Section: .. / 0605-exploits /
| /// File Name: |
gxine-http-PoC.c |
Description:
|
gxine - HTTP Plugin Remote Buffer Overflow PoC exploit.
| | Author: | Federico L. Bossi Bonin | | File Size: | 1984 | | Last Modified: | May 30 22:26:34 2006 |
| MD5 Checksum: | 504d9c6d08f024d29eba3e1ad3e04a8f |
|
| /// File Name: |
HYSA-2006-008.txt |
Description:
|
myBloggie version 2.1.3 is susceptible to CRLF and SQL injection attacks.
| | Author: | matrix_k | | Homepage: | http://www.h4cky0u.org | | File Size: | 2296 | | Last Modified: | May 22 01:30:02 2006 |
| MD5 Checksum: | 3fd77bea8c3de525128a659fd377fa04 |
|
| /// File Name: |
icewarp.txt |
Description:
|
IceWarp is susceptible to cross site scripting attacks via the PHPSESSID variable.
| | Author: | LiNuX_rOOt | | Homepage: | http://www.alshmokh.com | | File Size: | 176 | | Last Modified: | May 22 00:59:03 2006 |
| MD5 Checksum: | 67328b5a6234b09182dbe7f4623bc125 |
|
| /// File Name: |
imlive-vulns.txt |
Description:
|
imlive.com suffers from cross site scripting flaws.
| | Author: | MurderSkillz | | File Size: | 447 | | Last Modified: | May 1 04:33:42 2006 |
| MD5 Checksum: | 1be033be5d2fba2d9df28c05a24a6053 |
|
| /// File Name: |
interlink.txt |
Description:
|
news_information.php in Interlink is susceptible to cross site scripting.
| | Author: | Mr-X | | Homepage: | http://www.alshmokh.com/ | | File Size: | 173 | | Last Modified: | May 22 03:04:47 2006 |
| MD5 Checksum: | ef8a9d5ebc4719385829bfeceb4e13e2 |
|
| /// File Name: |
invision215-SQL.txt |
Description:
|
Invision Power Board version 2.1.5 remote SQL injection exploit.
| | Author: | Ykstortion Security Team | | File Size: | 6619 | | Last Modified: | May 2 02:38:45 2006 |
| MD5 Checksum: | e117594ca9ad4e5fc2779a31025f6f57 |
|
| /// File Name: |
invision215.txt |
Description:
|
Invision Power Board version 2.1.5 is subject to remote SQL injection attacks. Details provided. Earlier versions may also be susceptible.
| | Author: | Devil-00 | | File Size: | 1306 | | Last Modified: | May 2 01:24:23 2006 |
| MD5 Checksum: | 4e288262e4e718c92b5c50b1a47ca8f4 |
|
| /// File Name: |
invisionCBSQL.txt |
Description:
|
Invision Community Blog is susceptible to SQL injection attacks.
| | Author: | o.y.6 | | File Size: | 1189 | | Last Modified: | May 6 17:46:17 2006 |
| MD5 Checksum: | 5a1e0baae65f50b0afc7c43a3a32d938 |
|
| /// File Name: |
invisionGallery206.txt |
Description:
|
Invision Gallery version 2.0.6 suffers from a SQL injection vulnerability in the album variable.
| | Author: | Devil-00 | | Homepage: | http://www.s4a.cc | | File Size: | 813 | | Last Modified: | May 6 15:54:32 2006 |
| MD5 Checksum: | c9e04d4e9c1fd97c503eb827fc17b2b4 |
|
| /// File Name: |
ipswitchXSS.txt |
Description:
|
Ipswitch WhatsUp Professional suffers from source disclosure, information disclosure, and cross site scripting flaws. Weaknesses are confirmed in version 2006. Earlier versions may also be susceptible.
| | Author: | David Maciejak | | File Size: | 1287 | | Last Modified: | May 21 15:11:46 2006 |
| MD5 Checksum: | b2debe79832942b4a35c1a7ad4af0af2 |
|
| /// File Name: |
irater.txt |
Description:
|
I-RATER Platinum remote file inclusion exploit.
| | Author: | Raiden | | Homepage: | http://www.Aria-security.net/ | | File Size: | 1486 | | Last Modified: | May 2 01:27:23 2006 |
| MD5 Checksum: | b697e49e9879f120a7690f1a9595e6c3 |
|
| /// File Name: |
ISPConfig.txt |
Description:
|
ISPConfig versions 2.2.2 and below suffer from a remote command execution vulnerability.
| | Author: | ReZEN | | Homepage: | http://www.xorcrew.net/ | | File Size: | 3814 | | Last Modified: | May 9 16:19:54 2006 |
| MD5 Checksum: | a6802141e9c78e210ba77d6d8122ce1a |
|
| /// File Name: |
JAMES2.2.0.txt |
Description:
|
It is possible to DOS Java Apache Mail Enterprise Server (a.k.a. Apache James) by sending it a long SMTP argument. POC included.
