Section: .. / Last 50 Files /
| /// File Name: | pacpoll-disclose.txt | Description:
| PacPoll version 4.0 suffers from a remote database disclosure vulnerability. | | Author: | OffensiveTrack | | Homepage: | http://www.offensivetrack.org/ | | File Size: | 894 | | Last Modified: | Dec 1 17:51:02 2008 | | MD5 Checksum: | d99a14ceeaa24e01d9ce9805c3832314 |
|
| /// File Name: | USN-682-1.txt | Description:
| Ubuntu Security Notice USN-682-1 - It was discovered that libvorbis did not correctly handle certain malformed sound files. If a user were tricked into opening a specially crafted sound file with an application that uses libvorbis, an attacker could execute arbitrary code with the user's privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 12589 | | Related CVE(s): | CVE-2008-1419, CVE-2008-1420, CVE-2008-1423 | | Last Modified: | Dec 1 17:50:02 2008 | | MD5 Checksum: | 1560ab2afeeb34aeff6acc170b7a1d4a |
|
| /// File Name: | USN-681-1.txt | Description:
| Ubuntu Security Notice USN-681-1 - It was discovered that ImageMagick did not correctly handle certain malformed XCF images. If a user were tricked into opening a specially crafted image with an application that uses ImageMagick, an attacker could cause a denial of service and possibly execute arbitrary code with the user's privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 11655 | | Related CVE(s): | CVE-2008-1096 | | Last Modified: | Dec 1 17:49:27 2008 | | MD5 Checksum: | ab83603b48fb33d8beb11a1c24b415c3 |
|
| /// File Name: | BMSA-2008-09.txt | Description:
| Rumpus version 6.0 contains two buffer overflow vulnerabilities in its HTTP and FTP modules. Exploitation details provided. | | Author: | Nam Nguyen | | Homepage: | http://www.bluemoon.com.vn/ | | File Size: | 3642 | | Last Modified: | Dec 1 17:47:06 2008 | | MD5 Checksum: | 509568fd9e424180b690bb987e5349ec |
|
| /// File Name: | webhub-bypass.txt | Description:
| Web Hub CMS has a default administrator login/password pair left in the system. | | Author: | P47r1ck | | Homepage: | http://www.darkc0de.com/ | | File Size: | 1726 | | Last Modified: | Dec 1 17:46:16 2008 | | MD5 Checksum: | 10c6c9b665c6704377eeb8047448ba47 |
|
| /// File Name: | infinite-bypass.txt | Description:
| Infinite IT Solutions CMS has a default administrator login/password pair left in the system. | | Author: | P47r1ck | | Homepage: | http://www.darkc0de.com/ | | File Size: | 1735 | | Last Modified: | Dec 1 17:44:42 2008 | | MD5 Checksum: | 485257bb148591199e988fc1a3b94d0a |
|
| /// File Name: | VA_VD_87_08_XRDP.pdf | Description:
| Multiple buffer overflow vulnerabilities exist in xrdp which can be leveraged to execute arbitrary code. | | Author: | Hamid Ebadi | | Homepage: | http://www.bugtraq.ir/ | | File Size: | 112048 | | Last Modified: | Dec 1 17:28:29 2008 | | MD5 Checksum: | 65d5e2f4f1dbf66e66c013e9d7dd85d8 |
|
| /// File Name: | TKADV2008-013.txt | Description:
| VLC media players versions below 0.9.7 suffer from a RealMedia processing integer overflow vulnerability. | | Author: | Tobias Klein | | Homepage: | http://www.trapkit.de/ | | File Size: | 5214 | | Related CVE(s): | CVE-2008-5276 | | Last Modified: | Dec 1 17:24:10 2008 | | MD5 Checksum: | 53dd0932afc1be3807df1da75a8a9fd0 |
|
| /// File Name: | sqlinj-insouts.txt | Description:
| Whitepaper discussing the ins and outs of SQL injection vulnerabilities and exploitation. | | Author: | Don | | Homepage: | http://balcan-crew.org/ | | File Size: | 14372 | | Last Modified: | Dec 1 17:19:16 2008 | | MD5 Checksum: | c035c0f0774632e35207ea604687ee56 |
|
