Section: .. / 0711-exploits /
| /// File Name: |
runcms-lfi.txt |
Description:
|
RunCMS versions 1.6 and below suffer from a local file inclusion vulnerability.
| | Author: | trueend5 | | Homepage: | http://www.kapda.ir/ | | File Size: | 3077 | | Last Modified: | Nov 26 21:53:15 2007 |
| MD5 Checksum: | 877a97e8d6dd5d91794c19bddff832a9 |
|
| /// File Name: |
runcms-overwrite.txt |
Description:
|
RunCMS versions 1.6 and below remote file overwrite exploit that makes use of disclaimer.php.
| | Author: | trueend5 | | Homepage: | http://www.kapda.ir/ | | File Size: | 4489 | | Last Modified: | Nov 26 21:54:21 2007 |
| MD5 Checksum: | 8650e6b1283922005077675e390f1cdb |
|
| /// File Name: |
SA-20071101-0.txt |
Description:
|
SEC Consult Security Advisory 20071101-0 - The SonicWALL SSL-VPN solution comes with various ActiveX Controls which allows users to access the VPN with Internet Explorer. These controls contain various vulnerabilities. Some details provided. Vulnerable versions include SonicWALL SSL-VPN 1.3.0.3, WebCacheCleaner ActiveX Control 1.3.0.3, and NeLaunchCtrl ActiveX Control 2.1.0.49.
| | Author: | Bernhard Mueller | | Homepage: | http://www.sec-consult.com/ | | File Size: | 3467 | | Last Modified: | Nov 1 12:40:39 2007 |
| MD5 Checksum: | 4d8c8385c3e51e858ef006e53fd8e09c |
|
| /// File Name: |
sciuris-inject.txt |
Description:
|
Sciurus Hosting Panel remote code injection exploit.
| | Author: | Liz0ziM | | Homepage: | http://www.expw0rm.com/ | | File Size: | 2984 | | Last Modified: | Nov 26 16:33:18 2007 |
| MD5 Checksum: | e451e42019ef88a0c604bb61ffb032a0 |
|
| /// File Name: |
scribe-exec.txt |
Description:
|
Scribe versions 0.2 and below suffer from a remote PHP code execution vulnerability.
| | Author: | KiNgOfThEwOrLd | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 1950 | | Last Modified: | Nov 2 11:50:21 2007 |
| MD5 Checksum: | 69a127ea3eb22cfc0652d108b8c472fc |
|
| /// File Name: |
scwiki-rfi.txt |
Description:
|
scWiki version 1.0 Beta 2 suffers from a remote file inclusion vulnerability in common.php.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 191 | | Last Modified: | Nov 5 10:50:52 2007 |
| MD5 Checksum: | 13201286452008974a3756b532c024ce |
|
| /// File Name: |
seditio-sql.txt |
Description:
|
Seditio CMS versions 1.21 and below remote SQL injection exploit.
| | Author: | InATeam | | Homepage: | http://inattack.ru/ | | File Size: | 3497 | | Last Modified: | Nov 30 00:53:26 2007 |
| MD5 Checksum: | 468a077a42d53b68260892de589cbfce |
|
| /// File Name: |
sentineldetails-traverse.txt |
Description:
|
SafeNet Inc.'s Sentinel Protection Server and Sentinel Keys Server products include web servers which are vulnerable to directory traversal attacks. Full details provided.
| | Author: | Elliot Kendall | | File Size: | 3204 | | Last Modified: | Nov 26 22:53:21 2007 |
| MD5 Checksum: | d6ebdd5f7c5aa730f18575ceabf0543a |
|
| /// File Name: |
setlocate-local.txt |
Description:
|
IBM AIX versions 5.3.0 and below setlocale() local privilege escalation exploit.
| | Author: | Thomas Pollet | | File Size: | 825 | | Related CVE(s): | CVE-2006-4254 | | Last Modified: | Nov 7 02:57:23 2007 |
| MD5 Checksum: | 819234988ee6683a72080dff03d470a4 |
|
| /// File Name: |
sfshoutbox-inject.txt |
Description:
|
SF-Shoutbox versions 1.2.1 through 1.4 suffer from HTML and Javascript injection vulnerabilities.
| | Author: | SkyOut | | Homepage: | http://www.core-security.net/ | | File Size: | 2574 | | Last Modified: | Nov 5 11:09:45 2007 |
| MD5 Checksum: | bfcacb79c443e24b5c9e65d1effd05ce |
|
| /// File Name: |
simplegallery-xss.txt |
Description:
|
SimpleGallery version 0.1.3 suffers from a cross site scripting vulnerability in index.php.
| | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 693 | | Last Modified: | Nov 26 22:43:39 2007 |
| MD5 Checksum: | 0e3a07b0c6578f33dccdf974d8410922 |
|
| /// File Name: |
sip-fraud.txt |
Description:
|
SIP digest access authentication relay-attack for toll fraud.
