accept no compromises
Showing 1 - 25 of 60 RSS Feed

Files Date: 2009-02-09

PHP Filesystem Attack Vectors
Posted Feb 9, 2009
Authored by Francesco Ongaro, Giovanni Pellerano | Site ush.it

Whitepaper discussing a large amount of PHP filesystem attack vectors.

tags | paper, php
MD5 | 80940d8ff6cbcaa14c16ceb4932ecbd0
ZeroBoardXE 1.1.5 Cross Site Scripting
Posted Feb 9, 2009
Authored by make0day

ZeroBoardXE version 1.1.5 (09.01.22) suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 584ff10c3def8208ebb0b5b318077368
ZeroShell Code Execution
Posted Feb 9, 2009
Authored by Luca Carettoni | Site ikkisoft.com

ZeroShell versions 1.0beta11 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 312990f62c29beec353eab32cb31640a
3Com Router Authentication Bypass
Posted Feb 9, 2009
Authored by Luca Carettoni | Site ikkisoft.com

The 3Com OfficeConnect wireless cable/dsl router suffers from an authentication bypass vulnerability.

tags | exploit, bypass
MD5 | 03fd7a49b51ca75201ec610d146c477b
Bitdefender's Thailand Site SQL Injection
Posted Feb 9, 2009
Authored by TEAMELITE

The Bitdefender Thailand site suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 43b8ff33a430c90625b2bb82e47b13b3
FlexCMS SQL Injection
Posted Feb 9, 2009
Authored by MisterRichard

FlexCMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 49d15ad91dd066e1421220be267d9913
Novell-QuickFinder Server XSS
Posted Feb 9, 2009
Authored by Ivan Sanchez | Site nullcode.com.ar

Novell-QuickFinder Server suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 2afe153af5da913e36f61b5058b158d7
Yet Another NOCC 0.1.0 Local File Inclusion
Posted Feb 9, 2009
Authored by Kacper | Site devilteam.pl

Yet another NOCC versions 0.1.0 and below suffer from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 59227d48aae706d241d1150387f0d8f2
WB News 2.1.1 Remote File Inclusion
Posted Feb 9, 2009
Authored by ahmadbady

WB News version 2.1.1 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | ca6340114b937601d33e253be7189004
Webframe 0.76 Remote And Local File Inclusion
Posted Feb 9, 2009
Authored by ahmadbady

Webframe version 0.76 suffers from multiple remote and local file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
MD5 | 123a31255d5cf8d8cf9d7e6a6f280223
SQL Injection Fuzzing Tool
Posted Feb 9, 2009
Authored by baltazar | Site darkc0de.com

SQL Fuzzer version 1.0 that is written in Python. Yes, another one.

tags | python, fuzzer
MD5 | 31a969fa9fbe9eab0f8f6c4223914721
TightVNC Integer Overflow
Posted Feb 9, 2009
Authored by desi

TightVNC authentication failure integer overflow proof of concept exploit.

tags | exploit, overflow, proof of concept
advisories | CVE-2009-0388
MD5 | 95500dff315dac36bcf28fb129b2e3f4
Squid Denial Of Service
Posted Feb 9, 2009
Authored by Praveen Darshanam

Squid versions 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 remote HTTP version parsing denial of service exploit.

tags | exploit, remote, web, denial of service
advisories | CVE-2009-0478
MD5 | 7468f57dd6e10cd27a1a16e0559f3037
A Better Member-Based ASP Photo Gallery SQL Injection
Posted Feb 9, 2009
Authored by BackDoor

A Better Member-Based ASP Photo Gallery suffers from a remote SQL injection vulnerability in view.asp.

tags | exploit, remote, sql injection, asp
MD5 | b5dac2ec799e11ffd02d73ba7238d4a8
Trend Micro Credential Leak
Posted Feb 9, 2009
Authored by David Vorel

Trend Micro IWSVA / IWSS suffers from an authorization module password leak vulnerability.

tags | advisory
MD5 | 9c43c6a285c88bf2d20ac898d467d170
BusinessSpace 1.2 SQL Injection
Posted Feb 9, 2009
Authored by M.Hasran Addahroni | Site advisories.echo.or.id

BusinessSpace versions 1.2 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 692ee5183aed207b1c62ff129c48d942
Hybrid Botnet System 0.2
Posted Feb 9, 2009
Authored by cross | Site x1machine.com

The Hybrid Botnet Remote Administration System version 0.2 contains a perl bot, console application and HTTP administration panel using PHP and MySQL. Written for Linux.

tags | tool, remote, web, perl, php, rootkit
systems | linux, unix
MD5 | 96320df20baff182449024ccf80ea1c8
w3bcms 3.5.0 SQL Injection
Posted Feb 9, 2009
Authored by DNX

w3bcms versions 3.5.0 and below insecure cookie handling and multiple SQL injection vulnerabilities exploit.

tags | exploit, vulnerability, sql injection, insecure cookie handling
MD5 | cb85129d4696dbf4e4174f2fac7afe4c
IF-CMS 2.0 Blind SQL Injection
Posted Feb 9, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

IF-CMS versions 2.0 and below remote blind SQL injection exploit that leverages frame.php.

tags | exploit, remote, php, sql injection
MD5 | b644fd4360aeeb0bbbb8684690405b0d
PyBlosxom XML Injection
Posted Feb 9, 2009
Authored by Nam Nguyen | Site bluemoon.com.vn

PyBlosxom version 1.4.3 suffers from an XML injection issue.

tags | advisory
MD5 | 14a0e3a3d12d97031cc9287d5d1fdf6f
GNU SIP Witch Telephony Server
Posted Feb 9, 2009
Authored by David Sugar | Site gnutelephony.org

GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.

Changes: Mapped call state property added. Added registry info to swig. Other additions.
tags | telephony, protocol
MD5 | 27376eeaa000f6548c0e2e41f62f7cbf
AdaptCMS Lite 1.4 RFI / XSS
Posted Feb 9, 2009
Authored by RoMaNcYxHaCkEr | Site rs-labs.com

AdaptCMS Lite version 1.4 suffers from remote file inclusion and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, file inclusion
MD5 | d395cf9dea89e2f5b637ac4a8763e72e
SnippetMaster Webpage Editor RFI / XSS
Posted Feb 9, 2009
Authored by RoMaNcYxHaCkEr | Site rs-labs.com

SnippetMaster Webpage Editor suffers from remote file inclusion and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, file inclusion
MD5 | d1aefc54fffc66cb1d7e2a6bace689c5
Hedgedog CMS 1.21 Command Execution
Posted Feb 9, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

Hedgedog CMS versions 1.21 and below remote command execution exploit.

tags | exploit, remote
MD5 | e062b01d86595757ea73c3d56acff24d
PHP Director 0.21 Command Execution
Posted Feb 9, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

PHP Director versions 0.21 and below remote command execution exploit.

tags | exploit, remote, php
MD5 | 11a7dfcef03efeba87d9eeebcd065dee
Page 1 of 3
Back123Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    22 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close