exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 45 of 45 RSS Feed

Files Date: 2008-07-21 to 2008-07-22

aproxcms-sql.txt
Posted Jul 21, 2008
Authored by Mr.SQL | Site pal-hacker.com

Aprox CMS Engine version 5.1.0.4 suffers from a SQL injection vulnerability in index.php.

tags | exploit, php, sql injection
SHA-256 | 87c78787220c3a7afdb4ae681cfba9ca5452c8003365357f37232bceda73c6b1
oracleidir-dos.txt
Posted Jul 21, 2008
Authored by Joxean Koret

Oracle Internet Directory version 10.1.4 remote pre-authentication denial of service exploit.

tags | exploit, remote, denial of service
advisories | CVE-2008-2595
SHA-256 | 8d1454c1f63a29730308467b4cbabfa22ad6cd5aef0563cb61441a2c8e3c5904
oracleuntrust-local.txt
Posted Jul 21, 2008
Authored by Joxean Koret

Oracle 10g R2 and Oracle 11g suffers from a local root compromise vulnerable via the extjob binary.

tags | advisory, local, root
advisories | CVE-2008-2613
SHA-256 | 5801b5819247158291af1a2ef9c8573ea460ec9ef2edb3928337fe02dab30040
myblog-multi.txt
Posted Jul 21, 2008
Authored by AmnPardaz Security Research Team | Site bugreport.ir

MyBlog versions 0.9.8 and below suffer from information leak and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | e7a0a431015c916f9b1a2d5f52fd1d2c70b9332ecbc42e21014a8b782e0bb47e
Mandriva Linux Security Advisory 2008-150
Posted Jul 21, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Multiple buffer overflows in yaSSL, which is used in MySQL, allowed remote attackers to execute arbitrary code. a denial of service via a special Hello packet. Sergei Golubchik found that MySQL did not properly validate optional data or index directory paths given in a CREATE TABLE statement; as well it would not, under certain conditions, prevent two databases from using the same paths for data or index files. This could allow an authenticated user with appropriate privilege to create tables in one database to read and manipulate data in tables later created in other databases, regardless of GRANT privileges. The updated packages have been patched to correct these issues.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2008-0226, CVE-2008-0227, CVE-2008-2079
SHA-256 | 344a69b94fd6da8ff62ed01ddc6d2cced715bfbbc1409d0cbfe492c82bdb483b
Mandriva Linux Security Advisory 2008-149
Posted Jul 21, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Sergei Golubchik found that MySQL did not properly validate optional data or index directory paths given in a CREATE TABLE statement; as well it would not, under certain conditions, prevent two databases from using the same paths for data or index files. This could allow an authenticated user with appropriate privilege to create tables in one database to read and manipulate data in tables later created in other databases, regardless of GRANT privileges. The updated packages have been patched to correct this issue.

tags | advisory
systems | linux, mandriva
advisories | CVE-2008-2079
SHA-256 | ca27a8cb8ea8d559e76c8c46ef7b85030f11070547a35ff973aa9a69f4714e48
easypublish-sqlxssdisclose.txt
Posted Jul 21, 2008
Authored by IRCRASH | Site ircrash.com

EasyPublish 3.0tr remote cross site scripting, SQL injection, and file disclosure exploit.

tags | exploit, remote, xss, sql injection, info disclosure
SHA-256 | 0da843a7caf9b08389f296a61a1ff0c89b5dabbd24e7f1421642eb13d7edec15
easybookmaker-xss.txt
Posted Jul 21, 2008
Authored by IRCRASH | Site ircrash.com

EasyBookmarker 40tr suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 905dcf0aaecd9a880181f25237b2f372c3e145ef9f1202c0e68983b6671a934e
easyecards-sqlxssdisclose.txt
Posted Jul 21, 2008
Authored by IRCRASH | Site ircrash.com

EasyECards 310a remote cross site scripting, SQL injection, and file disclosure exploit.

