.:[ packet storm ]:.
                               
preserving full disclosure
preserving full disclosure

 Section:  .. / Last 50 Exploit Files /

 ///  File Name:pieweb-rfi.txt
Description:
Pie Web M{a,e}sher version 0.5.3 suffers from multiple remote file inclusion vulnerabilities.
Author:NoGe
File Size:3433
Last Modified:Nov 24 20:49:46 2008
MD5 Checksum:b362730df7f1e1b94b627a08354c04f4

 ///  File Name:quicksilverforums-rce.txt
Description:
Quicksilver Forums versions 1.4.2 and below suffer from local file inclusion and malicious avatar upload vulnerabilities.
Author:__GiReX__
Homepage:http://girex.altervista.org/
File Size:6561
Last Modified:Nov 24 20:43:21 2008
MD5 Checksum:3baff887d110edf27339831eabf146fc

 ///  File Name:webstudio-sql.txt
Description:
WebStudio CMS suffers from a blind SQL injection vulnerability in index.php.
Author:Charalambous Glafkos
Homepage:http://www.astalavista.com/
File Size:1489
Last Modified:Nov 24 20:39:24 2008
MD5 Checksum:6d6c406ae2f1aa0d4d3b29b9d051137b

 ///  File Name:siemens-dos.txt
Description:
The Siemens C450IP and C475IP devices suffer from a remote denial of service vulnerability.
Author:Martin Kluge
File Size:285
Last Modified:Nov 24 20:11:41 2008
MD5 Checksum:f1f871fb2e46d69c22d1cebb9a3a698d

 ///  File Name:nitrotech-rfisql.txt
Description:
Nitrotech version 0.0.3a suffers from remote file inclusion and SQL injection vulnerabilities.
Author:Osirys
File Size:1690
Last Modified:Nov 24 19:44:31 2008
MD5 Checksum:b8a98b26dd112f86e104e5f2e5690281

 ///  File Name:bandwebsite-sqlxss.txt
Description:
Bandwebsite version 1.5 suffers from SQL injection and cross site scripting vulnerabilities.
Author:ZoRLu
File Size:1254
Last Modified:Nov 24 19:42:40 2008
MD5 Checksum:f996e1ff1650d6af32bc4b6fe65d9819

 ///  File Name:ftpzik-xsslfi.txt
Description:
FTPzik suffers from cross site scripting and local file inclusion vulnerabilities.
Author:jiko
File Size:1402
Last Modified:Nov 24 19:41:48 2008
MD5 Checksum:78c4c54b66f9b7d0058b1b1231f577cd

 ///  File Name:tvp-crash.txt
Description:
Total Video Player remote heap overflow crash exploit that makes use of vcen.dll.
Author:Cn4phux
File Size:3912
Last Modified:Nov 24 19:34:20 2008
MD5 Checksum:3717269251defb461f6fe0743ce6a144

 ///  File Name:googlechrome-obfuscate.tgz
Description:
Google Chrome versions 0.2.149.30, 0.2.149.29, and 0.2.149.27 all suffer from a metacharacter URI obfuscation vulnerability. Proof of concept html included.
Author:Aditya K Sood
Homepage:http://www.secniche.org/
File Size:1687
Last Modified:Nov 24 14:32:27 2008
MD5 Checksum:f26473051cd14f19ff80806f58c603dd

 ///  File Name:w3camayaid-overflow.txt
Description:
The W3C Amaya web browser version 10.1 remote stack overflow exploit that relates to the id tag.
Author:r0ut3r
File Size:1561
Last Modified:Nov 24 14:29:11 2008
MD5 Checksum:77897fb9645b636d36a8b02e6af13e52

 ///  File Name:w3camayaurl-overflow.txt
Description:
The W3C Amaya web browser version 10.1 remote stack overflow exploit that relates to the URL bar.
Author:r0ut3r
File Size:1849
Last Modified:Nov 24 14:27:16 2008
MD5 Checksum:1eec223521ad030ba7b2df70ef8184c8

