Section:  .. / 1003-exploits  /

Page 14 of 17
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 >> Files 325 - 350 of 424
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: abton-sql.txt
Description:
Abton CMS suffers from a remote SQL injection vulnerability.
Author:MustLive
File Size:1385
Last Modified:Mar 11 11:24:15 2010
MD5 Checksum:52f6b36dba1fbd3b137ebb090d43ddf1

 ///  File Name: super-vulns.tgz
Description:
SUPERAntiSpyware and Super Ad Blocker have almost identical device drivers in order to set up hooks and perform other duties from kernel space. These device drivers suffer from lack of validation of parameters passed from user mode. Additionally, some of the functions accessible from user mode are inherently insecure and lead to easy privilege escalation. All vulnerabilities are applicable to both applications. Proof of concept code included with full advisory.
Author:Luka Milkovic
File Size:33557
Last Modified:Mar 10 21:30:19 2010
MD5 Checksum:3170b366c6223e86743528719242746a

 ///  File Name: joomlaabout-sql.txt
Description:
The Joomla About component suffers from a remote SQL injection vulnerability.
Author:Snakespc
File Size:866
Last Modified:Mar 10 21:27:25 2010
MD5 Checksum:75053d91412433bd2af46e8bc384850d

 ///  File Name: ie_iepeers_pointer.rb.txt
Description:
This Metasploit module exploits a use-after-free vulnerability within iepeers.dll of Microsoft Internet Explorer versions 6 and 7. NOTE: Internet Explorer 8 and Internet Explorer 5 are not affected.
Author:Trancer
Homepage:http://www.metasploit.com
File Size:4796
Related OSVDB(s):62810
Related CVE(s):CVE-2010-0806
Last Modified:Mar 10 21:18:10 2010
MD5 Checksum:148df6b886dc2dbed56a1580848c30f7

 ///  File Name: phpcityportal-sqlrfi.txt
Description:
PHPCityPortal suffers from remote file inclusion and SQL injection vulnerabilities.
Author:R3d-D3v!L
File Size:1751
Last Modified:Mar 10 21:13:59 2010
MD5 Checksum:b3cf8067188dddf195e8aa0379efcb9a

 ///  File Name: anantasoft-xsrf.txt
Description:
Anantasoft Gazelle CMS suffers from a cross site request forgery vulnerability.
Author:Pratul Agrawal
File Size:2808
Last Modified:Mar 10 10:59:29 2010
MD5 Checksum:dad820e563724bc7b8c491876c9048fa

 ///  File Name: notepadpoc.zip
Description:
The MS HTML Help control activex is prone to a remote CHM help file hijack vulnerability when applications invoke help. Multiple built-in applications are vulnerable to this. The impact of the vulnerability is the loading of the incorrect CHM help file when it resides in the same directory the application invoking help starts in. This proof of concept exploit leverages Notepad to demonstrate the vulnerability.
Author:Eduardo Prado
Homepage:http://secumania.net/index.php?option=com_content&task=view&id=37&Itemid=1
File Size:28918
Last Modified:Mar 10 10:51:10 2010
MD5 Checksum:3f0edb83fb8c525b3c7a93556ab16cc7

 ///  File Name: ispcp-rfi.txt
Description:
ispCP Omega versions 1.0.4 and below suffer from a remote file inclusion vulnerability.
Author:cr4wl3r
File Size:2068
Last Modified:Mar 10 10:47:10 2010
MD5 Checksum:1ecfa63512e948355cf15fd528e4c374

 ///  File Name: httpdx-breaksvc.txt
Description:
Httpdx version 1.5.3 remote break services exploit.
Author:Jonathan Salwan
Homepage:http://www.shell-storm.org/
File Size:1475
Last Modified:Mar 10 10:43:31 2010
MD5 Checksum:0d68268c5eda2e07d8be262bba731a96

 ///  File Name: softbizjobsrecruitment-sql.txt
Description:
Softbiz Jobs and Recruitment script suffers from a remote SQL injection vulnerability.
Author:Easy Laster
File Size:1605
Last Modified:Mar 10 10:42:00 2010
MD5 Checksum:a2b901cd5a4520daee9be76aab46b150

 ///  File Name: campsite-xsrf.txt
Description:
Campsite version 3.3.5 suffers from a cross site request forgery vulnerability.
Author:Pratul Agrawal
File Size:1620
Last Modified:Mar 10 10:22:41 2010
MD5 Checksum:02c5f2f26afd7f5d5c3d519bb791a6fe

 ///  File Name: 60cyclecms-xss.txt
Description:
60cycleCMS suffers from a cross site scripting vulnerability.
Author:Pratul Agrawal
File Size:3606
Last Modified:Mar 10 10:15:49 2010
MD5 Checksum:47b9959eebc266e101924d1fd6e37482

