exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 50 of 94 RSS Feed

Files

Facebook App TVShowChat SQL Injection
Posted Apr 6, 2010
Authored by Inj3ct0r

It appears that the TVShowChat application on Facebook.com suffered from a remote SQL injection vulnerability. The application has since been taken down.

tags | exploit, remote, sql injection
SHA-256 | fdd4d3bc9a22def962946d4743f10de1c591f2da9a57ada4f9a7ed4b2a433b70

Related Files

webmail-passwordleak.txt
Posted Aug 4, 2008
Authored by Xc0re Security Research Group | Site xc0re.net

It appears that both Horde and Roundcube leak username and password credentials by sending them base64 encoded with every POST.

tags | exploit
SHA-256 | 97b08619867c34b35aec04024d165af4b305d0dd191b1b372d1902b28ac961e4
maxfileupload-upload.txt
Posted Aug 4, 2008
Authored by THuGM4N

It appears that maxFileUpload allows for php shell uploads to the target system.

tags | exploit, shell, php, file upload
SHA-256 | d53e35bfab24bfc3bae1213a06337d543e672da5d7eb95d31d2d5701029092b4
humo-sql.txt
Posted Jul 29, 2008
Authored by Tosser

It appears that humo.be is susceptible to a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 46628abf17586b862d890f9172de06a36ad6b8c6e818df49045eda7f70f6dc80
debopenssh-auth.txt
Posted Jul 17, 2008
Authored by eliteb0y

It appears that there may be a privilege escalation vulnerability in OpenSSH under Debian due to how SELinux hands out roles.

tags | exploit
systems | linux, debian
SHA-256 | 0279c23d6d13e64604d206c6989dcc20e7cedeb8a7905e7896caad31fb69dfc9
gtalk-inject.txt
Posted Jun 25, 2008
Authored by Lostmon | Site lostmon.blogspot.com

It appears that Gtalk version 1.0.0.105 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 38e71743225c8575f1975a3bcfd6fa8bd9278950190efdeb56c2e8f2fc8a350a
ff3-ignore.txt
Posted Jun 18, 2008
Authored by Carl Hardwick

It appears that Firefox 3.0 ignores multiple protocol-handler security settings.

tags | advisory, protocol
SHA-256 | 42282dfc73dcb310fdbfaf98cbbdb66dcea806f0aee99560cd8122857953625c
Mandriva Linux Security Advisory 2008-108
Posted May 29, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Although they forgot to put the problem description in this advisory, it appears that Mandriva has patched a code execution vulnerability in smbd from Samba.

tags | advisory, code execution
systems | linux, mandriva
advisories | CVE-2008-1105
SHA-256 | 21b686bd634e77933c5f1e0116a026535e27dd376f6a34224ced1eab451679ce
cpanel-root.txt
Posted May 20, 2008
Authored by Ali Jasbi

It appears that there is a remote compromise vulnerability in cPanel in relation to reseller accounts.

tags | exploit, remote
SHA-256 | 4745ad393ead10f2841702f3721f0bdf5e6d2f6186ef29c5113b5d64f637e24f
google-spam.txt
Posted May 8, 2008
Site ece.uprm.edu

It appears that manipulating the forwarding functionality in Google's GMail service allows people to spam.

tags | advisory
SHA-256 | 47700d4be60812157e47a3a9c83b1fe3ae04d87182fdcf5f52b516e7b7ecc66a
msswi-blog.txt
Posted Apr 28, 2008
Authored by Amit Klein | Site trusteer.com

It appears that Microsoft may have incorrectly stated a few things regarding MS08-020 on their blog and are reluctant to fix it.

tags | advisory
SHA-256 | 73f9756867890024835effe6ee25eb6c221b87724ce661a953eed30c6217d1e5
gwh-csrf.txt
Posted Apr 21, 2008
Authored by Alexander Konovalenko

It appears that Google Web History is susceptible to an attack along the lines of cross site request forgery.

tags | advisory, web, csrf
SHA-256 | 3e67c37c3a52b3e819ec8ff21beb4bbc682276f0a0c6164aa7e742f06f4a31df
webwasher-dos.txt
Posted Apr 4, 2008
Authored by National Australia Bank Security Assurance

It appears that Secure Computing Webwasher versions 6.6.3 and below suffer form a denial of service vulnerability.

tags | advisory, denial of service
SHA-256 | 3a9136bc5f0fbf3e6e8690afbc0ac29d6f2b1e875d4926c026830c99e84da391
ie-spoof.txt
Posted Mar 28, 2008
Authored by Juan Pablo Lopez Yacubian

It appears that Internet Explorer 7 may have an address bar spoofing vulnerability.

