Section: .. / 0804-exploits /
| /// File Name: |
oxyproject-exec.txt |
Description:
|
OxYProject version 0.85 suffers from a remote code execution vulnerability in edithistory.php.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1496 | | Last Modified: | Apr 30 20:42:13 2008 |
| MD5 Checksum: | b1c26370752d69b0820b1c528f25ceff |
|
| /// File Name: |
pbcs-multi.txt |
Description:
|
Project Based Calendaring System (PBCS) version 0.7.1 suffers from remote file upload and remote file disclosure vulnerabilities.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 577 | | Last Modified: | Apr 30 20:39:09 2008 |
| MD5 Checksum: | 2842f27b5e4fd3bf299d2c22d3b54ec1 |
|
| /// File Name: |
phpaddressbook211-sql.txt |
Description:
|
phpAddressBook version 2.11 suffers from a SQL injection vulnerability in view.php.
| | Author: | Cr@zy_King | | File Size: | 497 | | Last Modified: | Apr 14 16:18:07 2008 |
| MD5 Checksum: | 42d16302b61da57693814d3f483a3289 |
|
| /// File Name: |
phpblock-rfi.txt |
Description:
|
PHP Block version a8.4 suffers from a remote file inclusion vulnerability.
| | Author: | w0cker | | File Size: | 364 | | Last Modified: | Apr 3 01:36:07 2008 |
| MD5 Checksum: | 8e82891cc1477319c2350f3cd4cf8fbe |
|
| /// File Name: |
phpforge-sql.txt |
Description:
|
PHP Forge versions 3 beta 2 and below suffer from a remote SQL injection vulnerability.
| | Author: | jiko | | Homepage: | http://www.no-back.org/ | | File Size: | 1035 | | Last Modified: | Apr 28 11:01:23 2008 |
| MD5 Checksum: | fff61f7e24feed2e08db6001c669dcaf |
|
| /// File Name: |
phpfusion-sql.py.txt |
Description:
|
PHP-Fusion version 6.00.307 remote blind SQL injection exploit that makes use of submit.php.
| | Author: | The:Paradox | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 9206 | | Last Modified: | Apr 21 16:16:08 2008 |
| MD5 Checksum: | 4b0fd91fbebb719ceffa781cc47bc247 |
|
| /// File Name: |
phpizabi-disclose.txt |
Description:
|
PHPizabi version 0.848b C1 HFP3 suffers from a database information disclosure vulnerability.
| | Author: | YOUCODE | | File Size: | 1904 | | Last Modified: | Apr 28 11:14:20 2008 |
| MD5 Checksum: | 1e54af0a0f5d3019a2cabc56c26ad69c |
|
| /// File Name: |
phpkb-sql.txt |
Description:
|
PHPKB Knowledge Base version 1.5 suffers from a SQL injection vulnerability in comment.php.
| | Author: | parad0x | | Homepage: | http://www.inso.host.sk/ | | File Size: | 893 | | Last Modified: | Apr 11 14:57:02 2008 |
| MD5 Checksum: | a440594c26d0fa811d8a8cb5e8bf23ce |
|
| /// File Name: |
phpphotogal-sql.txt |
Description:
|
PHP Photo Gallery version 1.0 suffers from a remote SQL injection vulnerability.
| | Author: | t0pp8uzz | | File Size: | 1077 | | Last Modified: | Apr 4 18:47:38 2008 |
| MD5 Checksum: | 8b9077a433908c0ca60dd3902dbbadc7 |
|
| /// File Name: |
phprojekt-disclose.txt |
Description:
|
Content Management System for Phprojekt version 0.6.1 suffers from a file disclosure vulnerability.
| | Author: | H-T Team | | Homepage: | http://no-hack.fr/ | | File Size: | 1110 | | Last Modified: | Apr 28 18:11:39 2008 |
| MD5 Checksum: | 1b7a71c75fb2bd6480573182b4a1705a |
|
| /// File Name: |
phptournois-exec.txt |
Description:
|
phpTournois versions G4 and below remote file upload and code execution exploit.
| | Author: | real | | File Size: | 21917 | | Last Modified: | Apr 8 22:40:06 2008 |
| MD5 Checksum: | 2baee01ee429391652444695642459d4 |
|
| /// File Name: |
phshoutbox-cookie.txt |
Description:
|
PhShoutBox versions 1.5 and below suffer from an insecure handling of cookies vulnerability.
