Section: .. / 0605-exploits /
| /// File Name: |
SAPwebas.txt |
Description:
|
SAP Web Application Server versions 7.00 and below suffer from a URL manipulation flaw that can allow for cross site scripting.
| | Author: | A. Grossmann | | File Size: | 3286 | | Last Modified: | May 22 01:02:29 2006 |
| MD5 Checksum: | 98cdb331d2641aba2e6fc365d4e111b8 |
|
| /// File Name: |
sBlog.txt |
Description:
|
sBlog version 0.7.2 suffers from SQL injection and cross site scripting vulnerabilities.
| | Homepage: | http://www.subjectzero.net/ | | File Size: | 1624 | | Last Modified: | May 5 06:34:43 2006 |
| MD5 Checksum: | a784091ff67e1cd89263b6794da956e7 |
|
| /// File Name: |
SEC-20060512-0.txt |
Description:
|
SEC-CONSULT Security Advisory 20060512-0 - The Symantec Enterprise Firewall leaks internal IPs of natted machines in response to certain HTTP requests. Version 8.0 is vulnerable.
| | Author: | Bernhard Mueller | | Homepage: | http://www.sec-consult.com | | File Size: | 3042 | | Last Modified: | May 21 15:20:55 2006 |
| MD5 Checksum: | 45efb7adcb6dbcfec7f0bab930904131 |
|
| /// File Name: |
SF-UsersXSS.txt |
Description:
|
SF-Users version 1.0 suffers from a cross site scripting flaw.
| | Author: | Nomenumbra | | File Size: | 465 | | Last Modified: | May 6 15:48:20 2006 |
| MD5 Checksum: | 53ccc0b61b961171a2191319ca088f74 |
|
| /// File Name: |
singapore097.txt |
Description:
|
Singapore version 0.9.7 suffers from cross site scripting vulnerabilities.
| | Author: | alp_eren | | Homepage: | http://www.ayyildiz.org | | File Size: | 559 | | Last Modified: | May 9 16:36:13 2006 |
| MD5 Checksum: | 3750f35c0538b2df982bea6469553bff |
|
| /// File Name: |
SiteX07.txt |
Description:
|
SiteX version 0.7 is susceptible to SQL injection and cross site scripting attacks. Earlier versions may also be affected.
| | Author: | MurderSkillz | | File Size: | 487 | | Last Modified: | May 2 02:20:56 2006 |
| MD5 Checksum: | c312c18877e3911bbf2840c39226336d |
|
| /// File Name: |
SpeedyASPForum.txt |
Description:
|
Speedy ASP Forum (profileupdate.asp) User Pass Change Exploit
| | Author: | ajannhwt | | File Size: | 3436 | | Last Modified: | May 29 03:59:58 2006 |
| MD5 Checksum: | 5e909f7d5a776f0e1b7345535fc4676a |
|
| /// File Name: |
Sphider.txt |
Description:
|
Sphider is susceptible to multiple cross site scripting vulnerabilities.
| | Author: | Soot | | Homepage: | http://www.shabgard.org/ | | File Size: | 594 | | Last Modified: | May 22 00:58:04 2006 |
| MD5 Checksum: | 3c104b2d533ccb69df2e4ccecbf89c75 |
|
| /// File Name: |
squirrelcart.txt |
Description:
|
Squirrelcart versions 2.2.0 and below suffer from a remote file inclusion vulnerability.
| | Author: | OLiBekaS | | File Size: | 1021 | | Last Modified: | May 21 23:37:37 2006 |
| MD5 Checksum: | 53c5604329a479a65955cceecd9b74d4 |
|
| /// File Name: |
sugarsuite.txt |
Description:
|
Sugar Suite Open Source versions 4.2 and below "OptimisticLock!" arbitrary remote inclusion exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 11652 | | Last Modified: | May 21 23:42:54 2006 |
| MD5 Checksum: | 3d1e423c7170e7d676e17ca14394c9c3 |
|
| /// File Name: |
thyme13.txt |
Description:
|
Thyme version 1.3 is susceptible to cross site scripting attacks.
| | Author: | O.U.T.L.A.W | | Homepage: | http://www.Aria-security.net | | File Size: | 641 | | Last Modified: | May 2 01:30:44 2006 |
| MD5 Checksum: | b0cdf5f20701a4f59ebf17104f30d954 |
|
| /// File Name: |
topsitesXSS.txt |
Description:
|
Xtremescripts Topsites version 1.1 is susceptible to cross site scripting and SQL injection attacks.
