exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 50 of 100 RSS Feed

Files

CS-2001-02
Posted May 30, 2001
Site cert.org

CERT Quarterly Summary for May, 2001. Since the last regularly scheduled CERT summary, issued in February 2001 (CS-2001-01), we have seen a significant increase in reconnaissance activity, a number of self-propagating worms, and active exploitation of vulnerabilities in snmpxdmid, BIND and IIS by intruders.

tags | worm, vulnerability
SHA-256 | 4a4c69c74f9f9dfbf99e62d106c6b336a191d5792a093ca4b01aa1079a25f3c2

Related Files

CollabNet Subversion Edge Management Credential Leak
Posted Jun 29, 2015
Authored by otr

The CollabNet Subversion Edge Management Frontend leaks the unsalted MD5 hash of password of the currently logged in user via a "POST /csvn/user/index" request. An attacker that exploits an XSS or has gained a valid session via other means is able to retrieve the unsalted MD5 hash of the corresponding user and easily crack the hash in order to know the users password. Fixed in version 5.0.

tags | exploit, info disclosure
SHA-256 | 1d88ce5b1e015850cee7a266039f0317d57a1d11a0b2b10402aefdd630149ba1
ClearSCADA Remote Authentication Bypass
Posted Jan 29, 2015
Authored by Jeremy Brown

There is an authentication bypass vulnerability in ClearSCADA that can be exploited by triggering an exception in dbserver.exe and taking advantage of the way the program handles it.

tags | exploit, bypass
advisories | OSVDB-75022
SHA-256 | 7297622cf93f018ee50d502b4deb7ac9d83396bceed64caa328eab02705135a7
CS-Cart 4.2.0 Session Hijacking
Posted Aug 12, 2014
Authored by Nik Cubrilovic

CS-Cart version 4.2.0 suffers from a session hijacking vulnerability due to weakly minted session identifiers.

tags | exploit
SHA-256 | 75b089cb05c7acd3308c73cf9aed379821ea108918fd45c8a1f4b82e65e09695
LogAnalyzer 3.4.2 Cross Site Scripting / SQL Injection / File Read
Posted May 25, 2012
Authored by Filippo Cavallarin

LogAnalyzer version 3.4.2 suffers from cross site scripting, arbitrary file reading, and remote SQL injection vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, xss, sql injection
SHA-256 | 20e0cd6da8ae12e950d981ee3947ff25853bdc8fedef7053293f570dfee099d1
OSClass 2.3.5 Directory Traversal
Posted Mar 8, 2012
Authored by Filippo Cavallarin

OSClass versions 2.3.5 and below suffer from a directory traversal vulnerability.

tags | exploit
SHA-256 | c4411548e16d40545b80301b74d258f57c4662d3f5f44fbff9ee7d0e877247f6
OSClass 2.3.4 XSS / RFI / SQL Injection
Posted Jan 30, 2012
Authored by Filippo Cavallarin

OSClass version 2.3.4 suffers from cross site scripting, remote file inclusion and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, file inclusion
SHA-256 | 6961ecec1291ed82c08ed138f70b351bb7b06cabde1aec1d2b62eb96c14593fb
Postfixadmin 2.3.4 SQL Injection / Cross Site Scripting
Posted Jan 30, 2012
Authored by Filippo Cavallarin

Postfixadmin version 2.3. 4 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 792946daa68d21da19823d935d226aff83199c4a69cc33fe6dfa3dcbd4a11618
Mibew Messenger 1.6.4 Cross Site Scripting
Posted Jan 30, 2012
Authored by Filippo Cavallarin

Mibew Messenger version 1.6.4 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 70ca4b16e1bd521b1858f4631f536db54e0cb770544aff6b395c926a0f05eef9
Cs-Cart 2.2.1 SQL Injection
Posted Aug 31, 2011
Authored by Net.Edit0r

Cs-Cart version 2.2.1 suffers from a remote SQL injection vulnerability in products.php.

tags | exploit, remote, php, sql injection
SHA-256 | f4d7defa9e0fc221b8773a7dc2ec191fc5b0947b04a231495b8d11c08cf7b7db
MS Visual Studio 9.0 .csproj Buffer Overflow
Posted Feb 26, 2011
Authored by KedAns-Dz

MS Visual Studio version 9.0 stack buffer overflow exploit that creates a malicious .csproj file.

tags | exploit, overflow
SHA-256 | 74b3656d556261d7be4e14ff5953aae3bd6a6b281eb5bbf605d302e0a7341cb7
CS Cart 1.3.3 Cross Site Scripting
Posted Sep 11, 2010
Authored by LogicGate

CS Cart version 1.3.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | e61daa2dc2a6cf4b8b8e570bf560ef65826dc0105437141ac6e41a03ab0c6905
Spector - Automatically Analyzing Shell Code
Posted Jul 8, 2009
Authored by Mark Zielinski, Atul Prakash, Kevin Borders

Whitepaper called Spector: Automatically Analyzing Shell Code.

tags | paper, shell, shellcode
SHA-256 | 48ece968a47b6a78a543ac11868c445687fd0d92b816b6b54404c203b8529fcd
CS-Cart 2.0.0 Beta 3 SQL Injection
Posted Mar 9, 2009
Authored by julioisaias

