Section: .. / Last 50 Exploit Files /
| /// File Name: | joomlathyme-sql.txt | Description:
| The Joomla Thyme component version 1.0 suffers from a remote SQL injection vulnerability. | | Author: | Ded MustD!e | | Homepage: | http://www.antichat.ru/ | | File Size: | 1394 | | Last Modified: | Nov 21 16:16:09 2008 | | MD5 Checksum: | 71bf55c7600d4a2e9b55df029ae5b2cd |
|
| /// File Name: | BitDefenderDOS.zip | Description:
| Proof of concept malicious pdf file that causes a denial of service and infinite loop in BitDefender using the pdf.xmd module. | | Author: | ProTeuS | | File Size: | 341 | | Last Modified: | Nov 21 16:13:18 2008 | | MD5 Checksum: | 281dee247691fbcd2f34a063ce5d526a |
|
| /// File Name: | kvirc-exec.txt | Description:
| KVIrc version 3.4.2 Shiny URI handler remote code execution exploit. | | Author: | Nine:Situations:Group | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 1675 | | Last Modified: | Nov 21 10:45:42 2008 | | MD5 Checksum: | 9e7af6fa05ea76f0edbed3bb01f87685 |
|
| /// File Name: | vcalendar-disclose.txt | Description:
| VCalendar suffers from a remote database disclosure vulnerability. | | Author: | Swan | | File Size: | 1257 | | Last Modified: | Nov 21 10:44:12 2008 | | MD5 Checksum: | de3c3c63d554069f9c47cd5516878a85 |
|
| /// File Name: | toursmanager-blindsql.txt | Description:
| ToursManager suffers from a blind SQL injection vulnerability in tourview.php. | | Author: | XaDoS | | File Size: | 957 | | Last Modified: | Nov 20 18:21:02 2008 | | MD5 Checksum: | 5e27a04f7e19f49abc57d2ee531d4dae |
|
| /// File Name: | phprsgal-sql.txt | Description:
| phpRS versions 2.6.x and 2.8.x suffer from a remote SQL injection vulnerability in gallery.php. | | Author: | d3v1l | | File Size: | 1487 | | Last Modified: | Nov 20 18:18:25 2008 | | MD5 Checksum: | bd4ad4f70f69fe2928ed6db18879b1ab |
|
| /// File Name: | natterchat-sql.txt | Description:
| Natterchat versions 1.12 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 367 | | Last Modified: | Nov 20 18:02:30 2008 | | MD5 Checksum: | 2701b6b703102dcf9d76e5d299bf1b5c |
|
| /// File Name: | phpfusion7001-sql.txt | Description:
| PHP-Fusion version 7.00.1 remote SQL injection exploit that makes use of messages.php. | | Author: | irk4z | | File Size: | 4155 | | Last Modified: | Nov 20 17:48:52 2008 | | MD5 Checksum: | d59e51b2dc5f5391687c97ac49e609f6 |
|
| /// File Name: | social-sql.txt | Description:
| Social Engine versions 2.7 and below suffer from remote SQL injection and cookie manipulation vulnerabilities. | | Author: | David "Aesthetico" Vieira-Kurz | | File Size: | 2181 | | Last Modified: | Nov 20 17:46:55 2008 | | MD5 Checksum: | 758d1b4945924dfe4bb76542988dab31 |
|
| /// File Name: | vbulletin-xssxsrf.txt | Description:
| The Visitor Messages add-on for vBulletin version 3.7.3 suffers from cross site scripting and cross site request forgery vulnerabilities. This is a worm exploit that takes advantage of these issues. | | Author: | Mx | | File Size: | 2965 | | Last Modified: | Nov 20 17:44:51 2008 | | MD5 Checksum: | a4bd6a31749a23236f15aac1e67d2032 |
|
| /// File Name: | askpert-sql.txt | Description:
| AskPert suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | TR-ShaRk | | File Size: | 1127 | | Last Modified: | Nov 20 17:42:34 2008 | | MD5 Checksum: | 12573dddae1f6c71d57f5d8527f8dcc1 |
|
| /// File Name: | backlinkspider-sql.txt | Description:
| The BackLinkSpider Exchange Links script suffers from remote SQL injection vulnerabilities in links.asp and links.php. | | Author: | d3v1l | | File Size: | 1838 | | Last Modified: | Nov 20 15:18:10 2008 | | MD5 Checksum: | 4a61726e2c223e482fc8c834067d96b7 |