 ///  File Name:videoscript-unofficialshell.txt
Description:
VideoScript versions 3.0 through 4.1.5.55 unofficial shell injection exploit.
Author:G4N0K
File Size:87709
Last Modified:Nov 24 14:10:29 2008
MD5 Checksum:495c6bf1401fa706a308c8a068e82f93

 ///  File Name:videoscript-officialshell.txt
Description:
VideoScript versions 3.0 through 4.0.1.50 official shell injection exploit.
Author:G4N0K
File Size:87679
Last Modified:Nov 24 14:09:11 2008
MD5 Checksum:770dae6a8b6447d112dc65413ab59d61

 ///  File Name:gooplecms-upload.txt
Description:
Goople CMS version 1.7 suffers from a remote shell upload vulnerability.
Author:X0r
File Size:572
Last Modified:Nov 24 14:07:59 2008
MD5 Checksum:73f52ace9ad2e5c032f14727795b0be0

 ///  File Name:pgjobsite-sql.txt
Description:
PG Job Site suffers a blind SQL injection vulnerability.
Author:ZoRLu
File Size:1125
Last Modified:Nov 24 14:07:09 2008
MD5 Checksum:fda66e74ab6f9575645589c981c0a6fa

 ///  File Name:pgroommate-sql.txt
Description:
PG Roomate Finder Solution suffers a SQL injection vulnerability that allows for authentication bypass.
Author:ZoRLu
File Size:1100
Last Modified:Nov 24 14:06:14 2008
MD5 Checksum:04f960a4e6e3b271fa22df0353b7f4c0

 ///  File Name:pgrealestate-sql.txt
Description:
PG Real Estate suffers a SQL injection vulnerability that allows for authentication bypass.
Author:ZoRLu
File Size:1092
Last Modified:Nov 24 14:04:57 2008
MD5 Checksum:b900980ffcc6ee1c67c41b759c62626e

 ///  File Name:ms08-069.txt
Description:
Microsoft XML Core Services DTD cross-domain scripting proof of concept exploit that makes use of the vulnerability noted in MS08-069.
Author:Jerome Athias
File Size:360
Last Modified:Nov 24 13:59:47 2008
MD5 Checksum:8441d49b0a83622e2aaabb81dfad45c2

 ///  File Name:coms-xss.txt
Description:
COMS, or Contents and Object Management System, suffers from a cross site scripting vulnerability.
Author:Pouya Server
File Size:907
Last Modified:Nov 24 13:23:22 2008
MD5 Checksum:ecfa6892ab159ecc02bb956ef668bb0a

 ///  File Name:prozillahi-sql.txt
Description:
Prozilla Hosting Index suffers from a remote SQL injection vulnerability.
Author:Snakespc
Homepage:http://www.snakespc.com/sc
File Size:2889
Last Modified:Nov 24 13:21:29 2008
MD5 Checksum:a20129e7cd230281fc1d520c69f55ff6

 ///  File Name:netartblog-sql.txt
Description:
NetArtMedia Blog System suffers from a remote SQL injection vulnerability in image.php.
Author:Snakespc
Homepage:http://www.snakespc.com/sc
File Size:2907
Last Modified:Nov 24 13:20:44 2008
MD5 Checksum:b38290c6dc247c3b877dee36f22304c4

 ///  File Name:netartcars-sql.txt
Description:
NetArtMedia Cars Portal suffers from a remote SQL injection vulnerability in image.php.
Author:Snakespc
Homepage:http://www.snakespc.com/sc
File Size:2906
Last Modified:Nov 24 13:18:02 2008
MD5 Checksum:fd6bcbb00ba646fdcf10d6249e0922e0

 ///  File Name:showtime_bof.pl.txt
Description:
Nero ShowTime version 5.0.15.0 m3u playlist file remote buffer overflow denial of service proof of concept exploit.
Author:LiquidWorm
Homepage:http://www.zeroscience.org/
File Size:1375
Last Modified:Nov 24 13:10:37 2008
MD5 Checksum:9f4e3fd9b6454a2beda5e40befb8be5d

 ///  File Name:lovecms-password.txt
Description:
LoveCMS version 1.6.2 Final (Simple Forum 3.1d) change administrator password exploit.
Author:cOndemned
Homepage:http://condemned.r00t.la/
File Size:1336
Last Modified:Nov 24 12:55:06 2008
MD5 Checksum:994f13f317658a74f39a9197ee8a9414

 ///  File Name:ezringtone-disclose.txt
Description:
Ez Ringtone Manager suffers from local file inclusion and remote file disclosure vulnerabilities.
Author:b3hz4d
Homepage:http://www.deltahacking.net/
File Size:2389
Last Modified:Nov 24 12:53:11 2008
MD5 Checksum:4cc1017e9916aac3cf5dafff81e0e99e

 ///  File Name:getaauto-upload.txt
Description:
getaphpsite Auto Dealers suffers from a remote file upload vulnerability.
Author:ZoRLu
File Size:947
Last Modified:Nov 24 12:49:05 2008
MD5 Checksum:5b58710ba082c14e2ee3aee64679cc6a

 ///  File Name:getarealestate-upload.txt
Description:
getaphpsite Real Estate suffers from a remote file upload vulnerability.
Author:ZoRLu
File Size:941
Last Modified:Nov 24 12:48:01 2008
MD5 Checksum:a55b966288e374e8d20bde6405fae6f0

 ///  File Name:cambridge-sql.txt
Description:
VisitCambridge.org suffers from a remote SQL injection vulnerability.
Author:Rohit Bansal
File Size:456
Last Modified:Nov 21 20:05:30 2008
MD5 Checksum:fe7381569ee7882cae4563d0d345edba

 ///  File Name:verlihub-exec.txt
Description:
Verlihub versions 0.9.8d-RC2 and below suffer from a remote command execution vulnerability due to a lack of input sanitization.
Author:v4lkyrius
File Size:4981
Last Modified:Nov 21 20:02:31 2008
MD5 Checksum:fe10bb0dda05e03644f8dfd006b8caab

 ///  File Name:joomlathyme-sql.txt
Description:
The Joomla Thyme component version 1.0 suffers from a remote SQL injection vulnerability.
Author:Ded MustD!e
Homepage:http://www.antichat.ru/
File Size:1394
Last Modified:Nov 21 16:16:09 2008
MD5 Checksum:71bf55c7600d4a2e9b55df029ae5b2cd

 ///  File Name:BitDefenderDOS.zip
Description:
Proof of concept malicious pdf file that causes a denial of service and infinite loop in BitDefender using the pdf.xmd module.
Author:ProTeuS
File Size:341
Last Modified:Nov 21 16:13:18 2008
MD5 Checksum:281dee247691fbcd2f34a063ce5d526a

 ///  File Name:kvirc-exec.txt
Description:
KVIrc version 3.4.2 Shiny URI handler remote code execution exploit.
Author:Nine:Situations:Group
Homepage:http://retrogod.altervista.org/
File Size:1675
Last Modified:Nov 21 10:45:42 2008
MD5 Checksum:9e7af6fa05ea76f0edbed3bb01f87685

 ///  File Name:vcalendar-disclose.txt
Description:
VCalendar suffers from a remote database disclosure vulnerability.
Author:Swan
File Size:1257
Last Modified:Nov 21 10:44:12 2008
MD5 Checksum:de3c3c63d554069f9c47cd5516878a85

 ///  File Name:toursmanager-blindsql.txt
Description:
ToursManager suffers from a blind SQL injection vulnerability in tourview.php.
Author:XaDoS
File Size:957
Last Modified:Nov 20 18:21:02 2008
MD5 Checksum:5e27a04f7e19f49abc57d2ee531d4dae

 ///  File Name:phprsgal-sql.txt
Description:
phpRS versions 2.6.x and 2.8.x suffer from a remote SQL injection vulnerability in gallery.php.
Author:d3v1l
File Size:1487
Last Modified:Nov 20 18:18:25 2008
MD5 Checksum:bd4ad4f70f69fe2928ed6db18879b1ab

 ///  File Name:natterchat-sql.txt
Description:
Natterchat versions 1.12 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass.
Author:Stack
Homepage:http://v4-team.com/
File Size:367
Last Modified:Nov 20 18:02:30 2008
MD5 Checksum:2701b6b703102dcf9d76e5d299bf1b5c

 ///  File Name:php526-bypass.txt
Description:
PHP version 5.2.6 suffers from an error_log related safe_mode bypass vulnerability.
Author:Maksymilian Arciemowicz
Homepage:http://securityreason.com/
File Size:2741
Last Modified:Nov 20 17:53:16 2008
MD5 Checksum:087c3ce557a1ecebeee0cf1aab63fb5d

 ///  File Name:phpfusion7001-sql.txt
Description:
PHP-Fusion version 7.00.1 remote SQL injection exploit that makes use of messages.php.
Author:irk4z
File Size:4155
Last Modified:Nov 20 17:48:52 2008
MD5 Checksum:d59e51b2dc5f5391687c97ac49e609f6

 ///  File Name:social-sql.txt
Description:
Social Engine versions 2.7 and below suffer from remote SQL injection and cookie manipulation vulnerabilities.
Author:David "Aesthetico" Vieira-Kurz
File Size:2181
Last Modified:Nov 20 17:46:55 2008
MD5 Checksum:758d1b4945924dfe4bb76542988dab31

 ///  File Name:vbulletin-xssxsrf.txt
Description:
The Visitor Messages add-on for vBulletin version 3.7.3 suffers from cross site scripting and cross site request forgery vulnerabilities. This is a worm exploit that takes advantage of these issues.
Author:Mx
File Size:2965
Last Modified:Nov 20 17:44:51 2008
MD5 Checksum:a4bd6a31749a23236f15aac1e67d2032

 ///  File Name:askpert-sql.txt
Description:
AskPert suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:TR-ShaRk
File Size:1127
Last Modified:Nov 20 17:42:34 2008
MD5 Checksum:12573dddae1f6c71d57f5d8527f8dcc1

 ///  File Name:backlinkspider-sql.txt
Description:
The BackLinkSpider Exchange Links script suffers from remote SQL injection vulnerabilities in links.asp and links.php.
Author:d3v1l
File Size:1838
Last Modified:Nov 20 15:18:10 2008
MD5 Checksum:4a61726e2c223e482fc8c834067d96b7

 ///  File Name:exodus-injection.txt
Description:
Exodus version 0.10 suffers from an URI handler arbitrary parameter injection vulnerability.
Author:Nine:Situations:Group
Homepage:http://retrogod.altervista.org/
File Size:1107
Last Modified:Nov 20 15:15:45 2008
MD5 Checksum:c0c091b687a3e2eccfb4d3201993ab31

 ///  File Name:wportfolio-upload.txt
Description:
wPortfolio versions 0.3 and below remote arbitrary file upload exploit.
Author:Osirys
File Size:1926
Last Modified:Nov 20 14:26:35 2008
MD5 Checksum:a6d0b79dc4160fd1a42267f9f46dbf37

 ///  File Name:boastmachine-sql.txt
Description:
BoastMachine version 3.1 suffers from a remote SQL injection vulnerability.
Author:IRCRASH
Homepage:http://ircrash.com/
File Size:1942
Last Modified:Nov 20 14:22:36 2008
MD5 Checksum:a68e3a773a51a05f93575744cf367a59

