Section: .. / 0802-exploits /
| /// File Name: |
bcooslid-sql.txt |
Description:
|
bcoos versions 1.0.11 and below suffer from a SQL injection vulnerability in ratefile.php.
| | Author: | Lostmon | | Homepage: | http://lostmon.blogspot.com/ | | File Size: | 2203 | | Last Modified: | Feb 7 23:08:01 2008 |
| MD5 Checksum: | 4357d3768d75f11ed54958d6341f28d0 |
|
| /// File Name: |
backupexec-upload.txt |
Description:
|
Backup Exec System Recovery Manager versions 7.0.1 and below file upload proof of concept exploit.
| | Author: | titon | | File Size: | 641 | | Last Modified: | Feb 7 20:28:09 2008 |
| MD5 Checksum: | 4cdd5f57c4c02a08f0217258a35533f3 |
|
| /// File Name: |
saplpd-overflow.txt |
Description:
|
SapLPD version 6.28 remote buffer overflow exploit for win32 that binds a shell to port 515.
| | Author: | BackBone | | File Size: | 7883 | | Last Modified: | Feb 7 20:27:12 2008 |
| MD5 Checksum: | 1b3c05840dbe431e10490eb000890837 |
|
| /// File Name: |
tvp120-overflow.txt |
Description:
|
Total Video Player version 1.20 M3U file local buffer overflow exploit that can bind a shell or spawn calc.exe.
| | Author: | fl0 fl0w | | Homepage: | http://fl0-fl0w.docspages.com/ | | File Size: | 5916 | | Last Modified: | Feb 7 20:25:57 2008 |
| MD5 Checksum: | 4fb4cdac8a72a9e151819216d01dc535 |
|
| /// File Name: |
joomlacommon-sql.txt |
Description:
|
The Joomla component Commonwealth Business Council suffers from a SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1067 | | Last Modified: | Feb 7 20:24:52 2008 |
| MD5 Checksum: | dc44dea2e0aa4932d09cc5ec5be027ee |
|
| /// File Name: |
DSECRG-08-013.txt |
Description:
|
MODx CMS versions 0.9.6.1 and 0.9.6.1p1 suffer from cross site scripting and cross site request forgery vulnerabilities.
| | Author: | Sh2kerr, Stas Svistunovich | | Homepage: | http://www.dsec.ru/ | | File Size: | 4397 | | Last Modified: | Feb 7 20:20:57 2008 |
| MD5 Checksum: | aab6484a7aa480a41f823397cdf045c1 |
|
| /// File Name: |
minipub-multi.txt |
Description:
|
mini-pub version 0.3 suffers from local file inclusion, remote file inclusion, and code execution vulnerabilities.
| | Author: | muuratsalo | | File Size: | 451 | | Last Modified: | Feb 7 15:14:42 2008 |
| MD5 Checksum: | 2acc2acad13b2ba9ad977e7e7bc2643e |
|
| /// File Name: |
mambosermon-sql.txt |
Description:
|
The Mambo component Sermon version 0.2 suffers from a SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1778 | | Last Modified: | Feb 7 14:59:37 2008 |
| MD5 Checksum: | 469d71e68593016120df20cdc65a0e91 |
|
| /// File Name: |
oscom-sql.txt |
Description:
|
The osCommerce add-on Customer Testimonials version 3.1 suffers from a SQL injection vulnerability.
| | Author: | it's my | | Homepage: | http://www.antichat.ru/ | | File Size: | 774 | | Last Modified: | Feb 7 14:58:26 2008 |
| MD5 Checksum: | b1156bef26a24b4e5021f353988bbbd7 |
|
| /// File Name: |
wsftp-disclose.txt |
Description:
|
WS_FTP Server versions 6.1.0.0 and below and Ipswitch What's Up Gold version 11.03 suffer from source disclosure and authorization bypass vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 3402 | | Last Modified: | Feb 6 17:41:09 2008 |
| MD5 Checksum: | 81b64097e04c318bfabd766d172695cb |
|
| /// File Name: |
mihalism-sql.txt |
Description:
|
Mihalism Multi Host Download blind SQL injection exploit that makes use of users.php.
| | Author: | Moubik | | Homepage: | http://rstzone.org/ | | File Size: | 5049 | | Last Modified: | Feb 6 16:43:23 2008 |
| MD5 Checksum: | 5b6927bbcf0e839f8c6edb0234a42dda |
|
| /// File Name: |
joomlaynews-sql.txt |
Description:
|
The Joomla Ynews component version 1.0.0 suffers from a remote SQL injection vulnerability.
| | Author: | Crackers_Child | | File Size: | 787 | | Last Modified: | Feb 6 16:40:51 2008 |
| MD5 Checksum: | 774fb4451bf3f2fb4176af4e8dacba00 |
|
| /// File Name: |
planetluc-xss.txt |
Description:
|
MyNews version 1.6.x suffers from HTML and Javascript injection vulnerabilities allowing for cross site scripting attacks.
