exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 99 RSS Feed

Files Date: 2006-04-12

Vegadns-0.99.txt
Posted Apr 12, 2006
Authored by king_purba | Site kandangjamur.net

VegaDNS 0.99 suffers from XSS and a SQL injection vulnerability in index.php and users.php

tags | advisory, php, sql injection
SHA-256 | 6bee67795628d192c7db5f4ae38f226319d52bfec349b6067b8492bebe38cdc7
A_Modular_Approach_to_Data_Validation_v1.0.pdf
Posted Apr 12, 2006
Authored by Stephen de Vries | Site corsaire.com

This paper presents a modular approach to performing thorough data validation in modern web applications so that the benefits of modular component based design; extensibility, portability and re-use can be released. The paper begins with an explanation of the vulnerabilities introduced through poor validation and then goes on to discuss the merits of a number of common data validation methodologies. A modular approach is introduced together with practical examples of how to implement such a scheme in a web application. It also provides information on common attack vectors, principles of validation, a modular solution and implementation of that solution.

tags | paper, web, vulnerability
SHA-256 | d6ea21e85a8e50b5eb5abc46932d07593292a7f8f5443ced84aadf093a2415ae
advisory4.5.06.txt
Posted Apr 12, 2006
Authored by silentproducts | Site silent-products.com

Myspace.com - Intricate Script Injection Vulnerability. Includes a very detailed discussion of the vulnerability and the security / insecurity of Myspace in general.

tags | advisory
SHA-256 | 692688d0c4169bb13ccc4016dc5c08950d2bd2ee60dea2a72faf97db2fe437cf
Autogalleryv0.41.txt
Posted Apr 12, 2006
Site elitemexico.org

Autogallery v0.41 suffers from multiple XSS vulnerabilities.

tags | advisory, vulnerability
SHA-256 | 8f60a89be9e855d2ddf27a907a6c2c6fd8dffd0a13f8317c2870f044c3735424
AzDGVote.txt
Posted Apr 12, 2006
Site lezr.com

AzDGVote suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
SHA-256 | 5fe9fcb1b1ad616c7aad90e8fa4ad3129b3943b2df8ec62e4d69fdccc91306ff
UltrVNC1.0.1.py.txt
Posted Apr 12, 2006
Authored by Paul Haas | Site Redspin.com

Ultr@VNC 1.0.1 Client Buffer Overflow exploit. Spawns an instance of calc.exe.

tags | exploit, overflow
SHA-256 | 2fcdc0f17a5a95906e55a96c88e2e56425da544a1bfe0f190964c31c98046b57
Manila-9.5.txt
Posted Apr 12, 2006
Site d4igoro.blogspot.com

Manila versions less than or equal to 9.6 suffer from multiple XSS vulnerabilities.

tags | advisory, vulnerability
SHA-256 | 206977f3295657c91f44b0ab165856d3325758ad6fee4078e10fc2bd36c39507
Confixx3.1.2
Posted Apr 12, 2006
Site LoK-Crew.de.am

Confixx 3.1.2 suffers from a SQL injection vulnerability.

tags | advisory, sql injection
SHA-256 | a5d4c938f23a007b9d891074dde333fd28af71057b84a4a5619621f179fad0e4
Tritanium-1.2.3.txt
Posted Apr 12, 2006
Site d4igoro.blogspot.com

Tritanium Bulletin Board 1.2.3 suffers from XSS.

tags | advisory
SHA-256 | dfef64553d4a11c3c06bed9689775824f90ed34ca7cf338e13fc75d5314265a8
Zero Day Initiative Advisory 06-07
Posted Apr 12, 2006
Authored by Tipping Point | Site zerodayinitiative.com

ZDI-06-007: Microsoft Windows Address Book (WAB) File Format Parsing Vulnerability.

tags | advisory
systems | windows
SHA-256 | cf55be54a2e2bece030d1ba75d9740572eee53a7708c5c218a80a053aef4ac17
SAXoPRESS.txt
Posted Apr 12, 2006
Authored by securiteam

SAXoPRESS suffers from a directory transversal vulnerability, allowing an attacker to read the contents of files on the server.

tags | advisory
SHA-256 | a2462c3295e432649925f198bb27e6366741793a57802a72f40d991a98dd619d
TUGZip.txt
Posted Apr 12, 2006
Authored by Hamid Network Security Team | Site hamid.ir

TUGZip 3.4.0.0, TUGZip 3.3.0.0, and TUGZip 3.1.0.2 do not properly sanitize archives, making it possible to overwrite arbitrary files using a directory transversal attack.

