exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 100 RSS Feed

Files

grape-rfi.txt
Posted Apr 18, 2008
Authored by MajnOoNxHaCkEr | Site 4rxh.com

Grape Statistics version 0.2a suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | c91ba6bb013188d59e737a144c56f7fbf67b7ae0e7fcc0da9aad995bddcf056b

Related Files

WordPress WP-Statistics 2.2.4 Cross Site Scripting
Posted May 15, 2012
Authored by Heine Pedersen, Torben Jensen

WordPress WP-Statistics plugin version 2.2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 264685680e4f25ac51b9a99e834f6189bde81b0d9974ca8eedff88c9ca78058d
Debian Security Advisory 2133-1
Posted Dec 15, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2133-1 - It was discovered that collectd, a statistics collection and monitoring daemon, is prone to a denial of service attach via a crafted network packet.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2010-4336
SHA-256 | 7230d556d53ede87a49d0b6767544ed8e6fb3138f3dbfee15f79731da7b6b9fd
Web Statistics And Analytics CMS SQL Injection
Posted Nov 14, 2010
Authored by Cru3l.b0y

Web Statistics and Analysis CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
SHA-256 | 5cbb613c88249baa23fabcca52ea445779c42f9e2bd6d5bdec8bbaa8ca8d9061
PHPKick 0.8 SQL Injection
Posted Aug 12, 2010
Authored by garwga

PHPKick version 0.8 statistics.php remote SQL injection exploit.

tags | exploit, remote, php, sql injection
SHA-256 | faf9a3b1fbd41a31ea0a001c8d00d5d0d7b59fe266c84bc96699a1f238f7b372
Debian Linux Security Advisory 2069-1
Posted Jul 13, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2069-1 - It was discovered that znc, an IRC bouncer, is vulnerable to denial of service attacks via a NULL pointer dereference when traffic statistics are requested while there is an unauthenticated connection.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2010-2448
SHA-256 | 3e192ef83287ff3fb0307778bde71bf1c5e03792697a73607f57f14de13ccb99
vBulletin Cyb - Advanced Forum Statistics Denial Of Service
Posted Apr 12, 2010
Authored by Andhra Hackers

vBulletin Cyb - Advanced Forum Statistics suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | ec3d30e76b68c4548dca6b82771796442ce22bc81e811bb14d8b7bfa28075652
Netsniff-NG High Performance Sniffer 0.5.4.1
Posted Feb 6, 2010
Authored by Netsniff-NG Workgroup | Site netsniff-ng.org

netsniff-ng is a high performance linux network sniffer for packet inspection. Basically, it is similar to tcpdump, but it doesn't need syscalls for fetching packets. Instead, it uses an memory mapped area within kernelspace for accessing packets without the need of copying them to userspace ('zero-copy' mechanism). Therefore, netsniff-ng is libpcap independent. netsniff-ng can be used for protocol analysis and reverse engineering, network debugging, measurement of performance throughput or network statistics creation of incoming packets on central network nodes like routers or firewalls.

tags | tool, sniffer, protocol
systems | linux
SHA-256 | d31e8724e6e37c55352f57e32e959bb6bdd8a95aa3e3a9b63f1818e4b3a5fac9
Smart PHP Statistics 1.0 Cross Site Scripting
Posted Jan 11, 2010
Authored by R3d-D3v!L

Smart PHP Statistics version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
SHA-256 | ddcc57007e85a9e4cc3d303d709a655a0830c6c6be7118a3c3f6f77461ab079a
Secunia Security Advisory 37804
Posted Dec 17, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Smart Statistics, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | be6f1fc58a3f34cc58d8ed780fc3e291d24582e29ed4052e6a15b3d5c10b3d77
Smart Statistics Cross Site Scripting
Posted Dec 16, 2009
Authored by bi0

