Showing 26 - 50 of 324

Files

Tracks 1.7.2 Cross Site Scripting: Posted Mar 29, 2011; Authored by Mesut Timur; Tracks version 1.7.2 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 0e9afb6d0f5ba2d4b1518a64d2c034a1836ded19120b4ca68150dd5d16c2fd1a; Download | Favorite | View

DCS Self MNS Product SQL Injection: Posted Mar 29, 2011; Authored by eXeSoul; DCS Self MNS Product suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | c2ca0b40610205b927f98747653fb637237ba8db2df139fc58769aafcf5c8a23; Download | Favorite | View

Spitfire CMS 1.0.436 Cross Site Scripting: Posted Mar 29, 2011; Authored by High-Tech Bridge SA | Site htbridge.com; Spitfire CMS version 1.0.436 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 8560506e77b07ec1cb96f7f2ebf871e667ed02212de56bc5c5a58d5c27f135e3; Download | Favorite | View

WESPA PHP Newsletter 3.0 Administrator Password Change: Posted Mar 29, 2011; Authored by alieye; WESPA PHP Newsletter version 3.0 suffers from a remote administrative password changing vulnerability when the install script is left in place.; tags | exploit, remote, php, add administrator; SHA-256 | 8967ba02e7bee6dbbd12538c41fde3fc9096ae06d10335d62f3cf4e0d8d3794c; Download | Favorite | View

Simple PHP Newsletter Administrator Password Change: Posted Mar 29, 2011; Authored by alieye; Simple PHP Newsletter suffers from a remote administrative password changing vulnerability when the install script is left in place.; tags | exploit, remote, php, add administrator; SHA-256 | 6156bed607c247ce156c38d3a514e9b119d3dc5eea5758f60ee0a71ddce5ee47; Download | Favorite | View

Solaris 10 Port Stealing: Posted Mar 29, 2011; Authored by Chris O'Regan; Solaris 10 suffers from a port stealing vulnerability that can be leveraged to enable denial of service and man-in-the-middle attacks.; tags | exploit, denial of service; systems | solaris; SHA-256 | 48675e27be933162ec7baa7aa594498059d2ec27697cce05e158de2eb0bcbf53; Download | Favorite | View

Andy's PHP Knowledgebase Project 0.95.4 SQL Injection: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; Andy's PHP Knowledgebase Project version 0.95.4 suffers from a remote SQL injection vulnerability. In some environments it may be possible to create a PHP shell.; tags | exploit, remote, shell, php, sql injection; SHA-256 | 3362f821f69cf7647b8a82382dc84a639aaed20c0562335c522098d52d8a7f39; Download | Favorite | View

Claroline 1.10 Cross Site Scripting: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A persistent cross site scripting vulnerability in Claroline version 1.10 can be exploited to execute arbitrary JavaScript.; tags | exploit, arbitrary, javascript, xss; SHA-256 | 90fe6ead030e3c46d84454b0be125a33b560e1c502df04a47f9e57155e7d883e; Download | Favorite | View

Easy File Sharing Web Server 5.8 Authentication Bypass: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; If the UserID cookie is set all virtual folders become accessible in Easy File Sharing Web Server version 5.8.; tags | exploit, web; SHA-256 | 21615d4f36d5b7cd45ee4e5f342b744e70077736f0c8d2d3d17689b061ac2454; Download | Favorite | View

Easy File Sharing Web Server 5.8 Directory Traversal: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A directory traversal vulnerability in Easy File Sharing Web Server version 5.8 can be exploited to navigate the local file system and create arbitrary files. A user account is necessary to exploit. If registration is not open, it may be possible to retrieve the credential containing user.sdb file using directory traversal combined with authentication bypass.; tags | exploit, web, arbitrary, local; SHA-256 | ac800ad9948f881dd6a2938280a77e88b9a8160b373a2e7f6101e471a36b3abc; Download | Favorite | View

Easy File Sharing Web Server 5.8 Cross Site Scripting: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A persistent cross site scripting vulnerability in Easy File Sharing Web Server Version version 5.8 can be exploited to execute arbitrary JavaScript.; tags | exploit, web, arbitrary, javascript, xss; SHA-256 | ed8b4b92ab766bf1e5557224303153a9fb3dbf3b2868ca81ca1c673f164ed493; Download | Favorite | View

jHTTPd 0.1a Directory Traversal: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A directory traversal vulnerability in jHTTPd version 0.1a can be exploited to read files outside of the web root.; tags | exploit, web, root, file inclusion; SHA-256 | 7714d7d0c2b394430f94ade33e5d1ee5451a1d69f42ee28c049bb489a1ee60b5; Download | Favorite | View

osCSS2 2.1.0 RC12 Local File Inclusion: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A local file inclusion vulnerability in osCSS2 version 2.1.0 RC12 can be exploited to include arbitrary files.; tags | exploit, arbitrary, local, file inclusion; SHA-256 | ddfabb7fab1601434040280e29cf5bac13c0fe2ac08f6109f11acdc2170ea9d1; Download | Favorite | View

osCSS2 2.1.0 RC12 Cross Site Scripting: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A reflected cross site scripting vulnerability in osCSS2 version 2.1.0 RC12 can be exploited to execute arbitrary JavaScript.; tags | exploit, arbitrary, javascript, xss; SHA-256 | f2ece481a0b0c093bc536696d2d1c33801f67b46fd5b6be9344b80d75980e38d; Download | Favorite | View