tags | advisory, arbitrary
SHA-256 | f0e5a68bc738ff61005a14d4347611b5d57d55d11ca02261473863935152eaea
PHPWebGallery-1.4.1.txt
Posted Apr 12, 2006
Authored by Moroccan Security Team

PHPWebGallery 1.4.1 suffers from multiple XSS vulnerabilities.

tags | advisory, vulnerability
SHA-256 | 80ee78e60b6db725b86953cccd6ab94991f3ccb5ea477c39ab4152cbfa5c95f3
phpMyForum-4.0.txt
Posted Apr 12, 2006
Authored by Moroccan Security Team

phpMyForum 4.0 suffers from XSS and CRLF injection vulnerabilities.

tags | advisory, vulnerability
SHA-256 | f2549e2c71b3d354dc92b7e5b2f82ba04a6d6a21f2910b387fcc8389f1a8b450
Jbook-gb.txt
Posted Apr 12, 2006
Authored by Moroccan Security Team

Jbook Guestbook suffers from XSS in index.php

tags | advisory, php
SHA-256 | cc5232f78d823542a8ab0e6cbaf97015e886d131a9ea79163ee60b315ffad0ab
Sire2.0Nws.txt
Posted Apr 12, 2006
Authored by Moroccan Security Team

If register_globals is on, Sire 2.0 Nws suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
SHA-256 | 09b9f5fd33c45fc9142d354995077da4827ea5d5a7fe96e90d48da53759c1c2f
Chipmunk-gb.txt
Posted Apr 12, 2006
Authored by Dr.Jr7 | Site lezr.com

Chipmunk Guestbook suffers from SQL injection that allows for authentication bypass.

tags | advisory, sql injection
SHA-256 | 393277c7e6a2316592ce852da64df2fc657f7a3e9edf17f2910e151ce525a5aa
SaphpLesson.txt
Posted Apr 12, 2006
Authored by almokanna

SaphpLesson 3.0 suffers from XSS in search.php

tags | advisory, php
SHA-256 | 506a3845351062983cb38d4cdda7d622262d6830a56d4d4340a20036192a98a1
adv28-K-159-2006.txt
Posted Apr 12, 2006
Authored by eufrato | Site advisories.echo.or.id

Clever Copy versions less than or equal to 3.0 allows one of its configuration files to be read remotely, resulting in critical information disclosure. Exploit included.

tags | exploit, info disclosure
SHA-256 | a4aca55e0dc9e2ab030231b253111a3938a4d6832dccebaf2a3b1c80515c72cd
cherokee-0.5.0.txt
Posted Apr 12, 2006
Authored by Ruben Garrote Garcia

Cherokee webserver versions less than 0.5.1 allows for XSS in its 400 error message.

tags | advisory
SHA-256 | 55528cc9c26fc9ce6d1a8967aae662bf9b9a6b83bec1825bc5c99957c840c8e9
maxdev-cms.txt
Posted Apr 12, 2006
Authored by king_purba

MAXDEV CMS suffers from full path disclosure and SQL injection vulnerabilities.

tags | advisory, vulnerability, sql injection
SHA-256 | 05e45818170dbb6231bafc88d0e5951b599caa9ea41e170a90b3329f88a6850d
HP Security Bulletin 2006-11.32
Posted Apr 12, 2006
Authored by Hewlett Packard | Site hp.com

HPSBUX02111 SSRT061132 rev.1 - HP-UX su(1) Local Unauthorized Access

tags | advisory, local
systems | hpux
SHA-256 | ff0506cd180ec376306f56145ff96afcc9f66465cd78ce8417f911943b630750
HP Security Bulletin 2006-11.10
Posted Apr 12, 2006
Authored by Hewlett Packard | Site hp.com

HPSBUX02110 SSRT061110 rev.1 - HP-UX Running wu-ftpd Remote Denial of Service (DoS)

tags | advisory, remote, denial of service
systems | hpux
SHA-256 | 8baeeec24fe07e1ce24aa2a1027d3c3f9f6203cb9f4e8a82c848aa608ba69a82
HP Security Bulletin 2006-11.33
Posted Apr 12, 2006
Authored by Hewlett Packard | Site hp.com

HPSBUX02108 SSRT061133 rev.3 - HP-UX running Sendmail, Remote Execution of Arbitrary Code.

tags | advisory, remote, arbitrary
systems | hpux
SHA-256 | 85ffe8b61e920ac9bfe0a7e89fb5d57b920d3381026795e50d391fe9e6aabbca
Secunia Security Advisory 19566
Posted Apr 12, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Data Security has reported a vulnerability in SAXoPRESS, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
SHA-256 | 9d40d18e086168567debfb60b51b40528a90ddaf2e2f083593d8ddc570d94669
Page 1 of 4
Back1234Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close