Section: .. / 0609-exploits /
| /// File Name: |
EShoppingProv1.0.txt |
Description:
|
EShoppingPro v1.0 is vulnerable to SQL injection in search_run.asp. POC provided.
| | Author: | ajannhwt | | File Size: | 525 | | Last Modified: | Sep 21 20:31:56 2006 |
| MD5 Checksum: | c85d1d1628e2d0d8c68fdf191406a143 |
|
| /// File Name: |
EV0134.txt |
Description:
|
Doika guestbook version 2.5 suffers from a cross site scripting flaw.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1140 | | Related CVE(s): | CVE-2006-4325 | | Last Modified: | Sep 14 02:23:39 2006 |
| MD5 Checksum: | 552b428830268b048490aa8f01ae9ef8 |
|
| /// File Name: |
EV0135.txt |
Description:
|
indexcity version 1.0 suffers from SQL injection and cross site scripting flaws.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1606 | | Related CVE(s): | CVE-2006-4323, CVE-2006-4324 | | Last Modified: | Sep 14 02:24:59 2006 |
| MD5 Checksum: | 685a9881aa9725ecf737628e842b9ed5 |
|
| /// File Name: |
EV0136.txt |
Description:
|
Links Manager version 2006-06-12 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1784 | | Related CVE(s): | CVE-2006-4327, CVE-2006-4328 | | Last Modified: | Sep 14 02:26:32 2006 |
| MD5 Checksum: | 948ee7087a0cbd9e4ca51acf557d4278 |
|
| /// File Name: |
EV0137.txt |
Description:
|
CJ Tag Board version 3.0 suffers from a cross site scripting flaw.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1229 | | Last Modified: | Sep 14 02:27:34 2006 |
| MD5 Checksum: | 23308674345ebbe6b7eb8c11214fb64b |
|
| /// File Name: |
EV0138.txt |
Description:
|
NX5Linkx version 1.0 suffers from arbitrary file disclosure, multiple SQL injection, and HTTP response splitting vulnerabilities.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 2352 | | Related CVE(s): | CVE-2006-4503, CVE-2006-4504, CVE-2006-4505 | | Last Modified: | Sep 14 02:29:30 2006 |
| MD5 Checksum: | 328b1ed1fcfa43db901b8b5d0c314d8e |
|
| /// File Name: |
ExBB_ITA_v2.txt |
Description:
|
ExBB Italiano versions 2.0 and below suffer from remote file inclusion vulnerabilities via home_path. Patch included.
| | Author: | Lord Flippo | | File Size: | 1562 | | Last Modified: | Sep 13 03:22:33 2006 |
| MD5 Checksum: | d5360d394a76df08ec01981ee47177ca |
|
| /// File Name: |
ezcontents203.txt |
Description:
|
ezContents version 2.0.3 suffers from remote file inclusion, SQL injection, and cross site scripting vulnerabilities.
| | Author: | DarkFig | | File Size: | 1805 | | Last Modified: | Sep 7 01:40:19 2006 |
| MD5 Checksum: | 6b4cd6a5cd64b75c913f1449a791df4a |
|
| /// File Name: |
ezportal.txt |
Description:
|
Ezportal / Zhtml version 1.0 suffers from cross site scripting, SQL injection, and administrative bypass flaws.
| | Author: | Hessam-x | | Homepage: | http://www.hessamx.net | | File Size: | 1374 | | Last Modified: | Sep 1 04:41:29 2006 |
| MD5 Checksum: | 399d491937db8fabceb90f4d19c6ccda |
|
| /// File Name: |
flashchat.txt |
Description:
|
Two remote file inclusion flaws exist in Flashchat versions 4.5.7 and below.
| | Author: | NeXtMaN | | File Size: | 386 | | Last Modified: | Sep 7 04:22:49 2006 |
| MD5 Checksum: | 3ef8e544851a60d99f47fd73dc4e84d2 |
|
| /// File Name: |
flush.txt |
Description:
|
FlushCMS suffers from a remote file inclusion vulnerability.
| | Author: | xfrancesco84x | | File Size: | 881 | | Last Modified: | Oct 2 19:42:07 2006 |
| MD5 Checksum: | 998963100faf07513287a3079667af0a |
|
| /// File Name: |
forum112.txt |
Description:
|
ZIXForum version 1.12 suffers from a SQL injection flaw due to a lack of sanitization in the RepId variable.
| | Author: | Chironex Fleckeri | | File Size: | 1857 | | Last Modified: | Sep 7 05:00:38 2006 |
| MD5 Checksum: | c3a60be3e68d008313570f33a45ea271 |
|
| /// File Name: |
forumjbc4.txt |
Description:
|
ForumJBC version 4 suffers from a cross site scripting flaw.
