Section: .. / 0803-exploits /
| /// File Name: |
easyclanpage-sql.txt |
Description:
|
Easy-Clanpage version 2.2 suffers from a remote SQL injection vulnerability.
| | Author: | n3w7u | | File Size: | 638 | | Last Modified: | Mar 19 18:54:31 2008 |
| MD5 Checksum: | b70fc78857eb68c5108a902b249a73ad |
|
| /// File Name: |
ZyWALL.pdf |
Description:
|
The ZyXEL ZyWALL Quagga/Zebra appliance suffers from a remote root vulnerability due to a hardcoded password.
| | Author: | Pranav Joshi | | File Size: | 176233 | | Related CVE(s): | CVE-2008-1160 | | Last Modified: | Mar 19 18:50:32 2008 |
| MD5 Checksum: | f68fd54572eda9a59b61287df04d39ba |
|
| /// File Name: |
joomlaintellect-lfi.txt |
Description:
|
The Joomla com_intellect component suffers from a local file inclusion vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 403 | | Last Modified: | Mar 19 18:46:51 2008 |
| MD5 Checksum: | 32e19eb07e1de13121bad63c56f7bf73 |
|
| /// File Name: |
phpbb2023-hijack.txt |
Description:
|
phpBB version 2.0.23 suffers from a session hijacking vulnerability.
| | Author: | NBBN | | File Size: | 844 | | Last Modified: | Mar 19 18:45:29 2008 |
| MD5 Checksum: | ccdce5f969ca190b6adf82379a1084cc |
|
| /// File Name: |
kap-sql.txt |
Description:
|
KAPhotoservice remote SQL injection exploit that makes use of album.asp.
| | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 3291 | | Last Modified: | Mar 18 22:33:11 2008 |
| MD5 Checksum: | 2cbbd32001ac408b682f66da247e5226 |
|
| /// File Name: |
joomlaacajoom-sql.txt |
Description:
|
The Joomla Acajoom component version 1.1.5 suffers from a remote SQL injection vulnerability.
| | Author: | fataku | | File Size: | 1464 | | Last Modified: | Mar 18 22:31:34 2008 |
| MD5 Checksum: | cfeb47cda93d17917a89c8b2109f6375 |
|
| /// File Name: |
CORE-2008-0123.txt |
Description:
|
Core Security Technologies Advisory - MacOS X Server 10.5, also known as Leopard Server, features a Wiki Server, which is a multiuser web application written in Python. The Wiki Server is vulnerable to a path traversal attack, which can be exploited by non-privileged system users via a forged file upload to write arbitrary files on locations in the server filesystem, restricted only by privileges of the Wiki Server application.
| | Author: | Sebastian Muniz | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 12296 | | Related CVE(s): | CVE-2008-1000 | | Last Modified: | Mar 18 22:29:50 2008 |
| MD5 Checksum: | a8297f60a8f4c62384f507aa8201b0eb |
|
| /// File Name: |
cpanel-folder.txt |
Description:
|
cPanel version 11.x suffers from a vulnerability that allows the viewing of directories and folders.
| | Author: | Linux_Drox | | Homepage: | http://www.LeZr.com | | File Size: | 1387 | | Last Modified: | Mar 18 22:21:10 2008 |
| MD5 Checksum: | b1bcf0a4cbeb4da6ac9f6f7760942a61 |
|
| /// File Name: |
hfu-delete.txt |
Description:
|
HTTP File Upload ActiveX related file deletion exploit that makes use of UUploaderSvrD.dll.
| | Author: | t0pp8uzz | | File Size: | 1578 | | Last Modified: | Mar 18 21:49:20 2008 |
| MD5 Checksum: | dab25c4db2d88a1506b7a04178cf0a3d |
|
| /// File Name: |
registrypro-insecure.txt |
Description:
|
Registry Pro remote insecure method exploit that makes use of epRegPro.ocx.
| | Author: | t0pp8uzz | | File Size: | 2403 | | Last Modified: | Mar 18 21:47:57 2008 |
| MD5 Checksum: | c543a5ebea7f1582ab2d767e57de8152 |
|
| /// File Name: |
eforum-xss.txt |
Description:
|
eForum version 0.4 suffers from a cross site scripting vulnerability.
| | Author: | omnipresent | | File Size: | 1650 | | Last Modified: | Mar 18 21:45:33 2008 |
| MD5 Checksum: | 4fbd9f8fbb08e3378f411a712bd7cf13 |
|
| /// File Name: |
phpstats0.1-xss.txt |
Description:
|
PHP-Stats version 0.1_alpha appears to suffer from a cross site scripting vulnerability in phpstats.php.