Smart Statistics suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 75ee72320756973f92823845757f28cab23110477ee8b14202eaad5bb602ed3e
Secunia Security Advisory 37694
Posted Dec 14, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Acc Statistics, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
SHA-256 | 8b7cd157ac67a8b3802268748b455c662923aef82a1352a8f65ef31190ed49f5
AccStatistics 1.1 Cross Site Request Forgery
Posted Dec 14, 2009
Authored by Milos Zivanovic

AccStatistics version 1.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | bb903fb7ed7d400bf5db2d11ee4d4350f3049119e99c9b944ca282ac5ba1e6a3
Secunia Security Advisory 37128
Posted Oct 23, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities and a weakness have been reported in the Simplenews Statistics module for Drupal, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, and spoofing attacks.

tags | advisory, spoof, vulnerability, xss, csrf
SHA-256 | 41cc061f1056e954e8de13a7238f890124b1eb3ba5718ce03cbe8ba627fc0327
Mandriva Linux Security Advisory 2009-105
Posted May 5, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-105 - The process_stat function in Memcached prior 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by sending a command to the daemon's TCP port. The updated packages have been patched to prevent this.

tags | advisory, remote, tcp
systems | linux, mandriva
advisories | CVE-2009-1255, CVE-2009-1494
SHA-256 | 234a80a38489861d68a02790cb0a9b505a37001ba30edca59da0fa46baaf0797
Blackberry Mobile Data Service XSS
Posted Apr 17, 2009
Authored by Michael Thumann

The Blackberry Mobile Data Service Connection is vulnerable to several cross site scripting attacks in the "Customize Statistics Page". All versions prior to 4.1.6 MR4 are vulnerable.

tags | exploit, xss
SHA-256 | 32a645ba20821c711d9b5be04daab2fb1198f6b02eca86a871e10c9d321e5366
Spywaredb3.2squared.com SQL Injection
Posted Apr 8, 2009
Authored by Xia Shing Zee

The affiliate group that controls many rogue anti-malware software has a SQL injection vulnerability in their control panel that hosts all their sites. This control panel, is also hosted on a domain that is controlled by the rogue group. On the control panel, resides a user list, malware search, definition search, settings, statistics, archives, various databases, and TODO lists.

tags | exploit, sql injection
SHA-256 | 91efcacabf3584593f19b0e4930f367709869382192c56579661b8026a992287
Windows FTP Service SITE STATS Poller For Enumeration Purposes
Posted Mar 24, 2009
Authored by Tom Van de Wiele

winftprecon is a tool to poll a Windows based FTP service for the output of the SITE STATS command. The SITE STATS command gives out statistics on the FTP service which can be used for simple statistics purposes but also for remote enumeration of the FTP service for attack and penetration purposes. The output of the SITE STATS command, if supported and enabled, consists of a list of FTP commands that were issued towards the FTP service and how many time in the form of a number. The information can be saved in csv format or saved in a sqlite3 database as dataset for statistics and enumeration of the ftp service to obtain valuable information towards attack/assessment planning.

tags | remote
systems | windows
SHA-256 | 0deaec620f4f104bd69f24ffa46ebe6fce93345719286602f0cb3d79706792af
accstatistics-insecure.txt
Posted Nov 4, 2008
Authored by Hakxer

Acc Statistics version 1.1 suffers from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling
SHA-256 | 2c0aac7af3c716833382997955d7b1540259c1700beaf8d387c9c8137a298312
wasc_wass_2007.pdf
Posted Sep 8, 2008
Site webappsec.org

The Web Application Security Consortium (WASC) is pleased to announce the WASC Web Application Security Statistics Project 2007. This initiative is a collaborative industry wide effort to pool together sanitized website vulnerability data and to gain a better understanding about the web application vulnerability landscape. The overall statistics includes analysis results of 32,717 sites and 69,476 vulnerabilities of different degrees of severity.

tags | paper, web, vulnerability
SHA-256 | a372c268440ecd927644d79af2dfa9a7fa4bc692839cf9d01c41ae9ef56051a8
p0f-2.0.8-db-20080806.tar.gz
Posted Aug 8, 2008
Authored by Michal Zalewski, David Coomber | Site lcamtuf.coredump.cx

p0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to the remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Note that this version is the win32 compiled version. Original code by Michal Zalewski, compiling by David Coomber.

