Section: .. / 0605-exploits /
| /// File Name: |
my_anon_db_leak.c |
Description:
|
Proof of concept exploit that demonstrates an information leakage vulnerability in MySQL server version 4.1.18 and below and 5.0.20 and below.
| | Author: | Stefano Di Paola | | Homepage: | http://www.wisec.it | | Related File: | mysqlLeak.txt | | File Size: | 4677 | | Last Modified: | May 5 08:13:34 2006 |
| MD5 Checksum: | 13aefb173f330f70de42ba30561937f8 |
|
| /// File Name: |
sBlog.txt |
Description:
|
sBlog version 0.7.2 suffers from SQL injection and cross site scripting vulnerabilities.
| | Homepage: | http://www.subjectzero.net/ | | File Size: | 1624 | | Last Modified: | May 5 06:34:43 2006 |
| MD5 Checksum: | a784091ff67e1cd89263b6794da956e7 |
|
| /// File Name: |
zenphotoXSS.txt |
Description:
|
Zenphoto versions 1.0.1 Beta and below suffer from path disclosure and cross site scripting vulnerabilities.
| | Author: | Raphael Huck | | File Size: | 1061 | | Last Modified: | May 5 06:24:24 2006 |
| MD5 Checksum: | ef58c4b7055089eab445140ec28c9233 |
|
| /// File Name: |
x7chatphp.txt |
Description:
|
Exploit for X7 Chat version 2.0 and below that makes use of an arbitrary local file inclusion flaw that allows for code execution.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 11240 | | Last Modified: | May 5 06:01:36 2006 |
| MD5 Checksum: | 8ddfeed4eb4f13bd76034699f8afff5b |
|
| /// File Name: |
vhcsXSS.txt |
Description:
|
VHCS is susceptible to cross site scripting attacks.
| | Author: | O.U.T.L.A.W | | Homepage: | http://www.aria-security.net/ | | File Size: | 715 | | Last Modified: | May 5 05:56:18 2006 |
| MD5 Checksum: | 8e542851c7852fe361bd71fd2d6af29b |
|
| /// File Name: |
invision215-SQL.txt |
Description:
|
Invision Power Board version 2.1.5 remote SQL injection exploit.
| | Author: | Ykstortion Security Team | | File Size: | 6619 | | Last Modified: | May 2 02:38:45 2006 |
| MD5 Checksum: | e117594ca9ad4e5fc2779a31025f6f57 |
|
| /// File Name: |
canbypass.txt |
Description:
|
Candidate Resources Inc. web software suffers from an administrative bypass flaw.
| | Author: | MurderSkillz | | File Size: | 359 | | Last Modified: | May 2 02:22:48 2006 |
| MD5 Checksum: | edbfdd13dbedc76b5b4c19396ac19cfd |
|
| /// File Name: |
SiteX07.txt |
Description:
|
SiteX version 0.7 is susceptible to SQL injection and cross site scripting attacks. Earlier versions may also be affected.
| | Author: | MurderSkillz | | File Size: | 487 | | Last Modified: | May 2 02:20:56 2006 |
| MD5 Checksum: | c312c18877e3911bbf2840c39226336d |
|
| /// File Name: |
NEW-SOLUTION.txt |
Description:
|
NEW-SOLUTION is susceptible to SQL injection attacks that allow for administrative login bypass.
| | Author: | MurderSkillz | | File Size: | 441 | | Last Modified: | May 2 02:17:53 2006 |
| MD5 Checksum: | 2fb1e2b00a3683f59ba6850a4c0b5a3a |
|
| /// File Name: |
ASPThai90.txt |
Description:
|
ASPThai Forums version 9.0 and below suffer cross site scripting flaws.
| | Author: | MurderSkillz | | File Size: | 477 | | Last Modified: | May 2 02:16:28 2006 |
| MD5 Checksum: | 8076738ab3ffc687d6c43653ec49de4a |
|
| /// File Name: |
ASP-Nuke-community-v1.4SP3.txt |
Description:
|
ASP-Nuke community version 1.4 SP3 suffers from multiple cross site scripting flaws. Earlier versions also may be affected.
| | Author: | MurderSkillz | | File Size: | 460 | | Last Modified: | May 2 02:15:03 2006 |
| MD5 Checksum: | ba8311fc8187005b26340c6a1363716f |
|
| /// File Name: |
ASP-Nuke-community-v1.4SP2.txt |
Description:
|
ASP-Nuke community version 1.4 SP2 suffers from multiple cross site scripting flaws. Earlier versions also may be affected.
