Section: .. / 0805-exploits /
| /// File Name: |
clanlite-sqlxss.txt |
Description:
|
ClanLite version 2.x suffers from SQL injection and cross site scripting vulnerabilities.
| | Author: | ZoRLu | | Homepage: | http://www.yildirimordulari.org/ | | File Size: | 2434 | | Last Modified: | May 12 10:36:33 2008 |
| MD5 Checksum: | efca3ad0c4a676108c64cfbd5b33cab1 |
|
| /// File Name: |
classsystem-multi.txt |
Description:
|
Class System version 2.3 suffers from SQL injection and shell upload vulnerabilities.
| | Author: | unohope | | Homepage: | http://www.chroot.org/ | | File Size: | 2160 | | Last Modified: | May 27 18:18:49 2008 |
| MD5 Checksum: | 765127c849d8524a4c73d350424af421 |
|
| /// File Name: |
cmsfaethon-rfixss.txt |
Description:
|
CMS Faethon version 2.2 Ultimate suffers from remote file inclusion and cross site scripting vulnerabilities.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 1024 | | Last Modified: | May 9 13:29:15 2008 |
| MD5 Checksum: | e73c1fd433238869a0a88fd59698841b |
|
| /// File Name: |
cmsimple-lfiup.txt |
Description:
|
CMSimple version 3.1 local file inclusion and arbitrary file upload exploit.
| | Author: | irk4z | | File Size: | 761 | | Last Modified: | May 31 15:15:07 2008 |
| MD5 Checksum: | bff5f52c65330c8e6a004b30fef457f1 |
|
| /// File Name: |
cmsmadesimple-upload.txt |
Description:
|
CMS Made Simple versions 1.2.4 and below arbitrary file upload exploit.
| | Author: | EgiX | | File Size: | 5466 | | Last Modified: | May 12 18:41:34 2008 |
| MD5 Checksum: | f7c929656a32839f6177fcc805b36cb4 |
|
| /// File Name: |
cmsmaxsite-sql.txt |
Description:
|
CMS MAXSITE versions 1.10 and below suffer from a remote SQL injection vulnerability.
| | Author: | Tesz | | Homepage: | http://www.thaishadow.com/ | | File Size: | 885 | | Last Modified: | May 27 18:14:59 2008 |
| MD5 Checksum: | 6519379af82e6f4df36825e8f783aa18 |
|
| /// File Name: |
cmsscratch-traverse.txt |
Description:
|
CMS from Scratch versions 1.1.3 and below suffer from a directory traversal vulnerability in image.php.
| | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 1056 | | Last Modified: | May 30 14:36:43 2008 |
| MD5 Checksum: | 1e43ee740d022518e2dd23dad1963f5f |
|
| /// File Name: |
cmsscratch-upload.txt |
Description:
|
CMS from Scratch versions 1.1.3 and below remote shell upload exploit.
| | Author: | EgiX | | File Size: | 5900 | | Last Modified: | May 29 19:16:42 2008 |
| MD5 Checksum: | 55015dace42e2f4b4858f77a22e978ca |
|
| /// File Name: |
cmswebman-sql.txt |
Description:
|
CMS WebManager-Pro suffers from multiple remote SQL injection vulnerabilities.
| | Author: | dun | | File Size: | 1101 | | Last Modified: | May 19 18:12:44 2008 |
| MD5 Checksum: | b1eadefaec243f87fea3c93c860bf473 |
|
| /// File Name: |
cod4statz.zip |
Description:
|
Proof of concept denial of service exploit for Call of Duty 4: Modern Warfare versions 1.5 and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | cod4statz.txt | | File Size: | 19237 | | Last Modified: | May 2 16:40:44 2008 |
| MD5 Checksum: | 678a8f595883e5f2723823ab78d8d38f |
|
| /// File Name: |
comicshout-sql.txt |
Description:
|
ComicShout version 2.5 suffers from a remote SQL injection vulnerability in index.php.
| | Author: | Niiub | | Homepage: | http://www.bl4ck-b0x-info/ | | File Size: | 606 | | Last Modified: | May 20 16:40:00 2008 |
| MD5 Checksum: | 766e757acc678c67e9519eca6c7fce43 |
|
| /// File Name: |
CORE-2008-0126.txt |
Description:
|
Core Security Technologies Advisory - Three vulnerabilities discovered in the iCal application may allow un-authenticated attackers to execute arbitrary code on vulnerable systems with (and potentially without) the assistance from the end user of the application and may cause a denial of service condition. iCal version 3.0.1 on MacOS X 10.5.1 (Leopard) is affected.