| /// File Name: | bcoos1013-sql.txt | Description:
| bcoos version 1.0.13 remote SQL injection exploit that makes use of viewcat.php. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 3623 | | Last Modified: | Dec 1 17:17:43 2008 | | MD5 Checksum: | 8e8d99f3b5eb8254bc857c176abd665f |
|
| /// File Name: | preonline-cmsqlxss.txt | Description:
| Pre Online Tests Generator suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 1093 | | Last Modified: | Dec 1 17:16:38 2008 | | MD5 Checksum: | d220b7f0a800b11aee1906db80f88892 |
|
| /// File Name: | preclass-sqlxss.txt | Description:
| Pre Classifieds Listings suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 850 | | Last Modified: | Dec 1 17:15:23 2008 | | MD5 Checksum: | 7bb1766c3df1bdeca1568590dcba35bc |
|
| /// File Name: | aspportal-disclose.txt | Description:
| ASPPortal version 3.2.5 suffers from a remote database disclosure vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 933 | | Last Modified: | Dec 1 17:13:58 2008 | | MD5 Checksum: | 3658ee46705e8b78b1a5c9c51861b27f |
|
| /// File Name: | preshoppingmall-cmsqlxss.txt | Description:
| Pre Shopping Mall suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 774 | | Last Modified: | Dec 1 17:11:33 2008 | | MD5 Checksum: | d30d9596ccd72e430a3c8f145aad1edd |
|
| /// File Name: | ezpoll-sql.txt | Description:
| E.Z. Poll version 2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | !-BUGJACK-! | | Homepage: | http://www.it-dark.com/ | | File Size: | 425 | | Last Modified: | Dec 1 17:09:45 2008 | | MD5 Checksum: | de8608bfc66215dd26e56648ecaf6816 |
|
| /// File Name: | prejobboard-cmsqlxss.txt | Description:
| Pre Job Board suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 732 | | Last Modified: | Dec 1 17:04:07 2008 | | MD5 Checksum: | ca06654c7d884a6a743f3b301373e8f7 |
|
| /// File Name: | preaspjob-xsscm.txt | Description:
| Pre ASP Job Board suffers from cookie manipulation and cross site scripting vulnerabilities. | | Author: | Pouya Server | | File Size: | 738 | | Last Modified: | Dec 1 16:40:25 2008 | | MD5 Checksum: | 44f2098cb336a892c01df3187a98ea4a |
|
| /// File Name: | classifieds-xss.txt | Description:
| SoftBiz Classifieds Script suffers from multiple cross site scripting vulnerabilities. | | Author: | Pouya Server | | File Size: | 1473 | | Last Modified: | Dec 1 16:37:27 2008 | | MD5 Checksum: | e8f7d798c7b330ddd84f2745227804ed |
|
| /// File Name: | phpjobwebsite-cmsqlxss.txt | Description:
| PHP JobWebSite Pro suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 755 | | Last Modified: | Dec 1 16:35:23 2008 | | MD5 Checksum: | a4e54a472ead8eeb3cf3cda5135d486f |
|
| /// File Name: | toast-disclose.txt | Description:
| Toast Forums suffers from a database disclosure vulnerability. | | Author: | Pouya Server | | File Size: | 432 | | Last Modified: | Dec 1 16:30:37 2008 | | MD5 Checksum: | e0f02d3f6cf8bb922d8217dc8e9d40e9 |
|
| /// File Name: | aspshoppingcart-xss.txt | Description:
| ASP Shopping Cart suffers from a cross site scripting vulnerability. | | Author: | Pouya Server | | File Size: | 540 | | Last Modified: | Dec 1 16:28:44 2008 | | MD5 Checksum: | 27466adef74707d6ddc6d1a0729dd195 |
|
| /// File Name: | aspforum-cmsqlxss.txt | Description:
| ASP Forum Script suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 974 | | Last Modified: | Dec 1 16:23:26 2008 | | MD5 Checksum: | 54ab851fd69d982362168e408e3c63d5 |
|
| /// File Name: | ewb-overflow.txt | Description:
| Electronics Workbench .EWB file stack buffer overflow proof of concept exploit. | | Author: | Zigma | | File Size: | 2041 | | Last Modified: | Dec 1 16:15:14 2008 | | MD5 Checksum: | bd98a61213a2a434a4f72d7ae5fa43e1 |
