Section: .. / 0708-exploits /
| /// File Name: |
php523snmpget-overflow.txt |
Description:
|
PHP versions 5.2.3 and below snmpget() object id local buffer overflow exploit that binds a shell.
| | Author: | Inphex | | File Size: | 2049 | | Last Modified: | Aug 9 22:41:41 2007 |
| MD5 Checksum: | 3c8ef4f75d80afefb63ecb896daff2f2 |
|
| /// File Name: |
ncaster-rfi.txt |
Description:
|
Ncaster version 1.7.2 suffers from a remote file inclusion vulnerability in fc_example.php.
| | Author: | k1n9k0ng | | Homepage: | http://www.sekuritionline.net/ | | File Size: | 653 | | Last Modified: | Aug 9 22:39:59 2007 |
| MD5 Checksum: | 5fea5cd6dd2bff1fce6d1a2668c639c3 |
|
| /// File Name: |
adv83-K-159-2007.txt |
Description:
|
PhpHostBot versions 1.06 and below suffer from a remote file inclusion vulnerability.
| | Author: | K-159 | | Homepage: | http://k-159.echo.or.id/ | | File Size: | 2695 | | Last Modified: | Aug 9 22:35:12 2007 |
| MD5 Checksum: | f5e2ed27e5b777d3a0d3e16af7a854df |
|
| /// File Name: |
nhrp-dos.txt |
Description:
|
Cisco IOS remote denial of service exploit that makes use of the NHRP vulnerability.
| | Author: | Martin Kluge | | File Size: | 17439 | | Last Modified: | Aug 9 22:28:19 2007 |
| MD5 Checksum: | a969167a55b93ebdd6713f4e674fe97d |
|
| /// File Name: |
sashotel-sql.txt |
Description:
|
SAS Hotel Management System suffers from a SQL injection vulnerability in the username and password login fields.
| | Homepage: | http://aria-security.net/ | | File Size: | 383 | | Last Modified: | Aug 9 22:25:08 2007 |
| MD5 Checksum: | b0d4a9bacd4d3d155a4263d57f4b1fb9 |
|
| /// File Name: |
dersimiz-xss.txt |
Description:
|
Dersimiz Haber Ekleme Modülü suffers from a cross site scripting vulnerability.
| | Author: | GeFORC3 | | Homepage: | http://WwW.GeFORC3.Org | | File Size: | 678 | | Last Modified: | Aug 8 21:09:48 2007 |
| MD5 Checksum: | 7914d453edee1fed2a71afe8112ed2c1 |
|
| /// File Name: |
phpmsql-local.txt |
Description:
|
PHP mSQL local buffer overflow exploit that binds a shell.
| | Author: | Inphex | | File Size: | 2008 | | Last Modified: | Aug 8 21:00:30 2007 |
| MD5 Checksum: | 719b986d2349f81326cb1f752a759a5d |
|
| /// File Name: |
fishcart-rfi.txt |
Description:
|
FishCart versions 3.2 RC2 and below suffer from a remote file inclusion vulnerability in fc_example.php.
| | Author: | k1n9k0ng | | Homepage: | http://www.sekuritionline.net/ | | File Size: | 829 | | Last Modified: | Aug 8 20:58:06 2007 |
| MD5 Checksum: | 5160a4cf528c43f42b8fdb4fe42474f3 |
|
| /// File Name: |
Ferite_Language_DoS.zip |
Description:
|
The interpreter for the Ferite programming language is susceptible to a denial of service flaw. Exploit code included.
| | Author: | WarGame | | Homepage: | http://vx.netlux.org/wargamevx | | File Size: | 3217 | | Last Modified: | Aug 8 03:46:56 2007 |
| MD5 Checksum: | 7b31864ef778e1a6d5d03398d59009b9 |
|
| /// File Name: |
vietphp-rfi.txt |
Description:
|
VietPHP suffers from a remote file inclusion vulnerability.
| | Author: | master-of-desastor | | File Size: | 281 | | Last Modified: | Aug 8 03:42:16 2007 |
| MD5 Checksum: | 703a6524e3f9e46d74e9362211e8e251 |
|
| /// File Name: |
csam-xss.txt |
Description:
|
The C-SAM oneWallet web admin interface suffers from a cross site scripting vulnerability.
| | Author: | Tushar Vartak | | File Size: | 364 | | Last Modified: | Aug 8 03:41:36 2007 |
| MD5 Checksum: | b75d789d1a43f48a75ec35ec0b7f0ed4 |
|
| /// File Name: |
ariadnecms-rfi.txt |
Description:
|
Ariadne CMS suffers from a remote file inclusion vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 519 | | Last Modified: | Aug 8 03:36:20 2007 |
| MD5 Checksum: | eb85bdcfe978f1bac9676ff01c58c969 |
|
| /// File Name: |
cisspcom-sql.txt |
Description:
|
It appears that cissp.com suffers from yet another SQL injection vulnerability.
