exploit the possibilities
Showing 1 - 21 of 21 RSS Feed

Files Date: 2012-01-01

PHP-X-Links SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

PHP-X-Links suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 0a3ab4e79f8b679cc21ad2828dd5dc8c
WSN Links Script SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

WSN Links script suffers from a remote SQL injection vulnerability in report.php.

tags | exploit, remote, php, sql injection
MD5 | 9f0e09c474cb442ffd0c3b43a5066dba
Packet Storm New Exploits For 2011
Posted Jan 1, 2012
Authored by Todd J. | Site packetstormsecurity.com

Complete comprehensive archive of all 3,873 exploits added to Packet Storm in 2011.

tags | exploit
systems | linux
MD5 | 2c02a93d8156812bc51f121cda5eef48
Packet Storm New Exploits For December, 2011
Posted Jan 1, 2012
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 211 exploits added to Packet Storm in December, 2011.

tags | exploit
systems | linux
MD5 | e34713cea61f713bcde4131b86e22089
Mandriva Linux Security Advisory 2011-198
Posted Jan 1, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-198 - Multiple vulnerabilities has been found and corrected in phpmyadmin. Importing a specially-crafted XML file which contains an XML entity injection permits to retrieve a local file (limited by the privileges of the user running the web server). Using crafted database names, it was possible to produce XSS in the Database Synchronize and Database rename panels. Using an invalid and crafted SQL query, it was possible to produce XSS when editing a query on a table overview panel or when using the view creation dialog. Using a crafted column type, it was possible to produce XSS in the table search and create index dialogs. Crafted values entered in the setup interface can produce XSS; also, if the config directory exists and is writeable, the XSS payload can be saved to this directory. Using crafted url parameters, it was possible to produce XSS on the export panels in the server, database and table sections. This upgrade provides the latest phpmyadmin version to address these vulnerabilities.

tags | advisory, web, local, vulnerability
systems | linux, mandriva
advisories | CVE-2011-4107, CVE-2011-4634, CVE-2011-4782, CVE-2011-4780
MD5 | f2266e29703f046dca3c61f62868ac08
Siena CMS 1.242 Cross Site Scripting
Posted Jan 1, 2012
Authored by Net.Edit0r, BHG Security Center

Siena CMS version 1.242 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 71c0e133cd52fe762b651b4446651cf8
PHP 5.3.x Hashtables Proof Of Concept
Posted Jan 1, 2012
Authored by infodox

PHP 5.3.x hash collision denial of service proof of concept exploit.

tags | exploit, denial of service, php, proof of concept
advisories | CVE-2011-4885
MD5 | 2ec0f79d6a35f668667c83cdf5e19722
KBeast (Kernel Beast) Linux Rootkit 2012
Posted Jan 1, 2012
Authored by IPSECS

KBeast (Kernel Beast) 2012 is a Linux rootkit that hides the loadable kernel module, hides files and directories, hides processes, hides sockets and connections, performs keystroke logging, has anti-kill functionality and more.

tags | tool, kernel, rootkit
systems | linux, unix
MD5 | c8fbf115fdf309273ce23f94d817210f
jPORTAL 2 SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

jPORTAL version 2 suffers from a remote SQL injection vulnerability in comment.php.

tags | exploit, remote, php, sql injection
MD5 | c1de82df1479466f778a8b679bd9701c
Jin Ware International 1.2 SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

Jin Ware International version 1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f392a651f31211fa656b7b22c3d64da2
Readmore Systems SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

Readmore Systems suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ddf414186af711c7443bff9a46d22b72
WordPress LivePHP Cross Site Scripting
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

The WordPress LivePHP plugin suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e3681cbc6c8d9e6a3980764d5d44d010
WebSAT Blind SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

WebSAT suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d534f4bcaea16ef956f49683163f8a76
PHPB2B Cross Site Scripting
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

PHPB2B suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 08eaf3b15a8ec88d208f721470d2d693
Lixar SQL Injection
Posted Jan 1, 2012
Authored by Kalashinkov3

Lixar suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d2ee0c13e12afc17f8621c3f961220eb
Polymorphic Add User Shellcode
Posted Jan 1, 2012
Authored by Pentesters.ir

Linux/x86 polymorphic shellcode that escalates uid/gid and adds user iph to /etc/passwd without a password.

tags | x86, shellcode
systems | linux
MD5 | 5f068501a4c3a979131005f6ce38a5dc
ITMiddle SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

ITMiddle suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 345ac35a1a49fed306b30277455d7fdc
wsCMS Cross Site Scripting / SQL Injection
Posted Jan 1, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

wsCMS suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 34f6015f279f84811eade42bd2c113b0
Debian Security Advisory 2376-2
Posted Jan 1, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2376-2 - It was discovered that OpenIPMI, the Intelligent Platform Management Interface library and tools, used too wide permissions PID file, which allows local users to kill arbitrary processes by writing to this file.

tags | advisory, arbitrary, local
systems | linux, debian
advisories | CVE-2011-4339
MD5 | 7ffb96d29b12a653fc613cce38413b66
IBM Lotus Notes/Domino 8.5.2 FP3 Denial Of Service
Posted Jan 1, 2012
Authored by XiaoPeng Zhang | Site fortinet.com

IBM Lotus Notes/Domino server suffers from a remote denial of service vulnerability that can be triggered by a malformed TCP packet. Versions 8.5.2 FP3 and earlier, 8.5.1, 8.5 and 8.0.x are affected.

tags | advisory, remote, denial of service, tcp
advisories | CVE-2011-1393
MD5 | b0fcd9bd798394eb4a62a2a83e81c95b
Charybdis Crash Bug
Posted Jan 1, 2012
Authored by muztapha

All versions of Charybdis are vulnerable to a remotely-triggered crash bug caused by code originating from ircd-ratbox 2.0.

tags | advisory
MD5 | e7c5ccd00350f8b0d99f9a7f35c75685
Page 1 of 1
Back1Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    11 Files
  • 4
    Jul 4th
    0 Files
  • 5
    Jul 5th
    0 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close