| | Author: | ThE__LeO | | File Size: | 443 | | Last Modified: | Sep 14 02:35:08 2006 |
| MD5 Checksum: | 888bbc1b793dd030c9aa03ee90e60ec9 |
|
| /// File Name: |
forumv04c.txt |
Description:
|
forum version 0.4c members.dat MD5 password hash disclosure proof of concept exploit.
| | Author: | DarkFig | | File Size: | 1353 | | Last Modified: | Sep 7 03:08:39 2006 |
| MD5 Checksum: | e0d9b7cef14009fb769850f7e93b26d5 |
|
| /// File Name: |
grapagenda.txt |
Description:
|
GrapAgenda version 0.1 suffers from a remote file inclusion flaw.
| | Author: | botan | | File Size: | 762 | | Last Modified: | Sep 7 04:56:06 2006 |
| MD5 Checksum: | 9c3f36337fefc81668e35ea53133193d |
|
| /// File Name: |
GWScript2.50.txt |
Description:
|
GW Script 250 versions 2.1.4 and prior suffer from a remote file inclusion vulnerability if register_globals = on.
| | Author: | florian strankowski | | Homepage: | http://sx02.coresec.de | | File Size: | 1067 | | Last Modified: | Oct 2 20:01:44 2006 |
| MD5 Checksum: | 580310b39fecb2b4ca21d7059334193c |
|
| /// File Name: |
haberx.txt |
Description:
|
Haberx version 1.1 suffers from a SQL injection vulnerability.
| | Author: | Fix TR | | Homepage: | http://www.hack.gen.tr/ | | File Size: | 686 | | Last Modified: | Sep 16 05:07:11 2006 |
| MD5 Checksum: | d6afdf9cac86b039f35195ac45dd5977 |
|
| /// File Name: |
HitWebv3.0.txt |
Description:
|
HitWeb v3.0 suffers from several remote file inclusion vulnerabilities.
| | Author: | ERNE | | File Size: | 1186 | | Last Modified: | Sep 26 16:32:55 2006 |
| MD5 Checksum: | 068202c7c241c8e7e08c9e4b9f6b2508 |
|
| /// File Name: |
hlstats.txt |
Description:
|
HLStats version 1.34 suffers from a cross site scripting vulnerability in index.php.
| | Author: | MC Iglo | | File Size: | 853 | | Last Modified: | Sep 1 04:48:00 2006 |
| MD5 Checksum: | 0c1244f60d91255cd0181fe39642755f |
|
| /// File Name: |
hotplugCMSconfig.txt |
Description:
|
HotPlug CMS config file inclusion exploit that compromises access to the database.
| | Author: | HACKERS PAL | | Homepage: | http://www.soqor.net | | File Size: | 2744 | | Last Modified: | Sep 13 04:49:42 2006 |
| MD5 Checksum: | b39f934b99e82901cab183bde097653b |
|
| /// File Name: |
Icblogger.txt |
Description:
|
Icblogger suffers from a blind SQL injection flaw.
| | Author: | Chironex Fleckeri | | File Size: | 1436 | | Last Modified: | Sep 7 03:12:43 2006 |
| MD5 Checksum: | 57348e61f74fc85e764fe8e9331657b3 |
|
| /// File Name: |
inlink234.txt |
Description:
|
in-link versions 2.3.4 and below suffer from a remote file inclusion vulnerability.
| | Author: | Saudi Hackrz | | Homepage: | http://www.sehr.com | | File Size: | 1609 | | Last Modified: | Sep 7 03:58:35 2006 |
| MD5 Checksum: | 77bc92fb0a66158684d2ebc42eb3a80c |
|
| /// File Name: |
iwebnegar11.txt |
Description:
|
IwebNegar version 1.1 suffers from cross site scripting and SQL injection vulnerabilities.
| | Author: | Hessam-x | | Homepage: | http://www.hessamx.net | | File Size: | 781 | | Last Modified: | Sep 1 04:44:08 2006 |
| MD5 Checksum: | 4cefacbd35992b797187b988aa74c828 |
|
| /// File Name: |
jetboxCMSSQL.txt |
Description:
|
Jetbox CMS suffers from SQL injection, remote file inclusion, and cross site scripting vulnerabilities.
| | Author: | HACKERS PAL, mohajali | | Homepage: | http://www.soqor.net | | File Size: | 2197 | | Last Modified: | Sep 13 03:26:38 2006 |
| MD5 Checksum: | 540a52bb82ff910126a23fec7053c1cf |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