|
| /// File Name: | exodus-injection.txt | Description:
| Exodus version 0.10 suffers from an URI handler arbitrary parameter injection vulnerability. | | Author: | Nine:Situations:Group | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 1107 | | Last Modified: | Nov 20 15:15:45 2008 | | MD5 Checksum: | c0c091b687a3e2eccfb4d3201993ab31 |
|
| /// File Name: | wportfolio-upload.txt | Description:
| wPortfolio versions 0.3 and below remote arbitrary file upload exploit. | | Author: | Osirys | | File Size: | 1926 | | Last Modified: | Nov 20 14:26:35 2008 | | MD5 Checksum: | a6d0b79dc4160fd1a42267f9f46dbf37 |
|
| /// File Name: | boastmachine-sql.txt | Description:
| BoastMachine version 3.1 suffers from a remote SQL injection vulnerability. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1942 | | Last Modified: | Nov 20 14:22:36 2008 | | MD5 Checksum: | a68e3a773a51a05f93575744cf367a59 |
|
| /// File Name: | punportal-lfi.txt | Description:
| PunPortal PunBB module version 0.1 local file inclusion exploit. | | Author: | StAkeR | | File Size: | 2770 | | Last Modified: | Nov 20 14:18:38 2008 | | MD5 Checksum: | c74197b9cc2ffa66839c60e8759a6b6a |
|
| /// File Name: | prejobboard-sql.txt | Description:
| Pre Job Board suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 970 | | Last Modified: | Nov 20 13:20:04 2008 | | MD5 Checksum: | cce036725cb757bbdfeadad1f0e18b75 |
|
| /// File Name: | revsense-sql.txt | Description:
| RevSense suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | d3b4g | | File Size: | 830 | | Last Modified: | Nov 19 18:45:36 2008 | | MD5 Checksum: | 6aa053d65dd314b32171368e6bf84ae6 |
|
| /// File Name: | maurycms-upload.txt | Description:
| MauryCMS versions 0.53.2 and below remote shell upload exploit. | | Author: | StAkeR | | File Size: | 2246 | | Last Modified: | Nov 19 18:31:00 2008 | | MD5 Checksum: | 63cc458d0d8e69152b1c8c27b36a2bf7 |
|
| /// File Name: | linksautomation-sql.txt | Description:
| LinksAutomation Script suffers from a remote SQL injection vulnerability. | | Author: | d3v1l | | File Size: | 1679 | | Last Modified: | Nov 19 18:29:13 2008 | | MD5 Checksum: | 0ff9ea758f37cbf93c812e824cb8af98 |
|
| /// File Name: | linksxs-sql.txt | Description:
| Linksxs Script suffers from a remote SQL injection vulnerability. | | Author: | d3v1l | | File Size: | 1685 | | Last Modified: | Nov 19 18:28:32 2008 | | MD5 Checksum: | 165976435e2cf54668de8896135ccc8e |
|
| /// File Name: | ethiclinks-sql.txt | Description:
| Ethiclinks suffers from a remote SQL injection vulnerability. | | Author: | d3v1l | | File Size: | 1883 | | Last Modified: | Nov 19 18:27:15 2008 | | MD5 Checksum: | 840182c3b5760545c2554f36f44507c5 |
|
| /// File Name: | easyeditcms-sql.txt | Description:
| Easyedit CMS suffers from multiple remote SQL injection vulnerabilities. | | Author: | d3v1l | | File Size: | 705 | | Last Modified: | Nov 19 18:25:43 2008 | | MD5 Checksum: | ddd126108668940b95b0c3f58edc0366 |
|
| /// File Name: | msvista-overflow.txt | Description:
| The Microsoft Device IO Control wrapped by the iphlpapi.dll API shipping with Windows Vista 32 bit and 64 bit contains a possibly exploitable, buffer overflow corrupting kernel memory. Proof of concept test code included. | | Author: | Carson Hounshell,Marius Wachtler,Michael Burgbacher,Michael Craggs,Thomas Unterleitner | | Homepage: | http://www.phion.com/ | | File Size: | 10901 | | Last Modified: | Nov 19 18:22:36 2008 | | MD5 Checksum: | 8d9062372b98a602f3a22fe236506963 |
|
| /// File Name: | mytopix-sql.txt | Description:
