Section: .. / 0512-exploits /
| /// File Name: |
arabPortalSQL.txt |
Description:
|
Arab Portal System version 2 Beta 2 is susceptible to SQL injection attacks.
| | Author: | Devil-00 | | File Size: | 2062 | | Last Modified: | Dec 14 02:12:40 2005 |
| MD5 Checksum: | fb558b6b1217c312052d18162d60388d |
|
| /// File Name: |
excelBugs.tgz |
Description:
|
Two Microsoft Excel xls files that demonstrate null pointer bugs.
| | Author: | ad | | File Size: | 2041 | | Last Modified: | Dec 27 23:56:46 2005 |
| MD5 Checksum: | 0564e730901ee39f705c3811eb423ef6 |
|
| /// File Name: |
SMF11SQL.txt |
Description:
|
Simple Machines Forum version 1.1 rc1 is susceptible to SQL injection attacks.
| | Author: | trueend5 | | Homepage: | http://www.KAPDA.ir | | File Size: | 2037 | | Last Modified: | Dec 14 01:18:45 2005 |
| MD5 Checksum: | d419208a5047a55cc6a819f041e3c940 |
|
| /// File Name: |
ACSSEC-2005-11-25-3.txt |
Description:
|
FTGate 4.4 [Build 4.4.000 Oct 26 2005] is vulnerable to specially crafted XSS requests. A remote attacker could trick a user into viewing a vulnerable page which could then lead to remote compromise.
| | Author: | Tim Shelton | | File Size: | 1941 | | Last Modified: | Dec 28 00:25:00 2005 |
| MD5 Checksum: | e008f66c82dc31ff0cacce9d393a4d6e |
|
| /// File Name: |
phpMyAdminSQL.txt |
Description:
|
phpMyAdmin version 2.7.0 is susceptible to SQL injection attacks via the server_privileges.php script. Details provided.
| | Author: | Alice Bryson | | File Size: | 1798 | | Last Modified: | Dec 27 03:20:32 2005 |
| MD5 Checksum: | 16bc082433656f2e812665cc5bc17ad0 |
|
| /// File Name: |
Acidcat-bypass.txt |
Description:
|
Several vulnerabilities in Acidcat CMS v 2.1.13 and below have been found which can be used to discover the admin credentials or download the database.
| | Author: | Hamid Network Security Team | | Homepage: | http://hamid.ir | | File Size: | 1748 | | Last Modified: | Dec 28 15:46:38 2005 |
| MD5 Checksum: | d683870ab3c64aa5edc3f729683b6aa5 |
|
| /// File Name: |
hcXSS.txt |
Description:
|
Hosting Controller is susceptible to cross site scripting attacks.
| | Author: | Lone Rider Knight | | File Size: | 1653 | | Last Modified: | Dec 26 13:45:23 2005 |
| MD5 Checksum: | 8e45f9ca208630c7be0dfc41bab14e57 |
|
| /// File Name: |
phpMyChat0146.txt |
Description:
|
phpMyChat version 0.14.6 is susceptible to cross site scripting flaws in start_page.css.php, style.css.php, and users_popupL.php.
| | Author: | Louis Wang | | Homepage: | http://www.fortinet.com/ | | File Size: | 1630 | | Last Modified: | Dec 3 00:38:22 2005 |
| MD5 Checksum: | aca7825d44871757fae3eb67dd784b18 |
|
| /// File Name: |
webcalXSS.txt |
Description:
|
WebCal versions 1.11 through 3.04 are susceptible to cross site scripting attacks.
| | Author: | Stan Bubrouski | | File Size: | 1612 | | Last Modified: | Dec 27 03:14:08 2005 |
| MD5 Checksum: | 515d21f55e70bd7e6756fcf17e9feda3 |
|
| /// File Name: |
Tolva.txt |
Description:
|
Tolva PHP website system version 0.1.0 suffers from a remote php include vulnerability.
| | Author: | bedford | | File Size: | 1596 | | Last Modified: | Dec 28 16:23:23 2005 |
| MD5 Checksum: | 705140a6f6d6ea29bfc9c58f9fba1c14 |
|
| /// File Name: |
adpHashdisclose.txt |
Description:
|
ADP Forum versions 2.0 through 2.0.3 suffers from a direct download flaw that discloses users' password hashes.
| | Author: | Liz0ziM | | Homepage: | http://www.biyo.tk | | File Size: | 1194 | | Last Modified: | Dec 14 03:01:51 2005 |
| MD5 Checksum: | 3a4537af165b9812a28f6030875fd239 |
|
| /// File Name: |
firefox-1.5.txt |
Description:
|
Firefox 1.5 suffers from a denial of service condition when a large topic gets saved automatically to the history.dat file. This only works on a small amount of the Firefox 1.5 users, and it is not apparent that the problem is a buffer overflow. More information available here. Official Mozilla response here.