| | Author: | Ahmad Muammar W.K | | Homepage: | http://y3dips.echo.or.id/ | | File Size: | 2690 | | Last Modified: | May 29 19:50:09 2006 |
| MD5 Checksum: | 3b16937b13c91271931fbb4c674cd88c |
|
| /// File Name: |
jax.txt |
Description:
|
Jax Guestbook version 3.50 suffers from a cross site scripting vulnerability.
| | Author: | Kiki | | Homepage: | http://kiki91.altervista.org/ | | File Size: | 609 | | Last Modified: | May 21 18:30:28 2006 |
| MD5 Checksum: | 152adf15d095e771251af93b84d04a02 |
|
| /// File Name: |
jetboxCMS.txt |
Description:
|
JetBox CMS remote file inclusion exploit that allows for command execution.
| | Author: | beford | | File Size: | 2540 | | Last Modified: | May 6 18:00:33 2006 |
| MD5 Checksum: | 43d3be4df9879b00a52b4cb7224ce15a |
|
| /// File Name: |
JMKpicture.txt |
Description:
|
JMK's Picture Gallery allows for direct administrative access.
| | Author: | AlpEren, tugr | | File Size: | 196 | | Last Modified: | May 2 02:01:56 2006 |
| MD5 Checksum: | 30f017624be72eaace452508f9cdcc21 |
|
| /// File Name: |
Kaspersky6-http.txt |
Description:
|
Kaspersky antivirus 6 and Kaspersky internet security 6 suffer from a vulnerability due to HTTP parsing errors in the HTTP monitor that could allow malicious software on the local computer to bypass the HTTP virus monitor.
| | Author: | john | | File Size: | 2436 | | Last Modified: | May 25 21:33:07 2006 |
| MD5 Checksum: | cfd68147e59e2377729170d2efc90285 |
|
| /// File Name: |
Kaspersky6-POP3.txt |
Description:
|
Kaspersky antivirus 6 suffers from an error in the POP3 state machine POP3 monitor thus allowing any malicious software on the local computer to bypass the POP3 monitor.
| | Author: | bug.registrator | | File Size: | 2991 | | Last Modified: | May 29 03:07:52 2006 |
| MD5 Checksum: | e5dd17cdc394afd4c6b98c13182fa457 |
|
| /// File Name: |
liberoXSS.txt |
Description:
|
Libero.it is susceptible to cross site scripting vulnerabilities.
| | Author: | Davide Denicolo | | File Size: | 2940 | | Last Modified: | May 6 16:01:34 2006 |
| MD5 Checksum: | f974e687ec599bcbb1daea587c1a9e1e |
|
| /// File Name: |
libextho.zip |
Description:
|
Proof of concept exploit for heap overflow vulnerabilities in libextractor versions 0.5.13 and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | libextho.txt | | File Size: | 7060 | | Last Modified: | May 22 01:47:29 2006 |
| MD5 Checksum: | b4d9b6668ca12959ed3e04d3db7a389b |
|
| /// File Name: |
limboCMS.txt |
Description:
|
Limbo CMS remote SQL injection exploit.
| | Homepage: | http://cyber-security.org/ | | File Size: | 1387 | | Last Modified: | May 9 16:21:13 2006 |
| MD5 Checksum: | 0ee2547133292e0541c3b2db144dcfe9 |
|
| /// File Name: |
livehelper.txt |
Description:
|
chat.php from PHP Live Help ASP is susceptible to a cross site scripting vulnerability.
| | Author: | Mr-X | | Homepage: | http://www.alshmokh.com | | File Size: | 154 | | Last Modified: | May 21 18:22:27 2006 |
| MD5 Checksum: | 11ddbf78eb6e2524c8bc03e769df78af |
|
| /// File Name: |
magnolia.txt |
Description:
|
Magnolia CMS suffers from a script insertion vulnerability.
| | Author: | Kiki | | Homepage: | http://kiki91.altervista.org | | File Size: | 600 | | Last Modified: | May 21 14:55:36 2006 |
| MD5 Checksum: | 7a041569538175ebc183532f3d34ac83 |
|
| /// File Name: |
mobotixXSS.txt |
Description:
|
Mobotix IP Network Cameras suffer from multiple cross site scripting flaws. M10 version 2.0.5.2 and M1 version 1.9.4.7 are affected.
| | Author: | Jaime Blasco | | Homepage: | http://www.eazel.es/ | | File Size: | 727 | | Last Modified: | May 22 01:44:32 2006 |
| MD5 Checksum: | 5ddd8f1d36fd8e3a2575c69af6bc6cb5 |
|
| /// File Name: |
modulesSQL.txt |
Description:
|
modules name(Sections) remote SQL injection exploitation details.
| | Author: | Mr-X | | File Size: | 228 | | Last Modified: | May 6 17:39:41 2006 |
| MD5 Checksum: | fb084e10d2c32b542f8d5af39e3d8e42 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
