what you don't know can hurt you
Showing 26 - 50 of 79 RSS Feed

Files Date: 2008-07-15 to 2008-07-16

codedb-lfi.txt
Posted Jul 15, 2008
Authored by cOndemned | Site condemned.r00t.la

CodeDB suffers from a local file inclusion vulnerability in list.php.

tags | exploit, local, php, file inclusion
MD5 | c04949091346c9a4ffa04eb1577065a9
scripteen-grabber.txt
Posted Jul 15, 2008
Authored by Dj ReMix | Site coderx.org

Scripteen Free Image Hosting Script version 1.2 administrative password grabbing exploit.

tags | exploit
MD5 | 0a039166792ec92a6cd0054193523e70
itechbids-sqlxss.txt
Posted Jul 15, 2008
Authored by Encrypt3d.M!nd

ITechBids version 7.0 Gold suffers from cross site scripting and SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | 47f73ac26246ad8afc0b2787ce728a2e
pluck-lfi.txt
Posted Jul 15, 2008
Authored by AmnPardaz Security Research Team | Site bugreport.ir

Pluck version 4.5.1 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 594c48dfd8433f96b3939aba67ad57f2
deepsec2008-cfp.txt
Posted Jul 15, 2008
Site deepsec.net

The Call For Papers for DeepSec IDSC 2008 ends tomorrow. Get your submission in today!

tags | paper, conference
MD5 | 77417a9f5ef7bd6ea11c50505a04f22a
FreeBSD-SA-08.06.bind.txt
Posted Jul 15, 2008
Site security.freebsd.org

FreeBSD Security Advisory - The BIND DNS implementation does not randomize the UDP source port when doing remote queries, and the query id alone does not provide adequate randomization.

tags | advisory, remote, udp
systems | freebsd
advisories | CVE-2008-1447
MD5 | 68270ba16f4122fec61835a8a609ce74
avlc-sql.txt
Posted Jul 15, 2008
Authored by CWH Underground | Site citecclub.org

Avlc Forum suffers from a remote SQL injection vulnerability in vlc_forum.php.

tags | exploit, remote, php, sql injection
MD5 | 26ac2aa382340a458cf6a4e4e3a8c0ac
mforum-admin.txt
Posted Jul 15, 2008
Authored by CWH Underground | Site citecclub.org

MFORUM version 0.1a suffers from an arbitrary add administrator vulnerability.

tags | exploit, arbitrary, add administrator
MD5 | 5060542df96d795580c5e08468080827
jsite-sqllfi.txt
Posted Jul 15, 2008
Authored by S.W.A.T. | Site xmors.com

jSite version 1.0 OE suffers from SQL injection and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, sql injection, file inclusion
MD5 | 200e1f73b7af96b86b649c16fc2c7b87
fuzzylime301-execphpcomm.txt
Posted Jul 15, 2008
Authored by real

Fuzzylime CMS version 3.01 remote code execution exploit that leverages commrss.php. Written in PHP.

tags | exploit, remote, php, code execution
MD5 | f6d13732d552a22cc272860854928531
fuzzylime301-execperl.txt
Posted Jul 15, 2008
Authored by Inphex, real

Fuzzylime CMS version 3.01 remote code execution exploit that leverages polladd.php. Written in Perl.

tags | exploit, remote, perl, php, code execution
MD5 | 9281b4ba2097210d37a8b1b3206d6699
fuzzylime301-execphp.txt
Posted Jul 15, 2008
Authored by Inphex, real

Fuzzylime CMS version 3.01 remote code execution exploit that leverages polladd.php. Written in PHP.

tags | exploit, remote, php, code execution
MD5 | f85ac4bc37b2a2ef09b1b6c9f64e48db
ymsg81-dos.txt
Posted Jul 15, 2008
Authored by Jeremy Brown | Site jbrownsec.blogspot.com

Yahoo! Messenger version 8.1 ActiveX remote denial of service exploit.

tags | exploit, remote, denial of service, activex
MD5 | d184f3c05f0726a968c63d465eba10dc
Debian Linux Security Advisory 1608-1
Posted Jul 15, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1608-1 - Sergei Golubchik discovered that MySQL, a widely-deployed database server, did not properly validate optional data or index directory paths given in a CREATE TABLE statement, nor would it (under proper conditions) prevent two databases from using the same paths for data or index files. This permits an authenticated user with authorization to create tables in one database to read, write or delete data from tables subsequently created in other databases, regardless of other GRANT authorizations.

tags | advisory
systems | linux, debian
advisories | CVE-2008-2079
MD5 | c3744708947638838c41045af52ff9a5
sdns-remote-dos.pl.txt
Posted Jul 15, 2008
Authored by Exodus | Site blackhat.org.il

Simple DNS Plus versions 5.0 and 4.1 remote denial of service exploit.

