Section: .. / Last 50 Exploit Files /
| /// File Name: | indexscript30-sql.txt | Description:
| IndexScript version 3.0 suffers from a remote SQL injection vulnerability in sug_cat.php. | | Author: | d3v1l | | File Size: | 1671 | | Last Modified: | Oct 13 18:52:58 2008 | | MD5 Checksum: | 5e2807c76a32766616e40201332ae419 |
|
| /// File Name: | globsy-rewrite.txt | Description:
| Globsy versions 1.0 and below remote file rewriting exploit. | | Author: | StAkeR | | File Size: | 2523 | | Last Modified: | Oct 13 18:39:27 2008 | | MD5 Checksum: | 78f659efa0d70ef59b7f3232e2bf167e |
|
| /// File Name: | createdirectory2sysdba.sql | Description:
| Proof of concept code that demonstrates how an Oracle DB user which has been granted CREATE ANY DIRECTORY can use that system privilege to grant themselves the SYSDBA system privilege by creating a DIRECTORY pointing to the password file location on the OS and then overwriting it with a previously prepared known binary password file using UTL_FILE.PUT_RAW from within the DB. | | Author: | Paul Wright | | Homepage: | http://www.oracleforensics.com/ | | Related File: | create_any_directory_to_sysdba.pdf | | File Size: | 6826 | | Last Modified: | Oct 13 18:38:09 2008 | | MD5 Checksum: | 0aa995c9603c1c0edc67e8ed52f9a3d3 |
|
| /// File Name: | lokicms-lfi.txt | Description:
| Loki CMS version 0.3.4 create local file inclusion exploit that uses admin.php. | | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 2123 | | Last Modified: | Oct 13 18:28:59 2008 | | MD5 Checksum: | 34108b04b4ff81c8f41076847bbd2607 |
|
| /// File Name: | lokicms-check.txt | Description:
| Loki CMS versions 0.3.4 and below arbitrary check file exploit that uses index.php. | | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 2504 | | Last Modified: | Oct 13 18:27:51 2008 | | MD5 Checksum: | 2e46b939fbe92807d4c684a4755329fb |
|
| /// File Name: | res-sql.txt | Description:
| Real Estate Scripts 2008 suffers from a remote SQL injection vulnerability in index.php. | | Author: | EgY Coders Team | | File Size: | 1316 | | Last Modified: | Oct 13 18:25:12 2008 | | MD5 Checksum: | 214fbb541760aac4bb8e3af74f88cce7 |
|
| /// File Name: | zomplog39-xss.txt | Description:
| Zomplog version 3.9 suffers from a cross site scripting vulnerability. | | Author: | swappie aka faithlove | | File Size: | 2263 | | Last Modified: | Oct 13 18:21:51 2008 | | MD5 Checksum: | f6ded5326024d2fe57515e2dd2f0bdc4 |
|
| /// File Name: | phprs-sql.txt | Description:
| phpRS version 2.8.0 suffers from a remote SQL injection vulnerability in kforum.php. | | Author: | d3v1l | | File Size: | 2060 | | Last Modified: | Oct 13 14:50:48 2008 | | MD5 Checksum: | bacc7beb07213e843c29df8cac6055f7 |
|
| /// File Name: | raiden-dos.txt | Description:
| RaidenFTPD version 2.4 build 3620 remote denial of service exploit. | | Author: | dmnt | | File Size: | 1263 | | Last Modified: | Oct 13 14:49:32 2008 | | MD5 Checksum: | 3a0402a531be67bb67daff5c95d971e5 |
|
| /// File Name: | newlife-cookiesql.txt | Description:
| NewLife Blogger version 3.0 and below suffer from insecure cookie handling and SQL injection vulnerabilities. | | Author: | Pepelux | | Homepage: | http://www.enye-sec.org/ | | File Size: | 1749 | | Last Modified: | Oct 13 14:48:12 2008 | | MD5 Checksum: | adc7cc57cc81e98f83fa4f6b7f8eea6d |
|
| /// File Name: | iltaweb-sql.txt | Description:
