Section: .. / 0806-exploits /
| /// File Name: |
fluxcms-overwrite.txt |
Description:
|
Flux CMS versions 1.5.0 and below remote arbitrary file overwrite exploit that leverages loadsave.php.
| | Author: | EgiX | | File Size: | 6561 | | Last Modified: | Jun 9 17:40:07 2008 |
| MD5 Checksum: | 99a63c5f1623a118aa28be63cf7a5981 |
|
| /// File Name: |
aspilot-sql.txt |
Description:
|
ASPilot Pilot Cart version 7.3 suffers from a SQL injection vulnerability.
| | Author: | Bl@ckbe@rd | | File Size: | 1467 | | Last Modified: | Jun 9 17:34:20 2008 |
| MD5 Checksum: | 8a10ad8698e9137177bc56d8188346fd |
|
| /// File Name: |
phpnuke79te-sql.txt |
Description:
|
PHP-Nuke versions 7.9 and below suffer from multiple SQL injection vulnerabilities using artid and secid.
| | Author: | StAkeR | | File Size: | 2506 | | Last Modified: | Jun 9 15:55:36 2008 |
| MD5 Checksum: | e236cb5e778214297596962c9ad2c35e |
|
| /// File Name: |
gwm-xsslfi.txt |
Description:
|
Galatolo WebManager versions 1.0 and below suffer from local file inclusion and cross site scripting vulnerabilities.
| | Author: | StAkeR | | File Size: | 2221 | | Last Modified: | Jun 9 15:53:09 2008 |
| MD5 Checksum: | b4040940c38b5de3516829ab103e8b7b |
|
| /// File Name: |
webta-xss.txt |
Description:
|
webTA systems, used by many federal employees, suffer from cross site scripting vulnerabilities.
| | Author: | Alex Eden | | File Size: | 1046 | | Last Modified: | Jun 9 15:49:03 2008 |
| MD5 Checksum: | 86ac13051157fea2a135f6481bebf2f6 |
|
| /// File Name: |
nextgen-xss.txt |
Description:
|
The Nextgen Gallery Wordpress plugin version 0.96 suffers from a persistent cross site scripting vulnerability.
| | Author: | Eduardo Neves | | File Size: | 986 | | Last Modified: | Jun 9 15:47:37 2008 |
| MD5 Checksum: | 9d462a1e447912383c14d45eba1dd9c6 |
|
| /// File Name: |
teldir-sqlxss.txt |
Description:
|
Telephone Directory 2008 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 2242 | | Last Modified: | Jun 9 15:45:56 2008 |
| MD5 Checksum: | 7188819e68d52eff45ed162ab1c21c1a |
|
| /// File Name: |
realestate-sqlxss.txt |
Description:
|
Real Estate Web Site version 1.0 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 1461 | | Last Modified: | Jun 9 15:44:36 2008 |
| MD5 Checksum: | ed5da9c20d693df53d69f07c8a6e27ec |
|
| /// File Name: |
promanager-lfi.txt |
Description:
|
ProManager version 0.73 suffers from a local file inclusion vulnerability in config.php.
| | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 570 | | Last Modified: | Jun 9 15:43:48 2008 |
| MD5 Checksum: | 79638165d19c2952acedb8827d280367 |
|
| /// File Name: |
ijoomla-blindsql.txt |
Description:
|
Joomla News Portal component versions 1.0 and below blind SQL injection exploit.
| | Author: | Ilker Kandemir | | File Size: | 2344 | | Last Modified: | Jun 9 10:32:02 2008 |
| MD5 Checksum: | f793c1816a3ddf7eb6d8eb0f83bbca26 |
|
| /// File Name: |
joomlarapidrec-sql.txt |
Description:
|
The Joomla RapidRecipe component suffers from a remote SQL injection vulnerability.
| | Author: | His0k4 | | File Size: | 944 | | Last Modified: | Jun 9 10:30:06 2008 |
| MD5 Checksum: | 61eb22d32271558ab4f08bd807a8ae3c |
|
| /// File Name: |
xoopsuploader-lfi.txt |
Description:
|
XOOPS module Uploader version 1.1 suffers from a file disclosure vulnerability.
| | Author: | MEEKAAH | | File Size: | 1348 | | Last Modified: | Jun 9 10:26:13 2008 |
| MD5 Checksum: | da8e2236a129c546e1113bd4a0eb9b70 |
|
| /// File Name: |
joomlayvcom-sql.txt |
Description:
|
Joomla yvcomment component versions 1.16 and below blind SQL injection exploit.
