Showing 51 - 75 of 104

Files from James Bercegay

Real Name	James Bercegay
Email address	private
Website	www.gulftech.org
First Active	2003-12-23
Last Active	2019-09-23

View User Profile

squirrel145.txt: Posted Jul 15, 2005; Authored by James Bercegay | Site gulftech.org; SquirrelMail versions 1.4.5-RC1 and below suffer from a variable overwriting flaw that can lead to further security issues.; tags | advisory; SHA-256 | dd93dad744255baae13b5e7d772f48087ad64980f12a51f292bbf9ebbc089175; Download | Favorite | View

sitepanel2.txt: Posted Jul 13, 2005; Authored by James Bercegay | Site gulftech.org; Sitepanel2 versions 2.6.1 and below suffer from cross site scripting, directory traversal, and various file manipulation flaws.; tags | exploit, xss; SHA-256 | bf1bec8fd01bb8241debc401e8eb81f226ce350eea7f6f5ab751654f1137bcfb; Download | Favorite | View

osTicketSQL.txt: Posted Jul 8, 2005; Authored by James Bercegay | Site gulftech.org; osTicket is susceptible to SQL injection vulnerabilities. All versions are affected.; tags | exploit, vulnerability, sql injection; SHA-256 | 342e3812e317e1b0abd7304b7bd758488e158450bc02ecdbc5034c31a27f2569; Download | Favorite | View

phpxmlrpc11.txt: Posted Jul 1, 2005; Authored by James Bercegay | Site gulftech.org; PHPXMLRPC is vulnerable to a very high risk remote PHP code execution vulnerability that may allow for an attacker to compromise a vulnerable webserver. The vulnerability is the result of unsanitized data being passed directly into an eval() call in the parseRequest() function of the XMLRPC server. Versions 1.1 and below are affected.; tags | advisory, remote, php, code execution; SHA-256 | d532a52f4c4eceb2ed9ed85e0b453c9a1a6711801fbca08c4ff753d2696e5281; Download | Favorite | View

pear130.txt: Posted Jul 1, 2005; Authored by James Bercegay | Site gulftech.org; PEAR XML_RPC is vulnerable to a very high risk PHP code injection vulnerability due to unsanitized data being passed into an eval() call. Versions 1.3.0 and below are affected.; tags | exploit, php; SHA-256 | 3793d7664e029e03c9787f198abb53e4415460735b9d7326c818daf85564aa6a; Download | Favorite | View

XOOPS2011.txt: Posted Jul 1, 2005; Authored by James Bercegay | Site gulftech.org; XOOPS versions 2.0.11 and below suffer from cross site scripting and SQL injection vulnerabilities.; tags | exploit, vulnerability, xss, sql injection; SHA-256 | 995347caf747d52dca1138bd2c3907d98055ceab0134658d7840bc799b717b16; Download | Favorite | View

wpcmdexec.pl.txt: Posted Jul 1, 2005; Authored by James Bercegay | Site gulftech.org; WordPress 1.5.1.2 XMLRPC Interface SQL injection exploit that allows for remote command execution.; tags | exploit, remote, sql injection; SHA-256 | 0d2c48cea2bf0d696287eeafda65fcc517d602730a6e2070cae0a4bee4becbb2; Download | Favorite | View

wordpress1512.txt: Posted Jul 1, 2005; Authored by James Bercegay | Site gulftech.org; WordPress versions 1.5.1.2 and below suffer from cross site scripting and SQL injection flaw.; tags | exploit, xss, sql injection; SHA-256 | 0d9676599c50adec9da70f3ea1503329707c8994a189703f19cc5e715513bc65; Download | Favorite | View

ubb652.txt: Posted Jun 25, 2005; Authored by James Bercegay | Site gulftech.org; UBB Threads versions 6.5.2 Beta and below are susceptible to cross site scripting, SQL injection, HTTP response splitting, and local file inclusion vulnerabilities.; tags | exploit, web, local, vulnerability, xss, sql injection, file inclusion; SHA-256 | 03bac2769a62f36cb6fdc9f020883c7bde95626e6a76311cdfd26304409ccfb2; Download | Favorite | View

phpBBsqlAll.txt: Posted Jun 23, 2005; Authored by James Bercegay | Site gulftech.org; phpBB suffers from SQL injection vulnerabilities.; tags | advisory, vulnerability, sql injection; SHA-256 | ca458f33b9f3016fe72402ab33dfbbd57fcb02856066cf26233223b8394b26ef; Download | Favorite | View

pafaq.pl.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; paFaq version 1.0 Beta 4 add administrator proof of concept exploit.; tags | exploit, proof of concept; SHA-256 | 14d1fab8be7b49e5b3ddba7f95173d88d0bae71b6edfda345710df0777ec61e5; Download | Favorite | View

paFaq10beta4.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; paFaq version 1.0 Beta 4 suffers from SQL injection and remote command execution vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; SHA-256 | 857e5523c32704ae5bef2804a3ddd90ad4b5070e6bc0a0ccbcfafb8a75be050f; Download | Favorite | View