| | Author: | t0pp8uzz | | File Size: | 1557 | | Last Modified: | Apr 21 16:06:13 2008 |
| MD5 Checksum: | 8cbeb765a155530f8068fbd771fdc5f3 |
|
| /// File Name: |
picturerating-blindsql.txt |
Description:
|
Picture Rating version 1.0 blind SQL injection exploit.
| | Author: | t0pp8uzz | | File Size: | 2686 | | Last Modified: | Apr 8 00:05:28 2008 |
| MD5 Checksum: | 6de362b455374050b8f2992ffdc6c95a |
|
| /// File Name: |
pigmysql-sql.txt |
Description:
|
PIGMy-SQL versions 1.4.1 and below blind SQL injection exploit that takes advantage of getdata.php.
| | Author: | t0pp8uzz | | File Size: | 2130 | | Last Modified: | Apr 7 23:25:45 2008 |
| MD5 Checksum: | 9fff50437888630793619e6c7cad7bd7 |
|
| /// File Name: |
pligg-sql.txt |
Description:
|
Pligg CMS version 9.9.0 suffers from a remote SQL injection vulnerability in editlink.php.
| | Author: | Guido Landi | | File Size: | 539 | | Last Modified: | Apr 8 22:42:21 2008 |
| MD5 Checksum: | 0e9ff27639af7c7886f628d386baed62 |
|
| /// File Name: |
pollbooth20-sql.txt |
Description:
|
Pollbooth versions 2.0 and below suffer from a remote SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 817 | | Last Modified: | Apr 14 16:18:44 2008 |
| MD5 Checksum: | 10bd768f6e8174bb5ac8517eca4b2a65 |
|
| /// File Name: |
postcard-insecure.txt |
Description:
|
PostCard version 1.0 suffers from a remote insecure handling of cookie data.
| | Author: | t0pp8uzz | | File Size: | 1440 | | Last Modified: | Apr 14 16:20:37 2008 |
| MD5 Checksum: | 94e707dc173d68b7c8ed0d266c749d3b |
|
| /// File Name: |
postnukefg-sql.txt |
Description:
|
The PostNuke pnFlashGames module versions 2.5 and below suffer from multiple SQL injection vulnerabilities.
| | Author: | Kacper | | Homepage: | http://devilteam.pl/ | | File Size: | 1839 | | Last Modified: | Apr 28 11:00:26 2008 |
| MD5 Checksum: | b0a0092214667a64d2ee08329d7f4aa0 |
|
| /// File Name: |
postnukeschedule-sql.txt |
Description:
|
The Postnuke PostSchedule module suffers from a SQL injection vulnerability.
| | Author: | Kacper | | Homepage: | http://devilteam.pl/ | | File Size: | 396 | | Last Modified: | Apr 25 11:48:46 2008 |
| MD5 Checksum: | df6ab270461e2067aaba18641133a4e2 |
|
| /// File Name: |
PR07-43.txt |
Description:
|
A HTML injection vulnerability exists in the WebLogic administration console. Version 10.0 is susceptible. remote URI redirection vulnerability affects the RSA Authentication Agent. This issue is due to a failure of the application to properly sanitize URI-supplied data assigned to the 'url' parameter. Tested on RSA Authentication Agent 5.3.0.258 for Web for Internet Information Services in conjunction with Mozilla Firefox 2.0.0.11.
| | Author: | Richard Brain | | Homepage: | http://www.procheckup.com/ | | File Size: | 3630 | | Last Modified: | Apr 23 20:49:12 2008 |
| MD5 Checksum: | ddc424c80bd593c395ae868dd66bb6e6 |
|
| /// File Name: |
PR07-44.txt |
Description:
|
RSA Authentication Agent is vulnerable to a vanilla cross site scripting flaw on the login page. Tested on RSA Authentication Agent 5.3.0.258 for Web for Internet Information Services.
| | Homepage: | http://www.procheckup.com/ | | File Size: | 7634 | | Last Modified: | Apr 23 20:50:44 2008 |
| MD5 Checksum: | 235b73c9ce5e7d2b972b90fb6dc75713 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