CS-Cart version 2.0.0 Beta 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 4cb41ade481056f26106b2b123c9b4430ba4367f7b2165bb03ee03e13f42331c
Counter Strike Overflow Proof Of Concept
Posted Feb 25, 2009
Authored by M4rt1n

Counter Strike Source ManiAdminPlugin version 1.x remote buffer overflow proof of concept exploit.

tags | exploit, remote, overflow, proof of concept
SHA-256 | bf6e50d59fff08ea7e9392732f913d5007678ebb718145ffebc636029bde7eff
cscart-sql.txt
Posted Sep 3, 2008
Authored by James Bercegay | Site gulftech.org

CS-Cart versions 1.3.5 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c34743899f62cb832bb5555cff30c0fb0ef5563bbccf281f5f5a8afb277cecfa
CS-2008-2.txt
Posted Jul 23, 2008
Authored by Tim Loshak

SocialEngine versions below 2.83 suffer from an input validation vulnerability that allows for client take over.

tags | advisory
SHA-256 | efee5ae6331151db8e868532a24b5069c026036c4445d870851b81127c4c0dcb
cscart-xss.txt
Posted Mar 19, 2008
Authored by sasquatch | Site securestate.com

CS-Cart version 1.3.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 35623611ae8b8840f14a3285ef612a9f5a045bb611c705937f1d38391d8634a3
csa-urulu.txt
Posted Feb 28, 2008
Authored by Daniel Roethlisberger | Site csnc.ch

COMPASS SECURITY ADVISORY - USystems Urulu version 2.1 is vulnerable to blind SQL injection attacks.

tags | advisory, sql injection
advisories | CVE-2008-0385
SHA-256 | 1e1471378b677b023b6f7fa0940b772876f9988a978cec82405144ecea8d51ac
csam-xss.txt
Posted Aug 8, 2007
Authored by Tushar Vartak

The C-SAM oneWallet web admin interface suffers from a cross site scripting vulnerability.

tags | exploit, web, xss
SHA-256 | 15fe21b92c8c2e05f33cd1600df0ce66dbf1fed15db78d41640ab7acb4a29a88
csc-sqlxss.txt
Posted Jun 21, 2007
Authored by DoZ | Site hackerscenter.com

Comersus Shop Cart version 7.07 suffers from SQL injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
SHA-256 | 58ba2fa8052fb0819670006c7bdfa1d55906e1a7c84ecc9a82070d3947e29cc5
csa-driver.txt
Posted Mar 13, 2007
Authored by Daniel Roethlisberger | Site csnc.ch

COMPASS SECURITY ADVISORY - The Linux drivers for the Omnikey CardMan 4040 smartcard reader contains a buffer overflow vulnerability. Local attackers with direct or indirect write permissions to a cmx device file can execute arbitrary code with kernel privileges or may cause a denial of service condition. Proof of concept exploit included.

tags | exploit, denial of service, overflow, arbitrary, kernel, local, proof of concept
systems | linux
advisories | CVE-2007-0005
SHA-256 | 813c362a94b9a921113b9dc26f6c31af71d84e3bd91b020fb6b76413ca9974f7
cscart133-rfi.txt
Posted Jan 13, 2007
Authored by irvian

CS-Cart version 1.3.3 suffers from a remote file inclusion vulnerability in install.php.

tags | exploit, remote, php, code execution, file inclusion
SHA-256 | 9047d43072e61744a358148010164b35d657c38c31561230ae63be09516c61a6
CS-Forum0.82.txt
Posted Oct 21, 2006
Authored by Mahmood_ali

CS-Forum 0.82 suffers from a remote file inclusion vulnerability in ajouter.php.

tags | advisory, remote, php, file inclusion
SHA-256 | 8636582a85529fc2e954cda3cc4245c2f15a895edf0dfbc2ee903be6e29365ee
Cisco MARS Remote Command Execution In Jboss
Posted Jul 24, 2006
Authored by Jon Hart

Cisco/Protego CS-MARS remote command execution and system compromise exploit that makes use of an insecure JBoss installation in CS-MARS versions below 4.2.1.

tags | exploit, remote
systems | cisco
SHA-256 | 54fe66cacd7116d763993ab2281815e624610e13a10347c112c62d30699df620
CS-Forum-0.81.txt
Posted Jun 14, 2006
Site acid-root.new.fr

CS-Forum 0.81 and prior suffer from XSS, Full path disclosure and SQL injection flaws.

tags | advisory, sql injection
SHA-256 | 7d7546f688e7b3250812cd4180b1350d36de5342664f6cc7445018a54aa7910e
Page 2 of 4
Back1234Next

File Archive:

February 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    16 Files
  • 2
    Feb 2nd
    19 Files
  • 3
    Feb 3rd
    0 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    2 Files
  • 7
    Feb 7th
    10 Files
  • 8
    Feb 8th
    25 Files
  • 9
    Feb 9th
    37 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    17 Files
  • 13
    Feb 13th
    20 Files
  • 14
    Feb 14th
    25 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    6 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    35 Files
  • 20
    Feb 20th
    25 Files
  • 21
    Feb 21st
    18 Files
  • 22
    Feb 22nd
    15 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close