| | Author: | Rodrigo Carvalho | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 21492 | | Related CVE(s): | CVE-2008-1035, CVE-2008-2006, CVE-2008-2007 | | Last Modified: | May 22 02:09:15 2008 |
| MD5 Checksum: | 11a13bc43611498dc555126d0f0716ea |
|
| /// File Name: |
CORE-2008-0326.txt |
Description:
|
Core Security Technologies Advisory - NASA's Common Data Format library suffers from a buffer overflow vulnerability. CDF versions 3.2 and earlier are vulnerable.
| | Author: | Alfredo Ortega | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 12430 | | Related CVE(s): | CVE-2008-2080 | | Last Modified: | May 5 14:24:07 2008 |
| MD5 Checksum: | e7ba30ef761ce1c7ccb9bff13ce3e94f |
|
| /// File Name: |
cpanel-root.txt |
Description:
|
It appears that there is a remote compromise vulnerability in cPanel in relation to reseller accounts.
| | Author: | Ali Jasbi | | File Size: | 1753 | | Last Modified: | May 19 21:18:02 2008 |
| MD5 Checksum: | 780309ce3bbe1412e71ac6907a34cec8 |
|
| /// File Name: |
cplinks-sqlxss.txt |
Description:
|
cpLinks version 1.03 suffers from login bypass, SQL injection, and cross site scripting vulnerabilities.
| | Author: | InjEctOrS | | File Size: | 2517 | | Last Modified: | May 5 13:31:02 2008 |
| MD5 Checksum: | b9f6b59ea6851cbcfb3b2da5d14b59f3 |
|
| /// File Name: |
creative-overflow.txt |
Description:
|
Creative Software AutoUpdate engine ActiveX related stack overflow exploit.
| | Author: | BitKrush | | File Size: | 4337 | | Last Modified: | May 28 20:28:18 2008 |
| MD5 Checksum: | 3db2fe5a96ef3bea3a1f1314dd3f0908 |
|
| /// File Name: |
cyberfolio-rfi.txt |
Description:
|
Cyberfolio version 7.2 suffers from a remote file inclusion vulnerability.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 1055 | | Last Modified: | May 9 13:45:41 2008 |
| MD5 Checksum: | b1f29ba626cf616a3523dd8a19714c8f |
|
| /// File Name: |
debian-sploit.txt |
Description:
|
A nice walk through discussing step by step how to brute force ssh logins using the recent Debian OpenSSL random number generator vulnerability.
| | Author: | Markus Mueller | | File Size: | 1649 | | Last Modified: | May 15 04:21:12 2008 |
| MD5 Checksum: | bc660b433dce3c75055028112f9966d3 |
|
| /// File Name: |
debianssh-ruby.txt |
Description:
|
Debian SSH exploit that uses the OpenSSL predictable PRNG vulnerability. Written in Ruby.
| | Author: | L4teral | | File Size: | 1626 | | Last Modified: | May 19 14:46:31 2008 |
| MD5 Checksum: | 1497bcaede33ed1554b4a28c5fe64a18 |
|
| /// File Name: |
deluxebb12-multi.txt |
Description:
|
DeluxeBB versions 1.2 and below exploit that demonstrates blind SQL injection, PHP injection, and more.
| | Author: | EgiX | | File Size: | 7840 | | Last Modified: | May 6 16:11:53 2008 |
| MD5 Checksum: | d4ebf690b0c303e80b85143a1d5028e0 |
|
| /// File Name: |
DSECRG-08-020-1.txt |
Description:
|
Alcatel OmniPCX Office versions since 210/061.1 suffers from a remote command execution vulnerability.
| | Author: | Digital Security Research Group | | Homepage: | http://www.dsec.ru/ | | File Size: | 2882 | | Last Modified: | May 22 01:10:25 2008 |
| MD5 Checksum: | 56440552779f9dd9219d64ced52c0095 |
|
| /// File Name: |
DSECRG-08-023.txt |
Description:
|
The SAP Web Application Server version 7.0 suffers from a cross site scripting vulnerability.
| | Author: | Digital Security Research Group | | Homepage: | http://www.dsec.ru/ | | File Size: | 1803 | | Last Modified: | May 22 01:05:27 2008 |
| MD5 Checksum: | 3b39605faa6f42c95ee6aa32c90714d2 |
|
| /// File Name: |
DSECRG-08-024.txt |
Description:
|
Quate CMS version 0.3.4 suffers from remote file inclusion, local file inclusion, directory traversal, and multiple cross site scripting vulnerabilities. Everything about this application screams run away.
| | Author: | Digital Security Research Group | | Homepage: | http://www.dsec.ru/ | | File Size: | 4323 | | Last Modified: | May 23 18:51:04 2008 |
| MD5 Checksum: | ee132218181be1d9c36e130c92c96989 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
