3.0 Code Execution / SQL Injection
Posted Feb 16, 2009
Authored by Janek Vind aka waraxe | Site waraxe.us

RavenNuke version 2.3.0 suffers from multiple code execution and SQL injection vulnerabilities.

tags | exploit, vulnerability, code execution, sql injection
SHA-256 | c34ff1a2c075baf5cd498bcc9dba388976bcf111db9b56ba7173af2090138d40
SAS Hotel Management System SQL Injection
Posted Feb 16, 2009
Authored by Darkb0x

SAS Hotel Management System suffers from a remote SQL injection vulnerability in myhotel_info.asp.

tags | exploit, remote, sql injection, asp
SHA-256 | 1839523d0458fbbbc8e92253d8b34c58852ce3f9d050edf3d1343db9a0551022
OpenX 2.6.3 orderdirection/listorder Cross Site Scripting
Posted Feb 16, 2009
Authored by Vinod Sharma

OpenX version 2.6.3 orderdirection and listorder parameter cross site scripting vulnerability details with screen shots.

tags | exploit, xss
SHA-256 | 159efe1f8cce18ebb81642c90697fc004c6d446db2b89abde07fdf13afb7992c
OpenX 2.6.3 clientid Cross Site Scripting
Posted Feb 16, 2009
Authored by Vinod Sharma

OpenX version 2.6.3 clientid parameter cross site scripting vulnerability details with screen shots.

tags | exploit, xss
SHA-256 | 68b32130a6ec022e86de03f76a1ee18d06f549634f5a6afe7f3ded6b8725a0f8
TPTEST 3.1.7 Stack Buffer Oveflow
Posted Feb 16, 2009
Authored by ffwd

TPTEST versions 3.1.7 and below stack buffer overflow proof of concept exploit.

tags | exploit, overflow, proof of concept
SHA-256 | e960467ded01250b4096a2f1b3c39d2f2f30445208d7a509bc9240a451df57ca
GeoVision ActiveX File Corruption
Posted Feb 16, 2009
Authored by Nine:Situations:Group | Site retrogod.altervista.org

GeoVision LiveX_v8200 Active-X Control remote file corruption proof of concept exploit.

tags | exploit, remote, activex, proof of concept
SHA-256 | e24f2fa615944e208a5882c0fdc94c33d025e658885ab4a8a2437a50f59f859a
MemHT Portal 4.0.1 Delete Messages
Posted Feb 16, 2009
Authored by StAkeR

MemHT Portal versions 4.0.1 and below delete all private messages exploit.

tags | exploit
SHA-256 | c0e93f7e01ec0a9ee8f05fe5f09c0a75049bedd768b076dc7f200d92f04db2fc
NovaBoard 1.0.0 File Upload / LFI / SQL Injection
Posted Feb 16, 2009
Authored by brain[pillow]

NovaBoard version 1.0.0 suffers from shell upload, local file inclusion, and multiple remote SQL injection vulnerabilities.

tags | exploit, remote, shell, local, vulnerability, sql injection, file inclusion, file upload
SHA-256 | cbfffa295a4b05222d38b2d1ae86e395de82376adc7fb687845cc20853a7a846
Enomaly ECP/Enomalism enomalism2.sh Temporary Files
Posted Feb 16, 2009
Authored by Sam Johnston

All versions of Enomaly ECP/Enomalism before 2.2.1 have multiple issues relating to the use of temporary files in an insecure manner.

tags | exploit
advisories | CVE-2008-4990, CVE-2009-0390
SHA-256 | 461388d5af9b086c1ea7698c7c71be0f51f4b95fd1d2fce9bd1ff0fe15f9f6d3
PowerMovieList 0.14b XSS / SQL Injection
Posted Feb 16, 2009
Authored by brain[pillow]

PowerMovieList version 0.14b suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 0b5fbc41cf6afdc05cfd8593d7244cf0878bb0f42f906d22801f4822ff636204
Falt4 CMS File Upload Exploit
Posted Feb 16, 2009
Authored by Sp3shial

Falt4 CS RC4 arbitrary file upload exploit.

tags | exploit, arbitrary, file upload
SHA-256 | fe07399aa459a1057879fcf1842e7dd198c284a70f61aab7e7fdf5dbc7298218
InselPhoto 1.1 Cross Site Scripting
Posted Feb 16, 2009
Authored by rAWjAW | Site rawjaw-security.blogspot.com

InselPhoto version 1.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | c749608b4fd416564aa8945271143b661a7e687fe8c3af628901df721dbfecba
simplePMS CMS 0.1.3a Code Execution
Posted Feb 15, 2009
Authored by Osirys | Site y-osirys.com

simplePMS CMS version 0.1.3A remote command execution exploit that also notes local file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, file inclusion
SHA-256 | 039e6f2f5535db1d149d878833ad8d5d4086d0908b69775b2f7481bf7303e689
Falt4 Extreme RC4,10.9.2007 XSRF Exploit
Posted Feb 15, 2009
Authored by d14l, marcoj

Falt4 Extreme RC4,10.9.2007 CMS cross site request forgery exploit.

tags | exploit, csrf
SHA-256 | b8b6e77290a6fd225daac326789135871e5897e456005b7d08f2bdf4514dcd38
Alice Gate2 Arbitrary Port Forward
Posted Feb 15, 2009
Authored by RingZero | Site w00tz0ne.org

Alice Gate2 plus Wi-Fi arbitrary port forward cross site request forgery exploit.

tags | exploit, arbitrary, csrf
SHA-256 | 8dbcf82454e0f0fc10a4972018bb9bcd8907796f268bfcb3612f01a99a2e9cfe
FreeBSD telnetd Privilege Escalation
Posted Feb 15, 2009
Authored by Kingcope

FreeBSD 7.0-RELEASE suffers from a local privilege escalation vulnerability in telnetd.

tags | exploit, local
systems | freebsd
SHA-256 | 8065daae2f79c82e232c7981422545b191ea26a08bad0de98e8a51f2726a0a87
Page 4 of 10
Back23456Next

Top Authors In Last 30 Days

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close