Section: .. / 0711-exploits /
| /// File Name: |
projectalumni-sqlxss.txt |
Description:
|
Project Alumni versions 1.0.9, 1.0.8, and possibly prior releases suffer from cross site scripting and SQL injection vulnerabilities.
| | Author: | tomplixsee | | File Size: | 2212 | | Last Modified: | Nov 26 16:00:26 2007 |
| MD5 Checksum: | 4cf7c7514232e5aecf2ea8f832899041 |
|
| /// File Name: |
keller-rfi.txt |
Description:
|
Keller Web Admin suffers from a remote file inclusion vulnerability.
| | Author: | fl0 fl0w | | Homepage: | http://fl0-fl0w.docspages.com/ | | File Size: | 1218 | | Last Modified: | Nov 26 15:58:34 2007 |
| MD5 Checksum: | 956458858140e5f0c5da3172dee698bb |
|
| /// File Name: |
jiros-sql.txt |
Description:
|
JiRos Upload Manager suffers from a SQL injection vulnerability.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 344 | | Last Modified: | Nov 26 15:52:46 2007 |
| MD5 Checksum: | 344c1e27bdcbd968000a51ddf8a6c560 |
|
| /// File Name: |
meBiblio-xss.txt |
Description:
|
meBiblio version 0.4.5 suffers from cross site scripting vulnerabilities.
| | Author: | ShAy6oOoN | | File Size: | 1715 | | Last Modified: | Nov 26 15:51:59 2007 |
| MD5 Checksum: | 40d8e1f4044e8e5be3c097e6de705f58 |
|
| /// File Name: |
meBiblio-rfi.txt |
Description:
|
meBiblio version 0.4.5 suffers from a remote file inclusion vulnerability.
| | Author: | ShAy6oOoN | | File Size: | 1193 | | Last Modified: | Nov 26 15:51:16 2007 |
| MD5 Checksum: | 6a42bf4ac0f2adc0d129c414617273c3 |
|
| /// File Name: |
phpbms-rfi.txt |
Description:
|
PHPBMS version 0.92 suffers from a remote file inclusion vulnerability.
| | Author: | fl0 fl0w | | Homepage: | http://fl0-fl0w.docspages.com/ | | File Size: | 658 | | Last Modified: | Nov 26 15:49:02 2007 |
| MD5 Checksum: | 0151c9f3079743c15998104da0b3e235 |
|
| /// File Name: |
i386_set_ldt-dos.txt |
Description:
|
Apple Mac OS X 10.4.x kernel i386_set_ldt() integer overflow proof of concept exploit.
| | Homepage: | http://www.risesecurity.org/ | | File Size: | 915 | | Last Modified: | Nov 26 12:12:59 2007 |
| MD5 Checksum: | 34a577aefb5c5cb73fecdb277747bf56 |
|
| /// File Name: |
RISE-2007004.txt |
Description:
|
There exists a vulnerability within an architecture dependent function of the Apple Mac OS X 10.4.x kernel, which when properly exploited can lead to local compromise of the vulnerable system. Proof of concept code included.
| | Author: | Adriano Lima, Ramon de Carvalho Valle | | Homepage: | http://www.risesecurity.org/ | | File Size: | 5271 | | Last Modified: | Nov 16 02:58:40 2007 |
| MD5 Checksum: | f7cb9a678cad1e52e9b8323a667b2f32 |
|
| /// File Name: |
PR07-26.txt |
Description:
|
The Aruba 800 is vulnerable to a persistent cross site scripting vulnerability on the administrator login screen.
| | Author: | Jan Fry | | Homepage: | http://www.procheckup.com/ | | File Size: | 1689 | | Last Modified: | Nov 16 02:56:27 2007 |
| MD5 Checksum: | e832c68f33e43997356ffe700c515f1b |
|
| /// File Name: |
PR07-02.txt |
Description:
|
The Liferay Portal login page is vulnerable to a cross site scripting vulnerability within the "login" field processed by the "/c/portal/login" server-side script.
| | Author: | Adrian Pastor | | Homepage: | http://www.procheckup.com/ | | File Size: | 2218 | | Last Modified: | Nov 16 02:54:37 2007 |
| MD5 Checksum: | 7b9abfad8585fd2146ccbb87c11f4500 |
|
| /// File Name: |
flexgrid-overflow.txt |
Description:
|
The FlexGrid component version 7.1 suffers from stack overflows.
| | Author: | Elazar Broad | | File Size: | 856 | | Last Modified: | Nov 16 02:21:03 2007 |
| MD5 Checksum: | f10dc195b91a28edd7c47f499acc4115 |
|
| /// File Name: |
toko-sql.txt |
Description:
|
Toko Instan version 7.6 suffers from multiple remote SQL injection vulnerabilities.
