Section: .. / 0605-exploits /
| /// File Name: |
CANews.txt |
Description:
|
CodeAvalanche News version 1.2 is susceptible to SQL injection and cross site scripting vulnerabilities.
| | Author: | omnipresent | | File Size: | 2552 | | Last Modified: | May 23 03:55:38 2006 |
| MD5 Checksum: | 704f380ee1fb03a9e885c2c9fbbe24ec |
|
| /// File Name: |
mybb111.txt |
Description:
|
mybb version 1.1.1 suffers from a SQL injection vulnerability in rss.php.
| | Author: | Breeeeh | | Homepage: | http://www.alshmokh.com | | File Size: | 529 | | Last Modified: | May 23 03:53:31 2006 |
| MD5 Checksum: | 54fe7bdcaac997551c10ca2145c5e41d |
|
| /// File Name: |
cyruspop3d.c |
Description:
|
A remote stack-based buffer overrun exists in Cyrus-imapd pop3d. Details and an exploit are included.
| | Author: | kcope | | File Size: | 10019 | | Last Modified: | May 22 03:20:00 2006 |
| MD5 Checksum: | 68899d1810acb42fb37d1bfa4da967a3 |
|
| /// File Name: |
vp-asp-new.txt |
Description:
|
VP-ASP versions 6.00 through 6.08 suffer from a remote SQL injection vulnerability.
| | Author: | tracewar | | File Size: | 1062 | | Last Modified: | May 22 03:17:04 2006 |
| MD5 Checksum: | 2e0cae0fb1482400b10e7afb1fa9b07d |
|
| /// File Name: |
zix112.txt |
Description:
|
Zix Forum versions 1.12 and below suffer from SQL injection vulnerabilities.
| | Author: | PHP Emperor | | File Size: | 910 | | Last Modified: | May 22 03:12:35 2006 |
| MD5 Checksum: | 65798d5810a745563adb51ab10a6928e |
|
| /// File Name: |
phpBazar210.txt |
Description:
|
phpBazar versions 2.1.0 and below suffer from remote file inclusion and credential access flaws.
| | Author: | PHP Emperor | | File Size: | 323 | | Last Modified: | May 22 03:11:12 2006 |
| MD5 Checksum: | e72569a5d0fa5f4e51b2ec57ba1d99a5 |
|
| /// File Name: |
RaceEventManagement.txt |
Description:
|
RaceEventManagement version 0.7.6 is susceptible to SQL injection and cross site scripting attacks.
| | Author: | Mr-X | | Homepage: | http://www.alshmokh.com/ | | File Size: | 183 | | Last Modified: | May 22 03:10:18 2006 |
| MD5 Checksum: | 7a177bc8fcc946dc89f049364cebfed4 |
|
| /// File Name: |
interlink.txt |
Description:
|
news_information.php in Interlink is susceptible to cross site scripting.
| | Author: | Mr-X | | Homepage: | http://www.alshmokh.com/ | | File Size: | 173 | | Last Modified: | May 22 03:04:47 2006 |
| MD5 Checksum: | ef8a9d5ebc4719385829bfeceb4e13e2 |
|
| /// File Name: |
topsitesXSS.txt |
Description:
|
Xtremescripts Topsites version 1.1 is susceptible to cross site scripting and SQL injection attacks.
| | Author: | luny | | File Size: | 1192 | | Last Modified: | May 22 03:02:44 2006 |
| MD5 Checksum: | 7e0869a664a4079af398fac9f75b5751 |
|
| /// File Name: |
aspbbXSS.txt |
Description:
|
AspBB version 0.5.2 is susceptible to cross site scripting attacks.
| | Author: | Teufel | | File Size: | 515 | | Last Modified: | May 22 02:02:55 2006 |
| MD5 Checksum: | 86f30d24a7440c33d74b8c28be5bfe83 |
|
| /// File Name: |
cosmoshop.txt |
Description:
|
Cosmoshop versions 8.11.106 and below suffer from SQL injection and directory traversal flaws.
| | Author: | l0om | | Homepage: | http://www.excluded.org | | File Size: | 1363 | | Last Modified: | May 22 01:59:56 2006 |
| MD5 Checksum: | 0a180ffbc04addb45fc31a7fec22fee3 |
|
| /// File Name: |
libextho.zip |
Description:
|
Proof of concept exploit for heap overflow vulnerabilities in libextractor versions 0.5.13 and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | libextho.txt | | File Size: | 7060 | | Last Modified: | May 22 01:47:29 2006 |
| MD5 Checksum: | b4d9b6668ca12959ed3e04d3db7a389b |
|
| /// File Name: |
mobotixXSS.txt |
Description:
|
Mobotix IP Network Cameras suffer from multiple cross site scripting flaws. M10 version 2.0.5.2 and M1 version 1.9.4.7 are affected.
