what you don't know can hurt you
Showing 76 - 100 of 106 RSS Feed

Files from Maksymilian Arciemowicz

Email addresscxib at securityreason.com
First Active2005-02-26
Last Active2016-12-12
php520-bypass.txt
Posted Jan 27, 2007
Authored by Maksymilian Arciemowicz | Site securityreason.com

In PHP 5.2.0 it is possible to bypass safe_mode using writing mode.

tags | advisory, php, bypass
advisories | CVE-2007-0448
MD5 | 110a8601035386b004ff97317c980229
php520.txt
Posted Dec 11, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHP 5.2.0 suffers from a bypass vulnerability in session.save_path safe_mode and open_basedir.

tags | advisory, php, bypass
MD5 | 26466a0ed8b6e2ac56dbdfa42deded11
phpBypass.txt
Posted Sep 13, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHP versions 5.1.6 and below and versions 4.4.4 and below suffer from a php_admin* bypass via ini_restore().

tags | exploit, php
advisories | CVE-2006-4625
MD5 | 1878f69c3fe05dbb63ef2f4d81c628ff
php-error_log.txt
Posted Jun 29, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

It is possible to use the error_log function to bypass safe mode in PHP 5.1.4 and 4.4.2

tags | advisory, php
MD5 | b740296192db4cc4e8ca34128fd48862
phpSafe.txt
Posted Jun 27, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

It appears that there may be a safe mode bypass via error_log() in PHP versions 5.1.4 and 4.4.2.

tags | advisory, php
MD5 | 18ffce59f97e8bddfebb3132911c5e4c
php5-tempnam.txt
Posted Jun 14, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

In PHP 5.1.4 it is possible to create a file with any name by exploiting a vulnerability in tempnam().

tags | advisory, php
MD5 | 38b924df795e3ff8e6b5d2cccb67da60
curlphp-4.4.2-5.1.4.txt
Posted May 29, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

It is possible to bypass safe mode in PHP 4.4.2 and 5.1.4 by using the cURL library.

tags | advisory, php
MD5 | 76489a9d1067503afe0e9437851568f9
phpbb2020.txt
Posted May 6, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

phpBB version 2.0.20 suffers from full path disclosure and SQL errors.

tags | advisory
advisories | CVE-2006-2219, CVE-2006-2220
MD5 | 80eea0a269b71246d0c345a02d8de550
open_basedir-bypass.txt
Posted Apr 14, 2006
Authored by Maksymilian Arciemowicz

It is possible to bypass the open_basedir restriction in PHP 4.4.2 and 5.1.2 by using the tempnam() function.

tags | advisory, php, bypass
MD5 | 5d9be86da1137028ff9f06ae328d5114
php-4.4.2-crash.txt
Posted Apr 14, 2006
Authored by Maksymilian Arciemowicz

It is possible to crash php and possibly apache by using a recursive function call. Tested on PHP 4.4.2 and 5.1.2.

tags | advisory, php
MD5 | 0bea89e62cca915273892c81fcaa3fb0
copy-php-safe.txt
Posted Apr 14, 2006
Authored by Maksymilian Arciemowicz

PHP 4.4.2 and 5.1 allows for a safe mode bypass via the copy() function.

tags | advisory, php
MD5 | c3e51c1609a5703de81bb17ac9b41e6c
phpinfo-xss.txt
Posted Apr 14, 2006
Authored by Maksymilian Arciemowicz

phpinfo() in PHP 5.1.2 and 4.4.2 suffers from a XSS vulnerability.

tags | advisory, php, xss
MD5 | 74c0c1c1b472186b7a7c7a89a96ea24d
PostNuke-0.761.txt
Posted Feb 22, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

PostNuke versions less than or equal to 0.761 suffer from SQL injection and XSS if magic_quotes_gpc is off.

tags | advisory, sql injection
MD5 | f83cc1d711366a7384a9b233de0892d0
phpBB2.0.19.txt
Posted Feb 6, 2006
Authored by Maksymilian Arciemowicz | Site securityreason.com

phpBB 2.0.19 suffers from several Cross Site Request Forgeries and XSS vulnerabilities. Detailed exploitation provided.

tags | exploit, vulnerability
MD5 | c749fb7426de02ec663c1d01fb5e9a3a
phpBB2018.txt
Posted Dec 27, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

phpBB 2.0.18 is susceptible to cross site scripting and path disclosure issues.

tags | exploit, xss
MD5 | efaa7a3cf341f9cd6b6b794e94f020b6
bypassXSSnuke.txt
Posted Dec 15, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHPNUKE versions 7.9 and below suffer from a cross site scripting filter bypass vulnerability. Details provided.

tags | exploit, xss, bypass
MD5 | eb14def6f8b872d7c1f7296074010db0
phpMyAdminLocal.txt
Posted Oct 11, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

phpMyAdmin 2.6.4-pl1 is susceptible to a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 6af123949f333b3d2883db675b30c812
GeSHi.txt
Posted Sep 26, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

GeSHi version 1.0.72 is susceptible to a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | f1aa4004e9b285d93d41b03809a4bab1
postnukeAgain.txt
Posted Aug 24, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

PostNuke 0.760 suffers from cross site scripting and SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | e6dbb3a4e72927086bb0f4460afef0fb
phpAdsNew205.txt
Posted Aug 18, 2005
Authored by Maksymilian Arciemowicz

phpAdsNew and phpPgAds versions 2.0.5 and below suffer from an arbitrary file inclusion flaw. Detailed exploitation provided.

tags | exploit, arbitrary, file inclusion
MD5 | 1ed20310705df1b100b9b0f847ea67a1
postnukeSQL0760rc3.txt
Posted Aug 14, 2005
Authored by Maksymilian Arciemowicz

Postnuke versions 0.760RC3 and below suffer from SQL injection attacks.

tags | exploit, sql injection
MD5 | 825d4ced1eb00d1db7e5169dbef0099e
postnuke0760rc3.txt
Posted Aug 14, 2005
Authored by Maksymilian Arciemowicz

Postnuke versions 0.760RC3 and below suffer from cross site scripting and path disclosure flaws.

tags | exploit, xss
MD5 | cbef98d5d89c1eb9626f182d3a34ded3
postnuke0750.txt
Posted Aug 14, 2005
Authored by Maksymilian Arciemowicz

Postnuke versions 0.750 and below suffer from SQL injection flaws.

tags | exploit, sql injection
MD5 | efa953ad1c81d724fe48650047a0b140
PHPNuke76wl.txt
Posted Apr 17, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHPNuke 7.6 is susceptible to multiple SQL injection vulnerabilities in the Web_Links module cXIb803.14.

tags | exploit, vulnerability, sql injection
MD5 | bdd5e09df50584c825c0b69ff51bf2b1
PHPNuke76dl.txt
Posted Apr 17, 2005
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHPNuke 7.6 is susceptible to multiple SQL injection vulnerabilities in the Downloads module cXIb803.13.

tags | exploit, vulnerability, sql injection
MD5 | 1a31c1ff7481ec1ed97041607bee43c4
Page 4 of 5
Back12345Next

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    13 Files
  • 18
    Sep 18th
    2 Files
  • 19
    Sep 19th
    2 Files
  • 20
    Sep 20th
    14 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    28 Files
  • 23
    Sep 23rd
    13 Files
  • 24
    Sep 24th
    10 Files
  • 25
    Sep 25th
    1 Files
  • 26
    Sep 26th
    1 Files
  • 27
    Sep 27th
    20 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close