| Iltaweb Alisveris Sistemi suffers from a remote SQL injection vulnerability. | | Author: | notRoot | | File Size: | 803 | | Last Modified: | Oct 13 14:41:46 2008 | | MD5 Checksum: | 9fd494577de5b6d39365b8f665e2d0e1 |
|
| /// File Name: | guildftpd-dos.txt | Description:
| GuildFTPd versions 0.999.8.11 and 0.999.14 heap corruption proof of concept denial of service exploit. | | Author: | dmnt | | File Size: | 1344 | | Last Modified: | Oct 13 13:21:16 2008 | | MD5 Checksum: | 87ee0617c88d004d2df1f5773bc2bd3f |
|
| /// File Name: | emf_MS08-046.rar | Description:
| Microsoft Windows EMR_SETICMPROFILEA heap overflow denial of service exploit. | | Author: | Ac!dDrop | | File Size: | 602 | | Last Modified: | Oct 12 16:36:50 2008 | | MD5 Checksum: | c4289869ff9a6d71f21cb8d81ceba238 |
|
| /// File Name: | minipub03-multi.txt | Description:
| mini-pub versions 0.3 and below suffer from local directory traversal and file disclosure vulnerabilities. | | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1004 | | Last Modified: | Oct 12 16:33:35 2008 | | MD5 Checksum: | b45f5a70ef5f931fbac4a17d52c9f24b |
|
| /// File Name: | apm-sql.txt | Description:
| Absolute Poll Manager XE version 4.1 suffers from a remote SQL injection vulnerability in xlacomments.asp. | | Author: | Hakxer | | Homepage: | http://www.educ-up.com/ | | File Size: | 1253 | | Last Modified: | Oct 12 16:29:47 2008 | | MD5 Checksum: | cf487f2d827950a7047d52750e013765 |
|
| /// File Name: | cubecartcms-sql.txt | Description:
| This is an old SQL injection vulnerability for CubeCart CMS that has further details on exploitation since the original report surfaced years back. | | Author: | swappie aka faithlove | | Related Exploit: | cubecart201.txt | | File Size: | 1533 | | Last Modified: | Oct 12 16:26:28 2008 | | MD5 Checksum: | 901bd6b5ab81e07d465b727228451401 |
|
| /// File Name: | cabrightstor-exec.txt | Description:
| CA BrightStor ARCServe BackUp is an overall data backup solution. The RPC interface of CA BrightStor ARCServe BackUp does not handle user's input exactly that allows anonymous attacker to inject any command, a remote code execution attack may achieved through this way. Details are provided. CA BrightStor ARCServe BackUp version R11.5 is affected. | | Author: | cocoruder | | Homepage: | http://ruder.cdut.net/ | | File Size: | 3966 | | Related CVE(s): | CVE-2008-4397 | | Last Modified: | Oct 11 14:58:43 2008 | | MD5 Checksum: | 69624d203a69ee3ff823212da88e2365 |
|
| /// File Name: | joomlajeux-sql.txt | Description:
| The Joomla Jeux component version 1.0.0 suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1281 | | Last Modified: | Oct 11 14:55:46 2008 | | MD5 Checksum: | 547973dcd068393998bff7ce8537a3c3 |
|
| /// File Name: | joomlavideos-sql.txt | Description:
| The Joomla Videos component version 1.0.0 suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1234 | | Last Modified: | Oct 11 14:54:03 2008 | | MD5 Checksum: | 68294a5af4ac34c805d4c3c970c66997 |
|
| /// File Name: | joomlaphotos-sql.txt | Description:
| The Joomla Photos component version 1.0.0 suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1217 | | Last Modified: | Oct 11 14:50:59 2008 | | MD5 Checksum: | fba62c45aae33e98387cb60a99da79df |
|
| /// File Name: | joomlaflash-sql.txt | Description:
| The Joomla Flash component version 1.0.0 suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1209 | | Last Modified: | Oct 11 14:50:23 2008 | | MD5 Checksum: | 1cd4fd875f6b2d420f96137f2904d182 |
