Section: .. / 0905-exploits /

Page 1 of 12
<< 1 2 3 4 5 6 7 8 9 10 11 12 >> Files 1 - 25 of 275

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	base-xss.tgz
Description:	BASE, the Basic Analysis and Security Engine, suffers from persistent and reflective cross site scripting vulnerabilities.
Author:	Jabra
File Size:	278685
Last Modified:	May 24 10:31:44 2009
MD5 Checksum:	203c1c096b58954a61d4cfec2c98f99c

/// File Name:	iiswebdav-bypass.pdf
Description:	Microsoft IIS version 6.0 suffers from a WebDAV remote authentication bypass vulnerability.
Author:	Kingcope
File Size:	70470
Last Modified:	May 16 14:27:33 2009
MD5 Checksum:	55ed3574d7a596caacc1d4f336c32e7e

/// File Name:	winamp_maki_script.txt
Description:	WinAMP versions 5.55 and below MAKI script universal SEH overwrite exploit.
Author:	His0k4
File Size:	16925
Last Modified:	May 24 09:56:54 2009
MD5 Checksum:	a0430ef157f9f7537821ddba4dabc5b4

/// File Name:	winamp5551-overflow.txt
Description:	WinAMP version 5.551 MAKI parsing integer overflow exploit.
Author:	n00b
File Size:	16523
Last Modified:	May 26 20:44:01 2009
MD5 Checksum:	46724e65b04ce76a3cb67121658422fa

/// File Name:	CORE-2009-0109.txt
Description:	Core Security Technologies Advisory - Several cross site scripting vulnerabilities were found in the following files/urls of the Sun Java System Communications Express system.
Homepage:	http://www.coresecurity.com/corelabs/
File Size:	13660
Related CVE(s):	CVE-2009-1729
Last Modified:	May 21 02:23:41 2009
MD5 Checksum:	66cba81d15ed53317ac0960af46eaf8b

/// File Name:	familyconn-sql.txt
Description:	Family Connections CMS versions 1.9 and below remote SQL injection exploit.
Author:	YEnH4ckEr
File Size:	12009
Last Modified:	May 13 13:28:00 2009
MD5 Checksum:	abb3577aa27498e67e7ecdb11166b952

/// File Name:	cpg1422-lfisql.txt
Description:	Coppermine Photo Gallery versions 1.4.22 and below suffer from a local file inclusion and SQL injection vulnerabilities.
Author:	__GiReX__
Homepage:	http://girex.altervista.org/
File Size:	10836
Last Modified:	May 18 21:07:52 2009
MD5 Checksum:	90cff7d61e18ee9e3a3c01a88d1d173a

/// File Name:	rt-sa-2009-003.txt
Description:	RedTeam Pentesting discovered a remote SQL injection vulnerability in the Groupware component of IceWarp WebMail Server version 9.4.1.
Homepage:	http://www.redteam-pentesting.de/
File Size:	10228
Related CVE(s):	CVE-2009-1468
Last Modified:	May 5 18:34:48 2009
MD5 Checksum:	bdf52e086f2f9cb63c13eaf3f0defd34

/// File Name:	tematres-sql.txt
Description:	TemaTres version 1.0.3 remote blind SQL injection exploit.
Author:	YEnH4ckEr
File Size:	10154
Last Modified:	May 5 18:58:06 2009
MD5 Checksum:	db31e45dda0d963969fc8d3fb263aaa9

/// File Name:	bitweaver-exec.txt
Description:	Bitweaver versions 2.6 and below /boards/boards_rss.php / saveFeed() remote code execution exploit.
Author:	Nine:Situations:Group
Homepage:	http://retrogod.altervista.org/
File Size:	10016
Last Modified:	May 13 11:57:43 2009
MD5 Checksum:	da9d60fa72af2cb6fccb6af859da2ccb

/// File Name:	cowonjetcast-overflow.txt
Description:	COWON America jetCast version 2.0.4.1109 local overflow exploit that creates a malicious .mp3 file.
Author:	Nine:Situations:Group
Homepage:	http://retrogod.altervista.org/
File Size:	9970
Last Modified:	May 26 20:37:09 2009
MD5 Checksum:	7d40cd3e86eca73df05c8f526fb57a9d

/// File Name:	amember-sqlxss.txt
Description:	AMember version 3.1.7 suffers from cross site scripting and SQL injection vulnerabilities.
Author:	MaXe
File Size:	9829
Last Modified:	May 26 22:45:59 2009
MD5 Checksum:	d4e3fe5e2b7c1708062cf5f535564043

