what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 76 - 100 of 100 RSS Feed

Files

OneNav Beta 0.9.12 Cross Site Scripting
Posted Aug 7, 2021
Authored by nu11secur1ty

OneNav Beta version 0.9.12 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-38138
SHA-256 | 803274adb5909b1835e04650d9e1edee51c3d4b28380326211d5666dde18f8ee

Related Files

Camiro-CMS beta-0.1 Shell Upload
Posted Apr 16, 2010
Authored by eidelweiss

Camiro-CMS version beta-0.1 suffers from a shell upload vulnerability.

tags | exploit, shell
SHA-256 | f4fbcf2c7f7e9d9f60cd7f053d758f8cdf3727328c2933d739eed989fcb5183f
Police Municipale Open Main Courante 1.01beta Local File Inclusion / Remote File Inclusion
Posted Apr 14, 2010
Authored by cr4wl3r

Police Municipale Open Main Courante version 1.01beta suffers from local file inclusion and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
SHA-256 | bff038a87426c05991c6895890f6ea153872a91613aec5757cdf27023e3ab4f4
Vieassociative Openmairie 1.01 Beta Remote / Local File Inclusion
Posted Apr 13, 2010
Authored by cr4wl3r

Vieassociative Openmairie version 1.01 Beta suffers from local file inclusion and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
SHA-256 | 5f6fbb135d5134d5fa050134ddace9cc38a7daf9b4e06ea7aa564919939ee292
Viennabux Beta Forum SQL Injection
Posted Apr 9, 2010
Authored by Easy Laster

The Viennabux Beta Forum suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e540fdcd5be2ea45f606c8cc7d936b1647d5f5a9d19b973ba09089559e39fed5
Microsoft Office 2010 Beta SIP Denial Of Service
Posted Apr 7, 2010
Authored by indoushka

Microsoft Office (2010 Beta) Communicator SIP denial of service exploit.

tags | exploit, denial of service
SHA-256 | 596cb8d048bcbb754bbe2f5df6af0fdc77c60436675b3bf2d999b447aa2f8e63
XT-Commerce 1 Beta 1 Create / Download Backup
Posted Apr 1, 2010
Authored by indoushka

XT-Commerce version 1 Beta 1 suffers from a backup disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 5fbe99e05772f7bfa8fb93312feb1971a4854ad8df047591ad0cce395dfe13cd
SiteX CMS 0.7.4 Beta SQL Injection
Posted Mar 28, 2010
Authored by Sc0rpi0n

SiteX CMS version 0.7.4 Beta SQL injection exploit that leverages photo.php.

tags | exploit, php, sql injection
SHA-256 | ff84d8f6621e04359552b760eeadd6b9f88847965a3929919772ba8f57f82e66
Fw-BofF 1.5.3beta Remote File Inclusion
Posted Mar 22, 2010
Authored by cr4wl3r

Fw-BofF version 1.5.3beta suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
SHA-256 | 37e97b0e0f4e80c1160bb4b930fa6d0a7dd93cba7c5532bb1dcee0fa2e45337a
WebMaid CMS 0.2-6 Beta Local / Remote File Inclusion
Posted Mar 22, 2010
Authored by cr4wl3r

WebMaid CMS versions 0.2-6 Beta and below suffer from local and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
SHA-256 | 4ebf913eb19fcc936137e208fb41640a5102fe139d5b6133e12385e6c472bfef
DesktopOnNet 3 Beta9 Local File Inclusion
Posted Mar 16, 2010
Authored by cr4wl3r

DesktopOnNet version 3 Beta9 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | b7b0e42547bd7a3597a777cbe055e7413a6890a19f36ba85c9c889de7a19a2bd
ExtCalendar 2.0 Beta 2 Cross Site Scripting
Posted Feb 28, 2010
Authored by LiquidWorm

ExtCalendar version 2.0 Beta 2 suffers from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | f3ff74b4568f9159c2fd60ec484fe6464f1648d875317b00de9d9708cd6f6a11
Gravity Board 2.0 Beta SQL Injection
Posted Feb 28, 2010
Authored by Ctacok

Gravity Board X version 2.0 Beta public release 3 remote SQL injection exploit.

tags | exploit, remote, sql injection
SHA-256 | 32ab4ce8eaabd89a23b20a6d41ccabed5221d0076d82d4941b77467a2501c624
Ollydbg 2.00 Beta 1 Local Buffer Overflow
Posted Feb 23, 2010
Authored by SuBz3r0

Ollydbg version 2.00 Beta1 local buffer overflow exploit.

tags | exploit, overflow, local
SHA-256 | d001135980eb2d086449dba100452e24e74cbea8df3be008f2f24cb6018decbd
OllyDbg 2.00 Beta 1 Buffer Overflow
Posted Feb 16, 2010
Authored by SuBz3r0

OllyDbg version 2.00 Beta 1 local buffer overflow proof of concept exploit that launches calc.exe.

tags | exploit, overflow, local, proof of concept
SHA-256 | 97aeedb7c888b0fbfd5b170c8287f9ea75427a1b2168c83848438b744d20c013
Saskia's Shopsystem Local File Inclusion
Posted Feb 15, 2010
Authored by cr4wl3r

