Section: .. / 0701-exploits /
| /// File Name: |
trevorchan07-rfi.txt |
Description:
|
Trevorchan version 0.7 suffers from a remote file inclusion vulnerability.
| | Author: | ilker Kandemir | | File Size: | 988 | | Last Modified: | Jan 13 20:10:48 2007 |
| MD5 Checksum: | 889ea11f23cc815c4d0ed66a151e830f |
|
| /// File Name: |
MA-23-06-2006.txt |
Description:
|
Multiple AOL websites are susceptible to SQL injection attacks.
| | Author: | Metaeye SG | | Homepage: | http://www.metaeye.org/ | | File Size: | 963 | | Last Modified: | Jan 1 21:55:58 2007 |
| MD5 Checksum: | 452fb0fd0ee52feb44e6a27f1b879c82 |
|
| /// File Name: |
nunenews-rfi.txt |
Description:
|
NUNE News Script suffers from a remote file inclusion vulnerability in custom_admin_path.
| | Author: | xoron | | File Size: | 944 | | Last Modified: | Jan 13 16:31:24 2007 |
| MD5 Checksum: | 3b71db660f43b0ec945dd7057ba5368d |
|
| /// File Name: |
spooky-sql.txt |
Description:
|
Spooky Login suffers from HTML and SQL injection vulnerabilities.
| | Author: | DoZ | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 936 | | Last Modified: | Jan 1 21:46:05 2007 |
| MD5 Checksum: | b5fab0df00ac9ce53b845bb936a66c4f |
|
| /// File Name: |
jax-rfi.txt |
Description:
|
Jax Petition Book suffers from remote file inclusion vulnerabilities.
| | Author: | ilker Kandemir | | File Size: | 909 | | Last Modified: | Jan 15 21:11:03 2007 |
| MD5 Checksum: | b3e7f8219d90d6b836f91ca5da8bd376 |
|
| /// File Name: |
ovidentia-rfi.txt |
Description:
|
Ovidentia version 5.6.x suffers from a remote file inclusion vulnerability.
| | Author: | hotturk | | File Size: | 878 | | Last Modified: | Jan 15 21:08:17 2007 |
| MD5 Checksum: | 72a57d8df844e5340b2883abb2cdfed6 |
|
| /// File Name: |
phpbb2-rfi.txt |
Description:
|
phpBB2 MODificat versions 0.2.0 and below suffer from a remote file inclusion vulnerability.
| | Author: | XORON | | File Size: | 865 | | Last Modified: | Jan 30 23:10:47 2007 |
| MD5 Checksum: | 20df6be9bc350ee80a75ca9bee5b1aa6 |
|
| /// File Name: |
okul-sql.txt |
Description:
|
Okul Web Otomasyon Sistemi suffers from a SQL injection vulnerability.
| | Author: | ilker Kandemir | | File Size: | 863 | | Last Modified: | Jan 15 22:17:03 2007 |
| MD5 Checksum: | bc0a145fc73a5748ba664662d7bd0556 |
|
| /// File Name: |
cscart133-rfi.txt |
Description:
|
CS-Cart version 1.3.3 suffers from a remote file inclusion vulnerability in install.php.
| | Author: | irvian | | File Size: | 816 | | Last Modified: | Jan 13 18:23:45 2007 |
| MD5 Checksum: | 46ab790d6c3376ec794e0e964a773de8 |
|
| /// File Name: |
MOAB-23-01-2007.pct |
Description:
|
Month of Apple Bugs - A vulnerability exists in the handling of ARGB records (Alpha RGB) within PICT images, that leads to an exploitable memory corruption condition. This is the proof of concept exploit in .pct format that demonstrates this vulnerability.
| | Author: | LMH | | Homepage: | http://projects.info-pull.com/moab/ | | File Size: | 814 | | Related CVE(s): | CVE-2007-0462 | | Last Modified: | Jan 24 00:26:41 2007 |
| MD5 Checksum: | fcae7cb4702799a0830019747e1aba01 |
|
| /// File Name: |
freeforum090-rfi.txt |
Description:
|
FreeForum version 0.9.0 suffers from a remote file inclusion vulnerability in index.php.
| | Author: | BorN To K!LL | | File Size: | 806 | | Last Modified: | Jan 24 00:05:41 2007 |
| MD5 Checksum: | 789b2ca3e8f51c521f3cdd365cb45810 |
|
| /// File Name: |
gps12-sql.txt |
Description:
|
GPS version 1.2 suffers from a remote SQL injection vulnerability in print.asp.
| | Author: | ajann | | File Size: | 791 | | Last Modified: | Jan 26 22:22:44 2007 |
| MD5 Checksum: | b5d43c741acbe643beecef36350fafc0 |
|
| /// File Name: |
oracle10g-3.txt |
Description:
|
Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL SQL injection exploit.
| | Author: | Joxean Koret | | File Size: | 783 | | Last Modified: | Jan 24 00:15:39 2007 |
| MD5 Checksum: | cdfc10dc1336a499c185b532bc08da26 |
|
| /// File Name: |
uniforum4-sql.txt |
Description:
|
uniForum versions 4 and below suffer from a remote SQL injection vulnerability in wbsearch.aspx.
