Section: .. / 0710-exploits /
| /// File Name: |
KN2.txt |
Description:
|
Knowledge Networking version 1.0.b suffers from a local file inclusion vulnerability.
| | Author: | d3hydr8 | | Homepage: | http://www.darkc0de.com/ | | File Size: | 556 | | Last Modified: | Oct 22 16:18:30 2007 |
| MD5 Checksum: | c44c7e6a2c1872a6458cca98e5b893e2 |
|
| /// File Name: |
kodak-exec.txt |
Description:
|
Kodak Image Viewer code execution exploit that takes advantage of the MS07-055 TIFF vulnerability. Spawns calc.exe.
| | Author: | Gil-Dong / Woo-Chi | | File Size: | 85696 | | Last Modified: | Oct 29 16:26:42 2007 |
| MD5 Checksum: | a47148e6cad48f39a925a5d6ebaf22f0 |
|
| /// File Name: |
koreanghboard-multi.txt |
Description:
|
Korean GHBoard suffers from arbitrary upload/download vulnerabilities.
| | Author: | Xcross87 | | File Size: | 924 | | Last Modified: | Oct 23 19:19:01 2007 |
| MD5 Checksum: | 22421ca4b24db1f6d4c41f1be917e7d9 |
|
| /// File Name: |
kwsphpmg2-sql.txt |
Description:
|
KwsPHP versions 1.0 suffers from a remote SQL injection vulnerability in the mg2 module.
| | Author: | xoron | | File Size: | 442 | | Last Modified: | Oct 15 17:36:11 2007 |
| MD5 Checksum: | e645e97b43c5cd84640d6a698a5d702b |
|
| /// File Name: |
kwsphpnews-sql.txt |
Description:
|
KwsPHP version 1.0 remote SQL injection exploit that takes advantage of the Newsletter module.
| | Author: | S4mi | | File Size: | 5872 | | Last Modified: | Oct 12 00:28:15 2007 |
| MD5 Checksum: | e01bb32974a22c0a8d71a6860fedc5c6 |
|
| /// File Name: |
la-rfi.txt |
Description:
|
LiveAlbum version 0.9.0 suffers from a remote file inclusion vulnerability in common.php.
| | Author: | S.W.A.T. | | Homepage: | http://www.xmors.com/ | | File Size: | 906 | | Last Modified: | Oct 10 01:35:14 2007 |
| MD5 Checksum: | aa481416b4b966ecde89c653c460d62f |
|
| /// File Name: |
leaguestat-lfi.txt |
Description:
|
Leaguestat.com version 0.1 suffers from a local file inclusion vulnerability.
| | Author: | d3v1l | | File Size: | 1234 | | Last Modified: | Oct 5 01:54:20 2007 |
| MD5 Checksum: | 3869a2e7a6b613bfa15f17a399c788d6 |
|
| /// File Name: |
lfscbof.zip |
Description:
|
Proof of concept exploit that demonstrates a buffer overflow in Live For Speed versions 0.5X10 and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | lfscbof.txt | | File Size: | 8230 | | Last Modified: | Oct 15 19:06:23 2007 |
| MD5 Checksum: | 8426136d602a94b239c34325809f88bb |
|
| /// File Name: |
limesurvey152-rfi.txt |
Description:
|
LimeSurvey versions 1.52 and below suffer from a remote file inclusion vulnerability.
| | Author: | S.W.A.T. | | Homepage: | http://www.xmors.com/ | | File Size: | 1515 | | Last Modified: | Oct 18 18:25:10 2007 |
| MD5 Checksum: | 3de65ce04f1c1d304a60fc514724580d |
|
| /// File Name: |
litespeed-disclose.txt |
Description:
|
LiteSpeed web server versions 3.2.3 and below suffers from a remote source code disclosure vulnerability.
| | Author: | Tr3mbl3r | | Homepage: | http://thedefaced.org/ | | File Size: | 6815 | | Last Modified: | Oct 22 18:28:08 2007 |
| MD5 Checksum: | 9047c038f2ec2728665d663e6540ae02 |
|
| /// File Name: |
mb-disclose.txt |
Description:
|
ModuleBuilder version 1.0 suffers from a remote file disclosure vulnerability.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 221 | | Last Modified: | Oct 31 18:23:38 2007 |
| MD5 Checksum: | 176200e6d0e88ad2ab7115f6be4c1b1c |
|
| /// File Name: |
mhfp-sql.txt |
Description:
|
Multi Host Forum Pro phpBB and IPB suffer from multiple SQL injection vulnerabilities.