tags | advisory, spoof
SHA-256 | c2f099b1e957ea9fc84dce9b9a2509835c81dfe944c0e3fb7455aa7afb74d1a0
cpanel11183-xss.txt
Posted Mar 24, 2008
Authored by Linux_Drox | Site LeZr.com

It appears that cPanel versions 11.18.3 and 11.21.0-BETA suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 7f3198f690b55aec0aade4f51d6cccb9fade7b3a445b76146f92f7456c589c04
lks-format.txt
Posted Mar 12, 2008
Authored by vashnukad | Site vashnukad.com

It appears that the Linux Kiss Server version 1.2 suffers from a format string vulnerability.

tags | advisory
systems | linux
SHA-256 | cd1bc5ebd7a34b22360783ccff5fb8ddcf0dbbb025e55f10527277783e35dc7d
vocera-flaw.txt
Posted Feb 22, 2008
Authored by George Ou

It appears that the Vocera wireless LAN VoIP communicators do not bother to cryptographically confirm the validity of a digital certificate.

tags | advisory
SHA-256 | 105682742f6dd562b1abf0a2eeae46d9ee6c3531883cad3a3642136e18d6de3d
smartcop-infection.txt
Posted Feb 7, 2008
Authored by Taneja Vikas

It appears that the SmartCOP Antivirus website is infected with a variant of the VIRUT virus.

tags | advisory, virus
SHA-256 | e9cf34c6b2a8b5749f1eab34a54f1d392918222505b9a907aed37ca8cad657c7
belong-bypass.txt
Posted Jan 22, 2008
Authored by RoMaNcYxHaCkEr

It appears that Belong Site Builder version 0.1b allows for direct administrative access without credentials.

tags | exploit, bypass
SHA-256 | aab17afb7def0b559bd1d433f933fd4d7c0ceb587bc4b2e195e8f3f15d329797
cpanelpro-xss.txt
Posted Jan 17, 2008
Authored by The-0utl4w | Site aria-security.net

It appears that the cPanel hosting manager suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 70f086f77ceeb8de20ed048dcbd207c15586d0caf99f40c2f0692062863390f2
mozilla-spoof.txt
Posted Jan 3, 2008
Authored by Aviv Raff | Site aviv.raffon.net

It appears that Mozilla Firefox version 2.0.0.11 suffers from an information spoofing attack via the basic authentication dialog box.

tags | advisory, spoof
SHA-256 | 47f59d9aae591cbc74235ab2ddb5b49260a968d8b63446411d277d8f679abdb1
moodle-sql.txt
Posted Dec 24, 2007

It appears that the latest revision of Moodle may be susceptible to SQL injection attacks.

tags | exploit, sql injection
SHA-256 | 2830c51b5f57aba32f29102bcb3ef49729e7caa9244f6e7d9549e88723a3be47
yshortcut-overflow.txt
Posted Dec 20, 2007
Authored by Elazar Broad

It appears that the YShortcut toolbar has a buffer overflow vulnerability.

tags | advisory, overflow
SHA-256 | 40ba049b0a752f8a6f49ded03f4413432964054e8f9578fe6cb90e68d16c630c
ebay-xss.txt
Posted Dec 8, 2007
Authored by TEAMELITE

It appears that Ebay.com may be susceptible to a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | f42f18554d1ef06cf441213d8530b442008449ebc882df5ab7854314a09421de
real-overflow.txt
Posted Nov 27, 2007
Authored by Elazar Broad

It appears that RealNetworks RealPlayer suffers from more stack overflow vulnerabilities in ierpplug.dll.

tags | exploit, overflow, vulnerability
SHA-256 | b3454ab95ff30b7f8777d5ed1fd582faa01978dbcdd22bde69db3e013481f88e
wellsfargo-notsogood.txt
Posted Nov 26, 2007
Authored by joel

It appears that Wells Fargo's online banking is now allowing third party javascript from Akamai. Hopefully they come to their senses.

tags | advisory, javascript
SHA-256 | e4d79e1cad516e2ec202661e2374aaa01a707a6fadb16e87bd2b8adeff736ec8
Page 2 of 4
Back1234Next

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    57 Files
  • 7
    Jun 7th
    6 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    12 Files
  • 11
    Jun 11th
    27 Files
  • 12
    Jun 12th
    38 Files
  • 13
    Jun 13th
    16 Files
  • 14
    Jun 14th
    14 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    16 Files
  • 18
    Jun 18th
    26 Files
  • 19
    Jun 19th
    15 Files
  • 20
    Jun 20th
    18 Files
  • 21
    Jun 21st
    8 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close