| MyTopix versions 1.3.0 and below remote SQL injection exploit. | | Author: | cOndemned | | Homepage: | http://condemned.r00t.la/ | | File Size: | 4746 | | Last Modified: | Nov 19 18:19:35 2008 | | MD5 Checksum: | 8e0559a875dc85728184e0a26a62eb96 |
|
| /// File Name: | punbb-lfi.txt | Description:
| PunBB (Private Messaging System versions 1.2.x) multiple local file inclusion exploit. | | Author: | StAkeR | | File Size: | 7837 | | Last Modified: | Nov 19 18:18:10 2008 | | MD5 Checksum: | 4e17d4daf83b92da03922224ce17aa79 |
|
| /// File Name: | PR07-40.txt | Description:
| The 3Com AP 8760 suffers from authentication bypass, password leakage, and SNMP injection vulnerabilities. Details provided. | | Author: | Adrian Pastor | | Homepage: | http://www.procheckup.com/ | | File Size: | 4569 | | Last Modified: | Nov 19 18:08:39 2008 | | MD5 Checksum: | de90de2dfb7bb15c9207cdcfb1dc6b7e |
|
| /// File Name: | PR07-11.txt | Description:
| Sun Java System Identity suffers from a cross site request forgery vulnerability. Proof of concept code included. | | Author: | Adrian Pastor,Jan Fry | | Homepage: | http://www.procheckup.com/ | | File Size: | 3836 | | Last Modified: | Nov 19 18:07:07 2008 | | MD5 Checksum: | 8a27d91e43fbb3bc2fb530f8741b2c77 |
|
| /// File Name: | alexarticle-upload.txt | Description:
| Alex Article-Engine version 1.3.0 suffers from a remote arbitrary file upload vulnerability. | | Author: | Batter | | File Size: | 1168 | | Last Modified: | Nov 19 17:04:26 2008 | | MD5 Checksum: | 8fa701b438aefcdc974a713bbb55d89a |
|
| /// File Name: | alexnews-upload.txt | Description:
| Alex News-Engine version 1.5.1 suffers from a remote arbitrary file upload vulnerability. | | Author: | Batter | | File Size: | 1151 | | Last Modified: | Nov 19 17:02:53 2008 | | MD5 Checksum: | 71f4fe9cb8a232d39997f21b36f87ebf |
|
| /// File Name: | DSECRG-08-039.txt | Description:
| Pluck CMS version 4.5.3 suffers from a local file inclusion vulnerability in data/inc/lib/pcltar.lib.php. | | Author: | Digital Security Research Group | | Homepage: | http://www.dsec.ru/ | | File Size: | 2103 | | Last Modified: | Nov 18 20:09:35 2008 | | MD5 Checksum: | 75fd4e17221c2d6c784ac7ab1a410e8b |
|
| /// File Name: | directory-rfi.txt | Description:
| Free Directory Script version 1.1.1 suffers from a remote file inclusion vulnerability.vulnerability. | | Author: | Ghost Hacker | | Homepage: | http://www.real-hack.net/ | | File Size: | 2225 | | Last Modified: | Nov 18 19:41:44 2008 | | MD5 Checksum: | 7f8bed2e75d5eaeb1c1b72536868bae2 |
|
| /// File Name: | cups-dos.txt | Description:
| CUPS version 1.3.7 cross site request forgery remote crash exploit that makes use of the add rss subscription functionality. | | Author: | Adrian Pastor | | File Size: | 437 | | Last Modified: | Nov 18 19:28:06 2008 | | MD5 Checksum: | 1ef452ec2c616d611a578d9e2fb24e5e |
|
| /// File Name: | etopbizlinkback-insecure.txt | Description:
| E-topbiz Link Back Checker 1 suffers from an insecure cookie handling vulnerability that allows for administrative take-over. | | Author: | X0r | | File Size: | 466 | | Last Modified: | Nov 18 19:23:41 2008 | | MD5 Checksum: | 3d645ee9d2340964a69cb6cb2555b35a |
|
| /// File Name: | musicbox238-sql.txt | Description:
| Musicbox versions 2.3.8 and below suffer from a remote SQL injection vulnerability. This was discovered in the last version and the vendor still has not fixed it. | | Author: | Snakespc | | Homepage: | http://www.snakespc.com/sc | | Related Exploit: | musicbox-sql.txt | | File Size: | 3041 | | Last Modified: | Nov 18 19:10:56 2008 | | MD5 Checksum: | 0cfd65ddce5aa54f6ea1a290f20efd38 |
