Section: .. / 0701-exploits /
| /// File Name: |
shopstorenow-sql.txt |
Description:
|
The shopstorenow E-commerce Shopping Cart is vulnerable to SQL injection attacks.
| | Author: | IbnuSina | | File Size: | 655 | | Last Modified: | Jan 13 16:11:24 2007 |
| MD5 Checksum: | 63865822f42d9c4ddfc1001d8da5c9a6 |
|
| /// File Name: |
uberupload.txt |
Description:
|
Uber Uploader 4.2 suffers from a code execution flaw via uploading a malicious PHP file.
| | Author: | Null | | Homepage: | http://www.gammahack.com | | File Size: | 655 | | Last Modified: | Jan 6 19:24:13 2007 |
| MD5 Checksum: | 9092d04f130796a15695c2667dcaf882 |
|
| /// File Name: |
oracle10g-1.txt |
Description:
|
Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL SQL injection exploit.
| | Author: | Joxean Koret | | File Size: | 653 | | Last Modified: | Jan 24 00:13:30 2007 |
| MD5 Checksum: | e171f4cf083bf77791913273a9874716 |
|
| /// File Name: |
mint-sql.txt |
Description:
|
Mint Haber Sistemi version 2.7 suffers from a remote SQL injection vulnerability.
| | Author: | chernobile | | Homepage: | http://www.cyber-sabotage.org | | File Size: | 641 | | Last Modified: | Jan 13 18:59:54 2007 |
| MD5 Checksum: | f91f3dc1d7e503fc7fcabefda20491f8 |
|
| /// File Name: |
makit-sql.txt |
Description:
|
makit news/blog poster versions 3 and below suffer from a remote SQL injection vulnerability in news_page.asp.
| | Author: | ajann | | File Size: | 635 | | Last Modified: | Jan 26 22:24:53 2007 |
| MD5 Checksum: | 8e70a155264cec17ec06d28f1d885477 |
|
| /// File Name: |
oracle10g-2.txt |
Description:
|
Oracle 10g SYS.KUPW$WORKER.MAIN PL SQL injection exploit.
| | Author: | Joxean Koret | | File Size: | 629 | | Last Modified: | Jan 24 00:14:52 2007 |
| MD5 Checksum: | 2806eef20abda4f9f473aeef06537bf7 |
|
| /// File Name: |
MOAB-25-01-2007.c |
Description:
|
Month of Apple Bugs - C exploit that demonstrates how CFNetwork fails to handle certain HTTP responses properly, causing the _CFNetConnectionWillEnqueueRequests() function to dereference a NULL pointer, leading to a denial of service condition.
| | Author: | LMH | | Homepage: | http://projects.info-pull.com/moab/ | | File Size: | 618 | | Related CVE(s): | CVE-2007-0464 | | Last Modified: | Jan 26 23:28:11 2007 |
| MD5 Checksum: | ac9a8250d37eaab982f149693cdcbca0 |
|
| /// File Name: |
wmfdos.txt |
Description:
|
WMF proof of concept denial of service exploit.
| | Author: | cyanid-E | | File Size: | 617 | | Last Modified: | Jan 13 18:47:32 2007 |
| MD5 Checksum: | a70607a5bae12632f5c0d6345780aba2 |
|
| /// File Name: |
212cafeboard-xss.txt |
Description:
|
212cafeBoard version 0.08 Beta and 6.30 Beta are susceptible to cross site scripting attacks.
| | Author: | Linux_Drox | | Homepage: | http://www.LeZr.Com/vb | | File Size: | 616 | | Last Modified: | Jan 23 23:04:00 2007 |
| MD5 Checksum: | d2a92acabec410cacf7c6ee7ec91293b |
|
| /// File Name: |
jshop13-rfi.txt |
Description:
|
Jshop Server version 1.3 suffers from a remote file inclusion vulnerability.
| | Author: | irvian | | File Size: | 608 | | Last Modified: | Jan 13 18:40:43 2007 |
| MD5 Checksum: | 80f96f48892c875308cc20c20d6e42cb |
|
| /// File Name: |
aspnews3-sql.txt |
Description:
|
ASP NEWS version 3 suffers from a remote SQL injection vulnerability in news_detail.asp.
| | Author: | ajann | | File Size: | 606 | | Last Modified: | Jan 26 22:23:27 2007 |
| MD5 Checksum: | 347e116bf84c101508f8a4fc47d454c5 |
|
| /// File Name: |
MOAB-19-01-2007.tgz |
Description:
|
Month of Apple Bugs - Transmit does not allocate enough space when dealing with the string passed on via the ftps:// URL handler, leading to an exploitable heap-based buffer overflow condition. This is the proof of concept exploit.
| | Author: | LMH,Kevin Finisterre | | Homepage: | http://projects.info-pull.com/moab/ | | File Size: | 585 | | Related CVE(s): | CVE-2007-0020 | | Last Modified: | Jan 24 00:19:49 2007 |
| MD5 Checksum: | 7370fba31d7c89633f6e4ad90a5ccc4a |
|
| /// File Name: |
openmedia.txt |
Description:
|
OpenMedia suffers from a classic directory traversal flaw.