| | Author: | Humberto J. Abdelnur, Olivier Festor, Radu State | | File Size: | 5587 | | Last Modified: | Nov 5 11:42:04 2007 |
| MD5 Checksum: | 8b5249210e615f1ad25a2d39a3609f02 |
|
| /// File Name: |
skalinks-csrf.txt |
Description:
|
Skalinks versions 1.5 and below cross site request forgery add administrator exploit.
| | Author: | Vincy | | File Size: | 2032 | | Last Modified: | Nov 5 11:10:47 2007 |
| MD5 Checksum: | 117885697b5f9ee74219b1fb3cbc6b85 |
|
| /// File Name: |
skyportal-multi.txt |
Description:
|
SkyPortal version RC6 suffers from multiple SQL injection vulnerabilities along with an unauthorized access to messages flaw.
| | Homepage: | http://www.bugreport.ir/ | | File Size: | 2739 | | Last Modified: | Nov 26 17:37:48 2007 |
| MD5 Checksum: | b916ffb36caad8a8ac0a3170e14a8987 |
|
| /// File Name: |
smf-upload.txt |
Description:
|
SMF Forum suffers from a remote PHP shell upload vulnerability.
| | Author: | mas_bloon | | File Size: | 1001 | | Last Modified: | Nov 26 16:09:40 2007 |
| MD5 Checksum: | de9795ae118e266d90d4f666a34c8f30 |
|
| /// File Name: |
softbix-sql.txt |
Description:
|
Softbiz Freelancers script version 1 suffers from cross site scripting and SQL injection vulnerabilities.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 4368 | | Last Modified: | Nov 26 22:09:27 2007 |
| MD5 Checksum: | 56584157a1cead9bb23e12823ccabd56 |
|
| /// File Name: |
softbiz1-sql.txt |
Description:
|
Softbiz Auctions suffers from a remote SQL injection vulnerability in product_desc.php.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1899 | | Last Modified: | Nov 12 19:45:53 2007 |
| MD5 Checksum: | cb1f6585f8372b55721a7784e561a0f9 |
|
| /// File Name: |
softbiz2-sql.txt |
Description:
|
Softbiz Ad Management Plus Script versions 1 suffers from a remote SQL injection vulnerability.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 2640 | | Last Modified: | Nov 12 19:46:34 2007 |
| MD5 Checksum: | b3b04d3277014787ed7ea29d329fffd8 |
|
| /// File Name: |
softbiz3-sql.txt |
Description:
|
Softbiz Banner Exchange Network Script version 1.0 suffers from a remote SQL injection vulnerability.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 2616 | | Last Modified: | Nov 12 19:47:20 2007 |
| MD5 Checksum: | a935ede6782ed189da979e4fe24b407e |
|
| /// File Name: |
softbiz4-sql.txt |
Description:
|
Softbiz Links Directory Script suffers from a remote SQL injection vulnerability.
| | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1930 | | Last Modified: | Nov 12 19:48:01 2007 |
| MD5 Checksum: | bc9b1760bfc2fb84755162832cef02ee |
|
| /// File Name: |
sonicwall-remote.txt |
Description:
|
SonicWall SSL-VPN NeLaunchCtrl ActiveX control exploit that launches calc.exe.
| | Author: | krafty | | Related Exploit: | SA-20071101-0.txt | | File Size: | 1255 | | Last Modified: | Nov 2 12:11:16 2007 |
| MD5 Checksum: | 81fbbbe94e63d8446b9998e5b747faed |
|
| /// File Name: |
syndeocms-rfi.txt |
Description:
|
syndeoCMS version 2.5.01 suffers from a remote file inclusion vulnerability.
| | Author: | mdx | | Homepage: | http://www.by-mdx.com/ | | File Size: | 1135 | | Last Modified: | Nov 5 10:55:10 2007 |
| MD5 Checksum: | bfc94ed9a38be2421c1cb8e59cd95d62 |
|
| /// File Name: |
syner-lfi.txt |
Description:
|
Synergiser versions 1.2 RC1 and below suffer from local file inclusion and full path disclosure vulnerabilities.
| | Author: | KiNgOfThEwOrLd | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 2611 | | Last Modified: | Nov 1 12:37:44 2007 |
| MD5 Checksum: | 5de83e685a1ff681bc49a850ddee626d |
|
| /// File Name: |
talkback-rfi.txt |
Description:
|
TalkBack version 2.2.7 suffers from a remote file inclusion vulnerability.
| | Author: | NoGe | | File Size: | 1568 | | Last Modified: | Nov 26 18:02:58 2007 |
| MD5 Checksum: | cc7d590f8622e596e03485bd1abd7962 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