|
| /// File Name: | noIPwn3r.c | Description:
| No-IP DUC versions 2.1.7 and below remote code execution exploit with reverse shell functionality. | | Author: | XenoMuta | | Homepage: | http://xenomuta.blogspot.com/ | | File Size: | 8103 | | Last Modified: | Nov 18 19:05:55 2008 | | MD5 Checksum: | 94f7539a2f526191e3041ebd0c0eaa10 |
|
| /// File Name: | videoscript-password.txt | Description:
| VideoScript versions 4.0.1.50 and below administrative password changing exploit. | | Author: | G4N0K | | File Size: | 7648 | | Last Modified: | Nov 18 00:40:33 2008 | | MD5 Checksum: | 120245d21bb302fad23e901c4a649add |
|
| /// File Name: | chilkat-create.txt | Description:
| Chilkat Socket Active-X control (ChilkatSocket.DLL) version 2.3.1.1 remote arbitrary file creation exploit. | | Author: | Underz0ne Crew | | Homepage: | http://www.underz0ne.net/ | | File Size: | 925 | | Last Modified: | Nov 18 00:23:01 2008 | | MD5 Checksum: | 1f4383764c48b7133cf0de514e038cc2 |
|
| /// File Name: | jobsiteinet-sql.txt | Description:
| Job Site Script Design by i-netsolution suffers from a remote SQL injection vulnerability. | | Author: | d3b4g | | File Size: | 1549 | | Last Modified: | Nov 18 00:19:24 2008 | | MD5 Checksum: | 24995a6391c630e455b40312c95dda7f |
|
| /// File Name: | jadugalaxies-sql.txt | Description:
| Jadu Galaxies suffers from a blind SQL injection vulnerability. | | Author: | ZoRLu | | File Size: | 1010 | | Last Modified: | Nov 18 00:17:58 2008 | | MD5 Checksum: | 09c80a4bae33498859e6e1fd0f8bed3c |
|
| /// File Name: | cnn-xss.txt | Description:
| CNN.com suffers from cross site scripting and content modification vulnerabilities. | | Author: | Anonymous | | File Size: | 3913 | | Last Modified: | Nov 17 23:06:16 2008 | | MD5 Checksum: | 92c84de2d5d9b7b3c25913b34e95cdef |
|
| /// File Name: | simplecustomer12-sql.txt | Description:
| Simple Customer version 1.2 suffers a SQL injection vulnerability that allows for authentication bypass. | | Author: | d3b4g | | File Size: | 737 | | Last Modified: | Nov 17 23:01:46 2008 | | MD5 Checksum: | 0cb715cd07f5414f57f34f266f13d6d2 |
|
| /// File Name: | opera962-overflow.txt | Description:
| Opera version 9.62 local heap overflow exploit that makes use of file://. | | Author: | k'sOSe | | Homepage: | http://www.pornosecurity.org/ | | File Size: | 1188 | | Last Modified: | Nov 17 23:00:28 2008 | | MD5 Checksum: | 80f8e7302996a3a72243d95efb5201c1 |
|
| /// File Name: | phpfan-rfi.txt | Description:
| phpfan version 3.3.4 suffers from a remote file inclusion vulnerability in init.php. | | Author: | ahmadbady | | File Size: | 924 | | Last Modified: | Nov 17 22:59:13 2008 | | MD5 Checksum: | f88cadb8524969ddedc732306f19b19c |
|
| /// File Name: | saturncms-sql.txt | Description:
| SaturnCMS suffers from a blind SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1156 | | Last Modified: | Nov 17 21:11:45 2008 | | MD5 Checksum: | de9fc0673b993786fe3b287fc5ab7334 |
|
| /// File Name: | qshop-sqlxss.txt | Description:
| Q-Shop version 3.0 suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Bl@ckbe@rd | | File Size: | 3247 | | Last Modified: | Nov 17 21:10:03 2008 | | MD5 Checksum: | b65ee8bf3b67d192ba02b0b7effeee69 |
|
| /// File Name: | ultrastats-sql.txt | Description:
| Ultrastats versions 0.3.11 and 0.2.144 suffer from a remote SQL injection vulnerability. | | Author: | EEK | | File Size: | 3350 | | Last Modified: | Nov 17 21:05:32 2008 | | MD5 Checksum: | 40e45fb4ccd942e795867ab21af1fefa |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
