Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability that allows for login bypass.
947786fb40025bbf1b4689f204b4c9d2994da84e69edc479629136ec1a705f2d
My Click Counter version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
c9fbd3f73b992b9916c183ac0fa0f68c3da72fc5dca9625197f5646d39558f7d
This is a write up on how to grab a remote shell on Seagate GoFlex home network storage systems.
04bf562e369912c73eb24b90c98f964884eda934bddada9642ca661da0e97ca7
Telmanik CMS Press version 1.01b suffers from a remote SQL injection vulnerability in pages.php.
85f94ea9cab330c2a49df8176d99d6957108fa4f82dfd45fb569414eb62cc04a
Whizzy CMS version 10.01 suffers from a local file inclusion vulnerability.
966b682a7f3367f3eda499decf9119a83e159fe30e13be8d36cf52f8b0a2da96
The Hacker's Hideaway ARP attack tool has 4 major functions, 3 of which attempt to man-in-the-middle one or more computers on a network with a passive method or flood type method. It sets up forwarding and else-wise for you. The other function attacks a switch and tries to fill up its ARP table and turn it into a hub of sorts, allowing you to sniff all network traffic. While there are a few tools that do some of these things what really sets this one apart is the remote mac destination option that allows you to run the attacks from one machine and have another be the man-in-the-middle "server". This is written to run on Linux and needs Python and Scapy installed.
06d6566500c7c13c6fe01ab6b2dbe21054d74af7d59bca50c4eda065e12f2d15
Arcadwy Arcade Script suffers from a static cross site scripting vulnerability.
15be6e01188e229110696aaa1f0177ee492df12302d1569348683a29832d3261
PHPg version 1.6 suffers from cross site scripting, path disclosure, and denial of service vulnerabilities.
2266199981966fdd6ce2f1888616d9b1eec12414c6f09f4033e757ec091640e3