paFiledb31vuln.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; paFileDB versions 3.1 and below suffer from multiple cross site scripting, SQL injection, and local file inclusion vulnerabilities.; tags | exploit, local, vulnerability, xss, sql injection, file inclusion; SHA-256 | 0427960de653354efd8c4d33d81c78d90121dc6b3653b5afe2097495b775a352; Download | Favorite | View

fusionBB.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; FusionBB versions .11 Beta and earlier suffer from local file inclusion and SQL injection flaws.; tags | exploit, local, sql injection, file inclusion; SHA-256 | 24550f3df2baa0ef6d78a486eea8df52ca8d90111ec586881b6e272f2e6bfd8d; Download | Favorite | View

oscommerce22.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; osCommerce versions 2.2-MS2 and below suffer from an HTTP response splitting vulnerability.; tags | advisory, web; SHA-256 | 531b316f510afad812574cbcce1b9e82817e91becc82a9c728033ba7b98c441f; Download | Favorite | View

invisionGallery.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; Invision Gallery versions prior to 1.3.1 suffer from cross site scripting and SQL injection vulnerabilities. Exploitation details included.; tags | exploit, vulnerability, xss, sql injection; SHA-256 | cab84da4a86eb75dd0850fa421865bc4a8a258f54008812d358752470a8235fa; Download | Favorite | View

invisionXSSSQL.txt: Posted Jun 21, 2005; Authored by James Bercegay | Site gulftech.org; Invision Blog versions prior to 1.1.2 Final suffer from cross site scripting and SQL injection vulnerabilities. Exploitation details provided.; tags | exploit, vulnerability, xss, sql injection; SHA-256 | 7bef5c8eac4a95a9f16a59d1af902a88074e0c7960573fa8242abdbee636e191; Download | Favorite | View

egroupware100007.txt: Posted Jun 1, 2005; Authored by James Bercegay | Site gulftech.org; eGroupewar versions below 1.0.0.007 suffer from multiple cross site scripting and SQL injection vulnerabilities.; tags | exploit, vulnerability, xss, sql injection; SHA-256 | 17b0c9fae94df3b9ba7e1a7b70639e656620493755d4ff5de56650d241cc96c8; Download | Favorite | View

azbb1007d.txt: Posted Jun 1, 2005; Authored by James Bercegay | Site gulftech.org; AZBB versions 1.0.07d and below suffer from arbitrary file deletion and enumeration flaws.; tags | advisory, arbitrary; SHA-256 | 6306c8d12777015f47460895fa5507cfd12177435797106e750bf523bbff3697; Download | Favorite | View

modernBill.txt: Posted Apr 18, 2005; Authored by James Bercegay | Site gulftech.org; ModernBill versions 4.3.0 and below suffer from file inclusion and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, file inclusion; SHA-256 | 8172830d3e3f3a1b826acf07ac2c2a7b87cbce06b47b5f36cc43a041ac135017; Download | Favorite | View

double094.txt: Posted Apr 18, 2005; Authored by James Bercegay | Site gulftech.org; Double Choco Latte versions 0.9.4.3 and below are vulnerable to a remote code execution due to unsafe eval() calls.; tags | exploit, remote, code execution; SHA-256 | a6f3c4c7579830d982c789e45c0e507f819449ebd4898caf751de5bfd0a96616; Download | Favorite | View

phpCoin.txt: Posted Apr 2, 2005; Authored by James Bercegay | Site gulftech.org; There is a file inclusion and three SQL injection vulnerabilities in phpCoin versions 1.2.1b and below.; tags | exploit, vulnerability, sql injection, file inclusion; SHA-256 | d6579531282b1a8088e4d5550da01401eba64f0a8ff0d86e00542107fdeb91a9; Download | Favorite | View

kayakoXSS2.txt: Posted Mar 24, 2005; Authored by James Bercegay; Kayako eSupport version 2.3 is susceptible to multiple cross site scripting attacks.; tags | exploit, xss; SHA-256 | 433bd9398ed07d24408452d9263c4e07d0a1558eff3bb4650a7e42616ed4146e; Download | Favorite | View

PhotoPost.txt: Posted Jan 5, 2005; Authored by James Bercegay | Site gulftech.org; GulfTech Security Research - PhotoPost PHP versions 4.8.6 and below suffer from cross site scripting and SQL injection flaws. Sample exploitation given.; tags | exploit, php, xss, sql injection; SHA-256 | 9164a527e96037d4f91e6259533d1963896e29011c65db9f5aa50c5115976686; Download | Favorite | View

ReviewPost.txt: Posted Jan 5, 2005; Authored by James Bercegay | Site gulftech.org; GulfTech Security Research - ReviewPost PHP Pro versions below 2.84 suffer from cross site scripting and SQL injection attacks. Sample exploitation given.; tags | exploit, php, xss, sql injection; SHA-256 | 1685976453b7ca1ae8a01d59a18c0a465312052235bf84006810e857c2489436; Download | Favorite | View

Page 3 of 5 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 194 files
Ubuntu 67 files
Debian 24 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
malvuln 4 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,011)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,194)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,473)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,437)
UNIX (9,390)
UnixWare (187)
Windows (6,649)
Other

Files from James Bercegay

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems