Section: .. / 0906-exploits /
| /// File Name: |
messageslibrary-admin.txt |
Description:
|
Messages Library version 2.0 suffers from an arbitrary add administrator vulnerability.
| | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 830 | | Last Modified: | Jun 30 17:44:01 2009 |
| MD5 Checksum: | 6770d8af781843e1c4fd2ab894008789 |
|
| /// File Name: |
messageslibrary-sql.txt |
Description:
|
Messages Library version 2.0 suffers from a remote SQL injection vulnerability in cat.php.
| | Author: | Black Dream | | Homepage: | http://www.sec-r1z.com/ | | File Size: | 3645 | | Last Modified: | Jun 29 11:24:11 2009 |
| MD5 Checksum: | e363412f0f68e544be8c028f4ced60d9 |
|
| /// File Name: |
midas-insecure.txt |
Description:
|
MIDAS version 1.43 suffers from an insecure cookie handling vulnerability that allows for authentication bypass.
| | Author: | HxH | | File Size: | 806 | | Last Modified: | Jun 22 22:04:13 2009 |
| MD5 Checksum: | 39aa50dca16a7672dccb662e22e9e7b6 |
|
| /// File Name: |
modsecurity-bypass.txt |
Description:
|
ModSecurity versions 2.5.9 and below using ModSecurity Core Rules versions 2.5-1.6.1 and below suffer from a HPP filter bypass vulnerability.
| | Author: | Lavakumar Kuppan | | File Size: | 4777 | | Last Modified: | Jun 11 18:16:04 2009 |
| MD5 Checksum: | b5a27ad15579c0a3d205f693d558d173 |
|
| /// File Name: |
moviephpscript-exec.txt |
Description:
|
Movie PHP Script version 2.0 suffers from a code execution vulnerability in init.php.
| | Author: | SirGod | | Homepage: | http://www.insecurity.ro/ | | File Size: | 1053 | | Last Modified: | Jun 4 18:40:29 2009 |
| MD5 Checksum: | 301372a80daaa35632e9626069d83c09 |
|
| /// File Name: |
mrcgiguyft-sql.txt |
Description:
|
MRCGIGUY FreeTicket suffers from insecure cookie and remote SQL injection vulnerabilities.
| | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 931 | | Last Modified: | Jun 10 19:34:10 2009 |
| MD5 Checksum: | 69cbe71e401b318c072987c2a7a3c432 |
|
| /// File Name: |
mrcgiguyhl-sql.txt |
Description:
|
MRCGIGUY Hot Links suffers from a remote SQL injection vulnerability in report.php.
| | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 558 | | Last Modified: | Jun 10 16:33:01 2009 |
| MD5 Checksum: | a9ce6198c6bd0b5b80749dd5e67abf5a |
|
| /// File Name: |
mrcgiguytts-sql.txt |
Description:
|
MRCGIGUY The Ticket System version 2.0 suffers from remote SQL injection and direct access vulnerabilities.
| | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 924 | | Last Modified: | Jun 10 16:31:28 2009 |
| MD5 Checksum: | 04622917c27bd8fa4beba2beaaa529f5 |
|
| /// File Name: |
mundimail-lfirfi.txt |
Description:
|
Mundi Mail version 0.8.2 suffers from local and remote file inclusion vulnerabilities.
| | Author: | Br0ly | | File Size: | 1271 | | Last Modified: | Jun 15 15:23:27 2009 |
| MD5 Checksum: | 7e7960e7fd844991d9be421366aeb780 |
|
| /// File Name: |
mybb146-exec.txt |
Description:
|
MyBB versions 1.4.6 and below remote code execution exploit.
| | Author: | The:Paradox | | File Size: | 12658 | | Last Modified: | Jun 22 22:33:46 2009 |
| MD5 Checksum: | 9187d8e4e3b017637c18243a4c752244 |
|
| /// File Name: |
mycarsautomotive-sql.txt |
Description:
|
MyCars Automotive suffers from a remote SQL injection vulnerability that allows for authentication bypass.
| | Author: | Snakespc | | Homepage: | http://www.snakespc.com/sc | | File Size: | 1001 | | Last Modified: | Jun 8 12:25:35 2009 |
| MD5 Checksum: | 921c719251b4cc43ce425488c07a2098 |
|
| /// File Name: |
myegy-sql.txt |
Description:
|
MyEgy Script suffers from a remote SQL injection vulnerability.
| | Author: | Karar alShaMi,Sheko | | File Size: | 1328 | | Last Modified: | Jun 30 17:38:26 2009 |
| MD5 Checksum: | cb05ef1450971c849c99db2f30136c31 |
|
| /// File Name: |
myfusion-lfi.txt |
Description:
|
MyFusion version 6b suffers from a local file inclusion vulnerability.
