Section: .. / 0706-exploits /
| /// File Name: |
csc-sqlxss.txt |
Description:
|
Comersus Shop Cart version 7.07 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 2530 | | Last Modified: | Jun 21 14:53:38 2007 |
| MD5 Checksum: | cfcfc7f81ef8c0d771a03091cd266aa9 |
|
| /// File Name: |
wildea-sql.txt |
Description:
|
W1L3D4 WEBmarket version 0.1 suffers from a SQL injection vulnerability.
| | Author: | Crackers_Child | | File Size: | 693 | | Last Modified: | Jun 21 14:32:38 2007 |
| MD5 Checksum: | 0f25ad5dfdbe7b2f54583f9675e7f508 |
|
| /// File Name: |
ips-evasion.txt |
Description:
|
Various commercial IPS products fail to decode HTTP requests that contain 0x0c, 0x0b, and 0x0d instead of normal 0x20/0x09 separators.
| | Author: | H D Moore | | File Size: | 1022 | | Last Modified: | Jun 20 01:07:40 2007 |
| MD5 Checksum: | 19b8f0185ad1911c1eccdd675d0588ec |
|
| /// File Name: |
wppersist-xss.txt |
Description:
|
A persistent cross site scripting vulnerability exists in the Wordpress.com dashboard.
| | Author: | Matteo Carli | | Homepage: | http://www.matteocarli.com/ | | File Size: | 2471 | | Last Modified: | Jun 20 01:04:47 2007 |
| MD5 Checksum: | 4403e7380fb0ff7cb5d7aff368b5bdf4 |
|
| /// File Name: |
yabb-lfi.txt |
Description:
|
YaBB versions 2.1 and below suffer from a local file inclusion vulnerability that allows for remote code execution.
| | Author: | krasza | | Homepage: | http://www.krasza.int.pl | | File Size: | 4810 | | Last Modified: | Jun 20 01:00:38 2007 |
| MD5 Checksum: | 3a89f1695bdfaaf90dc041d1ef0bd8d4 |
|
| /// File Name: |
igshop14-eval.txt |
Description:
|
iG Shop version 1.4 suffers from an eval inclusion vulnerability.
| | Author: | IFX | | File Size: | 885 | | Last Modified: | Jun 20 00:54:30 2007 |
| MD5 Checksum: | 8ae08840daba2f9b65e23e8b912b337c |
|
| /// File Name: |
fuzzylime-xss.txt |
Description:
|
fuzzylime forum versions 1.01b and below suffer from a cross site scripting vulnerability.
| | Homepage: | http://www.serapis.net/ | | File Size: | 1963 | | Last Modified: | Jun 20 00:25:39 2007 |
| MD5 Checksum: | d411d1f8a3561b7cdb78d4df1a14ec94 |
|
| /// File Name: |
webif-lfi.txt |
Description:
|
Webif.cgi suffers from a local file inclusion vulnerability.
| | Author: | maiosyet | | Homepage: | http://www.mawk.org/ | | File Size: | 853 | | Last Modified: | Jun 20 00:24:34 2007 |
| MD5 Checksum: | c6693d5bde9022d4589f254ce730eeb1 |
|
| /// File Name: |
phb10-xss.txt |
Description:
|
PHP Hosting Biller version 1.0 suffers from a cross site scripting vulnerability.
| | Homepage: | http://www.serapis.net/ | | File Size: | 1610 | | Last Modified: | Jun 20 00:23:30 2007 |
| MD5 Checksum: | e7ce1c98ababeb3028c877357fb0ba79 |
|
| /// File Name: |
jasmine-exec.txt |
Description:
|
Jasmine CMS version 1.0 SQL injection and remote code execution exploit.
| | Author: | Silentz | | Homepage: | http://www.w4ck1ng.com/ | | File Size: | 7153 | | Last Modified: | Jun 19 19:05:53 2007 |
| MD5 Checksum: | ec9d5cd3eafad3b404cab679c91fa178 |
|
| /// File Name: |
minibill-rfi.txt |
Description:
|
MiniBill version 1.2.5 suffers from a remote file inclusion vulnerability in run_billing.php.
| | Author: | Abo0od | | Homepage: | http://www.hack-teach.org/cc | | File Size: | 836 | | Last Modified: | Jun 19 19:04:54 2007 |
| MD5 Checksum: | 5ef90dcfeccfcd7c6155622bdadb0351 |
|
| /// File Name: |
minibb205-lfi.txt |
Description:
|
MiniBB version 2.0.5 local file inclusion exploit.