| | Author: | Tonu Samuel | | File Size: | 694 | | Last Modified: | Aug 8 03:27:46 2007 |
| MD5 Checksum: | 47ec728fb981298258d42d8a05ef5c51 |
|
| /// File Name: |
TS-2007-002-0.txt |
Description:
|
Template Security has discovered a serious user input validation vulnerability in the BlueCat Networks Proteus IPAM appliance. Proteus can be used to upload files to managed Adonis appliances to be downloadable by TFTP from the appliance. A Proteus administrator with privilege to add TFTP files and perform TFTP deployments can overwrite existing files and create new files as root on the Adonis DNS/DHCP appliance. This can be used for example to overwrite the system password database and change the root account password. Exploitation details provided. E
| | Author: | Template Security | | File Size: | 3135 | | Last Modified: | Aug 8 03:26:55 2007 |
| MD5 Checksum: | 8a4de76d6997f2dba9b93bea297d4831 |
|
| /// File Name: |
alathkar-rfi.txt |
Description:
|
AL-Athkar version 2.0 suffers from a remote file inclusion vulnerability.
| | Author: | Hasadya Raed | | File Size: | 794 | | Last Modified: | Aug 8 03:10:56 2007 |
| MD5 Checksum: | 80f36f8da4ecef4b4c55f01f52549dc1 |
|
| /// File Name: |
vgallite-rfi.txt |
Description:
|
All versions of vgallite suffer from a remote file inclusion vulnerability.
| | Author: | Hasadya Raed | | File Size: | 755 | | Last Modified: | Aug 8 03:10:14 2007 |
| MD5 Checksum: | 7aa1282b0bb4f8d046466a9f5001a7c3 |
|
| /// File Name: |
alcaricatier-rfi.txt |
Description:
|
AL-Caricatier version 2.5 suffers from a remote file inclusion vulnerability.
| | Author: | Hasadya Raed | | File Size: | 656 | | Last Modified: | Aug 8 03:09:34 2007 |
| MD5 Checksum: | 0f64661fd4d937537cc5cb3c0e1be82c |
|
| /// File Name: |
dnscp.py.txt |
Description:
|
BIND 9 DNS cache poisoning exploit version 0.3beta. Affects versions 9.0.0 through 9.4.1.
| | Author: | posedge | | File Size: | 7360 | | Last Modified: | Aug 8 02:47:15 2007 |
| MD5 Checksum: | d6b3c141d4ef99be347d86e84c5f300e |
|
| /// File Name: |
liberoit-xss.txt |
Description:
|
The Italian ISP Libero.it suffers from cross site scripting vulnerabilities when the p_Query variable is manipulated.
| | Author: | Gianni Amato | | Homepage: | http://www.gianniamato.it/ | | File Size: | 1393 | | Last Modified: | Aug 8 02:43:57 2007 |
| MD5 Checksum: | b8672e43e5dcf3dcdf916264403d2e52 |
|
| /// File Name: |
joomlaj-rfi.txt |
Description:
|
The Joomla J! Reactions component suffers from a remote file inclusion vulnerability.
| | Author: | Yollubunlar | | Homepage: | http://yollubunlar.org/ | | File Size: | 471 | | Last Modified: | Aug 8 02:42:28 2007 |
| MD5 Checksum: | 7c75e8c896cf5f746079ab67b395cd1b |
|
| /// File Name: |
nextgen-sql.txt |
Description:
|
Next Gen Portfolio Manager suffers from a SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 388 | | Last Modified: | Aug 8 02:38:47 2007 |
| MD5 Checksum: | c9110564f72ace39fd7c524961efec5a |
|
| /// File Name: |
giab-sql.txt |
Description:
|
Gallery In A Box suffers from a SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 383 | | Last Modified: | Aug 8 02:36:15 2007 |
| MD5 Checksum: | 76c0f85bfea590b29619f9e13d945fcd |
|
| /// File Name: |
hunkaray-sql.txt |
Description:
|
Hunkaray Okul Portali version 1.1 suffers from a SQL injection vulnerability.
| | Author: | Yollubunlar | | Homepage: | http://yollubunlar.org/ | | File Size: | 476 | | Last Modified: | Aug 8 02:35:31 2007 |
| MD5 Checksum: | 71220861fe361d1d8c75b2c3472e395b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