Saskia's Shopsystem beta1 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 1649bf6985e30007366786b53adf0e2413e66bb43932d716263ae02f4d614857
TVUPlayer 2.4.9beta1 Active-X Insecure Method
Posted Feb 9, 2010
Authored by Dmitriy Evdokimov | Site dsecrg.com

TVUPlayer version 2.4.9beta build 1797 suffers from an Active-X insecure method vulnerability.

tags | exploit, activex
SHA-256 | 63cc1980a109258a4baff5f6b433dfb5fe9c8cabc7d67c1a110c29e294214b34
Drupal MP3 Player Cross Site Scripting
Posted Feb 2, 2010
Authored by Martin Barbella

Drupal's MP3 Player module version 6.x-1.0-beta1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | bea709af4e24c40c41d70a3135a1196e412d132182f2fa56f7e35583b5bfc365
Mandriva Linux Security Advisory 2010-027
Posted Jan 27, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-027 - KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \\'\\0\\' (NUL) character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an offset of a NULL pointer. WebKit in Apple Safari before 4.0.2, KHTML in kdelibs in KDE, QtWebKit (aka Qt toolkit), and possibly other products does not properly handle numeric character references, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to recursion in certain DOM event handlers. WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in FreeBSD 6.4 and 7.2, NetBSD 5.0, and OpenBSD 4.5 allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a large precision value in the format argument to a printf function, related to an array overrun. WebKit, as used in Safari before 3.2.3 and 4 Public Beta, on Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 and Windows allows remote attackers to execute arbitrary code via a crafted SVGList object that triggers memory corruption. The updated packages have been patched to correct these issues.

tags | advisory, remote, denial of service, overflow, arbitrary, spoof, javascript
systems | linux, netbsd, windows, freebsd, openbsd, apple, osx, mandriva, iphone
advisories | CVE-2009-2702, CVE-2009-1687, CVE-2009-1725, CVE-2009-1690, CVE-2009-1698, CVE-2009-2537, CVE-2009-0689, CVE-2009-0945
SHA-256 | 701ad2e7099f449e19e82471a31b95691ff8ff843d3d5029da766636d5585359
Sonique2 2.0 Beta Build 103 Proof Of Concept
Posted Jan 24, 2010
Authored by b0telh0

Sonique2 version 2.0 Beta build 103 local denial of service proof of concept exploit.

tags | exploit, denial of service, local, proof of concept
SHA-256 | be0fb56fc576a97498d6ea640645e7b55024dd70b2c035c2c7baf79e729f5532
Mandriva Linux Security Advisory 2010-022
Posted Jan 22, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-022 - Memory leak in the zlib_stateful_finish function in crypto/comp/c_zlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service (memory consumption) via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function, as demonstrated by use of SSLv3 and PHP with the Apache HTTP Server, a related issue to CVE-2008-1678. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct thies issue.

tags | advisory, remote, web, denial of service, cryptography, php, memory leak
systems | linux, mandriva
advisories | CVE-2009-4355
SHA-256 | 5fab82dded984f2d28a43ce0b364ecbb0af960fb9cd65d21a63b32da93c43922
CiviCRM 3.1 Cross Site Scripting
Posted Jan 14, 2010
Authored by h00die, Ch3nz

CiviCRM version 3.1 Beta 1 suffers from a cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 9c385dd7f21fa4b7ac3daee61f0efffca14768b60a3f579137854a0c44a87584
Nemesis Player Denial Of Service
Posted Jan 14, 2010
Authored by Rehan Ahmed | Site rewterz.com

Nemesis Player versions 1.1 Beta and 2.2 local denial of service proof of concept exploit that creates a malicious .nsp file.

tags | exploit, denial of service, local, proof of concept
SHA-256 | 07deac516fa7221bb6813bd771b9a395740361d6f1611c8daf7f929cbc501694
TTPlayer 5.6Beta3 Denial Of Service
Posted Jan 7, 2010
Authored by t-bag

TTPlayer version 5.6Beta3 denial of service proof of concept exploit that creates a malicious .m3u file.

tags | exploit, denial of service, proof of concept
SHA-256 | 99b4a4c566327a23a0c489764253ab93830b4192a5ffea0d1d2b7723d2340dec
SNadd Beta Cross Site Request Forgery
Posted Jan 7, 2010
Authored by Septemb0x | Site cyber-warrior.org

SNadd Beta suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 0e66bd26cc76c13ee59d6039356b28e84fcd813c0bfabc6c687bd89fe47ef5a2
Nemesis Player (NSP) Local Denial Of Service
Posted Jan 5, 2010
Authored by Rehan Ahmed | Site rewterz.com

Nemesis Player (NSP) version 2.0 and 1.1 Beta suffer from a local denial of service vulnerability.

tags | advisory, denial of service, local
SHA-256 | 34e3203485a0554043b5299f37eae4ab898276e5a4ac823a39381bea40f83fb6
Page 4 of 4
Back1234Next

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    22 Files
  • 18
    Apr 18th
    45 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close