|
| /// File Name: | debian-symlink.txt | Description:
| Debian GNU/Linux symbolic link attack arbitrary file ownership proof of concept exploit. | | Author: | Paul Szabo | | File Size: | 1908 | | Last Modified: | Dec 1 16:12:37 2008 | | MD5 Checksum: | bdbc9435e85a7cc7a8765104b6499e9e |
|
| /// File Name: | dsa-1675-1.txt | Description:
| Debian Security Advisory 1675-1 - Masako Oono discovered that phpMyAdmin, a web-based administration interface for MySQL, insufficiently sanitises input allowing a remote attacker to gather sensitive data through cross site scripting, provided that the user uses the Internet Explorer web browser. | | Homepage: | http://www.debian.org/security | | File Size: | 3343 | | Related CVE(s): | CVE-2008-4326 | | Last Modified: | Dec 1 13:28:50 2008 | | MD5 Checksum: | a270ad8083dd0956b7681b12bb56bebb |
|
| /// File Name: | andysphpkb-upload.txt | Description:
| Andy's PHP Knowledgebase version 0.92.9 suffers from an arbitrary file upload vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 3736 | | Last Modified: | Dec 1 13:27:19 2008 | | MD5 Checksum: | 57f2258ea6b5bdd482a9ba5c64e16be0 |
|
| /// File Name: | z1exchange-sql.txt | Description:
| z1exchange versions 1.0 suffers from a remote SQL injection vulnerability in edit.php. | | Author: | jiko | | File Size: | 2108 | | Last Modified: | Dec 1 13:26:16 2008 | | MD5 Checksum: | 83a6043efa9393088dcd9a9a616db09f |
|
| /// File Name: | broadcast-rfi.txt | Description:
| Broadcast Machine version 0.1 suffers from multiple remote file inclusion vulnerabilities. | | Author: | NoGe | | File Size: | 1889 | | Last Modified: | Nov 30 22:44:22 2008 | | MD5 Checksum: | 8198cfbd1086bbe4e2f09a3b8a923f06 |
|
| /// File Name: | cpcommerce-bypass.txt | Description:
| cpCommerce version 1.2.6 suffers from input variable overwrite and authentication bypass vulnerabilities. | | Author: | __GiReX__ | | Homepage: | http://girex.altervista.org/ | | File Size: | 5643 | | Last Modified: | Nov 30 21:21:21 2008 | | MD5 Checksum: | 8a67c6d9744fadb9a83cc798169b41a3 |
|
| /// File Name: | minimalablog-sqlfubypass.txt | Description:
| Minimal Ablog version 0.4 suffers from file upload, administrative bypass, and remote SQL injection vulnerabilities. | | Author: | NoGe | | File Size: | 1653 | | Last Modified: | Nov 30 20:22:22 2008 | | MD5 Checksum: | 9ec5f0536ae171d5ba3242bf27d501f8 |
|
| /// File Name: | ktpccd-sql.txt | Description:
| KTP Computer Customer Database CMS suffers from a blind SQL injection vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1821 | | Last Modified: | Nov 30 17:32:33 2008 | | MD5 Checksum: | ad0a2f2f16fa3b1a3ffc081ac17ba2c3 |
|
| /// File Name: | ktpccd-lfi.txt | Description:
| KTP Computer Customer Database CMS local file inclusion exploit. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 5378 | | Last Modified: | Nov 30 16:22:10 2008 | | MD5 Checksum: | 908db80332718321ad09a1a444a66cd4 |
|
| /// File Name: | activebizdir-sql.txt | Description:
| Active Business Directory version 2 suffers from a remote blind SQL injection vulnerability. | | Author: | OffensiveTrack | | Homepage: | http://www.offensivetrack.org/ | | File Size: | 688 | | Last Modified: | Nov 30 14:22:11 2008 | | MD5 Checksum: | 2bc454ed304fa0e9367deb91d9af4985 |
|
| /// File Name: | activetimebilling-sql.txt | Description:
| Active Time Billing version 3.2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | OffensiveTrack | | Homepage: | http://www.offensivetrack.org/ | | File Size: | 722 | | Last Modified: | Nov 30 12:44:34 2008 | | MD5 Checksum: | c969118f9f2d1e530e81adc693c8667f |
