Section:  .. / 1002-exploits  /

Page 12 of 16
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 >> Files 275 - 300 of 396
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: osTicket-1.6-RC5-SQLi.pdf
Description:
osTicket version 1.6 RC5 suffers from a remote SQL injection vulnerability.
Author:N. Grisolia
File Size:62268
Last Modified:Feb 9 20:07:07 2010
MD5 Checksum:ec1529f995756f640c70fa6a43bf4af8

 ///  File Name: osTicket-1.6-RC5-ReflectedXSS.pdf
Description:
osTicket version 1.6 RC5 suffers from a reflected cross site scripting vulnerability.
Author:N. Grisolia
File Size:60831
Last Modified:Feb 9 20:06:53 2010
MD5 Checksum:9ac54fb81c95c8a33e75c2502f8895b0

 ///  File Name: OCHOA-2010-0209.txt
Description:
Flaws in Microsoft's implementation of the NTLM challenge-response authentication protocol causing the server to generate duplicate challenges/nonces and an information leak allow an unauthenticated remote attacker without any kind of credentials to access the SMB service of the target system under the credentials of an authorized user. Depending on the privileges of the user, the attacker will be able to obtain and modify files on the target system and execute arbitrary code. Proof of concept exploit included.
Author:Agustin Azubel,Hernan Ochoa
Homepage:http://www.hexale.org/
File Size:59641
Related CVE(s):CVE-2010-0231
Last Modified:Feb 9 20:03:22 2010
MD5 Checksum:bda076f3b77016ef22d44fd963cc382f

 ///  File Name: ultraiso.py.txt
Description:
UltraISO version 9.3.6.2750 local buffer overflow exploit that spawns calc.exe. Written in Python.
Author:Dz_attacker
File Size:334714
Last Modified:Feb 9 19:58:29 2010
MD5 Checksum:c4e941d6591ab57eefc3217efe704485

 ///  File Name: zomorrodcms-sql.txt
Description:
Zomorrod CMS suffers from a remote SQL injection vulnerability.
Author:Pouya Daneshmand
File Size:660
Last Modified:Feb 9 19:52:54 2010
MD5 Checksum:d5df107229e6ab942a1a4c035810ea2e

 ///  File Name: newslettertailor-rfi.txt
Description:
Newsletter Tailor suffers from a remote file inclusion vulnerability.
Author:Snakespc
File Size:990
Last Modified:Feb 9 19:51:31 2010
MD5 Checksum:9917bbeb48754fe7c06eb52a2c3178e9

 ///  File Name: arwscripts-sqlxss.txt
Description:
Various product from ARWScripts.com suffer from cross site scripting and remote SQL injection vulnerabilities.
Author:jiko
File Size:2892
Last Modified:Feb 9 19:50:23 2010
MD5 Checksum:8170870daba32fac5f3ae3a664d0075c

 ///  File Name: limny-upload.txt
Description:
Limny suffers from a remote shell upload vulnerability.
Author:jiko
File Size:856
Last Modified:Feb 9 19:35:47 2010
MD5 Checksum:bf8754327426c6eef507e91ed94e0212

 ///  File Name: phpminisite-insecure.txt
Description:
phpMiniSite suffers from an insecure cookie handling vulnerability.
Author:jiko
File Size:849
Last Modified:Feb 9 19:34:44 2010
MD5 Checksum:a688404d667797c3c8b5e64452647b6b

 ///  File Name: vbulletinadsense-sql.txt
Description:
vBulletin Adsense suffers from a remote SQL injection vulnerability.
Author:jiko
File Size:657
Last Modified:Feb 9 19:33:42 2010
MD5 Checksum:0ce13bc40731ec3f64f4a98e6aeb3405

 ///  File Name: phpappslinks-insecure.txt
Description:
PHP Apps Links suffers from an insecure cookie handling vulnerability.
Author:jiko
File Size:876
Last Modified:Feb 9 18:39:00 2010
MD5 Checksum:122cea400ed7bf6f9eecccbb3dbde11b

 ///  File Name: yessolutions-sql.txt
Description:
Yes Solutions suffers from a remote SQL injection vulnerability.
Author:HackXBack
File Size:1445
Last Modified:Feb 9 18:06:48 2010
MD5 Checksum:2a903b9d93e0cef07ce50f2537447b93