| | Author: | ajann | | File Size: | 743 | | Last Modified: | Jan 26 22:26:09 2007 |
| MD5 Checksum: | 1dcdf1f915724c9910e127ed1693b232 |
|
| /// File Name: |
editx-rfi.txt |
Description:
|
edit x suffers from a remote file inclusion flaw.
| | Author: | IbnuSina | | File Size: | 740 | | Last Modified: | Jan 13 18:19:10 2007 |
| MD5 Checksum: | 5b18eb4e24b8c1896ee64602e69c827a |
|
| /// File Name: |
createauction-sql.txt |
Description:
|
createauction suffers from a remote SQL injection vulnerability in catid.
| | Author: | IbnuSina | | File Size: | 738 | | Last Modified: | Jan 13 16:23:33 2007 |
| MD5 Checksum: | 8a27c1648b5e4022e41c793cf2bdfc30 |
|
| /// File Name: |
lunar-rfi.txt |
Description:
|
LunarPoll version 1.0 suffers from a remote file inclusion vulnerability.
| | Author: | ilker Kandemir | | Homepage: | http://ayyildiz.org/ | | File Size: | 734 | | Last Modified: | Jan 13 19:02:07 2007 |
| MD5 Checksum: | 746a786cff33a813f035acc31244b376 |
|
| /// File Name: |
phpfootball16-disclose.txt |
Description:
|
PHPFootball version 1.6 suffers from a remote database disclosure flaw in show.php.
| | Author: | ajann | | File Size: | 733 | | Last Modified: | Jan 30 23:14:30 2007 |
| MD5 Checksum: | 96487c2eea99217b0f2ffc08d5e59b1f |
|
| /// File Name: |
edittag12-xss.txt |
Description:
|
EditTag version 1.2 is susceptible to local file inclusion and cross site scripting vulnerabilities.
| | Author: | NetJackal | | File Size: | 722 | | Last Modified: | Jan 6 19:52:07 2007 |
| MD5 Checksum: | 4150246ef823a1967e51831f10e33f7d |
|
| /// File Name: |
sazcart-rfi.txt |
Description:
|
sazcart version 1.5 suffers from a remote file inclusion vulnerability in cart.php.
| | Author: | IbnuSina | | File Size: | 711 | | Last Modified: | Jan 13 18:23:02 2007 |
| MD5 Checksum: | 2795204313ffe7728ef959c38789ad12 |
|
| /// File Name: |
aspedge12b-sql.txt |
Description:
|
ASP EDGE versions 1.2b and below suffer from a remote SQL injection vulnerability in user.asp.
| | Author: | ajann | | File Size: | 695 | | Last Modified: | Jan 26 22:24:09 2007 |
| MD5 Checksum: | 4b88ee9cef640c3a96c691623ec2b85d |
|
| /// File Name: |
MOAB-25-01-2007.rb.txt |
Description:
|
Month of Apple Bugs - Ruby exploit that demonstrates how CFNetwork fails to handle certain HTTP responses properly, causing the _CFNetConnectionWillEnqueueRequests() function to dereference a NULL pointer, leading to a denial of service condition.
| | Author: | LMH | | Homepage: | http://projects.info-pull.com/moab/ | | File Size: | 690 | | Related CVE(s): | CVE-2007-0464 | | Last Modified: | Jan 26 23:28:46 2007 |
| MD5 Checksum: | d7a1cfb7ab5a8a173db599dc81d957de |
|
| /// File Name: |
simplog0932.txt |
Description:
|
Simplog versions 0.9.3.2 and below suffer from a SQL injection vulnerability in archive.php.
| | Author: | DrFrancky | | Homepage: | http://securitydot.net/ | | File Size: | 680 | | Last Modified: | Jan 1 22:25:43 2007 |
| MD5 Checksum: | 9577a2d516aa7d448ecb1fac28dafbbd |
|
| /// File Name: |
MOAB-09-01-2007.rb.txt |
Description:
|
Month of Apple Bugs - Exploit for a vulnerability in Finder. Finder is affected by a memory corruption vulnerability, which leads to an exploitable denial of service condition and potential arbitrary code execution, that can be triggered by DMG images. One of two exploits.
| | Author: | LMH | | Homepage: | http://projects.info-pull.com/moab/index.html | | Related Exploit: | MOAB-09-01-2007.dmg | | File Size: | 668 | | Last Modified: | Jan 13 17:45:07 2007 |
| MD5 Checksum: | 7c18ab0283bcd54f3690d40678de850b |
|
| /// File Name: |
wcsimple-disclose.txt |
Description:
|
wcSimple Poll allows for a direct download of the system password.
| | Author: | ilker Kandemir | | File Size: | 656 | | Last Modified: | Jan 15 21:10:02 2007 |
| MD5 Checksum: | 4a0c5f0dd3639c64807ab83ed0dff3b4 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
