what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News Services About Contact Add New

Showing 1 - 25 of 83

Files from JosS

Simple Document Management System 1.1.5 / 2.0 SQL Injection

Posted Jun 16, 2012

Authored by JosS | Site hack0wn.com

Simple Document Management System versions 1.1.5 and 2.0 suffer from remote SQL injection and bypass vulnerabilities.

tags | exploit, remote, vulnerability, sql injection

MD5 | 92d6332cfba1ebf00c22c51443bbff0b

Download | Favorite | View

Remote Command Execution Through Local File Inclusion

Posted Jun 10, 2012

Authored by JosS

This is a brief whitepaper discussing remote command execution through local file inclusion. Written in Spanish.

tags | paper, remote, local, file inclusion

MD5 | ac4ebb0fd26ee721031941cc5a21dc09

Download | Favorite | View

vBseo 3.1.0 Remote Command Execution

Posted Jun 24, 2011

Authored by JosS

vBseo version 3.1.0 remote command execution exploit that leverages injecting code into log files.

tags | exploit, remote

MD5 | 5bbab4a41af669f9eab5514ed535f703

Download | Favorite | View

Symphony 2.0.7 SQL Injection / Cross Site Scripting

Posted Sep 11, 2010

Authored by JosS

Symphony version 2.0.7 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection

MD5 | 9a422dd06d42f19e5557a8b24d0130c0

Download | Favorite | View

Multi-lingual E-Commerce System 0.2 Remote File Inclusion

Posted Aug 30, 2010

Authored by JosS

Multi-lingual E-Commerce System version 0.2 suffer from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion

MD5 | 040b7945f9383a44bc8c0d5692f2443b

Download | Favorite | View

AJ HYIP MERIDIAN SQL Injection

Posted Jul 23, 2010

Authored by JosS

AJ HYIP MERIDIAN suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

MD5 | 4c2674c14e9f149094b35b46740b546d

Download | Favorite | View

Siestta 2.0 Cross Site Scripting / Local File Inclusion

Posted Apr 16, 2010

Authored by JosS

Siestta version 2.0 suffers from cross site scripting and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion

MD5 | 696e30e109e83befe60b746e0eee30f1

Download | Favorite | View

xwine 1.0.1 Crash Proof Of Concept

Posted Mar 30, 2010

Authored by JosS

xwine version 1.0.1 .exe file local crash proof of concept exploit.

tags | exploit, denial of service, local, proof of concept

MD5 | 9df3ec32d673978fda9836a99bc3f964

Download | Favorite | View

Simple Machines Forum 1.1.8 PHP File Execution

Posted Mar 28, 2010

Authored by JosS | Site spanish-hackers.com

Simple Machines Forum versions 1.1.8 and below avatar related remote php file execution proof of concept exploit.

tags | exploit, remote, php, proof of concept

MD5 | b5d7f3455fd7322ca6519f949c37f139

Download | Favorite | View

E-Topbiz Link Ads Blind SQL Injection

Posted Mar 8, 2010

Authored by JosS | Site spanish-hackers.com

E-Topbiz Link Ads 1 PHP script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection

MD5 | dbed7948c8c4df7ce440b1a068501805

Download | Favorite | View

Micronation Banking System Command Execution

Posted Mar 3, 2010

Authored by JosS | Site spanish-hackers.com

Micronation Banking System suffers from a remote command execution vulnerability.

tags | exploit, remote

MD5 | 7df6bbb5c35bd629f745191aeb47d54f

Download | Favorite | View

Cybershade CMS 0.2b Session Hijacking

Posted Feb 26, 2010

Authored by JosS | Site spanish-hackers.com

Cybershade CMS version 0.2b suffers from a session hijacking vulnerability.

tags | exploit

MD5 | 5ce2049ea26b2667d01fde43abb66140

Download | Favorite | View

LightOpenCMS 0.1 Local File Inclusion

Posted Jun 25, 2009

Authored by JosS | Site spanish-hackers.com

LightOpenCMS version 0.1 suffers from a local file inclusion vulnerability in smarty.php.

