what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 128

Files from ZoRLu

SiteWIX SQL Injection

Posted Oct 21, 2015

Authored by ZoRLu

SiteWIX suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | ce2689d63edc3530f187eb722b672751ab937aa7fdb4958e2b269cdc34c0d585

Download | Favorite | View

Encaps PHP/Flash Gallery 2.3.22s Database DoS

Posted Apr 24, 2015

Authored by ZoRLu

Encaps PHP/Flash Gallery version 2.3.22s allows for the database to be filled up due to poor design.

tags | exploit, denial of service, php

SHA-256 | 3c17bd70e22d359fbe5891372b6f80377b6cbe310ce3f5943b086af8b710c1ea

Download | Favorite | View

Avsarsoft Matbaa Script Cross Site Scripting / Shell Upload

Posted Apr 23, 2015

Authored by ZoRLu

Avsarsoft Matbaa Script suffers from cross site scripting and remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, xss

SHA-256 | 66d3454214fa484ffc9e57110b11324f1f1dae0d839287ad32694e041cc64bed

Download | Favorite | View

Flat Calendar 1.1 HTML Injection

Posted Dec 8, 2014

Authored by ZoRLu

Flat Calendar version 1.1 suffers from an unauthenticated html injection vulnerability that allows for cross site scripting attacks.

tags | exploit, xss

SHA-256 | 2739adfe142265e44d392976dc64330944172a19f38bc3ac5a95414704828815

Download | Favorite | View

Tiny Server 1.1.9 Arbitrary File Disclosure

Posted Nov 29, 2014

Authored by ZoRLu

Tiny Server version 1.1.9 suffers from a file disclosure vulnerability via directory traversal.

tags | exploit, info disclosure

SHA-256 | 8e024c6f998f6f042e074c97d5919ff9e0154ff022aa987da869b585ca75c143

Download | Favorite | View

RobotStats 1.0 Cross Site Scripting

Posted Nov 22, 2014

Authored by ZoRLu

RobotStats version 1.0 suffers from an html injection vulnerability.

tags | exploit, xss

SHA-256 | 7334dff97c02fb6a3cbce85a0c35231f6db8854176882e8b32bd7555de203734

Download | Favorite | View

RobotStats 1.0 SQL Injection

Posted Nov 22, 2014

Authored by ZoRLu

RobotStats version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | e4b88798aa77e59599613244d7d2d36b46a5acdcf0feb48cd953f4e277596bd4

Download | Favorite | View

Maarch LetterBox 2.8 Insecure Cookie Handling

Posted Nov 17, 2014

Authored by ZoRLu

Maarch LetterBox version 2.8 suffers from an authentication bypass vulnerability via SQL injection via a modified cookie.

tags | exploit, sql injection, bypass

SHA-256 | 9cb54a17880cdfbcb236fb141ed71a002e6b870a480db141b5ff99b099a0ed8f

Download | Favorite | View

Who's Who Script Cross Site Request Forgery

Posted Nov 13, 2014

Authored by ZoRLu

Who's Who Script suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 47f9a3f742cf238fe2b35e17df618c2251aafa10b62f1517868c27f5feaa4662

Download | Favorite | View

Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 (.wax) Buffer Overflow

Posted Oct 28, 2014

Authored by ZoRLu

Mini-stream RM-MP3 Converter version 3.1.2.1.2010.03.30 suffers from a buffer overflow vulnerability when handling .wax files.

tags | exploit, overflow

SHA-256 | 302e7e5408a62bb0b8fa71f8365379786080916a1802f9c4f860e232d900c7e6

Download | Favorite | View

AutoWeb 3.0 SQL Injection

Posted Oct 5, 2014

Authored by ZoRLu

AutoWeb version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 6788f6d801d3e2fa34c7d0a3e1f8bae30d8e2a3d66d534f86351b96865d72d46

Download | Favorite | View

Onlineon E-Ticaret Database Disclosure

Posted Sep 10, 2014

Authored by ZoRLu

Onlineon E-Ticaret suffers from a database disclosure vulnerability.

tags | exploit, info disclosure

SHA-256 | cfa73c040d0c831090d58647a0ba836c68cf4b2b36a576978373e171edbb5ab9

Download | Favorite | View

Izlebizi Video Script Add Administrator

Posted Jul 10, 2011

Authored by ZoRLu

Izlebizi Video Script remote add administrator account exploit.