tags | exploit, remote, denial of service
MD5 | d8d6200a8db9cbe135ad9962188749be
Mandriva Linux Security Advisory 2008-144
Posted Jul 15, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A denial of service vulnerability was discovered in the way the OpenLDAP slapd daemon processed certain network messages. An unauthenticated remote attacker could send a specially crafted request that would crash the slapd daemon. The updated packages have been patched to correct this issue.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2008-2952
MD5 | e067e9635f844806f64c3081f75e1484
Mandriva Linux Security Advisory 2008-138
Posted Jul 15, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow. The updated packages have been patched to fix the issue. The OpenOffice.org package for Mandriva Corporate 3 missed the patch application due to a build error. This update fixes that.

tags | advisory, remote, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2008-2152
MD5 | 8bd061d9f1aa04e66a24a47d77511715
snoop-0.3.1.tar.gz
Posted Jul 15, 2008
Authored by Florin Malita | Site snoop.sourceforge.net

Snoop is a GNU/Linux file descriptor monitoring tool inspired by FreeBSD's 'watch'. It goes beyond simple TTY snooping by allowing the interception of any file descriptor. You can attach on the fly to regular files, TTYs, named pipes, character devices, and pretty much anything that is represented by a file descriptor and addressable in the standard name space.

tags | tool
systems | linux, unix, freebsd
MD5 | 930526597960a2cb501a9de8b3d2d33e
silk-1.1.0.tar.gz
Posted Jul 15, 2008
Authored by CERT | Site tools.netsa.cert.org

SiLK (System for Internet-Level Knowledge) consists of two sets of tools: a packing system and an analysis suite. The packing system receives Netflow V5 PDUs and converts them into a more space efficient format, recording the packed records into service-specific binary flat files. The analysis suite consists of tools that can read these flat files and then perform various query operations, ranging from per-record filtering to statistical analysis of groups of records. The analysis tools interoperate using pipes, allowing a user to develop a relatively sophisticated query from a simple beginning.

Changes: Various updates and additions.
tags | tool
systems | unix
MD5 | 287912494f4908511cb57b45dd8c73e5
ultrastats-blindsql.txt
Posted Jul 15, 2008
Authored by DNX

Ultrastats versions 0.2.142 and below remote blind SQL injection exploit that makes use of players-detail.php.

tags | exploit, remote, php, sql injection
MD5 | aee92b78cc0a84df00b311fcec99010d
webcms-sql.txt
Posted Jul 15, 2008
Authored by Mr.SQL | Site pal-hacker.com

WebCMS Portal suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 98bdf8da8c2c185cc50c99f36dbdab83
joomlanforms-sql.txt
Posted Jul 15, 2008
Authored by The Moorish

Joomla n-forms component version 1.01 blind SQL injection exploit.

tags | exploit, sql injection
MD5 | efa1aef9075e49b2a4616ab128d7ab2c
trixbox261-pwn.txt
Posted Jul 15, 2008
Authored by Mati Aharoni | Site offensive-security.com

Trixbox version 2.6.1 remote root exploit written in Python that spawns a reverse shell.

tags | exploit, remote, shell, root, python
MD5 | 90971bc3960ef207e3050812d4f68b2f
maianrecipe-cookie.txt
Posted Jul 15, 2008
Authored by S.W.A.T. | Site xmors.com

Maian Recipe versions 1.2 and below suffer from a poorly designed cookie vulnerability.

tags | exploit
MD5 | d9fed84f2a750196d37a76cadfc4ae4a
maianlinks-cookie.txt
Posted Jul 15, 2008
Authored by S.W.A.T. | Site xmors.com

Maian Links versions 3.1 and below suffer from a poorly designed cookie vulnerability.

tags | exploit
MD5 | 2f442baa3e22d38deb13ee84ae712416
Page 2 of 4
Back1234Next

File Archive:

July 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    13 Files
  • 2
    Jul 2nd
    12 Files
  • 3
    Jul 3rd
    1 Files
  • 4
    Jul 4th
    2 Files
  • 5
    Jul 5th
    34 Files
  • 6
    Jul 6th
    21 Files
  • 7
    Jul 7th
    21 Files
  • 8
    Jul 8th
    13 Files
  • 9
    Jul 9th
    6 Files
  • 10
    Jul 10th
    1 Files
  • 11
    Jul 11th
    3 Files
  • 12
    Jul 12th
    15 Files
  • 13
    Jul 13th
    19 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    15 Files
  • 16
    Jul 16th
    9 Files
  • 17
    Jul 17th
    2 Files
  • 18
    Jul 18th
    2 Files
  • 19
    Jul 19th
    19 Files
  • 20
    Jul 20th
    21 Files
  • 21
    Jul 21st
    53 Files
  • 22
    Jul 22nd
    14 Files
  • 23
    Jul 23rd
    14 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close