| | Author: | ZIPLOCK | | File Size: | 1021 | | Last Modified: | Dec 7 01:27:14 2005 |
| MD5 Checksum: | 9c066c92de070c906d61510c03fcccac |
|
| /// File Name: |
alisveristrSQL.txt |
Description:
|
Alisveristr E-Commerce is susceptible to SQL injection attacks during the login phase of usage.
| | Author: | B3g0k | | File Size: | 1018 | | Last Modified: | Dec 6 20:47:58 2005 |
| MD5 Checksum: | 9ba76e5ba7fdd0e4f2889d7965f9b150 |
|
| /// File Name: |
EdgewallSQL.txt |
Description:
|
Edgewall Trac version 0.9 is susceptible to a SQL injection attack due to a lack of sanity checking on the group variable.
| | Author: | David Maciejak | | File Size: | 800 | | Last Modified: | Dec 3 00:27:47 2005 |
| MD5 Checksum: | 7df147c2ac1998ed9869129658f50506 |
|
| /// File Name: |
ie_6_sp2_crash.html |
Description:
|
Internet Explorer Version 6.0.2900.2180.xpsp_sp2 mshtml.dll <div> denial of service exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 800 | | Last Modified: | Dec 30 21:28:07 2005 |
| MD5 Checksum: | b5a6124e8c38eeed20d5355a60984a7e |
|
| /// File Name: |
ag22sql.txt |
Description:
|
Advanced Guestbook version 2.2 suffers from a SQL injection flaw in the username variable. The SQL injection flaw for the password variable was discovered for this same version back in April of 2004.
| | Author: | BHST | | Related Exploit: | advguest.txt | | File Size: | 785 | | Last Modified: | Dec 26 13:50:00 2005 |
| MD5 Checksum: | 3cc8c772fdccc7a409005cb7a75c6eef |
|
| /// File Name: |
marmaraXSS.txt |
Description:
|
MarmaraWeb E-Commerce is susceptible to cross site scripting attacks.
| | Author: | B3g0k | | File Size: | 776 | | Last Modified: | Dec 18 04:22:54 2005 |
| MD5 Checksum: | 6a87dd144224dd7bbac2d3717dbf2432 |
|
| /// File Name: |
flat.txt |
Description:
|
FlatCMS version 1.01 is susceptible to multiple cross site scripting flaws.
| | Author: | X1ngBox | | File Size: | 708 | | Last Modified: | Dec 13 23:40:48 2005 |
| MD5 Checksum: | d820169c55e3dddaa91e6d0a23c84cfd |
|
| /// File Name: |
eXtremeTraversal.txt |
Description:
|
eXtreme Styles mod versions 2.2.1 and below are susceptible to directory traversal attacks.
| | Author: | tommie1 | | File Size: | 707 | | Last Modified: | Dec 6 20:56:22 2005 |
| MD5 Checksum: | 9c2189dc03c81b3f9a974e2e9b07179d |
|
| /// File Name: |
ztml.txt |
Description:
|
TML CMS version 0.5 is susceptible to cross site scripting and SQL injection attacks.
| | Author: | X1ngBox | | File Size: | 702 | | Last Modified: | Dec 13 23:39:44 2005 |
| MD5 Checksum: | c8e300ec3369d30d228c71e2fc4c1835 |
|
| /// File Name: |
nodez.txt |
Description:
|
Nodez version 4.6.1.1 is susceptible to multiple cross site scripting flaws.
| | Author: | X1ngBox | | File Size: | 684 | | Last Modified: | Dec 13 23:41:34 2005 |
| MD5 Checksum: | 82a3c5d82fb2dc7b094bdd6c7e7c0b3a |
|
| /// File Name: |
toendaCMS.txt |
Description:
|
ToendaCMS version 0.6.2.1 is susceptible to cross site scripting attacks.
| | Author: | X1ngBox | | File Size: | 660 | | Last Modified: | Dec 13 23:42:20 2005 |
| MD5 Checksum: | 768f1ca26fca42e789fb5176ef97f15d |
|
| /// File Name: |
imoelPassword.txt |
Description:
|
Direct download access of the setting.php file in IMOEL CMS allows for disclosure of the SQL password.
| | Author: | mehrtash mallahzadeh | | Homepage: | http://www.ashiyane.com | | File Size: | 647 | | Last Modified: | Dec 14 02:26:57 2005 |
| MD5 Checksum: | c3cf39d735cdc657ca8f40d348f2d188 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
