exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 60 RSS Feed

Files Date: 2009-02-09

PHP Filesystem Attack Vectors
Posted Feb 9, 2009
Authored by Francesco Ongaro, Giovanni Pellerano | Site ush.it

Whitepaper discussing a large amount of PHP filesystem attack vectors.

tags | paper, php
SHA-256 | cf9fb603acb1135b3f8a595653d1d18a8937d01270074b11448182d48a251260
ZeroBoardXE 1.1.5 Cross Site Scripting
Posted Feb 9, 2009
Authored by make0day

ZeroBoardXE version 1.1.5 (09.01.22) suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 969888bbcc7fec1a18745dd932a913efe31555f44475d508e6864329608ede99
ZeroShell Code Execution
Posted Feb 9, 2009
Authored by Luca Carettoni | Site ikkisoft.com

ZeroShell versions 1.0beta11 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
SHA-256 | 15b6637e4b0289913a8d4d63a52e96e1a32f244030761fbf336ec8cf371497fd
3Com Router Authentication Bypass
Posted Feb 9, 2009
Authored by Luca Carettoni | Site ikkisoft.com

The 3Com OfficeConnect wireless cable/dsl router suffers from an authentication bypass vulnerability.

tags | exploit, bypass
SHA-256 | aa080901b45cce39e49530c28026faaa434bace8effcbd668c55029fb4655d06
Bitdefender's Thailand Site SQL Injection
Posted Feb 9, 2009
Authored by TEAMELITE

The Bitdefender Thailand site suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 83c33753cbc93ed2eaa08935499e69354952aca1922919af5f6ed4749eae6abd
FlexCMS SQL Injection
Posted Feb 9, 2009
Authored by MisterRichard

FlexCMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 4562e9007eff4b117857f53879a2c24f0ed5f1f70ab42f349684268e1262d39f
Novell-QuickFinder Server XSS
Posted Feb 9, 2009
Authored by Ivan Sanchez | Site nullcode.com.ar

Novell-QuickFinder Server suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 35bb500e9e3fbd634f1928875171b9954e6d652c7bbffd5eb2c7f2b1eb7b5978
Yet Another NOCC 0.1.0 Local File Inclusion
Posted Feb 9, 2009
Authored by Kacper | Site devilteam.pl

Yet another NOCC versions 0.1.0 and below suffer from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 94f5ab5c472150629cfc81e14c1115514ad3d4a36f21e341a84c3c976de161c8
WB News 2.1.1 Remote File Inclusion
Posted Feb 9, 2009
Authored by ahmadbady

WB News version 2.1.1 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | ddf79fc21749526f6d23f824d1340321ebb3827b2982765fe6debbf95f721a80
Webframe 0.76 Remote And Local File Inclusion
Posted Feb 9, 2009
Authored by ahmadbady

Webframe version 0.76 suffers from multiple remote and local file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
SHA-256 | b9e3e25a4615102866298234412159430fac17669b015320c91dfee98c9ca47e
SQL Injection Fuzzing Tool
Posted Feb 9, 2009
Authored by baltazar | Site darkc0de.com

SQL Fuzzer version 1.0 that is written in Python. Yes, another one.

tags | python, fuzzer
SHA-256 | a256fb6b24c4beebaa2c4be61642c4ed8d7c9cd5a7ca09a09243505f152f00e3
TightVNC Integer Overflow
Posted Feb 9, 2009
Authored by desi

TightVNC authentication failure integer overflow proof of concept exploit.

tags | exploit, overflow, proof of concept
advisories | CVE-2009-0388
SHA-256 | fb3617c0ee5bb4ab0800a6dc9463dca271c9d0bf61093a6168e02ceb442140f6
Squid Denial Of Service
Posted Feb 9, 2009
Authored by Praveen Darshanam

Squid versions 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 remote HTTP version parsing denial of service exploit.

tags | exploit, remote, web, denial of service
advisories | CVE-2009-0478
SHA-256 | c572f7e6a9191df0a632e8307cd6f92f5b07e7870cda79fd59237c2ba2255b67
A Better Member-Based ASP Photo Gallery SQL Injection
Posted Feb 9, 2009
Authored by BackDoor

A Better Member-Based ASP Photo Gallery suffers from a remote SQL injection vulnerability in view.asp.

