exploit the possibilities
Showing 51 - 75 of 131 RSS Feed

Files from Stefan Esser

Email addresssesser at hardened-php.net
First Active2001-12-26
Last Active2017-10-27
wordpress-sqltruncate.txt
Posted Sep 12, 2008
Authored by Stefan Esser | Site sektioneins.de

Wordpress versions 2.6.1 and below suffer from a user_login column SQL truncation vulnerability that allows for blog compromise.

tags | advisory, sql injection
MD5 | 9d7b7b6a1710c7c87e1bad380658ca58
joomla-weakpassword.txt
Posted Sep 11, 2008
Authored by Stefan Esser | Site sektioneins.de

Joomla versions 1.5.7 and below suffer form a weak random password reset token vulnerability.

tags | advisory
MD5 | ce8995c4e02765965d4bfe8c79abd367
SE-2008-03.txt
Posted May 6, 2008
Authored by Stefan Esser | Site sektioneins.de

PHP versions 5.2.5 and below and 4.4.8 and below suffer from a multibyte shell command escaping bypass vulnerability.

tags | advisory, shell, php, bypass
MD5 | 75f252427e7c381d010f1b575b551982
SE-2008-02.txt
Posted May 6, 2008
Authored by Stefan Esser | Site sektioneins.de

PHP versions 5.2.5 and below and 4.4.8 and below suffer from a weak random number seed vulnerability in GENERATE_SEED().

tags | advisory, php
MD5 | 4b0cca74264389c41d1fdf9224233459
SE-2008-01.txt
Posted Feb 21, 2008
Authored by Stefan Esser | Site sektioneins.de

PunBB versions 1.2.16 and below suffer from a blind password recovery vulnerability.

tags | advisory
MD5 | 471e9c3fe1cdde7741f932098a9e82f0
SE-2007-01.txt
Posted Oct 29, 2007
Authored by Stefan Esser | Site sektioneins.de

TikiWiki versions 1.9.8.1 and below suffer from a remote PHP code evaluation vulnerability.

tags | advisory, remote, php
advisories | CVE-2007-5682
MD5 | b72a2c670600ae026e11badf353ac97d
MOPB-sessiondecode.txt
Posted Mar 29, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP version 4.4.5 and 4.4.6 session_decode() double free proof of concept exploit.

tags | exploit, php, proof of concept
MD5 | ac64d9748ea8b560e47f968fba2f7558
MOPB-sessiondeser.txt
Posted Mar 27, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions below 4.4.5 and below 5.2.1 _SESSION deserialization overwrite exploit.

tags | exploit, php
MD5 | 83f386771362447f59bffa931f457a60
MOPB-sessionunset.txt
Posted Mar 27, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions below 4.4.5 and below 5.2.1 _SESSION unset() local exploit.

tags | exploit, local, php
MD5 | d6f54b24b651fbafff73fd4feca2ca0d
MOPB-unserialize.txt
Posted Mar 24, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP version 5.2.1 unserialize() local information leak exploit.

tags | exploit, local, php
MD5 | 17414e2d67bbaf7686613dfedae3de6c
MOPB-hash.txt
Posted Mar 21, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions 5.2.1 and below hash_update_file() freed resource usage exploit.

tags | exploit, php
MD5 | d99f6441ca1d1ec17ba6a4e6419f7266
MOPB-already.txt
Posted Mar 21, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions 4.4.6 and below and versions 5.2.1 and below ext/gd already fixed resources usage exploit.

tags | exploit, php
MD5 | bae3cbbd5ac3157734ec91fd835d09c1
MOPB-header.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP version 5.2.0 header() space trimming buffer underflow exploit for Mac OSX.

tags | exploit, php
systems | apple
MD5 | 020cb1bd1853cb779242b530d6ed5e88
MOPB-array.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions 4.4.6 and below and versions 5.2.1 and below array_user_key_compare() ZVAL dtor local exploit.

tags | exploit, local, php
MD5 | 2b2f9a995cd86df7beef003693c26d99
MOPB-session.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions 5.2.1 and below session_regenerate_id() double free exploit.

tags | exploit, php
MD5 | 48e53dccc2178903d16399e0be0afbea
MOPB-rejected.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP version 5.2.0 and 5.2.1 rejected session ID double free exploit.

tags | exploit, php
MD5 | fa807de95020d193a5171e7f2767ab3a
MOPB-extfilter.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP version 5.2.0 ext/filter space trimming buffer underflow exploit for Mac OSX.

tags | exploit, php
systems | apple
MD5 | 2734e29c6a46f88cf87331885a1505bd
MOPB-fdf.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions 5.2.0 and below ext/filter FDF post filter bypass exploit.

tags | exploit, php
MD5 | 7232a87f3e1275ce8ec773d3f141c2a5
MOPB-pecl.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP 5.2.0 / PHP with PECL ZIP versions 1.8.3 and below zip:// URL wrapper buffer overflow exploit.

tags | exploit, overflow, php
MD5 | 468df0fbc65fafe91d72325e58cc6be4
MOPB-substr.txt
Posted Mar 20, 2007
Authored by Stefan Esser | Site hardened-php.net

Month of PHP Bugs - PHP versions 5.2.1 and below substr_compare() information leak exploit.

tags | exploit, php
MD5 | b2efdaa1b725567a0f643cf70c74cd32
modsec-bypass.txt
Posted Mar 9, 2007
Authored by Stefan Esser | Site hardened-php.net

mod_security versions 2.1.0 and below suffer from a POST rules bypass vulnerability.

tags | exploit, bypass
MD5 | 63bb020fd56ca91ddc3ceb090ff1e03f
esser-php.txt
Posted Mar 9, 2007
Authored by Stefan Esser | Site hardened-php.net

PHP versions 4.4.5 and below and 5.2.1 and below shmop SSL RSA private key disclosure exploit.

tags | exploit, php
MD5 | 3625f9fdc8d9132a625db7e2ce1735a7
Hardened-PHP Project Security Advisory 2007-03.142
Posted Feb 24, 2007
Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net

Hardened PHP Project Security Advisory - Multiple browsers suffers from a cross domain charset inheritance vulnerability. Affected include Firefox versions 2.0.0.1 and below, Internet Explorer 7,and Opera 9.

tags | advisory, php
MD5 | 0c406f7eda7195f1dc12ae3ca465699a
Hardened-PHP Project Security Advisory 2007-02.141
Posted Jan 7, 2007
Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net

Hardened PHP Project Security Advisory - WordPress versions 2.0.5 and below are susceptible to SQL injection and arbitrary PHP code execution vulnerabilities.

tags | advisory, arbitrary, php, vulnerability, code execution, sql injection
MD5 | 1979b7121a3b4caad532914c3f3c4ce2
Hardened-PHP Project Security Advisory 2007-01.140
Posted Jan 7, 2007
Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net

Hardened PHP Project Security Advisory - WordPress versions 2.0.5 and below are susceptible to a cross site scripting vulnerability.

tags | advisory, php, xss
MD5 | 70bfd73413a7698ef03e25ec68a65aee
Page 3 of 6
Back12345Next

File Archive:

September 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    38 Files
  • 3
    Sep 3rd
    30 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    12 Files
  • 6
    Sep 6th
    17 Files
  • 7
    Sep 7th
    3 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    24 Files
  • 10
    Sep 10th
    22 Files
  • 11
    Sep 11th
    22 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    5 Files
  • 14
    Sep 14th
    0 Files
  • 15
    Sep 15th
    0 Files
  • 16
    Sep 16th
    0 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    0 Files
  • 20
    Sep 20th
    0 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close