/// File Name:	bigace-sql.txt
Description:	Bigace CMS version 2.5 user options changing SQL injection exploit.
Author:	YEnH4ckEr
File Size:	9515
Last Modified:	May 13 12:33:21 2009
MD5 Checksum:	41e1274e11382c7d16d6c92867c9edd8

/// File Name:	shaadiclone-addadmin.txt
Description:	ShaadiClone version 2.0 add administrator exploit that leverages addadminmembercode.php.
Author:	x.CJP.x
File Size:	8951
Last Modified:	May 26 21:34:44 2009
MD5 Checksum:	4d907ececd151c895cde05fcbaf360d5

/// File Name:	zeecareers-addadmin.txt
Description:	ZeeCareers version 2.0 add administrator exploit that leverages addadminmembercode.php.
Author:	x.CJP.x
File Size:	8947
Last Modified:	May 26 22:27:55 2009
MD5 Checksum:	db606e19c0c490d46f76d510acab1552

/// File Name:	formmail-xss.txt
Description:	FormMail version 1.92 suffers from cross site scripting, header injection, and HTTP response splitting vulnerabilities.
Author:	Antonio Parata,Francesco Ongaro,Giovanni Pellerano
Homepage:	http://www.ush.it/
File Size:	8882
Last Modified:	May 13 12:24:59 2009
MD5 Checksum:	c5fd7ee3e410f7fa28c3b0c39529e84c

/// File Name:	rtwebalbum-sql.txt
Description:	RTWebalbum version 1.0.462 blind SQL injection exploit.
Author:	YEnH4ckEr
File Size:	8825
Last Modified:	May 8 15:17:49 2009
MD5 Checksum:	29123b11a0c6ec72d23d90ecac3617b3

/// File Name:	webspell-blindsql.txt
Description:	webSPELL versions 4.2.0e and below remote blind SQL injection exploit.
Author:	DNX
File Size:	8181
Last Modified:	May 8 02:26:30 2009
MD5 Checksum:	fe5e179e7e4d87b64ae5a72b33fa43f7

/// File Name:	dogpedigree-sql.txt
Description:	Dog Pedigree Online Database version 1.0.1-Beta suffers from a blind SQL injection vulnerability.
Author:	YEnH4ckEr
File Size:	7855
Last Modified:	May 19 21:21:11 2009
MD5 Checksum:	ff6470f02d3750d01c9c830cd634c0e5

/// File Name:	winamp5551maki-overflow.txt
Description:	WinAMP version 5.551 MAKI parsing integer overflow proof of concept exploit.
Author:	n00b
File Size:	7660
Last Modified:	May 24 09:59:21 2009
MD5 Checksum:	4047efabe9944f36c973125a82c2c209

/// File Name:	cpcommerce-inclusion.txt
Description:	cpCommerce version 1.2.x GLOBALS[prefix] arbitrary file inclusion exploit.
Author:	StAkeR
File Size:	7384
Last Modified:	May 26 20:51:36 2009
MD5 Checksum:	521714fb7349474ae39efe6e06a45264

/// File Name:	tuenti-xss.txt
Description:	Tuenti suffers from cross site scripting vulnerabilities.
Author:	YEnH4ckEr
File Size:	7224
Last Modified:	May 15 14:36:13 2009
MD5 Checksum:	0baf01630f44025d87736c108837f516

/// File Name:	rt-sa-2009-004.txt
Description:	RedTeam Pentesting discovered that the emails sent by the IceWarp WebMail Server when using the "Forgot Password" function are generated on the client side. Version 9.4.1 is affected.
Homepage:	http://www.redteam-pentesting.de/
File Size:	6894
Related CVE(s):	CVE-2009-1469
Last Modified:	May 5 18:41:02 2009
MD5 Checksum:	95562bd936964ee0d82db2c683bef2f8

/// File Name:	adrotator-xss.txt
Description:	AdPeeps version 8.5d1 suffers from cross site scripting and HTML injection vulnerabilities.
Author:	intern0t
File Size:	6839
Last Modified:	May 27 18:33:36 2009
MD5 Checksum:	8626e73850ae667047d9d42da7838f5e

/// File Name:	smallpirates-sql.txt
Description:	Small Pirates version 2.1 suffers from SQL injection and cookie stealing vulnerabilities.
Author:	YEnH4ckEr
File Size:	6743
Last Modified:	May 28 20:21:45 2009
MD5 Checksum:	4943da5943d5edd9d5fad62b3d1502d6