 ///  File Name:punportal-lfi.txt
Description:
PunPortal PunBB module version 0.1 local file inclusion exploit.
Author:StAkeR
File Size:2770
Last Modified:Nov 20 14:18:38 2008
MD5 Checksum:c74197b9cc2ffa66839c60e8759a6b6a

 ///  File Name:prejobboard-sql.txt
Description:
Pre Job Board suffers from a SQL injection vulnerability that allows for authentication bypass.
Author:R3d-D3v!L
Homepage:http://www.ahacker.net/
File Size:970
Last Modified:Nov 20 13:20:04 2008
MD5 Checksum:cce036725cb757bbdfeadad1f0e18b75

 ///  File Name:revsense-sql.txt
Description:
RevSense suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:d3b4g
File Size:830
Last Modified:Nov 19 18:45:36 2008
MD5 Checksum:6aa053d65dd314b32171368e6bf84ae6

 ///  File Name:maurycms-upload.txt
Description:
MauryCMS versions 0.53.2 and below remote shell upload exploit.
Author:StAkeR
File Size:2246
Last Modified:Nov 19 18:31:00 2008
MD5 Checksum:63cc458d0d8e69152b1c8c27b36a2bf7

 ///  File Name:linksautomation-sql.txt
Description:
LinksAutomation Script suffers from a remote SQL injection vulnerability.
Author:d3v1l
File Size:1679
Last Modified:Nov 19 18:29:13 2008
MD5 Checksum:0ff9ea758f37cbf93c812e824cb8af98
 

 ///  Last 10 Files
  1. :· BrowserRider.20081124.tar.bz2
  2. :· pieweb-rfi.txt
  3. :· FreeBSD-SA-08.11.arc4random.txt
  4. :· USN-677-1.txt
  5. :· dsa-1671-1.txt
  6. :· dsa-1670-1.txt
  7. :· quicksilverforums-rce.txt
  8. :· webstudio-sql.txt
  9. :· siemens-dos.txt
  10. :· nitrotech-rfisql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· FreeBSD-SA-08.11.arc4random.txt
  2. :· USN-677-1.txt
  3. :· dsa-1671-1.txt
  4. :· dsa-1670-1.txt
  5. :· USN-676-1.txt
  6. :· USN-675-2.txt
  7. :· USN-675-1.txt
  8. :· USN-674-2.txt
  9. :· SVRT-05-08.txt
  10. :· 2008-01-flash.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pieweb-rfi.txt
  2. :· quicksilverforums-rce.txt
  3. :· webstudio-sql.txt
  4. :· siemens-dos.txt
  5. :· nitrotech-rfisql.txt
  6. :· bandwebsite-sqlxss.txt
  7. :· ftpzik-xsslfi.txt
  8. :· tvp-crash.txt
  9. :· googlechrome-obfuscate.tgz
  10. :· w3camayaid-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· BrowserRider.20081124.tar.bz2
  2. :· mp3nema-v0_2.tar.gz
  3. :· squid-nufw-helper-1.1.3.tar.gz
  4. :· xplico-0.1_deft4.tgz
  5. :· ksplice-0.9.4-src.tar.gz
  6. :· fwknop-1.9.9.tar.gz
  7. :· pysumpas-0.2.0.tar.gz
  8. :· framework-3.2.tar.gz
  9. :· tor.uclibc.i686.20081115.iso
  10. :· RFIDIOt-Windows-0.1u.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· tcpip_lib51.zip
  2. :· linuxrsa-shellcode.txt
  3. :· linuxcb-shellcode.txt
  4. :· 25bytes-execve.txt
  5. :· execve-shellcode.txt
  6. :· java2-malware.pdf
  7. :· return-to-libc-linux.txt
  8. :· stack-overflow-linux.txt
  9. :· smallest_setuid_execve_sc.c
  10. :· sudoers-shellcode.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice