Section: .. / 0609-exploits /
| /// File Name: |
phpunity.txt |
Description:
|
phpunity.postcard suffers from a remote file inclusion vulnerability in gallery_path.
| | Author: | Rivertam | | File Size: | 4960 | | Last Modified: | Sep 14 03:10:55 2006 |
| MD5 Checksum: | bf78e2f75270ec266a7e8aa020157851 |
|
| /// File Name: |
downstat18.txt |
Description:
|
Downstat versions 1.8 and below suffer from a remote file inclusion vulnerability.
| | Author: | SilenZ | | File Size: | 785 | | Last Modified: | Sep 14 03:09:54 2006 |
| MD5 Checksum: | 9733d70753b6fea565162c8f0280e986 |
|
| /// File Name: |
shadowed.txt |
Description:
|
Shadowed Portal versions 5.599 and below suffer from a remote file inclusion vulnerability.
| | Author: | mad_hacker | | File Size: | 829 | | Last Modified: | Sep 14 03:08:37 2006 |
| MD5 Checksum: | ea54a2f363e4e3fbaf578eb97424d5e7 |
|
| /// File Name: |
tualblog10.txt |
Description:
|
TualBLOG version 1.0 suffers from a remote SQL injection vulnerability.
| | Homepage: | http://biyosecurity.org/ | | File Size: | 286 | | Last Modified: | Sep 14 03:07:16 2006 |
| MD5 Checksum: | 8cb6996c375cb302e6a8f63a5af2e71e |
|
| /// File Name: |
magicnewspro.txt |
Description:
|
Magic News Pro versions 1.0.3 and below suffer from a remote file inclusion vulnerability.
| | Author: | Saudi Hackrz | | File Size: | 1337 | | Last Modified: | Sep 14 03:06:31 2006 |
| MD5 Checksum: | f9073ea368331a07eaf1d1d3fb50c343 |
|
| /// File Name: |
netperformer.txt |
Description:
|
The NetPerformer Frame Relay Access Device (FRAD) suffers from multiple denial of service vulnerabilities including a buffer overflow in telnetd.
| | Author: | Arif Jatmoko | | File Size: | 2516 | | Last Modified: | Sep 14 02:40:08 2006 |
| MD5 Checksum: | fcaa1ba46c861129003c19698c5aa771 |
|
| /// File Name: |
os2a_1007.txt |
Description:
|
Multiple cross site scripting vulnerabilities have been identified in SoftComplex Inc.'s PHP Event Calendar version 1.5.1. Prior versions may also be susceptible.
| | Author: | NR Nandini | | File Size: | 2518 | | Last Modified: | Sep 14 02:37:14 2006 |
| MD5 Checksum: | ce7241e8eb6ea8d2745b250564cf17cb |
|
| /// File Name: |
forumjbc4.txt |
Description:
|
ForumJBC version 4 suffers from a cross site scripting flaw.
| | Author: | ThE__LeO | | File Size: | 443 | | Last Modified: | Sep 14 02:35:08 2006 |
| MD5 Checksum: | 888bbc1b793dd030c9aa03ee90e60ec9 |
|
| /// File Name: |
EV0138.txt |
Description:
|
NX5Linkx version 1.0 suffers from arbitrary file disclosure, multiple SQL injection, and HTTP response splitting vulnerabilities.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 2352 | | Related CVE(s): | CVE-2006-4503, CVE-2006-4504, CVE-2006-4505 | | Last Modified: | Sep 14 02:29:30 2006 |
| MD5 Checksum: | 328b1ed1fcfa43db901b8b5d0c314d8e |
|
| /// File Name: |
EV0137.txt |
Description:
|
CJ Tag Board version 3.0 suffers from a cross site scripting flaw.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1229 | | Last Modified: | Sep 14 02:27:34 2006 |
| MD5 Checksum: | 23308674345ebbe6b7eb8c11214fb64b |
|
| /// File Name: |
EV0136.txt |
Description:
|
Links Manager version 2006-06-12 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1784 | | Related CVE(s): | CVE-2006-4327, CVE-2006-4328 | | Last Modified: | Sep 14 02:26:32 2006 |
| MD5 Checksum: | 948ee7087a0cbd9e4ca51acf557d4278 |
|
| /// File Name: |
EV0135.txt |
Description:
|
indexcity version 1.0 suffers from SQL injection and cross site scripting flaws.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1606 | | Related CVE(s): | CVE-2006-4323, CVE-2006-4324 | | Last Modified: | Sep 14 02:24:59 2006 |
| MD5 Checksum: | 685a9881aa9725ecf737628e842b9ed5 |
|
| /// File Name: |
EV0134.txt |
Description:
|
Doika guestbook version 2.5 suffers from a cross site scripting flaw.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1140 | | Related CVE(s): | CVE-2006-4325 | | Last Modified: | Sep 14 02:23:39 2006 |
| MD5 Checksum: | 552b428830268b048490aa8f01ae9ef8 |
|
| /// File Name: |
LedgerSMB.txt |
Description:
|
LedgerSMB version 1.0.0 and SQL-Ledger versions 2.6.18 and below suffer from a directory traversal flaw that may allow for arbitrary code execution.
| | Author: | Chris Murtagh, Richard Patterson | | File Size: | 1757 | | Last Modified: | Sep 13 05:08:59 2006 |
| MD5 Checksum: | 7be3dd5412be998d80576fde2bd77c0d |
|
| /// File Name: |
newsscript05.txt |
Description:
|
Newsscript version 0.5 suffers from a local file inclusion flaw in print.php.
| | Author: | Daftrix | | Homepage: | http://www.daftrix.com/ | | File Size: | 817 | | Last Modified: | Sep 13 05:01:26 2006 |
| MD5 Checksum: | 40d1c94578cf347bccebe00bf57beedf |
|
| /// File Name: |
wtools001.txt |
Description:
|
WTools version 0.0.1-ALPHA suffers from a remote file inclusion vulnerability.
| | Author: | ERNE | | File Size: | 429 | | Last Modified: | Sep 13 04:59:45 2006 |
| MD5 Checksum: | 46dd2d15f39d95047eb134e055a25f5b |
|
| /// File Name: |
phpNULL.txt |
Description:
|
Multiple PHP applications, including phpBB and punBB, suffer from a poison NULL byte vulnerability.
| | Author: | ShAnKaR | | File Size: | 2397 | | Last Modified: | Sep 13 04:58:59 2006 |
| MD5 Checksum: | f0cc35a9aa6d684a2b54bf83eb014220 |
|
| /// File Name: |
ROXIO_RACE_NETRAGARD-20060624.txt |
Description:
|
Deja Vu, which is bundled with Roxio Toast 7, creates ruby scripts in the /tmp directory. These scripts contain commands which are executed with escalated privileges. A race condition exists which makes it possible to execute arbitrary commands against the system or gain root level access.
| | Author: | Adriel T. Desautels | | Homepage: | http://www.netragard.com/ | | File Size: | 4970 | | Last Modified: | Sep 13 04:56:24 2006 |
| MD5 Checksum: | b664c1e14707b5901996489b95fbd02e |
|
| /// File Name: |
vcap.txt |
Description:
|
The vCAP Calendar server versions 1.9.0 Beta and below suffer from denial of service and directory traversal vulnerabilities.
| | Author: | securma massine | | Homepage: | http://www.morx.org/ | | File Size: | 1226 | | Last Modified: | Sep 13 04:53:44 2006 |
| MD5 Checksum: | fa8c1931e8b5046b8548a2e79e459a61 |
|
| /// File Name: |
xhpXSS.txt |
Description:
|
XHP CMS version 0.5.1 suffers from a cross site scripting vulnerability.
| | Author: | HACKERS PAL | | Homepage: | http://www.soqor.net | | File Size: | 261 | | Last Modified: | Sep 13 04:51:02 2006 |
| MD5 Checksum: | c805b873ffe334b6459ec76966642f64 |
|
| /// File Name: |
hotplugCMSconfig.txt |
Description:
|
HotPlug CMS config file inclusion exploit that compromises access to the database.
| | Author: | HACKERS PAL | | Homepage: | http://www.soqor.net | | File Size: | 2744 | | Last Modified: | Sep 13 04:49:42 2006 |
| MD5 Checksum: | b39f934b99e82901cab183bde097653b |
|
| /// File Name: |
cmsSQL.txt |
Description:
|
CMS.R suffers from a SQL injection vulnerability that allows for administrative authentication bypass.
| | Author: | HACKERS PAL | | Homepage: | http://www.soqor.net | | File Size: | 1020 | | Last Modified: | Sep 13 04:43:24 2006 |
| MD5 Checksum: | 3dbd133ad0cb2105141380e071e124e0 |
|
| /// File Name: |
PHProg.txt |
Description:
|
PHProg suffers from cross site scripting and local file inclusion flaws.
| | Author: | cdg393 | | File Size: | 2505 | | Last Modified: | Sep 13 04:38:05 2006 |
| MD5 Checksum: | bc546982fb377f002e76217ccae2d76c |
|
| /// File Name: |
ppalCart.txt |
Description:
|
ppalCart version 2.5 EE suffers from a remote file inclusion vulnerability.
| | Author: | Eddy_BAck0o | | File Size: | 2594 | | Last Modified: | Sep 13 04:22:38 2006 |
| MD5 Checksum: | 383af5097f7f6f9351f7589123075696 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
