Section: .. / 0802-exploits /
| /// File Name: |
sellownhouse-sql.txt |
Description:
|
The SellOwnHouse login sequence suffers from a remote SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 1020 | | Last Modified: | Feb 15 14:04:07 2008 |
| MD5 Checksum: | f7227a42b8110462c325c8d98de762e0 |
|
| /// File Name: |
serendipityfreetag-xss.txt |
Description:
|
The Serendipity Freetag-plugin versions 2.95 and below suffers from a cross site scripting vulnerability.
| | Author: | Alexander Brachmann | | File Size: | 3304 | | Last Modified: | Feb 8 17:29:19 2008 |
| MD5 Checksum: | 010d3142279bbc16e61aecbf456a0bf9 |
|
| /// File Name: |
smartermail-xss.txt |
Description:
|
SmarterMail Enterprise version 4.3 suffers from a cross site scripting vulnerability.
| | Author: | Juan Pablo Lopez Yacubian | | File Size: | 733 | | Last Modified: | Feb 19 23:49:54 2008 |
| MD5 Checksum: | 2bc45825bceb8d75d224bddd221fd9fd |
|
| /// File Name: |
smfsb-xss.txt |
Description:
|
The Simple Machines Forum SMF Shoutbox module versions 1.14 through 1.16b suffer from a persistent cross site scripting vulnerability.
| | Author: | enterth3dragon | | File Size: | 1768 | | Last Modified: | Feb 11 16:26:14 2008 |
| MD5 Checksum: | c28ef3902082dd4ff5bf6876fa4bc81e |
|
| /// File Name: |
softbizjokes-sql.txt |
Description:
|
Softbiz Jokes and Funny Pictures suffers from a SQL injection vulnerability in index.php.
| | Author: | Mizo | | File Size: | 373 | | Last Modified: | Feb 25 14:28:25 2008 |
| MD5 Checksum: | 9273981bfd9c907f32072f0bb5f98978 |
|
| /// File Name: |
surgeftpizza.zip |
Description:
|
SurgeFTP versions 2.3a2 and below suffer from a NULL pointer access vulnerability that allows for a denial of service condition. Proof of concept exploit included.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 825 | | Last Modified: | Feb 25 17:34:59 2008 |
| MD5 Checksum: | 6c7276356d4704b049c9cc38aa0f3000 |
|
| /// File Name: |
surgemailz.zip |
Description:
|
Proof of concept exploit for SurgeMail Mail Server version 38k4 and below and beta 39a along with Netwin's Webmail versions 3.1s and below which are all susceptible to format string and buffer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | surgemailz.txt | | File Size: | 6808 | | Last Modified: | Feb 25 16:14:09 2008 |
| MD5 Checksum: | 6a725af5114faff77684aa7b02d83032 |
|
| /// File Name: |
symantecback-overflow.txt |
Description:
|
Symantec BackupExec Calendar Control (PVCalendar.ocx) buffer overflow exploit. and spawns calc.exe or a shell on tcp/4444.
| | Author: | Elazar Broad | | File Size: | 6816 | | Last Modified: | Mar 3 14:11:23 2008 |
| MD5 Checksum: | 2c1cff8c354f4a88ca29b3119d31f0a3 |
|
| /// File Name: |
thecus-rfi.txt |
Description:
|
The Thecus NS200Pro NAS server control panel suffers from a remote file inclusion vulnerability.
| | Author: | Crackers_Child | | File Size: | 1119 | | Last Modified: | Feb 20 00:29:04 2008 |
| MD5 Checksum: | 2f1936d31230a0d35dedfafc6b4ae0ef |
|
| /// File Name: |
tipsollink-sql.txt |
Description:
|
tip=sollinkicerik suffers from a SQL injection vulnerability.
| | Author: | xcorpitx | | Homepage: | http://www.Hayalet-hack.com/ | | File Size: | 1309 | | Last Modified: | Feb 19 22:27:31 2008 |
| MD5 Checksum: | a6a20127f10f3ecf33c49039286c7a5d |
|
| /// File Name: |
titan-heap-py.txt |
Description:
|
Titan FTP server version 6.05 Build 550 heap overflow denial of service exploit written in Python.
| | Author: | j0rgan | | File Size: | 1314 | | Last Modified: | Feb 5 21:42:05 2008 |
| MD5 Checksum: | 37476a025bf5b960b744dd3310bb8c1a |
|
| /// File Name: |
titan-heap.txt |
Description:
|
Titan FTP server remote heap overflow remote proof of concept exploit.