| | Author: | luny | | File Size: | 1192 | | Last Modified: | May 22 03:02:44 2006 |
| MD5 Checksum: | 7e0869a664a4079af398fac9f75b5751 |
|
| /// File Name: |
tpb-dyn0.txt |
Description:
|
ThePirateBay.org is susceptible to cross site scripting attacks via its search function.
| | Author: | dyn0 | | File Size: | 544 | | Last Modified: | May 1 04:32:46 2006 |
| MD5 Checksum: | 1dc4acb5937a1985c8872c2eccc1eb6e |
|
| /// File Name: |
tseekdircgi |
Description:
|
tseekdir.cgi suffers from a local file inclusion vulnerability.
| | Author: | BoNy-m | | Homepage: | http://www.alshmokh.com | | File Size: | 354 | | Last Modified: | May 17 17:14:34 2006 |
| MD5 Checksum: | b34d400f4463d4f130a360da4bf1068a |
|
| /// File Name: |
tyrocmsXSS.txt |
Description:
|
TyroCMS Beta version 1.0 suffers from multiple cross site scripting flaws.
| | Author: | Nomenumbra | | File Size: | 864 | | Last Modified: | May 6 15:52:44 2006 |
| MD5 Checksum: | ea9e74535ac5190e35654defaa30d03e |
|
| /// File Name: |
UBBThreads-md5.txt |
Description:
|
The XSS vulnerabilities reported for UBBThreads 5.x,6.x will allow you to inject javascript and steal MD5 Hashes.
| | Author: | splices | | Homepage: | http://www.securident.com | | File Size: | 1245 | | Last Modified: | May 29 19:57:52 2006 |
| MD5 Checksum: | 7b8a682ad449ff74b787d53c15f3231c |
|
| /// File Name: |
unb_161p1_incl_xpl.txt |
Description:
|
Remote exploit for an arbitrary file inclusion flaw in Unclassified NewsBoard versions 1.6.1 and below.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 14680 | | Last Modified: | May 21 14:51:40 2006 |
| MD5 Checksum: | e8f16fb1802a3ed9184772e24f918336 |
|
| /// File Name: |
vhcsXSS.txt |
Description:
|
VHCS is susceptible to cross site scripting attacks.
| | Author: | O.U.T.L.A.W | | Homepage: | http://www.aria-security.net/ | | File Size: | 715 | | Last Modified: | May 5 05:56:18 2006 |
| MD5 Checksum: | 8e542851c7852fe361bd71fd2d6af29b |
|
| /// File Name: |
vp-asp-new.txt |
Description:
|
VP-ASP versions 6.00 through 6.08 suffer from a remote SQL injection vulnerability.
| | Author: | tracewar | | File Size: | 1062 | | Last Modified: | May 22 03:17:04 2006 |
| MD5 Checksum: | 2e0cae0fb1482400b10e7afb1fa9b07d |
|
| /// File Name: |
vpasp600.txt |
Description:
|
VP-ASP version 6.00 is susceptible to SQL injection attacks. Exploitation details provided.
| | Author: | tracewar | | File Size: | 1087 | | Last Modified: | May 6 17:57:31 2006 |
| MD5 Checksum: | de586563bb83f334985a9a32f02593ad |
|
| /// File Name: |
WordPress-2.0.2.txt |
Description:
|
WordPress versions less than or equal to 2.0.2 'cache' shell injection exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org | | File Size: | 14847 | | Last Modified: | May 29 01:39:51 2006 |
| MD5 Checksum: | b6dda5f5447988566d4396753bec3891 |
|
| /// File Name: |
x7chatphp.txt |
Description:
|
Exploit for X7 Chat version 2.0 and below that makes use of an arbitrary local file inclusion flaw that allows for code execution.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 11240 | | Last Modified: | May 5 06:01:36 2006 |
| MD5 Checksum: | 8ddfeed4eb4f13bd76034699f8afff5b |
|
| /// File Name: |
xoops20132.txt |
Description:
|
XOOPS versions 2.0.13.2 and below xoopsOptions[nocommon] exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 7190 | | Last Modified: | May 23 04:29:43 2006 |
| MD5 Checksum: | 6cf58227b6752d94bb378d1d44285c83 |
|
| /// File Name: |
zawhttpd0823.txt |
Description:
|
zawhttpd version 0.8.23 is susceptible to a remote denial of service condition.
| | Author: | Kamil Sienicki | | File Size: | 1131 | | Last Modified: | May 6 16:03:05 2006 |
| MD5 Checksum: | 7d54074779404135c0f08e442d24881d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
