Section: .. / 0805-exploits /
| /// File Name: |
zyxel-xss.txt |
Description:
|
The Zyxel ZYWall 100 suffers from a cross site scripting vulnerability via the Referer: header.
| | Author: | Deniz Cevik | | Homepage: | http://www.intellectpro.com.tr/ | | File Size: | 920 | | Last Modified: | May 9 13:22:44 2008 |
| MD5 Checksum: | c5be130c55cae1959617d7e1a373046b |
|
| /// File Name: |
ajaxframe-lfi.txt |
Description:
|
Ajax framework by zapatec.com suffers from a local file inclusion vulnerability.
| | Author: | dun | | File Size: | 919 | | Last Modified: | May 19 18:15:09 2008 |
| MD5 Checksum: | cb7d2012b5e99a5b3e265c406179996c |
|
| /// File Name: |
sonicwall-xss.txt |
Description:
|
SonicWall E-mail Security version 6.1.1 suffers from a cross site scripting vulnerability via the Host: header.
| | Author: | Deniz Cevik | | Homepage: | http://www.intellectpro.com.tr/ | | File Size: | 919 | | Last Modified: | May 9 13:21:57 2008 |
| MD5 Checksum: | 8159b57282138fb40f7ab2525f6f2057 |
|
| /// File Name: |
galleristic-sql.txt |
Description:
|
Galleristic version 1.0 remote SQL injection exploit that makes use of index.php.
| | Author: | cOndemned | | Homepage: | http://condemned.r00t.la/ | | File Size: | 913 | | Last Modified: | May 7 20:45:18 2008 |
| MD5 Checksum: | 3a1b178796f738876c63cb87ecef2fb6 |
|
| /// File Name: |
xerox-xss.txt |
Description:
|
XEROX DocuShare versions 6 and below suffer from a cross site scripting vulnerability.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 894 | | Last Modified: | May 29 19:20:20 2008 |
| MD5 Checksum: | 6b3c1615f69e72ad510afb7522a87c74 |
|
| /// File Name: |
cmsmaxsite-sql.txt |
Description:
|
CMS MAXSITE versions 1.10 and below suffer from a remote SQL injection vulnerability.
| | Author: | Tesz | | Homepage: | http://www.thaishadow.com/ | | File Size: | 885 | | Last Modified: | May 27 18:14:59 2008 |
| MD5 Checksum: | 6519379af82e6f4df36825e8f783aa18 |
|
| /// File Name: |
phpraider-rfi.txt |
Description:
|
phpRaider version 1.0.7 suffers from a remote file inclusion vulnerability in phpbb3.functions.php.
| | Author: | Dr.Kacak | | File Size: | 878 | | Last Modified: | May 27 17:08:28 2008 |
| MD5 Checksum: | 1a8e4e8d3f80585c7ec7fd35ae3a3350 |
|
| /// File Name: |
smartblog-sql.txt |
Description:
|
Smartblog suffers from a remote SQL injection vulnerability in index.php.
| | Author: | His0k4 | | File Size: | 872 | | Last Modified: | May 5 13:18:33 2008 |
| MD5 Checksum: | 672072099f50592e0db1363189628a2b |
|
| /// File Name: |
newsmanager-rfisql.txt |
Description:
|
Newsmanager version 2.09 suffers from remote file inclusion, remote file disclosure, SQL injection, and permission bypass vulnerabilities.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 864 | | Last Modified: | May 15 13:04:20 2008 |
| MD5 Checksum: | 8f5c781a660fc81ca7987d6654ef1486 |
|
| /// File Name: |
megafile-sql.txt |
Description:
|
Mega File Hosting Script version 1.2 suffers from a remote SQL injection vulnerability.
| | Author: | TurkishWarriorr | | Homepage: | http://1923turk.org/ | | File Size: | 861 | | Last Modified: | May 12 18:44:39 2008 |
| MD5 Checksum: | 7bfb2b315e9d54d4629ad395fd196d20 |
|
| /// File Name: |
phphotoalbum-sql.txt |
Description:
|
PHPhotoalbum version 0.5 suffers from multiple remote SQL injection vulnerabilities.
| | Author: | cOndemned | | Homepage: | http://condemned.r00t.la/ | | File Size: | 859 | | Last Modified: | May 28 17:54:35 2008 |
| MD5 Checksum: | e28ea4596c647c46aa9f7c3329360729 |
|
| /// File Name: |
abledating-sqlxss.txt |
Description:
|
AbleDating version 2.4 suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | Ali Jasbi | | File Size: | 857 | | Last Modified: | May 22 19:49:35 2008 |
| MD5 Checksum: | 027ae9a34f563f1b7d559493d20715c1 |
|
| /// File Name: |
alm-sql.txt |
Description:
|
Advanced Links Management version 1.52 suffers from a remote SQL injection vulnerability.
