Section:  .. / 1002-exploits  /

Page 4 of 16
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 >> Files 75 - 100 of 396
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: spherecms-sql.txt
Description:
SphereCMS version 1.1 Alpha suffers from a remote blind SQL injection vulnerability.
Author:AmnPardaz Security Research Team
Homepage:http://www.bugreport.ir/
File Size:3421
Last Modified:Feb 19 15:58:39 2010
MD5 Checksum:b7e2a1e5e04606fb621b1425e933a696

 ///  File Name: joomlajcb-sql.txt
Description:
The Joomla JoomlaConnect_be component suffers from a remote SQL injection vulnerabilities.
Author:Snakespc
File Size:3420
Last Modified:Feb 26 13:54:30 2010
MD5 Checksum:32ce44e64c0359cb57c8d30f04c505ef

 ///  File Name: softbizcp-sql.txt
Description:
Softbiz Classifieds PLUS suffers from multiple remote SQL injection vulnerabilities.
Author:Easy Laster
Related Exploit:softbiz-sql.txt
File Size:3348
Last Modified:Feb 25 00:49:45 2010
MD5 Checksum:81945e0bc247b90f6b2477662daade38

 ///  File Name: facebook0210-xsrf.txt
Description:
Facebook suffered from a cross site request forgery vulnerability.
Author:Juan Galiana Lara
File Size:3195
Last Modified:Feb 12 17:48:37 2010
MD5 Checksum:8ccb315a536bce158407b02f1718b648

 ///  File Name: softbizjobsmulti-sql.txt
Description:
Softbiz Jobs suffers from remote SQL injection vulnerabilities in searchresult.php and moredetails.php.
Author:Easy Laster
Related Exploit:softbizjobs-sql.txt
File Size:3135
Last Modified:Feb 23 19:52:33 2010
MD5 Checksum:baa46fcadf01bd309b5afd9a61ea2c31

 ///  File Name: upload-insecure.txt
Description:
UPLoad version 7.0 suffers from an insecure cookie handling vulnerability.
Author:indoushka
File Size:3110
Last Modified:Feb 16 16:56:36 2010
MD5 Checksum:9d10afc9f8b0549947f289bea66aaabe

 ///  File Name: major_rls65.txt
Description:
A remotely exploitable vulnerability has been found in the JavaScript Engine of the MobileSafari Browser(based on Webkit Engine) used on the Motorola Milestone(droid) smartphone. Proof of concept code included.
Author:David "Aesthetico" Vieira-Kurz
Homepage:http://www.majorsecurity.de
File Size:3058
Last Modified:Feb 8 17:48:39 2010
MD5 Checksum:db4037dc53ce2046e2b0b7e88971bc02

 ///  File Name: plspla-dos.txt
Description:
PLS PLA WMDownloader proof of concept denial of service exploit.
Author:jiko
File Size:3053
Last Modified:Feb 9 20:34:39 2010
MD5 Checksum:999596f37e714fad9d31dd2d3e28c928

 ///  File Name: piranha_passwd_exec.rb.txt
Description:
This Metasploit module abuses two flaws - a meta-character injection vulnerability in the HTTP management server of RedHat 6.2 systems running the Piranha LVS cluster service and GUI (rpm packages: piranha and piranha-gui). The vulnerability allows an authenticated attacker to execute arbitrary commands as the Apache user account (nobody) within the /piranha/secure/passwd.php3 script. The package installs with a default user and password of piranha:q which was exploited in the wild.
Author:patrick
Homepage:http://www.metasploit.com
File Size:3041
Related OSVDB(s):1300,289
Related CVE(s):CVE-2000-0322, CVE-2000-0248
Last Modified:Feb 15 17:14:30 2010
MD5 Checksum:f67f90a640b118d5d59f7d2fd5dcfd0e

 ///  File Name: sterlite-xss.txt
Description:
The Sterlite SAM300AX ADSL router suffers from a cross site scripting vulnerability.
Author:Karn Ganeshen
File Size:3038
Last Modified:Feb 5 17:52:04 2010
MD5 Checksum:fd11bcabddf5e7ce69a97405600ed062

 ///  File Name: extrememobster-xss.txt
Description:
Extreme Mobster Free.Licente suffers from a cross site scripting vulnerability.
Author:indoushka
File Size:2972
Last Modified:Feb 15 18:14:49 2010
MD5 Checksum:19962b88fccf1bcbf86638388677b012

 ///  File Name: damailinglist-sqldisclose.txt
Description:
DA Mailing List version 2 suffers from remote SQL injection and database disclosure vulnerabilities.
Author:Phenom
File Size:2943
Last Modified:Feb 8 19:29:55 2010
MD5 Checksum:788ce3a808958d671ddad91b8303fb9d

 ///  File Name: facebookfriend-xss.txt
Description:
The mobile interface of Facebook social network was affected by a cross site scripting vulnerability.
Author:Juan Galiana Lara
File Size:2913
Last Modified:Feb 4 01:42:21 2010
MD5 Checksum:338251d4ffb06072b74d2b1c1c127482