tags | exploit, remote, sql injection, asp
SHA-256 | 809322a4c1419ab014e40fb832988bfb2a2cea59a916ace35619160d16f7417d
Trend Micro Credential Leak
Posted Feb 9, 2009
Authored by David Vorel

Trend Micro IWSVA / IWSS suffers from an authorization module password leak vulnerability.

tags | advisory
SHA-256 | 20af7f21fbe2aa34980e1ed5e9f4f181d9b7fea9d006951eef0db319dcff0126
BusinessSpace 1.2 SQL Injection
Posted Feb 9, 2009
Authored by M.Hasran Addahroni | Site advisories.echo.or.id

BusinessSpace versions 1.2 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 2252cb76796666e42389cd0188571a17a89f1480bc2733977822429dbcc9b2e9
Hybrid Botnet System 0.2
Posted Feb 9, 2009
Authored by cross | Site x1machine.com

The Hybrid Botnet Remote Administration System version 0.2 contains a perl bot, console application and HTTP administration panel using PHP and MySQL. Written for Linux.

tags | tool, remote, web, perl, php, rootkit
systems | linux, unix
SHA-256 | 18f765f9260fc55485b0a0757d882722a0b32685ebb6b1a47220fa5b29176f57
w3bcms 3.5.0 SQL Injection
Posted Feb 9, 2009
Authored by DNX

w3bcms versions 3.5.0 and below insecure cookie handling and multiple SQL injection vulnerabilities exploit.

tags | exploit, vulnerability, sql injection, insecure cookie handling
SHA-256 | 5ff4e8443c54d5d4e776fae05038f31abfba75485a952126365c43c9136ced2b
IF-CMS 2.0 Blind SQL Injection
Posted Feb 9, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

IF-CMS versions 2.0 and below remote blind SQL injection exploit that leverages frame.php.

tags | exploit, remote, php, sql injection
SHA-256 | 495902f6a4d4fa1816cfba9536809df78c18965cb272a62be4c63568e1a3fe2e
PyBlosxom XML Injection
Posted Feb 9, 2009
Authored by Nam Nguyen | Site bluemoon.com.vn

PyBlosxom version 1.4.3 suffers from an XML injection issue.

tags | advisory, xxe
SHA-256 | 850fde8e257e3ae86d20194d89af20fdf32a82d2be7326005471f309eb090207
GNU SIP Witch Telephony Server
Posted Feb 9, 2009
Authored by David Sugar | Site gnutelephony.org

GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.

Changes: Mapped call state property added. Added registry info to swig. Other additions.
tags | telephony, protocol
SHA-256 | bc3df0500edf404e0eef1abf53c092c65941d5ab04e754d1276c73e4810b9c71
AdaptCMS Lite 1.4 RFI / XSS
Posted Feb 9, 2009
Authored by RoMaNcYxHaCkEr | Site rs-labs.com

AdaptCMS Lite version 1.4 suffers from remote file inclusion and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, file inclusion
SHA-256 | 839b8a1f835dc6056c15cbe26bdd8ec377af62da9718fef1308d34b67306dee4
SnippetMaster Webpage Editor RFI / XSS
Posted Feb 9, 2009
Authored by RoMaNcYxHaCkEr | Site rs-labs.com

SnippetMaster Webpage Editor suffers from remote file inclusion and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, file inclusion
SHA-256 | b2803dde8a7c41d9002c423fb761fc14b90c1a459e151d2769f9fb8d27aeb8e1
Hedgedog CMS 1.21 Command Execution
Posted Feb 9, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

Hedgedog CMS versions 1.21 and below remote command execution exploit.

tags | exploit, remote
SHA-256 | cc9dc3a4a2d0042f3e75351229949c3ac0a00e1eeba4ea6c396353f7fd044d01
PHP Director 0.21 Command Execution
Posted Feb 9, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

PHP Director versions 0.21 and below remote command execution exploit.

tags | exploit, remote, php
SHA-256 | 23d4f567cf83105e7ff2d1ab02a91175e3510327990dd7c20304f72f653cd721
Page 1 of 3
Back123Next

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    34 Files
  • 11
    Aug 11th
    16 Files
  • 12
    Aug 12th
    5 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    25 Files
  • 16
    Aug 16th
    3 Files
  • 17
    Aug 17th
    6 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close