Section: .. / 0603-exploits /
| /// File Name: |
patm.txt |
Description:
|
Direct download access of user password hashes in PHP Advanced Manager version 1.00 through 1.20 exists.
| | Author: | Liz0ziM | | Homepage: | http://www.biyosecurity.com | | File Size: | 1151 | | Last Modified: | Mar 3 04:44:55 2006 |
| MD5 Checksum: | 4e10256ec85031f0412913960348b9d2 |
|
| /// File Name: |
peercast01216.pm.txt |
Description:
|
This Metasploit module exploits a stack overflow in PeerCast version 0.1216 and below. The vulnerability is caused due to a boundary error within the handling of URL parameters.
| | Author: | H D Moore | | Homepage: | http://www.metasploit.com | | File Size: | 3023 | | Last Modified: | Apr 1 01:30:44 2006 |
| MD5 Checksum: | 009af2e471fc037fad34218fd967b9d4 |
|
| /// File Name: |
PEHEPE-XSS.txt |
Description:
|
The PEHEPE Membership Management System is susceptible to cross site scripting and remote command execution vulnerabilities.
| | Author: | Yunus Emre Yilmaz | | File Size: | 1323 | | Last Modified: | Mar 2 05:30:06 2006 |
| MD5 Checksum: | 57c900167f4630182e410d8d12d91d89 |
|
| /// File Name: |
php-atm.txt |
Description:
|
It is possible to download the users password hashed in PHP Advanced Transfer Manager 1.x via a special URL.
| | Author: | Liz0ziM | | Homepage: | http://www.biyosecurity.com | | File Size: | 1197 | | Last Modified: | Mar 9 19:58:05 2006 |
| MD5 Checksum: | 2971dd86b7a3b7d9a653c2737ec2f0ad |
|
| /// File Name: |
php_stats_0191_adv.txt |
Description:
|
PHP-Stats versions 0.1.9.1 and below suffer from remote directory traversal, SQL injection, and command execution flaws.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org | | File Size: | 3690 | | Last Modified: | Mar 7 23:34:46 2006 |
| MD5 Checksum: | 46b48d14cd54cc0a16b981246682e711 |
|
| /// File Name: |
phparcadescriptxss.txt |
Description:
|
phpArcadeScript versions 2.0 and below suffer from multiple cross site scripting flaws.
| | Author: | retard, jim | | File Size: | 2074 | | Last Modified: | Mar 7 23:30:08 2006 |
| MD5 Checksum: | 11cb27ff3c4393e89196e93f24a610d6 |
|
| /// File Name: |
phpkitXSS.txt |
Description:
|
PHPKIT version 1.6.03 suffers from a cross site scripting flaw.
| | Author: | BadNet | | File Size: | 168 | | Last Modified: | Apr 1 01:37:56 2006 |
| MD5 Checksum: | 43608d5b3192dfdb0aaf8d553df66d9a |
|
| /// File Name: |
PhxContactsSQL.txt |
Description:
|
PhxContacts is susceptible to cross site scripting and SQL injection attacks.
| | Author: | Morocco Security Team | | File Size: | 412 | | Last Modified: | Apr 1 01:46:34 2006 |
| MD5 Checksum: | 682e49133762d2607f1aef82b0a0c42b |
|
| /// File Name: |
pixelExec.txt |
Description:
|
PixelArtKingdom TopSites version 0.x is susceptible to remote command execution.
| | Author: | botan | | File Size: | 176 | | Last Modified: | Mar 2 05:03:52 2006 |
| MD5 Checksum: | 2a72742377936b1052fd7b28b323f3d4 |
|
| /// File Name: |
plogger_b21_sql_xpl.html |
Description:
|
Plogger versions Beta 2.1 and below SQL injection / administrative credential disclosure exploit.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 5711 | | Last Modified: | Apr 1 04:50:27 2006 |
| MD5 Checksum: | 25502883a23d70764a1f398028c6f987 |
|
| /// File Name: |
pwsphpSQL.txt |
Description:
|
Pwsphp CMS is susceptible to SQL injection attacks via index.php.
| | Author: | papipsycho | | Homepage: | http://papipsycho.com | | File Size: | 888 | | Last Modified: | Mar 2 03:56:33 2006 |
| MD5 Checksum: | da8ee091ef2b1d548ac564b469913325 |
|
| /// File Name: |
qwikiXSS.txt |
Description:
|
QwikiWiki version 1.4 is susceptible to cross site scripting attacks.
| | Author: | Dr. Death | | File Size: | 310 | | Last Modified: | Mar 2 05:22:06 2006 |
| MD5 Checksum: | e35c4b1fd7da7ee276025a0d34785604 |
|
| /// File Name: |
r25xss.txt |
Description:
|
R25 WebViewer versions 3.2 and below are susceptible to cross site scripting attacks.
| | Author: | Matthew Benenati | | File Size: | 672 | | Last Modified: | Mar 6 04:58:44 2006 |
| MD5 Checksum: | 61d53b0fc5e1c15c521b89c5a0912781 |
|
| /// File Name: |
rev.txt |
Description:
|
Revilloc MailServer and Proxy version 1.21 remote proof of concept exploit for the USER directive heap overflow. Binds a shell to port 9191.
| | Author: | securma | | Homepage: | http://www.morx.org | | File Size: | 4779 | | Last Modified: | Mar 8 23:16:35 2006 |
| MD5 Checksum: | e71a7f8f572e8cd07296108df96cc4ae |
|
| /// File Name: |
RevilloC-poc.pl.txt |
Description:
|
exploit for a buffer overflow in RevilloC MailServer and Proxy version 1.21.
| | Author: | securma massine | | Homepage: | http://www.morx.org | | File Size: | 4733 | | Last Modified: | Mar 8 01:14:43 2006 |
| MD5 Checksum: | 779b406542cf3f0a4ac7c1cade675a28 |
|
| /// File Name: |
runcms1xXSS.txt |
Description:
|
Runcms version 1.x is susceptible to cross site scripting attacks in bigshow.php.
| | Author: | Roozbeh Afrasiabi | | Homepage: | http://www.kapda.ir | | File Size: | 1769 | | Last Modified: | Mar 8 00:40:19 2006 |
| MD5 Checksum: | 5344b3c668e49ef9704a3fe27f57379b |
|
| /// File Name: |
saphplessonSQL.txt |
Description:
|
SaphpLession version 2.0 is susceptible to SQL injection attacks via print.php.
| | Author: | Linux_Drox | | Homepage: | http://www.LeZr.Com | | File Size: | 385 | | Last Modified: | Mar 31 23:51:50 2006 |
| MD5 Checksum: | b8b3e7a29868a79033a2c34b70a1ff67 |
|
| /// File Name: |
sauerburn.zip |
Description:
|
Sauerbraten engine versions 2006_02_28 and below proof of concept exploit that demonstrates related buffer overflow, invalid memory access, and crash vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related File: | sauerburn.txt | | File Size: | 17990 | | Last Modified: | Mar 8 03:02:59 2006 |
| MD5 Checksum: | 04e01b6632b7aaf547b2d90a3ec84faa |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