| | Author: | Crack_man | | File Size: | 566 | | Last Modified: | Jan 3 21:54:40 2007 |
| MD5 Checksum: | 642ed27bf67720edb36e239b233b6ceb |
|
| /// File Name: |
gb03-db.txt |
Description:
|
GuestBook version 0.3a suffers from a direct database download vulnerability.
| | Homepage: | http://aria-security.com/ | | File Size: | 492 | | Last Modified: | Jan 3 23:19:23 2007 |
| MD5 Checksum: | 2750e63d3bf09c2a3ae926a670128d6d |
|
| /// File Name: |
dayfox-rfi.txt |
Description:
|
Dayfox Blog suffers from a remote file inclusion vulnerability.
| | Author: | ShaFuq31 | | File Size: | 484 | | Last Modified: | Jan 13 16:32:45 2007 |
| MD5 Checksum: | f4f5d0c3f2bb0e73b77feaedcc786bcb |
|
| /// File Name: |
oohasp-mdb.txt |
Description:
|
oohASP suffers from a password disclosure vulnerability.
| | Homepage: | http://aria-security.com/ | | File Size: | 480 | | Last Modified: | Jan 13 16:07:59 2007 |
| MD5 Checksum: | 57e6e3611fe1548ba5c87822b00dd6ef |
|
| /// File Name: |
ios-mdb.txt |
Description:
|
Intranet Open Source suffers from a remote password database disclosure vulnerability.
| | Homepage: | http://aria-security.com/ | | File Size: | 465 | | Last Modified: | Jan 6 19:30:27 2007 |
| MD5 Checksum: | d86e02c24d79ca34b1bc56d35c3f31eb |
|
| /// File Name: |
igcal10-sql.txt |
Description:
|
IG Calendar version 1.0 suffers from a SQL injection vulnerability in user.php.
| | Author: | Michael Brooks | | File Size: | 444 | | Last Modified: | Jan 5 02:55:08 2007 |
| MD5 Checksum: | 6f4111a1f68b9b2adcf3129ec819d0ca |
|
| /// File Name: |
admentor-sql.txt |
Description:
|
AdMentor suffers from a SQL injection vulnerability that allows for login bypass.
| | Author: | sn0oPy | | File Size: | 436 | | Last Modified: | Jan 29 11:27:52 2007 |
| MD5 Checksum: | 255ca22fc52604dc52d49c8054b99032 |
|
| /// File Name: |
geobb-rfi.txt |
Description:
|
GeoBB Georgian Bulletin Board suffers from a remote file inclusion vulnerability.
| | Author: | ShaFuq31 | | File Size: | 430 | | Last Modified: | Jan 13 16:33:32 2007 |
| MD5 Checksum: | b359504a873aa517fd54397e5482b634 |
|
| /// File Name: |
riblog-xss.txt |
Description:
|
RI Blog version 1.3 is susceptible to cross site scripting attacks.
| | Author: | ShaFuq31 | | File Size: | 427 | | Last Modified: | Jan 6 19:50:14 2007 |
| MD5 Checksum: | 076dd6e8634da33338cae7c40c3c1c32 |
|
| /// File Name: |
MOAB-07-01-2007.html |
Description:
|
Month of Apple Bugs - This HTML file is an exploit for OmniWeb. OmniWeb is affected by a format string vulnerability in the handling of Javascript alert() function, which could allow remote arbitrary code execution.
| | Author: | LMH, Kevin Finisterre | | Homepage: | http://projects.info-pull.com/moab/index.html | | File Size: | 421 | | Last Modified: | Jan 13 17:41:21 2007 |
| MD5 Checksum: | 47bf65470e57cbcf70bc69bb1157e73f |
|
| /// File Name: |
formbank19-traverse.txt |
Description:
|
Formbankserver version 1.9 suffers from a directory traversal vulnerability.
| | Author: | Bl0od3r | | File Size: | 421 | | Last Modified: | Jan 1 22:15:49 2007 |
| MD5 Checksum: | 8ba737f4717db1256b024e57f6f660e7 |
|
| /// File Name: |
carbon-db.txt |
Description:
|
Carbon Communities suffers from a direct database download vulnerability.
| | Homepage: | http://aria-security.com/ | | File Size: | 419 | | Last Modified: | Jan 3 23:18:25 2007 |
| MD5 Checksum: | 2206870e3bede20bccc0b90cdde40947 |
|
| /// File Name: |
wine-db.txt |
Description:
|
WineGlass suffers from a direct database download vulnerability.
| | Homepage: | http://aria-security.com/ | | File Size: | 417 | | Last Modified: | Jan 3 23:17:11 2007 |
| MD5 Checksum: | a1e2aca7d50b058d60c4f5542d4368c3 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
