Section: .. / 0701-exploits /
| /// File Name: |
212cafeboard-xss.txt |
Description:
|
212cafeBoard version 0.08 Beta and 6.30 Beta are susceptible to cross site scripting attacks.
| | Author: | Linux_Drox | | Homepage: | http://www.LeZr.Com/vb | | File Size: | 616 | | Last Modified: | Jan 23 23:04:00 2007 |
| MD5 Checksum: | d2a92acabec410cacf7c6ee7ec91293b |
|
| /// File Name: |
admentor-sql.txt |
Description:
|
AdMentor suffers from a SQL injection vulnerability that allows for login bypass.
| | Author: | sn0oPy | | File Size: | 436 | | Last Modified: | Jan 29 11:27:52 2007 |
| MD5 Checksum: | 255ca22fc52604dc52d49c8054b99032 |
|
| /// File Name: |
adobeplugin.txt |
Description:
|
The Adobe Acrobat Reader plugin is susceptible to session riding and cross site scripting vulnerabilities.
| | Author: | Stefano Di Paola | | Homepage: | http://www.wisec.it/ | | File Size: | 5025 | | Last Modified: | Jan 4 02:31:20 2007 |
| MD5 Checksum: | cdcfb7f0fe7c3c08289067140c9c2be4 |
|
| /// File Name: |
adv62-y3dips-2007.txt |
Description:
|
Upload Service version 1.0 suffers from a remote file inclusion flaw.
| | Author: | y3dips | | Homepage: | http://echo.or.id/ | | File Size: | 1787 | | Last Modified: | Jan 24 01:42:09 2007 |
| MD5 Checksum: | 6d3348f6b4f7cb170691af62ef746048 |
|
| /// File Name: |
aiocp-bypass.txt |
Description:
|
AIOCP versions 1.3.009 and below suffer from a login bypass vulnerability due to another SQL injection flaw.
| | Author: | Coloss | | File Size: | 3076 | | Last Modified: | Jan 13 20:03:53 2007 |
| MD5 Checksum: | d9029f6c2fc59e53e0d3c2f01c26a401 |
|
| /// File Name: |
aiocp-sql.txt |
Description:
|
AIOCP versions 1.3.009 and below suffer from a SQL injection vulnerability.
| | Author: | Coloss | | File Size: | 4729 | | Last Modified: | Jan 13 20:02:58 2007 |
| MD5 Checksum: | 8619a6df1ea243916f1196a897b36e21 |
|
| /// File Name: |
ajlogin35-mdb.txt |
Description:
|
AJLogin versions 3.5 suffers from a remote password disclosure flaw.
| | Author: | beks | | File Size: | 234 | | Last Modified: | Jan 13 16:25:45 2007 |
| MD5 Checksum: | a31e878c5d21b97840da9e08777d95c1 |
|
| /// File Name: |
arcserve.py.txt |
Description:
|
CA BrightStor ARCserver tapeeng.exe remote buffer overflow exploit for Windows 2000 that binds a shell to port 4443.
| | Author: | Winny Thomas | | File Size: | 3998 | | Last Modified: | Jan 13 18:52:16 2007 |
| MD5 Checksum: | 817658b2c1c984fa07f10f765cb0c1b6 |
|
| /// File Name: |
arsdigita-traverse.txt |
Description:
|
Ars Digita Community System (ACS) versions 3.4.10 and below suffer from a directory traversal vulnerability.
| | Author: | Elliot Kendall | | File Size: | 2517 | | Last Modified: | Jan 19 22:36:56 2007 |
| MD5 Checksum: | bccdd934e449d00f30ebc95270f1c1bb |
|
| /// File Name: |
ashopcom-xss.txt |
Description:
|
Ashop Commerce suffers from multiple cross site scripting vulnerabilities.
| | Author: | DoZ | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1398 | | Last Modified: | Jan 1 22:10:24 2007 |
| MD5 Checksum: | 7b63705346ac3a4050db334c4c17e528 |
|
| /// File Name: |
aspbb.txt |
Description:
|
AspBB is susceptible to a direct database download flaw.
| | Homepage: | http://www.aria-security.net/ | | File Size: | 295 | | Last Modified: | Jan 2 20:13:40 2007 |
| MD5 Checksum: | 59a346168a15e22418c1aa874d33c8cc |
|
| /// File Name: |
aspedge12b-sql.txt |
Description:
|
ASP EDGE versions 1.2b and below suffer from a remote SQL injection vulnerability in user.asp.
