what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 76 RSS Feed

Files Date: 2009-12-15 to 2009-12-16

Ez Poll Hoster XSS / XSRF
Posted Dec 15, 2009
Authored by Milos Zivanovic

Ez Poll Hoster suffers from multiple cross site scripting and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | ad5f86bc0a6016aa1161ffae170f714181e5cb8ce781dc1d55f4da9ad49a3c33
Smart PHP Subscriber Disclosure
Posted Dec 15, 2009
Authored by Milos Zivanovic

Smart PHP Subscriber suffers from subscriber list and password hash disclosure vulnerabilities.

tags | exploit, php, vulnerability, info disclosure
SHA-256 | 4a583703a1ec996fc726f19f65be4f9572b8998b7a13e326d35e488388493fef
Mail Manager Pro Cross Site Request Forgery
Posted Dec 15, 2009
Authored by Milos Zivanovic

Mail Manager Pro suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 9dceed24cba924ac248dfe8885ea2333bb15ff249cdcaea987a80017a09729f3
Oracle eBusiness Suite Cross Site Scripting / Bypass
Posted Dec 15, 2009
Authored by Shay Chen | Site hacktics.com

Oracle eBusiness Suite suffers from cross site scripting, unauthenticated guest access, and authentication bypass vulnerabilities.

tags | exploit, vulnerability, xss, bypass
SHA-256 | e19ecfecddd34813a7d72e83ea52c239ca37875b15cc4199828447e65f905c47
EEGshop 1.2 SQL Injection
Posted Dec 15, 2009
Authored by Securitylab Security Research | Site securitylab.ir

EEGshop version 1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | bac6543fb58354ca0c3f2c619a87dfc1a13456224050e9de6c21c7ef2b8e9725
Monkey Web Server Denial Of Service
Posted Dec 15, 2009
Authored by Patroklos Argyroudis | Site census-labs.com

Monkey Web Server versions 0.9.2 and below suffer from a remote denial of service vulnerability. Proof of concept code included.

tags | exploit, remote, web, denial of service, proof of concept
SHA-256 | 4bded03bfcf89b2390579992380e1ab7694adead2e7a447b17c1f191d5d70589
Quartz Concept Content Manager 3.00 SQL Injection
Posted Dec 15, 2009
Authored by Mr.aFiR | Site aFiR.me

Quartz Concept Content Manager version 3.00 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | 47058f54444ef8574e782cd5b657e6d934953f20313bf37c2253a7d8d022e011
DigitalHive Shell Upload
Posted Dec 15, 2009
Authored by ViRuSMaN

DigitalHive suffers from a remote file upload vulnerability.

tags | exploit, remote, file upload
SHA-256 | 796e1e9348b1c608da203b6e7745c7a68696528d8631e4284388805f28fa7b54
RM Downloader 3.0.2.1 Stack Overflow
Posted Dec 15, 2009
Authored by Vinod Sharma

RM Downloader version 3.0.2.1 stack overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow
SHA-256 | ddc21552fe81a57e5a8863bb545aa9f79c5ea2d6f47efe8ee65d0a63981c7049
Invision Power Board Attachment Cross Site Scripting
Posted Dec 15, 2009
Authored by MustLive

It appears that additional cross site scripting vulnerabilities exist in Invision Power Board using attachments as the attack vector.

tags | exploit, vulnerability, xss
SHA-256 | 0410b79cf1637134c338f223f7f5300378581aaf14f4b5f5ec19b70839c13d75
Zabbix Server Code Execution / SQL Injection
Posted Dec 15, 2009
Authored by Nicob

Zabbix Server suffers from code execution and remote SQL injection vulnerabilities. Code execution is patched in version 1.8 and SQL injection is patched in 1.6.8. A couple of denial of service vulnerabilities were also addressed.

tags | advisory, remote, denial of service, vulnerability, code execution, sql injection
SHA-256 | 84a607aba724e8f8a6fdc18f1dec5e0dfc3bdde2737bca88ab0a43d3c6ce8a46
Zabbix Agent Code Execution
Posted Dec 15, 2009
Authored by Nicob

Zabbix Agent versions prior to 1.6.7 suffer from a code execution vulnerability.