| | Author: | securfrog | | File Size: | 1526 | | Last Modified: | Feb 3 15:58:55 2008 |
| MD5 Checksum: | a3725066cadb8e25ef6e45ba0df60a9e |
|
| /// File Name: |
truc-disclose.txt |
Description:
|
TRUC version 0.11.0 suffers from a remote file disclosure vulnerability in download.php.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 350 | | Last Modified: | Feb 17 21:06:33 2008 |
| MD5 Checksum: | 3b0e03381e79b4104999725bd257f418 |
|
| /// File Name: |
tvp-overflow.txt |
Description:
|
Total Video Player version 1.03 M3U file local buffer overflow exploit that can bind a shell or spawn calc.exe.
| | Author: | fl0 fl0w | | Homepage: | http://fl0-fl0w.docspages.com/ | | File Size: | 6369 | | Last Modified: | Feb 1 11:10:02 2008 |
| MD5 Checksum: | 7ab0fddc14daf3fbd233fbf65bb64c38 |
|
| /// File Name: |
tvp120-overflow.txt |
Description:
|
Total Video Player version 1.20 M3U file local buffer overflow exploit that can bind a shell or spawn calc.exe.
| | Author: | fl0 fl0w | | Homepage: | http://fl0-fl0w.docspages.com/ | | File Size: | 5916 | | Last Modified: | Feb 7 20:25:57 2008 |
| MD5 Checksum: | 4fb4cdac8a72a9e151819216d01dc535 |
|
| /// File Name: |
unleashed-xss.txt |
Description:
|
Search Unleashed version 0.2.10 suffers from a javascript inject vulnerability that can lead to cross site scripting.
| | Author: | Krzysztof Burghardt | | Homepage: | http://www.burghardt.pl/ | | File Size: | 676 | | Last Modified: | Feb 14 13:12:02 2008 |
| MD5 Checksum: | e4e95480f048f3815d64bc2156381834 |
|
| /// File Name: |
vkios-sql.txt |
Description:
|
vKios versions 2.0.0 and below remote SQL injection exploit that makes use of products.php.
| | Author: | NTOS-Team | | Homepage: | http://newhack.org/ | | File Size: | 2655 | | Last Modified: | Feb 12 14:26:12 2008 |
| MD5 Checksum: | 39e3a531e3741f7fce34a1202a968e56 |
|
| /// File Name: |
vwar-sql.txt |
Description:
|
VWar version 1.5.0 suffers from a SQL injection vulnerability in calendar.php. This particular version of VWar is already known to suffer from many other SQL injection vulnerabilities.
| | Author: | Pouya_server | | Related Exploit: | vwarSQL.txt | | File Size: | 172 | | Last Modified: | Feb 11 14:30:18 2008 |
| MD5 Checksum: | 27cd142b44ba4f8c647397575db483c6 |
|
| /// File Name: |
wachof.zip |
Description:
|
Exploit for Foxit Remote Access Server (WAC Server) versions 2.0 Build 3503 and below which suffer from telnet option heap overflow and SSH packet heap overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | wachof.txt | | File Size: | 8140 | | Last Modified: | Feb 20 01:19:28 2008 |
| MD5 Checksum: | 995101a5dc42b8713acf0dec749b894c |
|
| /// File Name: |
wbb-blindsql.txt |
Description:
|
Woltlab Burning Board version 3.0.x remote blind SQL injection exploit.
| | Author: | NBBN | | File Size: | 2954 | | Last Modified: | Feb 20 23:43:54 2008 |
| MD5 Checksum: | 95093184b721b66508eaea65302f1521 |
|
| /// File Name: |
wdcs-xss.txt |
Description:
|
Website Design Chat Software suffers from a cross site scripting vulnerability.
| | Author: | The-0utl4w | | Homepage: | http://aria-security.net/ | | File Size: | 2335 | | Last Modified: | Feb 11 16:01:54 2008 |
| MD5 Checksum: | 7819105cbecefda124616bca14e62f68 |
|
| /// File Name: |
webmin1390-xss.txt |
Description:
|
Webmin version 1.390 suffers from a cross site scripting vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 564 | | Last Modified: | Feb 6 14:30:49 2008 |
| MD5 Checksum: | a9b7cca9383f9ef021cc2cc4925ca351 |
|
| /// File Name: |
wincomalpd.zip |
Description:
|
Exploit that demonstrates multiple vulnerabilities in WinCom LPD Total line printer daemon versions 3.0.2.623 and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | wincomalpd.txt | | File Size: | 8577 | | Last Modified: | Feb 4 19:38:58 2008 |
| MD5 Checksum: | b7eb9593480a66c1046d373e4bd11a79 |
|
| /// File Name: |
woltlab303-sql.txt |
Description:
|
Woltlab Burning Board version 3.0.3 PL1 suffers from a SQL injection vulnerability.
| | Author: | NBBN | | File Size: | 1600 | | Last Modified: | Feb 20 00:48:26 2008 |
| MD5 Checksum: | 51eb5302369a6688464100f5430ad11d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