tags | exploit, remote, add administrator

SHA-256 | 4424c648d1d8d3e1362a338ee5abe2920da7c2cb0931d51bf872155ac3c73a58

Download | Favorite | View

Mini-Stream RM-MP3 Converter Buffer Overflow

Posted Jan 17, 2011

Authored by ZoRLu

Mini-Stream RM-MP3 Converter buffer overflow exploit.

tags | exploit, overflow

SHA-256 | c4003c600ce20835716d1c29b7f390bd3377bbfc173232c70d4a009102125f3c

Download | Favorite | View

PHP Hosting Directory 2.0 Database Disclosure

Posted Oct 17, 2010

Authored by ZoRLu

PHP Hosting Directory version 2.0 database disclosure exploit.

tags | exploit, php, info disclosure

SHA-256 | f7653ff14a1c45e486ef65e0c78833b4ec296eb4d961471cbd95da9a97a0395f

Download | Favorite | View

xWeblog 2.2 SQL Injection

Posted Oct 11, 2010

Authored by ZoRLu

xWeblog version 2.2 remote SQL injection exploit that leverages arsiv.asp.

tags | exploit, remote, sql injection, asp

SHA-256 | 2beb8637b0aa0f7f69b2ae512185d2c8383071f4524d3e6accbb57361fc1a1d1

Download | Favorite | View

xWeblog 2.2 SQL Injection / Authentication Bypass

Posted Oct 11, 2010

Authored by ZoRLu

xWeblog version 2.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass

SHA-256 | a5ed97f24a65335ec6dd349c5b4573929fd9d971c9ece9a9e7758901368fc406

Download | Favorite | View

xWeblog 2.2 Insecure Cookie Handling

Posted Oct 11, 2010

Authored by ZoRLu

xWeblog version 2.2 suffers from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling

SHA-256 | 0edb6c5031d4434a62eeffe6ebafd5a92c5fcbf7222aa354e90bafe19567dbda

Download | Favorite | View

Abhimanyu Infotech SQL Injection

Posted Oct 4, 2010

Authored by ZoRLu

Abhimanyu Infotech SQL injection exploit that leverages show_news.php.

tags | exploit, php, sql injection

SHA-256 | 099a613d5f44b9bd44d09e1ee6c6631491f691ebbc8b92b9e8cd968505396248

Download | Favorite | View

Cilem Haber 1.4.4 Database Disclosure

Posted Oct 4, 2010

Authored by ZoRLu

Cilem Haber version 1.4.4 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure

SHA-256 | bdc941e374e6699f709194eb361b07e183ae67ff3a1a2445b7963c2cd0c85bd7

Download | Favorite | View

Bka Haber 1.0 File Disclosure

Posted Oct 4, 2010

Authored by ZoRLu

Bka Haber version 1.0 suffers from a file disclosure vulnerability.

tags | exploit, info disclosure

SHA-256 | e35acf3ebbb37553efe15b4a094450713a8352d90e5634c780cd5746e2eb8d99

Download | Favorite | View

Win32/XP SP3 cmd.exe Shellcode

Posted Oct 1, 2010

Authored by ZoRLu

42 bytes small Win32/XP SP3 (Tr) cmd.exe shellcode.

tags | shellcode

systems | windows

SHA-256 | a47cfd0226478f7609da02fc5721f8a3d186764a1bffb72704ee7ea44ee6f8e2

Download | Favorite | View

Win32/XP SP3 About Box Shellcode

Posted Sep 30, 2010

Authored by ZoRLu

77 bytes small Win32/XP SP3 (Tr) About Box shellcode.

tags | shellcode

systems | windows

SHA-256 | 1eef7c75fa17cd47c35e99721ffb3cb942aa48ae9dccbefcc3b121eed89b554f

Download | Favorite | View

Win32/XP SP3 Edit With Notepad.exe Shellcode

Posted Sep 21, 2010

Authored by ZoRLu

87 bytes small edit with notepad.exe shellcode for Win32/XP SP3.

tags | shellcode

systems | windows

SHA-256 | d107c31713626e6549f19244da0678542e8786bfa3b8bd5e72c1e83d43d7ca9b

Download | Favorite | View

Win32/XP SP3 Firefox Shellcode

Posted Sep 21, 2010

Authored by ZoRLu

75 bytes small firefox.exe shellcode for Win32/XP SP3.

tags | shellcode

systems | windows

SHA-256 | a58ffaaf2fba4331faf9d77d731236c283c44ba07e63ee41726b698b59152d70

Download | Favorite | View