| | Author: | Jaime Blasco | | Homepage: | http://www.eazel.es/ | | File Size: | 727 | | Last Modified: | May 22 01:44:32 2006 |
| MD5 Checksum: | 5ddd8f1d36fd8e3a2575c69af6bc6cb5 |
|
| /// File Name: |
newsportalsploit.txt |
Description:
|
Newsportal versions 0.36 and below are susceptible to a remote file inclusion vulnerability.
| | Author: | Philipp Niedziela | | Related File: | newsportal.txt | | File Size: | 1223 | | Last Modified: | May 22 01:31:42 2006 |
| MD5 Checksum: | 381b809b49edc33ab2764f4c64b8bdc4 |
|
| /// File Name: |
HYSA-2006-008.txt |
Description:
|
myBloggie version 2.1.3 is susceptible to CRLF and SQL injection attacks.
| | Author: | matrix_k | | Homepage: | http://www.h4cky0u.org | | File Size: | 2296 | | Last Modified: | May 22 01:30:02 2006 |
| MD5 Checksum: | 3fd77bea8c3de525128a659fd377fa04 |
|
| /// File Name: |
openwikiXSS.txt |
Description:
|
ow.asp in OpenWiki version 0.78 is susceptible to cross site scripting.
| | Author: | LiNuX_rOOt | | Homepage: | http://www.alshmokh.com/ | | File Size: | 121 | | Last Modified: | May 22 01:23:57 2006 |
| MD5 Checksum: | 4e585bb35cf38824cb25534523c85502 |
|
| /// File Name: |
QuezzaBB.txt |
Description:
|
Quezza BB versions 1.0 and below suffer from a file inclusion vulnerability.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com/ | | File Size: | 1529 | | Last Modified: | May 22 01:22:31 2006 |
| MD5 Checksum: | b629a43bae9348b96115853a5eb0a0ad |
|
| /// File Name: |
Boastmachine.txt |
Description:
|
Boastmachine version 3.1 is susceptible to cross site scripting attacks.
| | Author: | Yunus Emre Yilmaz | | Homepage: | http://yns.zaxaz.com/ | | File Size: | 903 | | Last Modified: | May 22 01:21:29 2006 |
| MD5 Checksum: | a7d3b10e85ac706b9263a909ce48b672 |
|
| /// File Name: |
deluxebb.txt |
Description:
|
DeluxeBB versions 1.06 and below attachment momd_mime exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 9191 | | Last Modified: | May 22 01:17:44 2006 |
| MD5 Checksum: | 5782aee529a3ac5c704cf126960aa250 |
|
| /// File Name: |
phpfusion600306-2.txt |
Description:
|
PHP-Fusion versions 6.00.306 and below "srch_where" SQL injection and administrative credential disclosure exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 4798 | | Last Modified: | May 22 01:17:07 2006 |
| MD5 Checksum: | 9ea60d7d3da3e9dfdfbe79e9ddd7259d |
|
| /// File Name: |
R7-0024.txt |
Description:
|
Rapid7 Security Advisory - The Caucho Resin web application server for Windows contains a directory traversal vulnerability that allows remote unauthenticated users to download any file from the system. It is possible to download files from any drive on the system. Versions 3.0.18 and 3.0.17 for Windows are vulnerable.
| | Homepage: | http://www.rapid7.com/ | | File Size: | 2894 | | Related CVE(s): | CVE-2006-1953 | | Last Modified: | May 22 01:15:39 2006 |
| MD5 Checksum: | 31d1931060c9dac4600df99620e3a12f |
|
| /// File Name: |
sa-caucho.txt |
Description:
|
ScanAlert Security Advisory - Caucho Resin versions 3.0.17 and 3.0.18 suffer from arbitrary file access and information disclosure vulnerabilities.
| | Homepage: | http://www.scanalert.com/ | | File Size: | 3480 | | Last Modified: | May 22 01:04:15 2006 |
| MD5 Checksum: | e6eb58aae907535140edb0006d174b53 |
|
| /// File Name: |
SAPwebas.txt |
Description:
|
SAP Web Application Server versions 7.00 and below suffer from a URL manipulation flaw that can allow for cross site scripting.
| | Author: | A. Grossmann | | File Size: | 3286 | | Last Modified: | May 22 01:02:29 2006 |
| MD5 Checksum: | 98cdb331d2641aba2e6fc365d4e111b8 |
|
| /// File Name: |
icewarp.txt |
Description:
|
IceWarp is susceptible to cross site scripting attacks via the PHPSESSID variable.
| | Author: | LiNuX_rOOt | | Homepage: | http://www.alshmokh.com | | File Size: | 176 | | Last Modified: | May 22 00:59:03 2006 |
| MD5 Checksum: | 67328b5a6234b09182dbe7f4623bc125 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