| | Author: | MurderSkillz | | File Size: | 929 | | Last Modified: | May 2 02:14:15 2006 |
| MD5 Checksum: | 751beb9cfb8c24fd29f482e246c74bbd |
|
| /// File Name: |
DMCounter092b.txt |
Description:
|
DMCounter version 0.9.2-b suffers from a remote file inclusion flaw that allows for arbitrary code execution.
| | Author: | beford | | File Size: | 1094 | | Last Modified: | May 2 02:03:30 2006 |
| MD5 Checksum: | 187ac0d1ffb1dc44d1502e5c69d1ae0d |
|
| /// File Name: |
JMKpicture.txt |
Description:
|
JMK's Picture Gallery allows for direct administrative access.
| | Author: | AlpEren, tugr | | File Size: | 196 | | Last Modified: | May 2 02:01:56 2006 |
| MD5 Checksum: | 30f017624be72eaace452508f9cdcc21 |
|
| /// File Name: |
galleryadmin.txt |
Description:
|
planetGallery allows for direct administrative access without credentials.
| | Author: | tugr | | File Size: | 208 | | Last Modified: | May 2 02:00:18 2006 |
| MD5 Checksum: | a4d3157c2bcdf265f4b9a87c80e79754 |
|
| /// File Name: |
freeadmin.txt |
Description:
|
free-php.net Poll version 1.0 allows for direct /admin/ access.
| | Author: | tugr | | File Size: | 124 | | Last Modified: | May 2 01:59:25 2006 |
| MD5 Checksum: | b585be66030140bd115c1ffdb215813c |
|
| /// File Name: |
blodmodSQL.txt |
Description:
|
Blog Mod versions 0.2.x and below suffer from a SQL injection vulnerability.
| | Author: | Qex | | File Size: | 125 | | Last Modified: | May 2 01:31:21 2006 |
| MD5 Checksum: | 3e21e5fae3228cfed657dab389c797b1 |
|
| /// File Name: |
thyme13.txt |
Description:
|
Thyme version 1.3 is susceptible to cross site scripting attacks.
| | Author: | O.U.T.L.A.W | | Homepage: | http://www.Aria-security.net | | File Size: | 641 | | Last Modified: | May 2 01:30:44 2006 |
| MD5 Checksum: | b0cdf5f20701a4f59ebf17104f30d954 |
|
| /// File Name: |
irater.txt |
Description:
|
I-RATER Platinum remote file inclusion exploit.
| | Author: | Raiden | | Homepage: | http://www.Aria-security.net/ | | File Size: | 1486 | | Last Modified: | May 2 01:27:23 2006 |
| MD5 Checksum: | b697e49e9879f120a7690f1a9595e6c3 |
|
| /// File Name: |
4images171.txt |
Description:
|
4images version 1.7.1 is susceptible to SQL injection attacks.
| | Author: | CrAzY CrAcKeR | | Homepage: | http://www.alshmokh.com | | File Size: | 3021 | | Last Modified: | May 2 01:25:52 2006 |
| MD5 Checksum: | a9a9046252a591fd108779cb1a0b6734 |
|
| /// File Name: |
invision215.txt |
Description:
|
Invision Power Board version 2.1.5 is subject to remote SQL injection attacks. Details provided. Earlier versions may also be susceptible.
| | Author: | Devil-00 | | File Size: | 1306 | | Last Modified: | May 2 01:24:23 2006 |
| MD5 Checksum: | 4e288262e4e718c92b5c50b1a47ca8f4 |
|
| /// File Name: |
imlive-vulns.txt |
Description:
|
imlive.com suffers from cross site scripting flaws.
| | Author: | MurderSkillz | | File Size: | 447 | | Last Modified: | May 1 04:33:42 2006 |
| MD5 Checksum: | 1be033be5d2fba2d9df28c05a24a6053 |
|
| /// File Name: |
tpb-dyn0.txt |
Description:
|
ThePirateBay.org is susceptible to cross site scripting attacks via its search function.
| | Author: | dyn0 | | File Size: | 544 | | Last Modified: | May 1 04:32:46 2006 |
| MD5 Checksum: | 1dc4acb5937a1985c8872c2eccc1eb6e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