 ///  File Name: friendlytr69-sql.txt
Description:
Friendly-Tech FriendlyTR69 CPE remote management version 2.8.9 suffers from a remote SQL injection vulnerability.
Author:Yaniv Miron
File Size:1792
Last Modified:Mar 10 10:08:22 2010
MD5 Checksum:e9c939b6efcdae9fd324a8ff61d3f247

 ///  File Name: hydra-sqlxss.txt
Description:
Hydra CMS suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:MustLive
File Size:1083
Last Modified:Mar 10 10:07:08 2010
MD5 Checksum:1e7bf05f74db4c8d6bb5c916597f23bf

 ///  File Name: rivercms-sql.txt
Description:
River CMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:Pouya Daneshmand
File Size:799
Last Modified:Mar 9 18:07:52 2010
MD5 Checksum:3f9fd122e2c9c13cf36e4141986c3d46

 ///  File Name: nusnewssystem-sql.txt
Description:
NUs Newssystem version 1.02 suffers from a remote SQL injection vulnerability.
Author:n3w7u
File Size:695
Last Modified:Mar 9 18:05:34 2010
MD5 Checksum:73b85126d9a72c43885fe8f5015285eb

 ///  File Name: jevci-disclose.txt
Description:
Jevci Siparis Formu Scripti suffers from a remote database disclosure vulnerability.
Author:indoushka
File Size:1920
Last Modified:Mar 9 18:04:28 2010
MD5 Checksum:8dc51a5f030e969191a583ba8fb34d42

 ///  File Name: mhproducts-sql.txt
Description:
Mhproducts Kleinanzeigenmarkt suffers from a remote SQL injection vulnerability.
Author:Easy Laster
File Size:1994
Last Modified:Mar 9 18:01:22 2010
MD5 Checksum:d9ed3069eabcbca64dc161d3fca09550

 ///  File Name: easyftp.rb.txt
Description:
This Metasploit module exploits a stack overflow in the CWD verb in Easy~FTP Server. You must have valid credentials to trigger this vulnerability.
Author:Blake
Homepage:http://www.metasploit.com
File Size:2263
Last Modified:Mar 9 18:00:35 2010
MD5 Checksum:d732ec3c57befe33133a22a93ffe3bc9

 ///  File Name: energizer_duo_payload.rb.txt
Description:
This Metasploit module will execute an arbitrary payload against any system infected with the Arugizer trojan horse. This backdoor was shipped with the software package accompanying the Energizer Duo USB battery charger.
Author:H D Moore
Homepage:http://www.metasploit.com
File Size:2841
Related CVE(s):CVE-2010-0103
Last Modified:Mar 9 17:50:14 2010
MD5 Checksum:d6d4fbfd8adf2bc89ff2a66c568d2df7

 ///  File Name: orbital_viewer_orb.rb.txt
Description:
This Metasploit module exploits a stack-based buffer overflow in David Manthey's Orbital Viewer. When processing .ORB files, data is read from file into a fixed-size stack buffer using the fscanf function. Since no bounds checking is done, a buffer overflow can occur. Attackers can execute arbitrary code by convincing their victim to open an ORB file.
Author:jduck
Homepage:http://www.metasploit.com
File Size:2851
Related OSVDB(s):62580
Related CVE(s):CVE-2010-0688
Last Modified:Mar 9 17:49:56 2010
MD5 Checksum:5aa02439f41605543223cc94d1459d02

 ///  File Name: rsstatic-sql.txt
Description:
Rsstatic suffers from a remote SQL injection vulnerability.
Author:Itsecteam
File Size:498
Last Modified:Mar 9 17:36:56 2010
MD5 Checksum:36b80b3567abad8055fcf5b5022ef709

 ///  File Name: uebimiauwebmail-disclose.txt
Description:
Uebimiau Webmail version 3.2.0-2.0 suffers from a remote email disclosure vulnerability.
Author:R4vax,Z3r0c0re
File Size:1018
Last Modified:Mar 9 17:35:11 2010
MD5 Checksum:d8986001128e37ed03e54a8e5d292448

 ///  File Name: aef-xss.txt
Description:
AEF version 1.0.8 suffers from a cross site scripting vulnerability.
Author:Itsecteam
File Size:686
Last Modified:Mar 9 17:33:09 2010
MD5 Checksum:dc6f4907b92f1b05e661dc65bc490c7b

 ///  File Name: ibmenovia-xss.txt
Description:
IBM ENOVIA SmarTeam version 5 suffers from a cross site scripting vulnerability.
Author:Yaniv Miron
File Size:1349
Last Modified:Mar 9 17:31:44 2010
MD5 Checksum:44229551878fc0a868b16aae04f085eb