Rumble 0.25.2232 Denial Of Service: Posted Mar 29, 2011; Authored by AutoSec Tools | Site autosectools.com; A denial of service vulnerability can be exploited to crash Rumble Mail Server version 0.25.2231.; tags | exploit, denial of service; SHA-256 | b0e3c08985a8d72ca7865e9e68c5533e75d35da0fabcf0562d520299c4b27731; Download | Favorite | View

Honey Soft SQL Injection / Cross Site Scripting: Posted Mar 28, 2011; Authored by RoAd_KiLlEr; Honey Soft suffers from remote SQL injection and cross site scripting vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; SHA-256 | 8bd7095bc322f26524154e4782051839420bd5523ebbf0a4866dd51452b89641; Download | Favorite | View

Distributed Ruby Send instance_eval/syscall Code Execution: Posted Mar 28, 2011; Authored by joernchen | Site metasploit.com; This Metasploit module exploits remote code execution vulnerabilities in dRuby.; tags | exploit, remote, vulnerability, code execution; SHA-256 | a681602f532ac58f4f6a9e537c9a81e6dec64369d00b6b75f0ed0815a4eb1b33; Download | Favorite | View

Turkish Ays Portal 1.6 Blind SQL Injection: Posted Mar 28, 2011; Authored by kurdish hackers team | Site kurdteam.org; Turkish Ays Portal version 1.6 suffers from a remote blind SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 18b04c4febc09615167a32d00466382c954f3c32fa911ef43fe56182f011739e; Download | Favorite | View

PPP Blog 0.3.0 Cross Site Scripting: Posted Mar 28, 2011; Authored by kurdish hackers team | Site kurdteam.org; PPP Blog version 0.3.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | a38f2cb311068fd61f1dbd7b1a4746844f9ebea2d843a3d4f9ab569783d81ba6; Download | Favorite | View

Dpayshop SQL Injection: Posted Mar 28, 2011; Authored by d3c0der; Dpayshop suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | d7daf343b42f1ff74e3c0a3ca4a2fa688b9078d198e8e022bfc23fa4532e30c4; Download | Favorite | View

Toon Boom Studio 4.9946 DLL Hijack: Posted Mar 28, 2011; Authored by Houssam Sahli; Toon Boom Studio version 4.9946 DLL hijacking exploit.; tags | exploit; systems | windows; SHA-256 | 3f7d398da69ffbf5378c8e7bc89e79b8316bd3ef57ea36762d0e2dc09f0d6fcc; Download | Favorite | View

Ulead COOL 3D 3.5 DLL Hijack: Posted Mar 28, 2011; Authored by Houssam Sahli; Ulead COOL 3d version 3.5 DLL hijacking exploit.; tags | exploit; systems | windows; SHA-256 | 7b6d9c64b67b37f404a3b6279873a153a56fa9a512c6f9a9deae473a90e16783; Download | Favorite | View

OpenCMS 7.5.3 Cross Site Scripting: Posted Mar 28, 2011; Authored by Michele Orru; OpenCMS versions 7.5.3 and below suffer from cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 4e75fdecc723a1733d9e6ad8aa18826e0fa6f400e236f263c8da2b39e8e6918f; Download | Favorite | View

webEdition CMS 6.1.0.2 Local File Inclusion: Posted Mar 28, 2011; Authored by eidelweiss; webEdition CMS version 6.1.0.2 suffers from a local file inclusion vulnerability.; tags | exploit, local, file inclusion; SHA-256 | be79d960aa2f174f83cee93937a03c3c737fc0cb11cb2cc0881e230578e63a73; Download | Favorite | View

WordPress BackWPup 1.6.1 Code Execution: Posted Mar 28, 2011; Authored by Phil Taylor | Site senseofsecurity.com.au; The WordPress BackWPup plugin version 1.6.1 suffers from a vulnerability that allows for local or remote code to be executed.; tags | exploit, remote, local; SHA-256 | 9d1296daa3ec8fb23564f12b35f8a9259718b647bc906c9344ec6687a2bdcfa6; Download | Favorite | View

Page 2 of 13 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

Files

Top Authors In Last 30 Days

Recent News