 ///  File Name: arwscripts-sqlxss.txt
Description:
Various product from ARWScripts.com suffer from cross site scripting and remote SQL injection vulnerabilities.
Author:jiko
File Size:2892
Last Modified:Feb 9 19:50:23 2010
MD5 Checksum:8170870daba32fac5f3ae3a664d0075c

 ///  File Name: rpc_cmsd_opcode21.rb.txt
Description:
This Metasploit module exploits a buffer overflow vulnerability in opcode 21 handled by rpc.cmsd on AIX. By making a request with a long string passed to the first argument of the "rtable_create" RPC, a stack based buffer overflow occurs. This leads to arbitrary code execution.
Author:Rodrigo Rubira Branco,jduck
Homepage:http://www.metasploit.com
File Size:2892
Related OSVDB(s):58726
Related CVE(s):CVE-2009-3699
Last Modified:Feb 9 21:11:01 2010
MD5 Checksum:cb4d6ac873330eaa32d39a0ce5164446

 ///  File Name: symbian-dos.tgz
Description:
This archive has six denial of service exploits that affect the Nokia Symbian S60v3 web browser.
Author:Nishant Das Patnaik
File Size:2891
Last Modified:Feb 12 17:55:53 2010
MD5 Checksum:8f6a526c4748e9da0f65d9f2ad4e0a91

 ///  File Name: easyftp1702http-overflow.txt
Description:
Easy FTP Server version 1.7.0.2 HTTP remote buffer overflow exploit.
Author:ThE g0bL!N
File Size:2882
Last Modified:Feb 20 12:51:38 2010
MD5 Checksum:f64bf41e2f128c4b5b6a732075f25d65

 ///  File Name: hplip_hpssd_exec.rb.txt
Description:
This Metasploit module exploits a command execution vulnerable in the hpssd.py daemon of the Hewlett-Packard Linux Imaging and Printing Project. According to MITRE, versions 1.x and 2.x before 2.7.10 are vulnerable. This Metasploit module was written and tested using the Fedora 6 Linux distribution. On the test system, the daemon listens on localhost only and runs with root privileges. Although the configuration shows the daemon is to listen on port 2207, it actually listens on a dynamic port. NOTE: If the target system does not have a 'sendmail' command installed, this vulnerability cannot be exploited.
Author:jduck
Homepage:http://www.metasploit.com
File Size:2806
Related OSVDB(s):41693
Related CVE(s):CVE-2007-5208
Last Modified:Feb 17 18:43:54 2010
MD5 Checksum:4619e503f656a7ac14ba62f0c9ddb880

 ///  File Name: CORELAN-10-010.txt
Description:
GeFest Web HomeServer version 1.0 suffers from a directory traversal vulnerability.
Author:MarkoT
Homepage:http://www.corelan.be/
File Size:2801
Last Modified:Feb 8 20:43:57 2010
MD5 Checksum:0e7f9fafc9f7fcb06b0568d00318a9a8

 ///  File Name: neroburningrom9-overflow.txt
Description:
Nero Burning ROM 9 iso compilation local buffer overflow exploit. Version 9.4.13.2 is affected.
Author:LiquidWorm
File Size:2765
Last Modified:Feb 23 02:30:08 2010
MD5 Checksum:62d7a64387219c024ef689f804b43af4

 ///  File Name: ibmwebsphere-xss.txt
Description:
IBM Websphere Portal Server and Lotus Web Content Management systems suffer from a cross site scripting vulnerability.
Author:Ofer Hafif
Homepage:http://www.hacktics.com/
File Size:2758
Last Modified:Feb 26 13:26:04 2010
MD5 Checksum:71387cd8f7bbcb5566f6405c7c70b8bc

 ///  File Name: xcartpro-sql.txt
Description:
X-Cart Pro version 4.0.13 suffers from a remote SQL injection vulnerability.
Author:sasquatch
File Size:2730
Last Modified:Feb 12 01:50:05 2010
MD5 Checksum:c5f571ef8b2c041be30ae79221d59075

 ///  File Name: joomlajoak-sql.txt
Description:
Joomla Joaktree component version 1.1.1 remote SQL injection exploit.
Author:kaMtiEz
Homepage:http://www.indonesiancoder.com/
Related Exploit:joomlajoaktree-sql.txt
File Size:2709
Last Modified:Feb 24 23:58:49 2010
MD5 Checksum:3544bd56fa09c6deb7deb1395161c937

 ///  File Name: major_rls64.txt
Description:
A remotely exploitable denial of service vulnerability has been found in the JavaScript Engine of the Apple Safari Browser (based on Webkit Engine). Versions 4.0.4 and below are affected.
Author:David "Aesthetico" Vieira-Kurz
Homepage:http://www.majorsecurity.de
File Size:2696
Last Modified:Feb 5 18:00:03 2010
MD5 Checksum:a2d703466bd6c7e58b572371698bdb82

 ///  File Name: premultivendor-sql.txt
Description:
Pre Multi-Vendor E-Commerce Solution suffers from a remote SQL injection vulnerability.
Author:Don Tukulesto
Homepage:http://www.indonesiancoder.com/
File Size:2694
Last Modified:Feb 23 02:08:06 2010
MD5 Checksum:fc47e9bc9392a22e5c32cc45954a2816