Changes: Added better handling of MySQL error codes.
tags | tool, remote, local, scanner
systems | windows, unix
SHA-256 | b1b3a50167e875ae8a49b1069e893267ee5dd2ab3c6ef6b733760e63b4bdc904
Secunia Security Advisory 31299
Posted Jul 31, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ghost Hacker has discovered two vulnerabilities in HIOX Browser Statistics, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | aa3650d5967b121722dee704b8126a376ba26de88a5d34d4358cb3393e777af6
hiox-browser-rfi.txt
Posted Jul 31, 2008
Authored by Ghost Hacker | Site real-hack.net

HIOX Browser Statistics version 2.0 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
SHA-256 | 719f28fd0678e09abdae02771977020313e978db6f70873d7cd0d723619292f1
hiox-browseradd.txt
Posted Jul 31, 2008
Authored by Stack | Site v4-team.com

HIOX Browser Statistics version 2.0 add arbitrary administrative user exploit.

tags | exploit, arbitrary
SHA-256 | ca7461517554fb90d804f8d1c90ff8281324f74a2154060d9cf3ffc8c728621c
snortsms-1.7.8.tar.gz
Posted Oct 9, 2007
Authored by SmithJ108 | Site snortsms.servangle.net

SnortSMS is a highly configurable sensor management system that provides the ability to remotely administer Snort [and Barnyard] based Intrusion Detection Systems (IDS), push configuration files, add/edit rules, and monitor system health and statistics, all from a simple and clean Web interface console. Whether you have one or multiple Snort sensors, it can help unify and synchronize all sensor configurations.

Changes: Remote agent rewrite. Updated SnortSMS Collector to handle new agent format.
tags | tool, web, sniffer
SHA-256 | 9e67221d06ccef9d285cdd521f9843717495626dabe06fa5e22e8c571417d262
p0f-2.0.8-db-20070919.tar.gz
Posted Sep 20, 2007
Authored by Michal Zalewski, David Coomber | Site lcamtuf.coredump.cx

p0f performs passive OS detection by watching SYN packets with tcpdump. Additionally, it is able to determine distance to the remote host, and can be used to determine the structure of a foreign or local network. When running on the gateway of a network it is able to gather huge amounts of data and provide useful statistics. On a user-end computer it could be used to track which operating systems are making each connection. p0f supports full tcpdump-style filtering expressions, and has an easily modified fingerprinting database. Note that this version is the win32 compiled version. Original code by Michal Zalewski, compiling by David Coomber.

Changes: Insufficient OS description escapes fixed. Other fixes.
tags | tool, remote, local, scanner
systems | windows, unix
SHA-256 | dd38a277cf5f75bd141c92c52d4a943be4377fb60f3ec5a8fd8b6e6d380f4122
Page 1 of 4
Back1234Next

File Archive:

November 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    16 Files
  • 2
    Nov 2nd
    17 Files
  • 3
    Nov 3rd
    17 Files
  • 4
    Nov 4th
    11 Files
  • 5
    Nov 5th
    0 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    3 Files
  • 8
    Nov 8th
    59 Files
  • 9
    Nov 9th
    12 Files
  • 10
    Nov 10th
    6 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    1 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    9 Files
  • 15
    Nov 15th
    33 Files
  • 16
    Nov 16th
    53 Files
  • 17
    Nov 17th
    11 Files
  • 18
    Nov 18th
    14 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    26 Files
  • 22
    Nov 22nd
    22 Files
  • 23
    Nov 23rd
    10 Files
  • 24
    Nov 24th
    9 Files
  • 25
    Nov 25th
    11 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    20 Files
  • 29
    Nov 29th
    9 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close