|
| /// File Name: | joomlaownbiblio-sql.txt | Description:
| The Joomla ownbiblio component version 1.5.3 suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1271 | | Last Modified: | Oct 11 14:48:30 2008 | | MD5 Checksum: | 02f0c578d5317a89f9e93a633d059252 |
|
| /// File Name: | eebcms-xss.txt | Description:
| EEB-CMS version 0.95 suffers from a cross site scripting vulnerability. | | Author: | d3v1l | | File Size: | 1008 | | Last Modified: | Oct 11 14:43:50 2008 | | MD5 Checksum: | 77b9cb0b8ec92353e4aaf877403723a3 |
|
| /// File Name: | slimcms-escalate.txt | Description:
| SlimCMS versions 1.0.0 and below privilege escalation exploit that uses redirect.php. | | Author: | StAkeR | | File Size: | 1307 | | Last Modified: | Oct 11 14:42:32 2008 | | MD5 Checksum: | cffe1244aa00974fd691e407e35f88fc |
|
| /// File Name: | joomlamad4-sql.txt | Description:
| The Joomla mad4joomla component suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1166 | | Last Modified: | Oct 11 14:28:41 2008 | | MD5 Checksum: | 5fa1cadbaf046e77b4c9f2081b6a1312 |
|
| /// File Name: | joomlaignite-sql.txt | Description:
| The Joomla Ignite Gallery component version 0.8.3 suffers from a remote SQL injection vulnerability. | | Author: | H!tm@N | | Homepage: | http://www.khg-crew.ws/ | | File Size: | 1343 | | Last Modified: | Oct 11 14:27:36 2008 | | MD5 Checksum: | fa106f99174d37512a46277250c38020 |
|
| /// File Name: | easynet4ulink-sql.txt | Description:
| Easynet4u Link Host suffers from a remote SQL injection vulnerability in directory.php. | | Author: | BeyazKurt | | File Size: | 959 | | Last Modified: | Oct 11 14:26:23 2008 | | MD5 Checksum: | 487c026f6efd6e494e36d7397edd2ab9 |
|
| /// File Name: | easynet4uforum-sql.txt | Description:
| Easyney4u Forum Host suffers from a remote SQL injection vulnerability in forum.php. | | Author: | SuB-ZeRo | | File Size: | 911 | | Last Modified: | Oct 11 14:25:30 2008 | | MD5 Checksum: | 928f0ddb6926d93238f24b6ee2abd9a8 |
|
| /// File Name: | easynet4ufaq-sql.txt | Description:
| Easyney4u FAQ Host suffers from a remote SQL injection vulnerability in faq.php. | | Author: | SuB-ZeRo | | File Size: | 1077 | | Last Modified: | Oct 11 14:20:16 2008 | | MD5 Checksum: | 9cc64dc7b6c8489a5010135e78380e25 |
|
| /// File Name: | ayco-sql.txt | Description:
| Ayco Okul Portali suffers from a remote SQL injection vulnerability. | | Author: | Crackers_Child | | File Size: | 923 | | Last Modified: | Oct 10 21:28:15 2008 | | MD5 Checksum: | ba3551b29d205af08534e78b3e3c43ba |
|
| /// File Name: | munzursoft-sql.txt | Description:
| MunzurSoft WEP Portal W3 suffers from a remote SQL injection vulnerability. | | Author: | LUPUS | | Homepage: | http://www.megaturks.net/ | | File Size: | 785 | | Last Modified: | Oct 10 19:40:39 2008 | | MD5 Checksum: | 4a40ca511d902137636de8485d0070a0 |
|
| /// File Name: | scriptsezmhp-lfi.txt | Description:
| ScriptsEz Mini Hosting Panel suffers from a local file inclusion vulnerability in members.php. | | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 931 | | Last Modified: | Oct 9 18:48:48 2008 | | MD5 Checksum: | 586f9b29aa86f65e1e1125e400fd21b7 |
|
| /// File Name: | stash103exp.txt | Description:
| Stash version 1.0.3 user credential disclosure exploit that leverages a SQL injection vulnerability in admin/login.php. | | Author: | Gnix | | Homepage: | http://gnix.netsons.org/ | | File Size: | 2743 | | Last Modified: | Oct 9 18:42:19 2008 | | MD5 Checksum: | ff8f795d430ca06e630097a349e0ac3a |