| | Author: | His0k4 | | File Size: | 2963 | | Last Modified: | Jun 9 10:25:13 2008 |
| MD5 Checksum: | 6ee1b9d6c9f49711a10e16343f11e8f8 |
|
| /// File Name: |
fastfree-rfi.txt |
Description:
|
Fast Free Media Script remote code execution exploit that makes use of a remote file inclusion vulnerability.
| | Author: | Liz0ziM | | Homepage: | http://www.biyosecurity.com | | File Size: | 2592 | | Last Modified: | Jun 9 10:21:54 2008 |
| MD5 Checksum: | 7ddbce8b47519e68b2e019b1b5f60517 |
|
| /// File Name: |
galatolo-sql.txt |
Description:
|
Galatolo Web Manager versions 1.0 and below remote SQL injection exploit.
| | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 3450 | | Last Modified: | Jun 9 10:16:50 2008 |
| MD5 Checksum: | d1552015cb9ac399a63bc20c4e37b24d |
|
| /// File Name: |
galatolo-lfi.txt |
Description:
|
Unavailable.
| | File Size: | 1932 | | Last Modified: | Jun 9 10:15:39 2008 |
| MD5 Checksum: | 701a5dc0bdbf945e347ca7c99d933d5d |
|
| /// File Name: |
browsercrm-rfi.txt |
Description:
|
BrowserCRM version 5.002.00 suffers from a remote file inclusion vulnerability in clients.php.
| | Author: | ahmadbady | | File Size: | 400 | | Last Modified: | Jun 9 10:14:36 2008 |
| MD5 Checksum: | 57fff89f7ca7233c30594fb28bd06562 |
|
| /// File Name: |
phpinv-lfixss.txt |
Description:
|
PHPInv version 0.8.0 suffers from local file inclusion and cross site scripting vulnerabilities.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 2390 | | Last Modified: | Jun 9 10:13:20 2008 |
| MD5 Checksum: | 4d7df5dac15e09016898fbcdbae158a9 |
|
| /// File Name: |
jiro-sql.txt |
Description:
|
JiRo's FAQ Manager version 1.0 suffers from a SQL injection vulnerability in read.asp.
| | Author: | Underz0ne Crew | | Homepage: | http://www.underz0ne.net/ | | File Size: | 950 | | Last Modified: | Jun 9 10:10:08 2008 |
| MD5 Checksum: | 585d2c36249be9c5beb60947f16dc82f |
|
| /// File Name: |
joomlagameq-sql.txt |
Description:
|
The Joomla GameQ component versions 4.0 and below suffer from a SQL injection vulnerability.
| | Author: | His0k4 | | File Size: | 618 | | Last Modified: | Jun 7 18:28:10 2008 |
| MD5 Checksum: | 6d9a99abd76c7d48c68ea5c98d952844 |
|
| /// File Name: |
netscout-admin.txt |
Description:
|
Network General Enterprise Administrator from Net Scout allows for administrative actions to be performed as a user when direct URLs are visited.
| | Author: | jgrove_2000 | | File Size: | 650 | | Last Modified: | Jun 6 19:06:20 2008 |
| MD5 Checksum: | 51c9bea859c0050b930bbc7365001b60 |
|
| /// File Name: |
schoolcenter-xss.txt |
Description:
|
SchoolCenter versions 8.0 and below suffer from a URL handling cross site scripting vulnerability.
| | Author: | DoZ | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1103 | | Last Modified: | Jun 6 18:56:42 2008 |
| MD5 Checksum: | 402f1fe0aaef4778d66bbbcfd3c47773 |
|
| /// File Name: |
webalbum-xss.txt |
Description:
|
WEBAlbum version 2.0 and below suffer from a remote stored cross site scripting vulnerability.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1171 | | Last Modified: | Jun 6 18:52:43 2008 |
| MD5 Checksum: | 4c884085802d1607928c753f217fbcdf |
|
| /// File Name: |
freesshd-sehoverflow.txt |
Description:
|
FreeSSHD version 1.2.1 post authentication remote SEH overflow exploit that spawns a shell on port 4444.
| | Author: | Matteo Memelli | | Homepage: | http://be4mind.com/ | | File Size: | 7519 | | Last Modified: | Jun 6 18:41:50 2008 |
| MD5 Checksum: | cc5d3e5aeddb24be40550a1ab91a6ec7 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