| | Author: | k1tk4t | | Homepage: | http://newhack.org/ | | File Size: | 1352 | | Last Modified: | Nov 14 19:26:05 2007 |
| MD5 Checksum: | ad2a17e3f976bb6b0de9d9fa30e1783d |
|
| /// File Name: |
webex-mem.txt |
Description:
|
WebEx GPCContainer is susceptible to a memory access violation vulnerability.
| | Author: | Elazar Broad | | File Size: | 602 | | Last Modified: | Nov 14 19:24:14 2007 |
| MD5 Checksum: | 5bdf0025627de0611c6b113997560747 |
|
| /// File Name: |
freeforums-sql.txt |
Description:
|
Free Forums is susceptible to SQL injection attacks via the search section.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 596 | | Last Modified: | Nov 14 19:23:23 2007 |
| MD5 Checksum: | 82d83b5475c8e3c426efe7186ca24f92 |
|
| /// File Name: |
metacart-sql.txt |
Description:
|
MetaCart is vulnerable to SQL injection attacks in productsByCategory.asp.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 273 | | Last Modified: | Nov 14 19:22:43 2007 |
| MD5 Checksum: | 0cf979f2d7803881723cc0cd2cfec6d5 |
|
| /// File Name: |
docusafe-sql.txt |
Description:
|
DocuSafe is susceptible to SQL injection attacks via the search section.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 908 | | Last Modified: | Nov 14 19:22:09 2007 |
| MD5 Checksum: | 0f347b2d172b36637b5c0a727c7cfc30 |
|
| /// File Name: |
exophpdesk-sql.txt |
Description:
|
ExoPHPdesk may be susceptible to cross site scripting and SQL injection vulnerabilities via the profile functionality.
| | Author: | Joseph Giron | | File Size: | 366 | | Last Modified: | Nov 14 01:46:15 2007 |
| MD5 Checksum: | 37980891375b0f8b53768543f244f101 |
|
| /// File Name: |
wpslimstat-xss.txt |
Description:
|
It appears that wp-slimstat version 0.92 for Wordpress 2.3 suffers from a cross site scripting vulnerability.
| | Homepage: | http://xssworm.com/ | | File Size: | 4541 | | Last Modified: | Nov 13 22:56:56 2007 |
| MD5 Checksum: | c6e9edb5f838715f199597eed0ed9c61 |
|
| /// File Name: |
myspaceclone-sql.txt |
Description:
|
MySpace Clone Script suffers from a remote SQL injection vulnerability.
| | Author: | t0pp8uzz, xprog | | File Size: | 1181 | | Last Modified: | Nov 13 20:57:17 2007 |
| MD5 Checksum: | 75c895c8ba777b89181a948cb170de95 |
|
| /// File Name: |
vtls-xss.txt |
Description:
|
VTLS Inc.'s vtls.web.gateway CGI is susceptible to a cross site scripting vulnerability. Versions up to 48.1.0 are affected.
| | Author: | Jesus Olmos Gonzalez | | File Size: | 3352 | | Last Modified: | Nov 13 12:40:04 2007 |
| MD5 Checksum: | 2a8b7b1bc67d3bbbf94037535e82cdfc |
|
| /// File Name: |
autoindex-xss.txt |
Description:
|
AutoIndex versions 2.2.2 and below suffer from cross site scripting and denial of service vulnerabilities.
| | Author: | L4teral | | File Size: | 1326 | | Last Modified: | Nov 12 23:34:45 2007 |
| MD5 Checksum: | 10c2051a25f8cdd661fc3e1fb2e02924 |
|
| /// File Name: |
x7-xss.txt |
Description:
|
X7 Chat version 2.0.4 is susceptible to cross site scripting vulnerabilities.
| | Author: | ShAy6oOoN | | File Size: | 888 | | Last Modified: | Nov 12 23:33:25 2007 |
| MD5 Checksum: | 7454cfb6a641f1cf7961dc3a698d282f |
|
| /// File Name: |
eggblog-xss.txt |
Description:
|
Eggblog version 3.1.0 is susceptible to cross site scripting vulnerabilities.
| | Author: | Mesut Timur | | Homepage: | http://www.h-labs.org/ | | File Size: | 2273 | | Last Modified: | Nov 12 22:44:01 2007 |
| MD5 Checksum: | fb2bc0b01041daf3e29e60d0c593348c |
|
| /// File Name: |
phpnukema-sql.txt |
Description:
|
PHP-Nuke Module Advertising blind SQL injection exploit.
| | Author: | Guns | | Homepage: | http://www.0x90.com.ar/ | | File Size: | 2531 | | Last Modified: | Nov 12 22:13:06 2007 |
| MD5 Checksum: | 387e9b73cdd9dec64053915dd996ef01 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