| | Author: | Hanno Boeck | | Homepage: | http://www.hboeck.de/ | | File Size: | 1554 | | Related CVE(s): | CVE-2008-0125 | | Last Modified: | Mar 17 20:03:12 2008 |
| MD5 Checksum: | 3f94115fa562a3a9aac1464212dde058 |
|
| /// File Name: |
homeftp-dos.txt |
Description:
|
Home FTP server denial of service exploit.
| | Author: | 0in | | Homepage: | http://dark-coders.4rh.eu/ | | File Size: | 1114 | | Last Modified: | Mar 17 19:56:25 2008 |
| MD5 Checksum: | a5705153fbfa952c06728348b4cb60a1 |
|
| /// File Name: |
mgsoft-multi.txt |
Description:
|
MG-Soft Net Inspector versions 6.5.0.828 and below suffer from format string, directory traversal, and denial of service vulnerabilities. Full details provided.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 3509 | | Last Modified: | Mar 17 15:45:42 2008 |
| MD5 Checksum: | 16270853481fcdec750062d12fa7b53a |
|
| /// File Name: |
rsa-xss.txt |
Description:
|
RSA WebID version 5.3 suffers from a cross site scripting vulnerability. Full details provided.
| | Author: | Quentin Berdugo | | File Size: | 3030 | | Last Modified: | Mar 17 15:43:19 2008 |
| MD5 Checksum: | 3e62edfdc6a92506f0c95fe86bfe7a03 |
|
| /// File Name: |
snewscmsrus-xss.txt |
Description:
|
SnewsCMS Rus version 2.3 suffers from a cross site scripting vulnerability.
| | Homepage: | http://www.medprostuda.ru/ | | File Size: | 812 | | Last Modified: | Mar 17 15:38:11 2008 |
| MD5 Checksum: | 3b919694791c341b17043381cd5848f9 |
|
| /// File Name: |
safariphone-dos.txt |
Description:
|
Apple Safari remote denial of service exploit for the iPhone / OSX / Windows.
| | Author: | Georgi Guninski | | File Size: | 884 | | Last Modified: | Mar 17 14:43:43 2008 |
| MD5 Checksum: | f64f318f0d76219661e097309073221b |
|
| /// File Name: |
xoopsdict-sql.txt |
Description:
|
The XOOPS Dictionary module versions 0.94 and below suffer from a remote SQL injection vulnerability.
| | Author: | S@BUN | | Homepage: | http://www.hackturkiye.com/ | | File Size: | 971 | | Last Modified: | Mar 17 14:35:00 2008 |
| MD5 Checksum: | 73b92d298840bbc58e09a48c6ac5b902 |
|
| /// File Name: |
joomlacategory-sql.txt |
Description:
|
The Joomla com_guide "category" component suffers from a remote SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 438 | | Last Modified: | Mar 17 14:33:58 2008 |
| MD5 Checksum: | 6c48bc87f6962e79a9175186fd768006 |
|
| /// File Name: |
phpauction-rfi.txt |
Description:
|
PHPauction GPL Enhanced version 2.51 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 1158 | | Last Modified: | Mar 17 14:33:04 2008 |
| MD5 Checksum: | 259df00b7c1b8d18b0458aa1465b50bf |
|
| /// File Name: |
exerocms-lfi.txt |
Description:
|
Exero CMS version 1.0.1 suffers from multiple local file inclusion vulnerabilities.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 969 | | Last Modified: | Mar 17 14:28:09 2008 |
| MD5 Checksum: | a6d8e1cd6bc0fa177d6f015444c5caa3 |
|
| /// File Name: |
phpbp-sql.txt |
Description:
|
phpBP versions RC3 (2.204) FIX 4 and below suffer from a remote SQL injection vulnerability.
| | Author: | irk4z | | File Size: | 1962 | | Last Modified: | Mar 17 14:27:19 2008 |
| MD5 Checksum: | 68969e708d5027ee24acccd6e69899d5 |
|
| /// File Name: |
timesheets-multi.txt |
Description:
|
Multiple Timesheets versions 5.0 and below suffer from directory traversal, cross site scripting, and cookie manipulation vulnerabilities.
| | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 1667 | | Last Modified: | Mar 17 14:26:25 2008 |
| MD5 Checksum: | af013e802dad164ec455a96f329afe79 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
