what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 35 RSS Feed

Files Date: 2006-10-31

nst-29.txt
Posted Oct 31, 2006
Authored by Paisterist | Site neosecurityteam.net

The Journal module in PHP-Nuke 7.9 and prior suffers from SQL injection in search.php. POC exploit included that grabs the password hash of the first admin.

tags | exploit, php, sql injection
SHA-256 | 40ad3ad70a9f57b3cc49988097b061fa80de6c8711bc229ffddc02499ec38ffb
MDCrack-17.zip
Posted Oct 31, 2006
Authored by Gregory Duchemin | Site mdcrack.openwall.net

MDCrack is a free, feature filled password cracker designed to bruteforce several commonly used hash algorithms at a very aggressive speed rate. It can retrieve any password made of up to 8 characters (16 for PIX algorithms) and 55 characters when salted. In order to achieve the highest possible speed rate, this program uses several cores for each algorithm it supports. Each one of these cores provides a different level of optimization designed to best fit with a specific set of command line options. Whatever command line configuration is used, MDCrack will always arrange to use the best available core. To date, this program supports bruteforce attacks on MD2, MD4, MD5, NTLMv1 and PIX (enable and users) hashes, the list of algorithms is growing up. Multithreading allows for parallel cracking and load sharing between several CPUs and multiplies overall speed by the number of available processor(s).

Changes: This release includes several bug fixes along with 6 new cores supporting FreeBSD MD5, Apache MD5 and Cisco IOS hashes.
tags | cracker
SHA-256 | 9593af74b8a11d0e64180ad1fb001d350707f3825c6d32f9b31644937f17766c
Gotfault-05.txt
Posted Oct 31, 2006
Site gotfault.net

Gotfault Security - Advisory #05 - 27/10/06: Mozilla Firefox versions 1.5.0.7 and below and 2.0 are vulnerable to a DoS condition within its javascript Range object. In a special condition, a NULL Pointer Deference occurs and Firefox crashes.

tags | advisory, javascript
SHA-256 | a61a61829061ed72e42ab783fce63df6af4daca196bb1f319626d1aa50817666
QnECMS-2.5.6.txt
Posted Oct 31, 2006
Site advisories.echo.or.id

[ECHO_ADV_53$2006] QnECMS 2.5.6 and prior suffers from a remote file inclusion vulnerability. POC included.

tags | exploit, remote, file inclusion
SHA-256 | 733ebb8377a50199e69b9da0cbb6f3654743bc36eaff2716480b508480449189
PHPEasyDataPro2.2.1.txt
Posted Oct 31, 2006
Authored by ajann

PHPEasyData Pro 2.2.1 suffers from a SQL injection vulnerability in index.php.

tags | exploit, php, sql injection
SHA-256 | 93957c683fe4d2f5ebd9d040aeaf2dd43dd14767ca78db7d857e54026040c2df
PHPEasyDataPro1.4.1.txt
Posted Oct 31, 2006
Authored by ajann

PHPEasyData Pro 1.4.1 suffers from a SQL injection vulnerability in index.php.

tags | exploit, php, sql injection
SHA-256 | 7380b97e1b8b001231a50ed112fa550ac5c19bd85582448e13982906fdb18d4c
simple-v0.99.txt
Posted Oct 31, 2006
Authored by Cyber-Security

Simple Website Software v0.99 suffers from a remote file inclusion vulnerability in common.php.

tags | exploit, remote, php, file inclusion
SHA-256 | 1ac885848dfa405c74f37210d6b6fd713968106daf5c996bda618fa5a8c068eb
MajorSecurity-29.txt
Posted Oct 31, 2006
Site majorsecurity.de

[MajorSecurity Advisory #29]: foresite CMS - Cross Site Scripting Issue.

tags | advisory, xss
SHA-256 | 8591278f8bbfc8be498a8207e57066ecce64c04c52e794b04cb177d5929572a8
eNM-0.0.1.txt
Posted Oct 31, 2006
Authored by poplix

easy notes manager (eNM) version 0.0.1 is affected by multiple SQL injection issues. POC included that demonstrates how to bypass authentication.

tags | exploit, sql injection
SHA-256 | 8bf434113a79d20b0e13eca016af6e6321a692aac41cb63c7a6ec3adf04d23fd
freenews-inc.txt
Posted Oct 31, 2006
Authored by Mohandko

freenews suffers from a remote file inclusion vulnerability in aff_news.php.

tags | exploit, remote, php, file inclusion
SHA-256 | 43180f66f3412167a1dc5c115a4e1389f16dc7f0e26ab1184101fa6574bcb5d8
WebWizForum.txt
Posted Oct 31, 2006
Authored by aLMaSTeR

A SQL injection vulnerability has been found in the search.asp script of WebWizForum.

tags | advisory, sql injection, asp
SHA-256 | cead45ff35294fdd3b96eea233a7ef20ecfb57a70f0706f879b2c00a0b636710
Exporia-0.3.0.txt
Posted Oct 31, 2006
Authored by h4ck3riran | Site Www.PersainFox.com

