Section: .. / 0712-exploits /
| /// File Name: |
bitweaver-sqlxss.txt |
Description:
|
Bitweaver is susceptible to multiple cross site scripting and SQL injection vulnerabilities.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1591 | | Last Modified: | Dec 10 17:39:58 2007 |
| MD5 Checksum: | 7f9af4f3f67335d9330af7c7ad7bce00 |
|
| /// File Name: |
websihirbazi-sql.txt |
Description:
|
websihirbazi version 5.1.1 suffers from a remote blind SQL injection vulnerability.
| | Author: | bypass | | File Size: | 1586 | | Last Modified: | Dec 24 14:34:26 2007 |
| MD5 Checksum: | 9ce508c38df794abcc0010fe4506a72b |
|
| /// File Name: |
rayzz-rfli.txt |
Description:
|
Rayzz Script version 2.0 suffers from remote and local file inclusion vulnerabilities.
| | Author: | Crackers_Child | | File Size: | 1585 | | Last Modified: | Dec 2 16:02:48 2007 |
| MD5 Checksum: | 0445e70bdf7c5f765545448de43f9944 |
|
| /// File Name: |
phpmyrealty-sql.txt |
Description:
|
phpMyRealty version 1.0.x suffers from a remote SQL injection vulnerability in search.php.
| | Author: | Koller | | Homepage: | http://xaker.name/ | | File Size: | 1579 | | Last Modified: | Dec 19 19:34:41 2007 |
| MD5 Checksum: | 935b527f913d6735c673beeb82735fb1 |
|
| /// File Name: |
oneschool-sql.txt |
Description:
|
oneSCHOOL remote SQL injection exploit that makes use of admin/login.asp.
| | Author: | Guga360 | | File Size: | 1555 | | Last Modified: | Dec 31 16:37:05 2007 |
| MD5 Checksum: | 8cbdbe99b911320a85050c36c1aecd08 |
|
| /// File Name: |
hotornot-backup.txt |
Description:
|
Hot or Not clone by jnshosts.com suffers from a database backup dump vulnerability.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 1541 | | Last Modified: | Dec 28 20:02:15 2007 |
| MD5 Checksum: | 1860000f2411dd557cd6aa19d56feab9 |
|
| /// File Name: |
mihalism-rfi.txt |
Description:
|
Mihalism Multi Forum Host versions 3.0.x and below suffer from a remote file inclusion vulnerability.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1533 | | Last Modified: | Dec 29 15:46:27 2007 |
| MD5 Checksum: | bfdefa79b928c3f68a21aafde8c26220 |
|
| /// File Name: |
wallpaper-sql.txt |
Description:
|
Wallpaper Site version 1.0.09 suffers from a remote SQL injection vulnerability in category.php.
| | Author: | Koller | | Homepage: | http://xaker.name/ | | File Size: | 1457 | | Last Modified: | Dec 24 14:29:52 2007 |
| MD5 Checksum: | dcb7534ffe7afa48a0edb3a67840f144 |
|
| /// File Name: |
adult-sql.txt |
Description:
|
Adult Script versions 1.65 and below suffer from multiple remote SQL injection vulnerabilities.
| | Author: | MhZ91 | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 1443 | | Last Modified: | Dec 24 14:32:54 2007 |
| MD5 Checksum: | bdec9342946109cc1019596963c50277 |
|
| /// File Name: |
myphp-sql.txt |
Description:
|
MyPHP Forum versions 3.0 and below suffer from multiple SQL injection vulnerabilities.
| | Author: | x0kster | | File Size: | 1443 | | Last Modified: | Dec 31 16:19:36 2007 |
| MD5 Checksum: | 8b4f2ec6e5581e96d2cc91ba6e64d847 |
|
| /// File Name: |
iptbb-sql.txt |
Description:
|
IPTBB versions 0.5.4 and below suffer from a remote SQL injection vulnerability.
| | Author: | MhZ91 | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 1438 | | Last Modified: | Dec 31 16:18:40 2007 |
| MD5 Checksum: | 89a465390b9b252a2ba9a39474ce5012 |
|
| /// File Name: |
mpaa-xss.txt |
Description:
|
The MPAA web site suffers from cross site scripting vulnerabilities.