|
| /// File Name: | cameralife-sqlxss.txt | Description:
| Cameralife version 2.6.2b4 suffers from SQL injection and cross site scripting vulnerabilities. | | Author: | BackDoor | | File Size: | 733 | | Last Modified: | Oct 9 18:38:56 2008 | | MD5 Checksum: | 7fc958adf7d808e0b7ee46f1cfe75bab |
|
| /// File Name: | aradcenter-sql.txt | Description:
| Arad Center suffers from a remote SQL injection vulnerability in news.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1190 | | Last Modified: | Oct 9 18:25:57 2008 | | MD5 Checksum: | f9ec882e862659af1eb95d8d7ba0cc81 |
|
| /// File Name: | persiantools-sql.txt | Description:
| Persian Tools Gallery suffers from a remote SQL injection vulnerability. | | Author: | Sakab | | File Size: | 1878 | | Last Modified: | Oct 9 18:24:38 2008 | | MD5 Checksum: | d90998db611fdd856f5abd5cc286dd03 |
|
| /// File Name: | PR07-31.txt | Description:
| Remote SQL injection, cross site scripting, and user enumeration vulnerabilities exist in DPSnet Case Progress. | | Author: | Adrian Pastor | | Homepage: | http://www.procheckup.com/ | | File Size: | 6621 | | Last Modified: | Oct 9 18:22:42 2008 | | MD5 Checksum: | 23b9151851dd72ce243438b8d000a287 |
|
| /// File Name: | fc2blog-xss.txt | Description:
| FC2 BLOG suffers from a cross site scripting vulnerability. | | Author: | xisigr | | File Size: | 573 | | Last Modified: | Oct 9 18:19:11 2008 | | MD5 Checksum: | 6b573496d3cfbd908d8216024d10e00e |
|
| /// File Name: | joomlajoomtracker-sql.txt | Description:
| The Joomla Joomtracker component version 1.01 suffers from a remote SQL injection vulnerability. | | Author: | rsauron | | Homepage: | http://www.darkc0de.com/ | | File Size: | 2297 | | Last Modified: | Oct 9 18:18:19 2008 | | MD5 Checksum: | 9561d8d61b54eb371f55c76186d490c6 |
|
| /// File Name: | kusaba2-exec.txt | Description:
| Kusaba versions 1.0.4 and below remote code execution exploit. Second version. | | Author: | Sausage | | File Size: | 1149 | | Last Modified: | Oct 9 18:16:43 2008 | | MD5 Checksum: | 4cf7bafca57be8b7ce3419583eaeec1d |
|
| /// File Name: | kusaba1-exec.txt | Description:
| Kusaba versions 1.0.4 and below remote code execution exploit. | | Author: | Sausage | | File Size: | 1611 | | Last Modified: | Oct 9 18:16:13 2008 | | MD5 Checksum: | 15c3428f6f9dfdfc5332f5bd47b586d9 |
|
| /// File Name: | gforge46-sql.txt | Description:
| Gforge versions 4.6 rc1 and below suffer from a remote SQL injection vulnerability. | | Author: | beford | | File Size: | 389 | | Last Modified: | Oct 9 18:14:52 2008 | | MD5 Checksum: | 1f2e125fea2ee1b9c63fd8fa93b09db4 |
|
| /// File Name: | gforge4519-sql.txt | Description:
| Gforge versions 4.5.19 and below suffer from multiple remote SQL injection vulnerabilities. | | Author: | beford | | File Size: | 671 | | Last Modified: | Oct 9 18:13:54 2008 | | MD5 Checksum: | 088e26d8067b867fc9e3b3dcf5fc7fd4 |
|
| /// File Name: | webbiscuits-rfirfd.txt | Description:
| WebBiscuits Modules Controller versions 1.1 and below suffer from remote file inclusion and remote file disclosure vulnerabilities. | | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1090 | | Last Modified: | Oct 9 01:58:40 2008 | | MD5 Checksum: | 30cf9841334774068e0177366eeab12d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