tags | exploit, local, php, file inclusion

MD5 | 610aeaac02d85645fc6feb3996ccf3fe

Download | Favorite | View

PHPEcho CMS 2.0-rc3 Cross Site Scripting

Posted Jun 25, 2009

Authored by JosS | Site spanish-hackers.com

PHPEcho CMS version 2.0-rc3 suffers from cross site scripting and blind SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection

MD5 | 9e5962dd05566951b54319e583874ebd

Download | Favorite | View

Address Book 2.5 Shell Upload

Posted Apr 20, 2009

Authored by JosS | Site spanish-hackers.com

Address Book version 2.5 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload

MD5 | 9b57bc88748efc029c607e3a0874a79c

Download | Favorite | View

SMA-DB 0.3.13 Remote File Inclusion

Posted Apr 16, 2009

Authored by JosS | Site spanish-hackers.com

SMA-DB version 0.3.13 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion

MD5 | 2b1172fc21875e15700edc73c31140ba

Download | Favorite | View

pPIM 1.01 Command Execution Exploit

Posted Feb 23, 2009

Authored by JosS | Site spanish-hackers.com

pPIM version 1.01 remote command execution exploit that leverages notes.php.

tags | exploit, remote, php

MD5 | 0266209baed54e908eff0e4f7cfbba2a

Download | Favorite | View

1024 CMS 1.4.4 RFI / Command Execution

Posted Feb 6, 2009

Authored by JosS | Site spanish-hackers.com

1024 CMS versions 1.4.4 and below remote command execution exploit using remote file inclusion.

tags | exploit, remote, code execution, file inclusion

MD5 | d3b15c8267e77ca328dfff2d5972fa90

Download | Favorite | View

GR Note 0.94 Beta Database Disclosure

Posted Feb 5, 2009

Authored by JosS | Site spanish-hackers.com

GR Note version 0.94 Beta suffers from a remote database disclosure vulnerability.

tags | exploit, remote

MD5 | 4d6bacb6380124621ff98909b04f6936

Download | Favorite | View

GR Blog 1.1.4 Upload / Bypass

Posted Feb 4, 2009

Authored by JosS | Site spanish-hackers.com

GR Blog versions 1.1.4 suffers from remote file upload and authentication bypass vulnerabilities.

tags | exploit, remote, vulnerability, bypass, file upload

MD5 | 35ebef74aecad355428b776ba082c8e6

Download | Favorite | View

Cybershade CMS 0.2b Remote File Inclusion Exploit

Posted Jan 5, 2009

Authored by JosS | Site spanish-hackers.com

Cybershade CMS version 0.2b remote file inclusion exploit that uses index.php.

tags | exploit, remote, php, code execution, file inclusion

MD5 | 0d89b7c56448d695c0868124e9bdd777

Download | Favorite | View

cleancms-blindsql.txt

Posted Nov 25, 2008

Authored by JosS | Site spanish-hackers.com

Clean CMS version 1.5 blind SQL injection exploit that makes use of full_txt.php.

tags | exploit, php, sql injection

MD5 | 70cc532dc4beadb1db5af713b37bbd4d

Download | Favorite | View

pppblog-disclose.txt

Posted Nov 4, 2008

Authored by JosS | Site spanish-hackers.com

pppBlog versions 0.3.11 and below suffer from a file disclosure vulnerability in randompic.php.

tags | exploit, php, info disclosure

MD5 | efa0dd9d2f812a1602ed096951324dca

Download | Favorite | View

maranphpshop-insecure.txt

Posted Nov 4, 2008

Authored by JosS | Site spanish-hackers.com

Maran PHP Shop suffers from an insecure cookie handling vulnerability in admin.php.

tags | exploit, php, insecure cookie handling

MD5 | 1cf411a84e2d7d80d2d1b130da795d27

Download | Favorite | View

maranphpshop2-sql.txt

Posted Nov 4, 2008

Authored by JosS | Site spanish-hackers.com

Maran PHP Shop suffers from a remote SQL injection vulnerability in prod.php.

tags | exploit, remote, php, sql injection

MD5 | 5108e5d365fbb974e300446ec32419b3

Download | Favorite | View