|
| /// File Name: | activeprice-blindsql.txt | Description:
| Active Price Comparison version 4 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1187 | | Last Modified: | Nov 30 12:21:21 2008 | | MD5 Checksum: | 7e96990233ac30d798122a7bd89e8a31 |
|
| /// File Name: | activephotogal-sql.txt | Description:
| Active Photo Gallery version 6.2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1054 | | Last Modified: | Nov 30 12:20:01 2008 | | MD5 Checksum: | aa0269a9d4eefd9afa57a26c735328b5 |
|
| /// File Name: | activewebhelpdesk-sql.txt | Description:
| Active Web Helpdesk version 2 suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | Cyber-Zone | | Homepage: | http://www.iq-ty.com/ | | File Size: | 7328 | | Last Modified: | Nov 30 12:15:01 2008 | | MD5 Checksum: | e27528ffd28fca522f5a23d5206433b8 |
|
| /// File Name: | activewebmail-blindsql.txt | Description:
| Active Web Mail version 4 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1625 | | Last Modified: | Nov 30 12:01:11 2008 | | MD5 Checksum: | 9673d6c429848b0389b0267dae62b031 |
|
| /// File Name: | dsa-1674-1.txt | Description:
| Debian Security Advisory 1674-1 - Javier Fernandez-Sanguino Pena discovered that updatejail, a component of the chroot maintenance tool Jailer, creates a predictable temporary file name, which may lead to local denial of service through a symlink attack. | | Homepage: | http://www.debian.org/security | | File Size: | 3184 | | Related CVE(s): | CVE-2008-5139 | | Last Modified: | Nov 30 14:50:20 2008 | | MD5 Checksum: | cf1c348f9336982c7bfdb41148f11a58 |
|
| /// File Name: | activebids-sql.txt | Description:
| Active Bids version 3.5 suffers from a blind SQL injection vulnerability. | | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 570 | | Last Modified: | Nov 30 14:48:43 2008 | | MD5 Checksum: | e951d6ce10698f269567ffffa5991644 |
|
| /// File Name: | activetest21-sql.txt | Description:
| Active Test version 2.1 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1528 | | Last Modified: | Nov 30 14:45:44 2008 | | MD5 Checksum: | 777dc043442c70ccc8f1678ed52ef493 |
|
| /// File Name: | activewebmail4-sql.txt | Description:
| Active Web Mail version 4 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1626 | | Last Modified: | Nov 30 14:41:18 2008 | | MD5 Checksum: | 5598c51144c84d9bb9c2904247b31dbf |
|
| /// File Name: | activevotes22-sql.txt | Description:
| Active Votes version 2.2 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1116 | | Last Modified: | Nov 30 14:39:03 2008 | | MD5 Checksum: | 4c15393b3f1c524c9598b5e245667ceb |
|
| /// File Name: | oramon-disclose.txt | Description:
| OraMon version 2.0.1 suffers from a remote configuration file disclosure vulnerability. | | Author: | ahmadbady | | File Size: | 709 | | Last Modified: | Nov 30 14:37:09 2008 | | MD5 Checksum: | 5219239d7b4f352e07fe99b998823402 |
|
| /// File Name: | aspthai-disclose.txt | Description:
| ASPThai.NET Forum version 8.5 suffers from a remote database disclosure vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 870 | | Last Modified: | Nov 30 14:34:46 2008 | | MD5 Checksum: | 37cc7d80a9c3d5f89e3a4887580eb457 |
|
| /// File Name: | openforum-password.txt | Description:
| OpenForum version 0.66 Beta remote administrator password reset exploit. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 5087 | | Last Modified: | Nov 30 14:33:11 2008 | | MD5 Checksum: | f9f98107c5d6c44bd400b28443984d22 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