| | Author: | Dj7xpl | | Homepage: | http://Dj7xpl.2600.ir/ | | File Size: | 4670 | | Last Modified: | Jun 19 19:02:19 2007 |
| MD5 Checksum: | 4fd08ec14c2806a9bf4283c655d2976c |
|
| /// File Name: |
yfs-rfi.txt |
Description:
|
YourFreeScreamer version 1.0 suffers from a remote file inclusion vulnerability.
| | Author: | Crackers_Child | | File Size: | 728 | | Last Modified: | Jun 19 19:01:11 2007 |
| MD5 Checksum: | 0e835cffdaa589e37605bae27da5ecc1 |
|
| /// File Name: |
phpmyinv-rfi.txt |
Description:
|
phpMyInventory version 2.8 suffers from a remote file inclusion vulnerability in global.inc.php.
| | Author: | o0xxdark0o | | File Size: | 1975 | | Last Modified: | Jun 19 19:00:08 2007 |
| MD5 Checksum: | 15cf28d28f5325db4a51ed47a1c7b00b |
|
| /// File Name: |
smf112-multi.tgz |
Description:
|
Simple Machines Forum (aka SMF) version 1.1.2 suffers from PHP injection and a weak CAPTCHA system. Exploit included to break the CAPTCHA.
| | Author: | ShAnKaR | | Homepage: | http://securityvulns.com/ | | File Size: | 2819 | | Last Modified: | Jun 19 16:39:00 2007 |
| MD5 Checksum: | e8f3b46e8d545baea77e9826adfefea5 |
|
| /// File Name: |
utopia-xss.txt |
Description:
|
Utopia News Pro version 1.4.0 suffers from a cross site scripting vulnerability.
| | Author: | Jesper Jurcenoks | | Homepage: | http://www.netvigilance.com/ | | File Size: | 2608 | | Related OSVDB(s): | 34165 | | Related CVE(s): | CVE-2007-3129 | | Last Modified: | Jun 19 16:35:12 2007 |
| MD5 Checksum: | fba3ea5c54fc78539067e653c97f04cd |
|
| /// File Name: |
wsportal-sql.txt |
Description:
|
WSportal version 1.0 suffers from a SQL injection vulnerability.
| | Author: | Jesper Jurcenoks | | Homepage: | http://www.netvigilance.com/ | | File Size: | 2344 | | Related OSVDB(s): | 34164 | | Related CVE(s): | CVE-2007-3128 | | Last Modified: | Jun 19 16:34:08 2007 |
| MD5 Checksum: | 41d4ac8814bf24b5fde45e34833938f8 |
|
| /// File Name: |
BTP00000P006KA.zip |
Description:
|
Demonstration code that shows how Kaspersky Internet Security 6 hooks many functions in SSDT and in at least nine cases it fails to validate arguments that come from the user mode.
| | Homepage: | http://www.matousec.com/ | | Related File: | kaspersky-is6.txt | | File Size: | 4615 | | Last Modified: | Jun 15 14:46:50 2007 |
| MD5 Checksum: | 2b850cd487a5e401ac1758376d3a5a05 |
|
| /// File Name: |
phphtml-rfi.txt |
Description:
|
PHP::HTML version 0.6.4 suffers from a remote file inclusion vulnerability in phphtml.php.
| | Author: | o0xxdark0o | | File Size: | 1558 | | Last Modified: | Jun 14 23:27:26 2007 |
| MD5 Checksum: | 0b5df03d701789c1af25f13ab2859798 |
|
| /// File Name: |
sitellitecms-rfi.txt |
Description:
|
Sitellite CMS versions 4.2.12 and below suffer from a remote file inclusion vulnerability in 559668.php.
| | Author: | o0xxdark0o | | File Size: | 1236 | | Last Modified: | Jun 14 23:26:27 2007 |
| MD5 Checksum: | c9559a8da467665c575a864fab8250fa |
|
| /// File Name: |
popnupblog.txt |
Description:
|
The XOOPS module PopnupBlog suffers from a remote file inclusion vulnerability.
| | Author: | FiSh | | Homepage: | http://www.g00ns.net/ | | File Size: | 1688 | | Last Modified: | Jun 14 23:21:19 2007 |
| MD5 Checksum: | e800b188d3c922967fbc9c4626804ca1 |
|
| /// File Name: |
cjay-rfi.txt |
Description:
|
XOOPS module Cjay Content 3 suffers from a remote file inclusion vulnerability.
| | Author: | FiSh | | Homepage: | http://www.g00ns.net/ | | File Size: | 1877 | | Last Modified: | Jun 14 23:19:20 2007 |
| MD5 Checksum: | 6e8805d75ab6dc32d7dd1043feced108 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