| | Author: | SkyOut | | Homepage: | http://www.core-security.net/ | | File Size: | 2656 | | Last Modified: | Feb 6 14:47:39 2008 |
| MD5 Checksum: | 8d2752ce6b73a2f67e80dc34f5b19458 |
|
| /// File Name: |
astanda-sql.txt |
Description:
|
Astanda Directory Project version 1.2 suffers from a SQL injection vulnerability.
| | Author: | you_kn0w | | Homepage: | http://www.youknowz.info/ | | File Size: | 1335 | | Last Modified: | Feb 6 14:42:30 2008 |
| MD5 Checksum: | 9b1d1a26513ba77736696d32b0dc7f18 |
|
| /// File Name: |
mybbprivate-sql.txt |
Description:
|
MyBulletinBoard aka MyBB versions 1.2.11 and below SQL injection exploit that makes use of private.php.
| | Author: | F | | Related Exploit: | waraxe-2008-SA064.txt | | File Size: | 4446 | | Last Modified: | Feb 6 14:41:29 2008 |
| MD5 Checksum: | 574b08fc38cff78e650aa5259f3c272d |
|
| /// File Name: |
webmin1390-xss.txt |
Description:
|
Webmin version 1.390 suffers from a cross site scripting vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 564 | | Last Modified: | Feb 6 14:30:49 2008 |
| MD5 Checksum: | a9b7cca9383f9ef021cc2cc4925ca351 |
|
| /// File Name: |
osa-rfi.txt |
Description:
|
OpenSiteAdmin versions 0.9.1.1 and below suffer from multiple remote file inclusion vulnerabilities.
| | Author: | Trancek | | File Size: | 2212 | | Last Modified: | Feb 6 02:39:57 2008 |
| MD5 Checksum: | fbc661fc8ce7d299d62f81a675a24b44 |
|
| /// File Name: |
titan-heap-py.txt |
Description:
|
Titan FTP server version 6.05 Build 550 heap overflow denial of service exploit written in Python.
| | Author: | j0rgan | | File Size: | 1314 | | Last Modified: | Feb 5 21:42:05 2008 |
| MD5 Checksum: | 37476a025bf5b960b744dd3310bb8c1a |
|
| /// File Name: |
wpmu-exec.txt |
Description:
|
Wordpress MU versions below 1.3.2 active_plugins option code execution exploit.
| | Author: | Alexander Concha | | Homepage: | http://www.buayacorp.com/ | | File Size: | 2870 | | Last Modified: | Feb 5 20:46:44 2008 |
| MD5 Checksum: | cff73c0816f110093c1d8760dbdb41a4 |
|
| /// File Name: |
photokorn-sql.txt |
Description:
|
Photokorn Gallery version 1.543 suffers from a SQL injection vulnerability.
| | Author: | you_kn0w | | Homepage: | http://www.youknowz.info/ | | File Size: | 1263 | | Last Modified: | Feb 5 20:43:15 2008 |
| MD5 Checksum: | e624915cf3c46dc9787b3f4d1e6889f0 |
|
| /// File Name: |
allclub-sql.txt |
Description:
|
All Club CMS versions 0.0.1f and below suffer from a remote SQL injection vulnerability in index.php.
| | Author: | ka0x | | File Size: | 1240 | | Last Modified: | Feb 5 20:42:08 2008 |
| MD5 Checksum: | 0b80ec12a6179edc7372fed4d8e21d4e |
|
| /// File Name: |
rmsoft-sql.txt |
Description:
|
RMSOFT Gallery System version 2.0 suffers from a SQL injection vulnerability in images.php.
| | Author: | you_kn0w | | Homepage: | http://www.youknowz.info/ | | File Size: | 1263 | | Last Modified: | Feb 5 20:41:23 2008 |
| MD5 Checksum: | dca9fc2b2978579c4f8b3d17bad371b0 |
|
| /// File Name: |
DSECRG-08-012.txt |
Description:
|
Azucar CMS version 1.3 suffers from a local file inclusion vulnerability.
| | Author: | Sh2kerr, Stas Svistunovich | | Homepage: | http://www.dsec.ru/ | | File Size: | 2861 | | Last Modified: | Feb 5 20:11:25 2008 |
| MD5 Checksum: | 23e797818c14c48d5a24969006f3fb57 |
|
| /// File Name: |
allclub-lfi.txt |
Description:
|
All Club CMS versions 0.0.1f and below suffer from a local file inclusion vulnerability in index.php.
| | Author: | Trancek | | File Size: | 691 | | Last Modified: | Feb 5 20:09:47 2008 |
| MD5 Checksum: | 77335980f36cce12c63ac464b16100c1 |
|
| /// File Name: |
dbpoweramp-dos.txt |
Description:
|
dBpowerAMP Audio Player release 2 remote buffer overflow proof of concept denial of service exploit.
| | Author: | securfrog | | File Size: | 803 | | Last Modified: | Feb 5 20:07:33 2008 |
| MD5 Checksum: | d57278130b1e762172dee0fc5e2fa21c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