| | Author: | CraCkEr | | File Size: | 4765 | | Last Modified: | Jun 25 19:52:48 2009 |
| MD5 Checksum: | bf046abf44c509dcd9d8da4b6d5e7dae |
|
| /// File Name: |
myminibill-sql.txt |
Description:
|
My Mini Bill suffers from a remote SQL injection vulnerability in my_orders.php.
| | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 964 | | Last Modified: | Jun 4 18:13:32 2009 |
| MD5 Checksum: | 40d93ba50b9fde89eb0ed791a82ef70d |
|
| /// File Name: |
netbsd-shellcode.txt |
Description:
|
NetBSD/x86 kill all processes shellcode.
| | Author: | Teo Manojlovic | | File Size: | 725 | | Last Modified: | Jun 18 23:42:37 2009 |
| MD5 Checksum: | dba7677dc95ced935387a870e0a8fee9 |
|
| /// File Name: |
netgear-bypass.txt |
Description:
|
The Netgear DG632 router suffers from a remote authentication bypass vulnerability.
| | Author: | Tom Neaves | | Homepage: | http://www.tomneaves.co.uk/ | | File Size: | 3517 | | Last Modified: | Jun 15 16:56:36 2009 |
| MD5 Checksum: | 4e97805ae8520e6ace344301fb1cde47 |
|
| /// File Name: |
NETRAGARD-20090622.txt |
Description:
|
Netragard, L.L.C Advisory - The libxml library is prone to a heap-based buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary within the context of an application using the affected library. Failed exploit attempts will result in a denial-of-service vulnerability. Safari uses the vulnerable libxml library and can be attacked via the feed:// input vector. Versions below 3.2.3 are affected.
| | Author: | Adriel T. Desautels | | Homepage: | http://www.netragard.com/ | | File Size: | 7919 | | Related CVE(s): | CVE-2008-3529 | | Last Modified: | Jun 22 22:40:03 2009 |
| MD5 Checksum: | 8793dbcfcf2af7d27c3ceba8df209a16 |
|
| /// File Name: |
Neversolved.pl.txt |
Description:
|
Newsolved version 1.1.6 login grabbing remote SQL injection exploit.
| | Author: | lama | | Homepage: | http://jmp-esp.net/ | | File Size: | 6230 | | Last Modified: | Jun 29 19:31:09 2009 |
| MD5 Checksum: | 8dda6e9bd8fa6514afe5d05508e64403 |
|
| /// File Name: |
NGENUITY-2009-007.txt |
Description:
|
osTicket version 1.6 RC4 suffers from a blind SQL injection vulnerability.
| | Author: | Adam Baldwin | | File Size: | 1673 | | Last Modified: | Jun 29 13:22:35 2009 |
| MD5 Checksum: | 4e96f69cc29dff832644ea6ba4a0b370 |
|
| /// File Name: |
OAmon_Exp.zip |
Description:
|
Online Armor Personal Firewall versions below 3.5.0.12 local privilege escalation exploit that leverages OAmon.sys.
| | Author: | Alex from NT Internals | | Homepage: | http://www.ntinternals.org/ | | File Size: | 6617 | | Last Modified: | Jun 4 18:03:48 2009 |
| MD5 Checksum: | 9ed2e8f140c5e037aec8d66e57fcd720 |
|
| /// File Name: |
ocsinventoryng-sql.txt |
Description:
|
OCS Inventory NG version 1.02 suffers from multiple remote SQL injection vulnerabilities.
| | Author: | Nico Leidecker | | File Size: | 1305 | | Last Modified: | Jun 2 23:13:57 2009 |
| MD5 Checksum: | 2ab8e31eaa4c2254beef988d5e6deb50 |
|
| /// File Name: |
ocsinvestoryng-traversal.txt |
Description:
|
OCS Inventory NG version 1.02 suffers from a remote file disclosure vulnerability.
| | Author: | Nico Leidecker | | File Size: | 1237 | | Last Modified: | Jun 4 18:35:31 2009 |
| MD5 Checksum: | 3b903bb59dff8355fdb94a9e43611401 |
|
| /// File Name: |
onlinega-sql.txt |
Description:
|
Online Grades and Attendance version 3.2.6 credential changing exploit.
| | Author: | YEnH4ckEr | | File Size: | 9446 | | Last Modified: | Jun 2 23:28:52 2009 |
| MD5 Checksum: | a3c13f2a426d36da09e33a90f82d2929 |
|
| /// File Name: |
onlinega326-blindsql.txt |
Description:
|
Online Grades and Attendance version 3.2.6 blind SQL injection exploit.
| | Author: | YEnH4ckEr | | File Size: | 11678 | | Last Modified: | Jun 2 23:33:22 2009 |
| MD5 Checksum: | f5ce917d38a47f9181329e3eba47624d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