| | Author: | Kristian Erik Hermansen | | File Size: | 1401 | | Last Modified: | Dec 5 23:38:57 2007 |
| MD5 Checksum: | 3b9dc6bc500b98fcd582ed4ec8eae1bf |
|
| /// File Name: |
agares-rfilfi.txt |
Description:
|
Agares PhpAutoVideo version 2.21 suffers from remote and local file inclusion vulnerabilities.
| | Author: | MhZ91 | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 1375 | | Last Modified: | Dec 24 19:14:35 2007 |
| MD5 Checksum: | 20dbcf2177650e68d90ab6a961d387cb |
|
| /// File Name: |
phpay-lfi.txt |
Description:
|
Phpay version 2.02.1 appears to suffer from a local file inclusion vulnerability.
| | Author: | Michael Brooks | | File Size: | 1367 | | Last Modified: | Dec 17 20:15:46 2007 |
| MD5 Checksum: | a3b69fdb8732ef914a2238963220893c |
|
| /// File Name: |
pnphpbb2-lfi.txt |
Description:
|
PNphpBB2 versions 1.2i and below suffer from a local file inclusion vulnerability in printview.php.
| | Author: | irk4z | | File Size: | 1359 | | Last Modified: | Dec 28 18:07:37 2007 |
| MD5 Checksum: | 5220f81d43e3d77de5ef990354283bcb |
|
| /// File Name: |
joomla15-blindsql.txt |
Description:
|
Joomla version 1.5 RC3 appears susceptible to a blind SQL injection vulnerability.
| | Author: | Beenu Arora | | File Size: | 1355 | | Last Modified: | Dec 2 15:53:29 2007 |
| MD5 Checksum: | 9f713cd99bed455b554a21afc33da918 |
|
| /// File Name: |
gf3xplorer-multi.txt |
Description:
|
GF-3XPLORER version 2.4 suffers from cross site scripting and local file inclusion vulnerabilities.
| | Author: | MhZ91 | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 1335 | | Last Modified: | Dec 18 20:03:46 2007 |
| MD5 Checksum: | 7a8cf6738534810989d48cf22376dfb2 |
|
| /// File Name: |
serendipity-xss.txt |
Description:
|
The Serendipity blog system contains a plugin to display the content of feeds in the sidebar (serendipity_plugin_remoterss). If an attacker can modify the RSS feed, it is possible to inject javascript code in the link part, because it is not correctly escaped. Versions below 1.2.1 are affected.
| | Author: | Hanno Boeck | | Homepage: | http://www.hboeck.de/ | | File Size: | 1316 | | Related CVE(s): | CVE-2007-6205 | | Last Modified: | Dec 10 19:43:37 2007 |
| MD5 Checksum: | b821d6ea55e23f0392f1f8a833a17acd |
|
| /// File Name: |
squirrel-inject.txt |
Description:
|
SquirrelMail G/PGP Plugin deletekey() command injection exploit.
| | Homepage: | http://backdoored.net/ | | File Size: | 1302 | | Last Modified: | Dec 11 22:18:03 2007 |
| MD5 Checksum: | bdcdcbf4669f1324020ff2f4f185a0b8 |
|
| /// File Name: |
snitz-sql.txt |
Description:
|
Snitz Forums 2000 suffers from a remote SQL injection vulnerability in Active.asp.
| | Homepage: | http://www.bugreport.ir/ | | File Size: | 1280 | | Last Modified: | Dec 3 23:51:40 2007 |
| MD5 Checksum: | bd4e072c15bfbb8f79608f8e8347ba97 |
|
| /// File Name: |
vlcboffs.zip |
Description:
|
Proof of concept code that demonstrates format string and buffer overflow vulnerabilities in VideoLAN (VLC) versions 0.8.6d and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | vlcboffs.txt | | File Size: | 1225 | | Last Modified: | Dec 24 15:02:46 2007 |
| MD5 Checksum: | b7908e112e7acaa892b7c5240ba41697 |
|
| /// File Name: |
dokeos-xss.txt |
Description:
|
Dokeos versions 1.8.4 and below suffer from cross site scripting vulnerabilities.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1217 | | Last Modified: | Dec 24 18:15:00 2007 |
| MD5 Checksum: | cc5bf98f465124be2202a2bdf2034846 |
|
| /// File Name: |
neuron-multi.txt |
Description:
|
neuron news version 1.0 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | virangar security team | | Homepage: | http://www.virangar.org/ | | File Size: | 1203 | | Last Modified: | Dec 17 20:32:16 2007 |
| MD5 Checksum: | 1c19196b58d4e49202752785ccd0fbc1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