tags | exploit, code execution
SHA-256 | e2030524e07abdd33c9e9a78db8cc442ef828f1fae7394e48ba12760686c38b1
eoCMS 0.9.03 Remote File Inclusion
Posted Dec 15, 2009
Authored by 1nd0n3s14n l4m3r

eoCMS versions 0.9.03 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 2939030087da3ca617739bdcb85225c2273afcffc6200452235f48cd55e6a0dd
Max's AJAX File Uploader Shell Upload
Posted Dec 15, 2009
Authored by ViRuSMaN

Max's AJAX File Uploader suffers from a shell upload vulnerability.

tags | exploit, shell, file upload
SHA-256 | 4108d81ad1fb82d88053724c4702417b1845888d6c84d9ce265ae47dc480d9d9
Automne.ws CMS 4.0.0rc2 Remote File Inclusion
Posted Dec 15, 2009
Authored by 1nd0n3s14n l4m3r

Automne.ws CMS version 4.0.0rc2 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
SHA-256 | b8e1e42a58ee57a47f97a017ecd699b58bf5c0070e3f72295eb69a021ab55520
Scapy Packet Manipulation Tool 2.1.0
Posted Dec 15, 2009
Authored by Philippe Biondi | Site secdev.org

Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.

Changes: The Windows branch has been merged. Many bugs have been fixed. Network automata gained new features like the ability to add breakpoints or tracepoints. Many new small features have been added. Last but not least, this release comes with documentation.
tags | tool, scanner, python
systems | unix
SHA-256 | 43ca233b0cfc950401193e2702ea32ee1dd83d4bab671371e322a7b6c52275ba
Redmine 0.8.6 Cross Site Request Forgery
Posted Dec 15, 2009
Authored by p0deje

Redmine versions 0.8.6 and below suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 56ad25c772ceef5dbfb0f11d001f0cff8e4f5d6a0fd08a4e707a568a998babcc
myPHPupload 0.5.1 Shell Upload
Posted Dec 15, 2009
Authored by ViRuSMaN

myPHPupload version 0.5.1 suffers from a remote file upload vulnerability.

tags | exploit, remote, file upload
SHA-256 | 8135eb5d49fadf39cf0040b61701fb62478b94e714bf25bac17a9cdc5e1e193f
NAS Uploader 1.0 / 1.5 File Upload
Posted Dec 15, 2009
Authored by ViRuSMaN

NAS Uploader versions 1.0 and 1.5 suffer from a remote file upload vulnerability.

tags | exploit, remote, file upload
SHA-256 | 2ab6d388e96afbc4b4acf23a895de161dfbc9c6bf6cdf7615ae5cdfa0b6ba982
Link Up Gold Cross Site Request Forgery
Posted Dec 15, 2009
Authored by bi0

Link Up Gold suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 98a25f113ae02bad9d4c6c89facb9b0e6ffb86c089bbc9ebdb54e0d3755f228d
AdManagerPro Cross Site Request Forgery
Posted Dec 15, 2009
Authored by bi0

AdManagerPro suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 78c5fde312ba18efc25b3b21181b11a9de1899987614554413fddc0c62746ca2
B2C Booking Centre Systems SQL Injection
Posted Dec 15, 2009
Authored by Salvatore Fresta

B2C Booking Centre Systems suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 2c3002d02996d46a5d2a1e0f5b9d8f33360dec96ec5e512bc5de1a0d319acd7f
Easy Banner Pro Cross Site Request Forgery
Posted Dec 15, 2009
Authored by bi0

Easy Banner Pro suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 8d3a86f2e7027793e75df026fb9165c576c5e48c8c9a28411040c1bd5ce1911f
Text Exchange Pro Cross Site Request Forgery
Posted Dec 15, 2009
Authored by bi0

Text Exchange Pro suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | a8d117bf4f194586c0901970c6f3de07544d37ee2baa02d68767f166e06c4796
Savant Web Server 3.1 Buffer Overflow
Posted Dec 15, 2009
Authored by DouBle_Zer0

Savant Web Server version 3.1 remote buffer overflow exploit that spawns calc.exe.

tags | exploit, remote, web, overflow
SHA-256 | 3fa66cbff5e18842cb286371a684a2742ba0f4dd5938979434263089cba66f34
Page 3 of 3
Back123Next

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close