 ///  File Name: mojoiwms-sqlxss.txt
Description:
Mojo's IWMS versions 7 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
Author:cp77fk4r
File Size:1634
Last Modified:Feb 9 18:05:14 2010
MD5 Checksum:6cebd2b90abd6185eab5bb798b64760f

 ///  File Name: ultraiso.c
Description:
UltraISO version 9.3.6.2750 local buffer overflow exploit.
Author:fl0 fl0w
File Size:707680
Last Modified:Feb 9 17:57:50 2010
MD5 Checksum:ccfdee94e145a442e745eb9612104bb2

 ///  File Name: newslettertailor-sql.txt
Description:
Newsletter Tailor suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:ViRuSMaN
File Size:1358
Last Modified:Feb 9 17:52:59 2010
MD5 Checksum:34ee1c42a1d59467cc5e096993b86fb6

 ///  File Name: newslettertailor-disclose.txt
Description:
Newsletter Tailor suffers from remote database backup and disclosure vulnerabilities.
Author:ViRuSMaN
File Size:1628
Last Modified:Feb 9 17:51:11 2010
MD5 Checksum:fa0826349b5e0ea0926dd004e0b548f1

 ///  File Name: ldap-poc.txt
Description:
LDAP injection proof of concept exploit.
Author:mc2_s3lector
File Size:2663
Last Modified:Feb 9 17:33:14 2010
MD5 Checksum:ce98bee2a6d03c1531d5f1790b7b3b38

 ///  File Name: flexcms-insecure.txt
Description:
FlexCMS version 3.1 suffers from an insecure cookie handling vulnerability.
Author:ViRuSMaN
File Size:1345
Last Modified:Feb 9 17:27:48 2010
MD5 Checksum:f78e033118c2608a2ac1056e27f1c335

 ///  File Name: thinkphp-xss.txt
Description:
ThinkPHP versions 2.0 and below suffer from cross site scripting vulnerabilities.
Author:zx
File Size:503
Last Modified:Feb 9 14:04:39 2010
MD5 Checksum:a3dc6ba953b837878aca58c9809fffc8

 ///  File Name: CORELAN-10-010.txt
Description:
GeFest Web HomeServer version 1.0 suffers from a directory traversal vulnerability.
Author:MarkoT
Homepage:http://www.corelan.be/
File Size:2801
Last Modified:Feb 8 20:43:57 2010
MD5 Checksum:0e7f9fafc9f7fcb06b0568d00318a9a8

 ///  File Name: wsnguestdb-disclose.txt
Description:
WSN Guest Database appears to suffer from a database disclosure vulnerability.
Author:HackXBack
File Size:584
Last Modified:Feb 8 20:43:06 2010
MD5 Checksum:495339c224d0283cb54de303975d36cf

 ///  File Name: bluedove-sql.txt
Description:
Blue Dove suffers from a remote SQL injection vulnerability.
Author:HackXBack
File Size:1232
Last Modified:Feb 8 20:41:51 2010
MD5 Checksum:56b8210fea175b0548221b4e893a6f15

 ///  File Name: as3flexdb-sqldisclose.txt
Description:
AS3FlexDB suffer from remote database login information disclosure and remote SQL execution vulnerabilities.
Author:DungPQ
File Size:2623
Last Modified:Feb 8 20:32:53 2010
MD5 Checksum:4bd18fda47c39420b7a2025aa50c2299

 ///  File Name: jdownloader-exec.txt
Description:
JDownloader versions below 2010-01-25 with Click n Load 2 support suffer from a code execution vulnerability. Proof of concept included.
Author:apoc
Homepage:http://apoc.sixserv.org/
File Size:3673
Last Modified:Feb 8 20:28:00 2010
MD5 Checksum:f02e18d147b9e1dfcc34e8cf5cfa5186

 ///  File Name: DSECRG-09-065.txt
Description:
TVUPlayer version 2.4.9beta build 1797 suffers from an Active-X insecure method vulnerability.
Author:Evdokimov Dmitriy
Homepage:http://www.dsec.ru/
File Size:2131
Last Modified:Feb 8 20:25:23 2010
MD5 Checksum:bac4aa9259d5374d946f83db9c3ff040