| | Author: | ajann | | File Size: | 695 | | Last Modified: | Jan 26 22:24:09 2007 |
| MD5 Checksum: | 4b88ee9cef640c3a96c691623ec2b85d |
|
| /// File Name: |
aspnews3-sql.txt |
Description:
|
ASP NEWS version 3 suffers from a remote SQL injection vulnerability in news_detail.asp.
| | Author: | ajann | | File Size: | 606 | | Last Modified: | Jan 26 22:23:27 2007 |
| MD5 Checksum: | 347e116bf84c101508f8a4fc47d454c5 |
|
| /// File Name: |
avm-traversal.txt |
Description:
|
The AR7 webserver included in the AVM UPNP service for windows suffers from a directory traversal flaw.
| | Author: | DPR | | File Size: | 1380 | | Last Modified: | Jan 19 20:24:32 2007 |
| MD5 Checksum: | 4096d42a11e6cad95b7283a6c55cbdc4 |
|
| /// File Name: |
aztek41-sploit.txt |
Description:
|
Aztek Forum version 4.1 exploit that demonstrates multiple vulnerabilities including SQL injection and filter bypas flaws.
| | Author: | DarkFig | | File Size: | 8607 | | Last Modified: | Jan 26 22:29:21 2007 |
| MD5 Checksum: | bd590478d05ad6c99ce470ad94c2ffb4 |
|
| /// File Name: |
battleblog-db.txt |
Description:
|
BattleBlog suffers from a remote database disclosure vulnerability.
| | Homepage: | http://www.aria-security.com | | File Size: | 315 | | Last Modified: | Jan 1 22:17:20 2007 |
| MD5 Checksum: | d4c4c4381eeef0c789fda3e24b139814 |
|
| /// File Name: |
bbclone-rfi.txt |
Description:
|
BBClone version 0.31 suffers from a remote file inclusion vulnerability in selectlang.php.
| | Author: | Dr Max Virus | | File Size: | 1115 | | Last Modified: | Jan 24 00:10:43 2007 |
| MD5 Checksum: | 31741c2736b05fd8e448bbebe0919141 |
|
| /// File Name: |
berlios.meta.txt |
Description:
|
This Metasploit module exploits a format string vulnerability in the Berlios GPSD server. This vulnerability was discovered by Kevin Finisterre.
| | Author: | senotier@enseirb.fr | | File Size: | 3476 | | Last Modified: | Jan 13 18:56:57 2007 |
| MD5 Checksum: | 484e7a591e8ea80dd8ad2f5352e1486e |
|
| /// File Name: |
bitweaver-xss.txt |
Description:
|
Bitweaver version 1.3.1 is susceptible to cross site scripting attacks.
| | Author: | CorryL | | Homepage: | http://www.x0n3-h4ck.org | | File Size: | 2255 | | Last Modified: | Jan 24 01:00:32 2007 |
| MD5 Checksum: | 31e2f77c874db26053b7f2fcac26e80a |
|
| /// File Name: |
BTP00002P001SK.zip |
Description:
|
Proof of concept exploit code for a flaw in the Sunbelt Kerio Personal Firewall versions 4.3.268 and below which suffer from a DLL injection vulnerability.
| | Homepage: | http://www.matousec.com/ | | Related File: | sunbelt.txt | | File Size: | 7566 | | Last Modified: | Jan 1 22:21:58 2007 |
| MD5 Checksum: | 2333a0a746cdce2f5076d0fc99dd6ead |
|
| /// File Name: |
BTP00003P004AO.zip |
Description:
|
Demonstration exploit code for a self-protection bypass flaw that exists in OutPost Firewall PRO 4.0.
| | Homepage: | http://www.matousec.com/ | | Related File: | outpost40-vuln.txt | | File Size: | 93232 | | Last Modified: | Jan 15 22:23:12 2007 |
| MD5 Checksum: | 4f9e83781ca72e1686f4ece1f8681b6e |
|
| /// File Name: |
cacti086i-remote.txt |
Description:
|
Cacti versions 0.8.6i and below remote injection exploit that makes use of cmd.php and allows for arbitrary code execution.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 5356 | | Last Modified: | Jan 19 22:50:37 2007 |
| MD5 Checksum: | 63f152f8e622cf7721ee603df77032d2 |
|
| /// File Name: |
camouflage-crack.txt |
Description:
|
Camouflage version 1.2.1 suffers from a vulnerability that allows access to encrypted files.
| | Author: | NtWaK0, NoPh0BiA | | File Size: | 4126 | | Last Modified: | Jan 13 16:37:12 2007 |
| MD5 Checksum: | e55cf76cf98831630e2554aa141c3efd |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