| | Author: | His0k4 | | File Size: | 787 | | Last Modified: | May 12 10:09:25 2008 |
| MD5 Checksum: | c278efde166d49766cb85c9dfdcf4447 |
|
| /// File Name: |
cmsimple-lfiup.txt |
Description:
|
CMSimple version 3.1 local file inclusion and arbitrary file upload exploit.
| | Author: | irk4z | | File Size: | 761 | | Last Modified: | May 31 15:15:07 2008 |
| MD5 Checksum: | bff5f52c65330c8e6a004b30fef457f1 |
|
| /// File Name: |
wpupload-sql.txt |
Description:
|
The Wordpress Upload File plugin suffers from a remote SQL injection vulnerability.
| | Author: | Belsec Team | | Homepage: | http://eserg.ru/ | | File Size: | 753 | | Last Modified: | May 27 16:52:44 2008 |
| MD5 Checksum: | 2a3406f55f34ccdaea90158bdb370691 |
|
| /// File Name: |
microssyscms-rfi.txt |
Description:
|
microSSys CMS versions 1.5 and below suffer from a remote file inclusion vulnerability.
| | Author: | Raz0r | | Homepage: | http://raz0r.name/ | | File Size: | 737 | | Last Modified: | May 19 19:08:52 2008 |
| MD5 Checksum: | da4a890b41e299daf9e6487591db6b5a |
|
| /// File Name: |
picoflat-lfi.txt |
Description:
|
PicoFlat CMS version 0.5.9 suffers from a local file inclusion vulnerability in index.php. This uses the same variable that had a remote file inclusion vulnerability back in October of 2007.
| | Author: | gmda | | Related Exploit: | picoflat-rfi.txt | | File Size: | 728 | | Last Modified: | May 29 13:46:39 2008 |
| MD5 Checksum: | 92188ef0a3d4e5e0aee53acb9dbd05e7 |
|
| /// File Name: |
webmodz.zip |
Description:
|
Demonstration exploits for WebMod versions 0.48 and below which suffer from directory traversal, buffer overflow, and disclosure vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | webmodz.txt | | File Size: | 721 | | Last Modified: | May 5 14:04:02 2008 |
| MD5 Checksum: | d2f583ca6609c2f3ee51d8e87fd33a40 |
|
| /// File Name: |
novelledir-dos.txt |
Description:
|
Novell eDirectory versions below 8.7.3 SP 10 and versions below 8.8.2 suffer from a denial of service related vulnerability. Details are provided.
| | Author: | Nicob | | File Size: | 719 | | Related CVE(s): | CVE-2008-0927 | | Last Modified: | May 6 16:19:06 2008 |
| MD5 Checksum: | f4b9138ab33bcc0fa005c5716816dd0f |
|
| /// File Name: |
otomigen-lfi.txt |
Description:
|
OtomiGen.X version 2.2 suffers from local file inclusion vulnerabilities.
| | Author: | Saime | | File Size: | 702 | | Last Modified: | May 28 17:53:10 2008 |
| MD5 Checksum: | df102faaf498b374fe1ed878c87effbb |
|
| /// File Name: |
e107zogo-sql.txt |
Description:
|
The e107 zogo-shop plugin version 1.16 Beta 13 suffers from a SQL injection vulnerability.
| | Author: | Cr@zy_King | | File Size: | 697 | | Last Modified: | May 13 11:16:49 2008 |
| MD5 Checksum: | 322ae457f7fde32d03fcfd45c84f7249 |
|
| /// File Name: |
6rbscript-sql.txt |
Description:
|
6rbScript suffers from a remote SQL injection vulnerability in news.php.
| | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 689 | | Last Modified: | May 22 01:16:45 2008 |
| MD5 Checksum: | 4b1738ec234258ccc323697cd7b42fdf |
|
| /// File Name: |
rdesktop-underflow.txt |
Description:
|
rdesktop version 1.5.0 integer underflow proof of concept exploit that takes advantage of iso_recv_msg().
| | Author: | Guido Landi | | Related File: | 05.07.08-1.txt | | File Size: | 644 | | Related CVE(s): | CVE-2008-1801 | | Last Modified: | May 9 13:28:05 2008 |
| MD5 Checksum: | bfe5e7576091da077e34f5dc84361bd2 |
|
| /// File Name: |
blogmephp-sql.txt |
Description:
|
BlogMe PHP suffers from a remote SQL injection vulnerability in comments.php.
| | Author: | His0k4 | | File Size: | 629 | | Last Modified: | May 5 13:29:49 2008 |
| MD5 Checksum: | ed1e063df1f3427638bc885e5e69eae6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