| | Author: | KiNgOfThEwOrLd | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 1463 | | Last Modified: | Oct 26 10:54:08 2007 |
| MD5 Checksum: | ebe7c7c7d599bbab09dbe3c7fafda71c |
|
| /// File Name: |
minibb-sql.txt |
Description:
|
miniBB version 2.1 suffers from a remote SQL injection vulnerability.
| | Author: | irk4z | | File Size: | 1513 | | Last Modified: | Oct 30 20:04:45 2007 |
| MD5 Checksum: | 32ec948a368bf1c5324024b9afd116f0 |
|
| /// File Name: |
mls-disclose.txt |
Description:
|
Micro Login System version 1.0 suffers from a password disclosure vulnerability.
| | Author: | Guns | | Homepage: | http://www.0x90.com.ar/ | | File Size: | 323 | | Last Modified: | Oct 29 11:25:15 2007 |
| MD5 Checksum: | 0f95749a441ce4d9ec7c8ca213451484 |
|
| /// File Name: |
mobilemail_libtiff.rb.txt |
Description:
|
This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
| | Author: | H D Moore, KF | | Homepage: | http://metasploit.com/ | | File Size: | 5273 | | Last Modified: | Oct 22 23:43:19 2007 |
| MD5 Checksum: | 92e658f30a2a455067ca9db033446795 |
|
| /// File Name: |
monografias.com-search-xss.txt |
Description:
|
www.monografias.com suffers from a cross site scripting vulnerability.
| | Author: | rootkit | | File Size: | 464 | | Last Modified: | Oct 5 02:05:52 2007 |
| MD5 Checksum: | 8de47dd8748aa3ee8ced334bab8e6a53 |
|
| /// File Name: |
msfp-exec.txt |
Description:
|
Microsoft Visual Basic FoxPro version 6.0 arbitrary command execution exploit that makes use of FPOLE.OCX.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 1481 | | Last Modified: | Oct 10 01:31:06 2007 |
| MD5 Checksum: | 30717913245b4fb657fd58b6952f1eff |
|
| /// File Name: |
msrs-rfi.txt |
Description:
|
MySpace Resource Script (MSRC) version 1.21 suffers from a remote file inclusion vulnerability.
| | Author: | r00t | | File Size: | 366 | | Last Modified: | Oct 29 20:43:02 2007 |
| MD5 Checksum: | 0ba39ef71aee45e02c91539364b43533 |
|
| /// File Name: |
multicart-sql.txt |
Description:
|
MultiCart version 1.0 remote blind SQL injection exploit.
| | Author: | k1tk4t | | Homepage: | http://newhack.org/ | | File Size: | 4059 | | Last Modified: | Oct 2 20:14:11 2007 |
| MD5 Checksum: | c337eaf6e910efa17b13e40db1ce03d2 |
|
| /// File Name: |
NDSA20071016.txt |
Description:
|
Nth Dimension Security Advisory (NDSA20071016) - The SiteBar application has single high risk issues with its translation module. It can can be made to retrieve any file to which the web server user has read access. The SiteBar application has multiple high risk issues with its translation module. It can be made to execute arbitrary code to gain remote access as the web server user typically nobody. The SiteBar application has multiple medium risk issues where it is vulnerable to Javascript injection within the requested URL. The SiteBar application has single medium risk issue where it is vulnerable to malicious redirects within the requested URL. Version 3.3.8 is affected.
| | Author: | Tim Brown | | Homepage: | http://www.nth-dimension.org.uk/ | | File Size: | 4740 | | Related CVE(s): | CVE-2006-3320, CVE-2007-5492, CVE-2007-5491 | | Last Modified: | Oct 22 18:00:34 2007 |
| MD5 Checksum: | c400d008b511f86b29c1a277f583eb66 |
|
| /// File Name: |
netgear-xss.txt |
Description:
|
The Netgear SSL312 device suffers from a cross site scripting vulnerability.
| | Author: | SkyOut | | Homepage: | http://www.core-security.net/ | | File Size: | 2444 | | Last Modified: | Oct 15 18:42:22 2007 |
| MD5 Checksum: | 8c7766d45e4918b40c652842a747ef0a |
|
| /// File Name: |
nuseo-rfi.txt |
Description:
|
NuSEO PHP Enterprise version 1.6 suffers from a remote file inclusion vulnerability.
| | Author: | BiNgZa | | File Size: | 715 | | Last Modified: | Oct 10 23:40:28 2007 |
| MD5 Checksum: | 18c14d93f13564848fe5beb3727fed0f |
|
| /// File Name: |
okulop-sql.txt |
Description:
|
Okul Otomasyon Portal version 2.0 suffers from a remote SQL injection vulnerability.
| | Author: | dumenci | | File Size: | 1633 | | Last Modified: | Oct 16 18:34:08 2007 |
| MD5 Checksum: | 028c1472f1fa8449601c4a587e8aa186 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