Remote exploit for Exporia versions 0.3.0 and prior remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
SHA-256 | 183b507d646cee848ada27494f71e8282579022ef9d72ed92d35c5a851a4805b
CentiPaid-1.4.2.txt
Posted Oct 31, 2006
Authored by firewall1954

CentiPaid 1.4.3 suffers from a remote file inclusion vulnerability in centipaid_class.php.

tags | exploit, remote, php, file inclusion
SHA-256 | 74d04a6ebac9eedda8901b1302fce530bf665d9a96f321d0f8f2c4de403ae812
Banv0.1.txt
Posted Oct 31, 2006
Authored by mahmood ali

Ban v0.1 suffers from a remote file inclusion vulnerability in bannieres.php.

tags | exploit, remote, php, file inclusion
SHA-256 | f4dbe3054fbd4c53680517920f642827a7a85b4bd4ac6cf747cacca5e3c388d7
Thepeak-v1.3.txt
Posted Oct 31, 2006
Authored by Pham Duc Hai | Site blog.ajaxviet.com

Thepeak File Upload v1.3 suffers from a vulnerability that allows anyone to download arbitrary files.

tags | exploit, arbitrary, file upload
SHA-256 | db1a83ee51bf4f34d0bc53cc287cb75b3dfe587fccc7457d086eb90ebb8b179c
xss-.net.txt
Posted Oct 31, 2006
Authored by ProCheckUp | Site niscc.gov.uk

Applications which fail to provide their own filtering on top of the inbuilt .NET request filtering may be vulnerable to XSS attacks. Provided that a web application solely relies on .NET request filtering before echoing input back to the web browser, it is possible to inject scripting code and successfully launch XSS attacks by submitting a specially crafted request.

tags | advisory, web
SHA-256 | dd910ad2db757329a92d803219be35c477e9961683836178d55fca2a887cde87
HostingController6.1.txt
Posted Oct 31, 2006
Authored by playpacific.emulacaid | Site kapda.ir

Hosting Controller 6.1 Hotfix less than or equal to 3.2 suffers from multiple vulnerabilities which can allow an unauthenticated user to delete sites and perform SQL injection attacks.

tags | exploit, vulnerability, sql injection
SHA-256 | ffc11d2df863ea35c6e64a9f5a38fb2415ce40baf728e21b7e1e6c9cd529599b
phpAdsNew-2.0.8-2.txt
Posted Oct 31, 2006
Authored by ZooZ

phpAdsNew 2.0.8 suffers from a file inclusion vulnerability in adlayer.php.

tags | exploit, php, file inclusion
SHA-256 | 6dc84f0a6700e071f98a2299db48574c707a98487ad7357dce230185c4842dc9
Secunia Security Advisory 22594
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Free File Hosting, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | c417f3b1403e655517cc03eadec6d6e8090e0a08c15c4b60a1fb71422e6e9226
Secunia Security Advisory 22598
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - ajann has reported a vulnerability in Techno Dreams Announcement, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | 7bc222043155d0bf4dd3e218da068579891041797baaa27eaffdf573b6d52a38
Secunia Security Advisory 22600
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - ajann has reported a vulnerability in Techno Dreams Guestbook, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | 113e49308775559397c4fb2c8dff44469c9df684ebdca1ccf88d9ecb2a9409de
Secunia Security Advisory 22602
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Greg Linares has discovered some vulnerabilities in Easy File Sharing Web Server, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to disclose sensitive information.

tags | advisory, web, vulnerability
SHA-256 | c6e2c16cfa4a83180b50f49bc2a4d9cb918c90863de86047c096a0f9871232f7
Secunia Security Advisory 22604
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for ImageMagick. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
systems | linux, mandriva
SHA-256 | 0b5942cd94bfebea643930aa51b9cacbfb1c932ac7b938c12e97b0872a2f5456
Secunia Security Advisory 22606
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, mandriva
SHA-256 | 9179cfbbcd8baad686d3eb81777e2aad92e506232be6e0a5ef93dc036327525e
Secunia Security Advisory 22609
Posted Oct 31, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in various Informix Products, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

tags | advisory, local, vulnerability
SHA-256 | 4474f9ffc116a320d92cc32a4f2f6260e9810704359684cdce62c387cef3b01e
Page 1 of 2
Back12Next

File Archive:

February 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    16 Files
  • 2
    Feb 2nd
    19 Files
  • 3
    Feb 3rd
    0 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    2 Files
  • 7
    Feb 7th
    10 Files
  • 8
    Feb 8th
    25 Files
  • 9
    Feb 9th
    37 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    17 Files
  • 13
    Feb 13th
    20 Files
  • 14
    Feb 14th
    25 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    6 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    35 Files
  • 20
    Feb 20th
    25 Files
  • 21
    Feb 21st
    18 Files
  • 22
    Feb 22nd
    15 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    10 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    37 Files
  • 27
    Feb 27th
    34 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close