tags | exploit, remote, xss, sql injection, info disclosure
SHA-256 | 1d88f414e19c92f9a8e0ddf238613f32580553461b419900beed891f92d83094
easydynamicpages-sqlxssdisclose.txt
Posted Jul 21, 2008
Authored by IRCRASH | Site ircrash.com

EasyDynamicPages 30tr remote cross site scripting, SQL injection, and file disclosure exploit.

tags | exploit, remote, xss, sql injection, info disclosure
SHA-256 | 25650b1fd64ae57667541aea00842ad3b5a38cc4d1af33926a4a89d415e0270e
HP Security Bulletin 2008-00.58
Posted Jul 21, 2008
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning.

tags | advisory
systems | hpux
advisories | CVE-2008-1447
SHA-256 | 04a12ad68cf448c2556104b0254c882d3b5e62b64f5e4d9392f83fbd62125c1d
intellitamper-poc.txt
Posted Jul 21, 2008
Authored by k'sOSe | Site pornosecurity.org

IntelliTamper version 2.07 html parser remote buffer overflow proof of concept exploit.

tags | exploit, remote, overflow, proof of concept
SHA-256 | 2bcb3a76298ca82cdd02e56bb7c6ee245cf7975d39437b0da4e6b52e0e0d6da4
intellitamper-exec.txt
Posted Jul 21, 2008
Authored by k'sOSe | Site pornosecurity.org

IntelliTamper version 2.07 local arbitrary code execution exploit that spawns calc.exe.

tags | exploit, arbitrary, local, code execution
SHA-256 | 16c605cab18800bf46e1a4893805ec7aaf931321c2472d40b53d90971a1a3cbc
digileave-sql.txt
Posted Jul 21, 2008
Authored by Mr.SQL | Site pal-hacker.com

Digileave version 1.2 blind SQL injection exploit that makes use of info_book.asp.

tags | exploit, sql injection, asp
SHA-256 | 3f0dc4e0fdbb4f1b8db9d17be71d1bab4eb5a17056ddeb6b3e9b4bad37046dd4
phpfootball-sql.txt
Posted Jul 21, 2008
Authored by Mr.SQL | Site pal-hacker.com

PHPFootball version 1.6 suffers from a remote SQL injection vulnerability in show.php.

tags | exploit, remote, php, sql injection
SHA-256 | 3086564a84f48bbe47114de7cb9d4ea8c11aef8dd77f1aa96562c5c18f80062a
siteframe-sql.txt
Posted Jul 21, 2008
Authored by n0ne

Siteframe suffers from a SQL injection vulnerability in folder.php.

tags | exploit, php, sql injection
SHA-256 | 168adac116cd05866e41771d6811a2a5c50da71d9ea38f9f250903f456f4ebe2
Secunia Security Advisory 30982
Posted Jul 21, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, gain escalated privileges, and malicious people to cause a DoS and potentially compromise a vulnerable system.

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, suse
SHA-256 | 1d3067cbc9cc82d8b527e88a644ccf0ab1f5ac128b46ddc934ab2a812bff1a6f
Secunia Security Advisory 31089
Posted Jul 21, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Russ McRee has reported some vulnerabilities in Jobbex JobSite, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
SHA-256 | f0c200d1a5a0ec172708bc07eaee95b04b59d124ea346a481b1ff354a51fc622
Secunia Security Advisory 31096
Posted Jul 21, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has acknowledged a weakness in libxcrypt, which results in potentially weaker security and may allow further attacks.

tags | advisory
systems | linux, suse
SHA-256 | fd440a3acbe4ef891b8d0e3af312785478f0e3e319c4eb818eb1e14767032726
Secunia Security Advisory 31146
Posted Jul 21, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - KingCope has reported a vulnerability in Bea Weblogic, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.

tags | advisory, denial of service
SHA-256 | 95c07071dc94898aab0a427dc9eba9b6792ebfd27f6926e1a4ffe6bf02efd95d
Page 2 of 2
Back12Next

File Archive:

December 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    0 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    32 Files
  • 5
    Dec 5th
    10 Files
  • 6
    Dec 6th
    13 Files
  • 7
    Dec 7th
    23 Files
  • 8
    Dec 8th
    19 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close