Section: .. / Last 100 Files /
| /// File Name: | USN-684-1.txt | Description:
| Ubuntu Security Notice USN-684-1 - Ilja van Sprundel discovered that ClamAV did not handle recursive JPEG information. If a remote attacker sent a specially crafted JPEG file, ClamAV would crash, leading to a denial of service. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 7580 | | Last Modified: | Dec 2 20:25:09 2008 | | MD5 Checksum: | a5f773b5f80db981aa46e006a4efa56c |
|
| /// File Name: | binsh-shellcode.txt | Description:
| 39 bytes of Solaris/x86 shellcode that performs setuid(0), execve(/bin/sh); exit(0). NULL free. | | Author: | sm4x | | File Size: | 1037 | | Last Modified: | Dec 2 20:14:22 2008 | | MD5 Checksum: | 5b5c34ec04999bdaed22fee8ccfd02ab |
|
| /// File Name: | catshadow-shellcode.txt | Description:
| 59 bytes of Solaris/x86 shellcode that performs setuid(0), execve(/bin/cat, /etc/shadow), exit(0). | | Author: | sm4x | | File Size: | 1342 | | Last Modified: | Dec 2 20:13:00 2008 | | MD5 Checksum: | 43ac829213d2724175265c403f658d2e |
|
| /// File Name: | dsa-1677-1.txt | Description:
| Debian Security Advisory DSA 1677-1 - An integer overflow has been discovered in the image validation code of cupsys, the Common UNIX Printing System. An attacker could trigger this bug by supplying a malicious graphic that could lead to the execution of arbitrary code. | | Homepage: | http://www.debian.org/security | | File Size: | 17574 | | Related CVE(s): | CVE-2008-5286 | | Last Modified: | Dec 2 17:00:23 2008 | | MD5 Checksum: | 628566c9879081d980d24250a10d5438 |
|
| /// File Name: | z1exchange-sqlxss.txt | Description:
| z1exchange suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 622 | | Last Modified: | Dec 2 16:58:53 2008 | | MD5 Checksum: | 5b390745afcfa0684522b79dcc8767c7 |
|
| /// File Name: | cmsmaxsite-exec.txt | Description:
| CMS MAXSITE Guestbook component remote command execution exploit. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 4370 | | Last Modified: | Dec 2 16:57:21 2008 | | MD5 Checksum: | 857d5bb777915d414f761d3dc233247a |
|
| /// File Name: | ocean12ml-sqlxssdisclose.txt | Description:
| Ocean12 Mailing List Manager Gold suffers from a direct database download, remote SQL injection, and cross site scripting vulnerabilities. | | Author: | Pouya Server | | File Size: | 789 | | Last Modified: | Dec 2 16:56:11 2008 | | MD5 Checksum: | d9c88cc756b97b1101d9d10bdb9f2419 |
|
| /// File Name: | orkut-sqlxss.txt | Description:
| The Orkut Clone by i-netsolution suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | d3b4g | | File Size: | 829 | | Last Modified: | Dec 2 16:54:54 2008 | | MD5 Checksum: | 23280afa08297ab8d28e3faaeea9a26a |
|
| /// File Name: | rapid-disclose.txt | Description:
| Rapid Classified version 3.1 suffers from a remote database disclosure vulnerability. | | Author: | CoBRa_21 | | Homepage: | http://www.ipbul.org/ | | File Size: | 440 | | Last Modified: | Dec 2 16:52:07 2008 | | MD5 Checksum: | 650e59945cc139e5465a4c3450c4fc9c |
|
| /// File Name: | jbook-disclosesql.txt | Description:
| JBook suffers from a remote SQL injection vulnerability that allows for authentication bypass and also suffers from a direct database download. | | Author: | Pouya Server | | File Size: | 584 | | Last Modified: | Dec 2 16:50:49 2008 | | MD5 Checksum: | 513a95c3d30b6df14011a17c3db0a2b5 |
|
| /// File Name: | PLSA-2008-77.txt | Description:
| Pardus Linux Security Advisory 2008-77 - Two vulnerabilities have been fixed in ffmpeg which can cause to a DoS (Denial of Service).Versions below 0.4.9_20080909-48-16 are affected. | | Author: | Pardus Linux | | File Size: | 1389 | | Last Modified: | Dec 2 16:49:26 2008 | | MD5 Checksum: | d508983edcad9ea6b153a3aa8b1a2d83 |
|
| /// File Name: | sunbyte-sql.txt | Description:
| SunByte e-Flower suffers from a remote SQL injection vulnerability. | | Author: | w4rl0ck | | Homepage: | http://warlock.lblogger.org/ | | File Size: | 1241 | | Last Modified: | Dec 2 16:46:52 2008 | | MD5 Checksum: | 3675361f3ee42f0ef8fc812564aa04fc |
|
| /// File Name: | glsa-200812-05.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-05 - A buffer overflow vulnerability in libsamplerate might lead to the execution of arbitrary code. Russell O'Connor reported a buffer overflow in src/src_sinc.c related to low conversion ratios. Versions less than 0.1.4 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2556 | | Related CVE(s): | CVE-2008-5008 | | Last Modified: | Dec 2 14:43:38 2008 | | MD5 Checksum: | 00b44c420510e7048d105180e9487573 |
|
| /// File Name: | glsa-200812-03.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-03 - IPsec-Tools' racoon is affected by a remote Denial of Service vulnerability. Versions less than 0.7.1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2820 | | Related CVE(s): | CVE-2008-3651, CVE-2008-3652 | | Last Modified: | Dec 2 14:43:06 2008 | | MD5 Checksum: | c7fd15138337ac691f218c2ec559e538 |
|
| /// File Name: | glsa-200812-02.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-02 - Two buffer overflows in enscript might lead to the execution of arbitrary code. Two stack-based buffer overflows in the read_special_escape() function in src/psgen.c have been reported. Ulf Harnhammar of Secunia Research discovered a vulnerability related to the setfilename command (CVE-2008-3863), and Kees Cook of Ubuntu discovered a vulnerability related to the font escape sequence (CVE-2008-4306). Versions less than 1.6.4-r4 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2837 | | Related CVE(s): | CVE-2008-3863, CVE-2008-4306 | | Last Modified: | Dec 2 14:42:41 2008 | | MD5 Checksum: | 7798691cbc8349b986a232c8549f5553 |
|
| /// File Name: | glsa-200812-01.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-01 - A vulnerability in OptiPNG might result in user-assisted execution of arbitrary code. A buffer overflow in the BMP reader in OptiPNG has been reported. Versions less than 0.6.2 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2541 | | Related CVE(s): | CVE-2008-5101 | | Last Modified: | Dec 2 14:42:24 2008 | | MD5 Checksum: | 8e4c29a8a9646253000c04ae38a94b2e |
|
| /// File Name: | USN-683-1.txt | Description:
| Ubuntu Security Notice USN-683-1 - It was discovered that Imlib2 did not correctly handle certain malformed XPM images. If a user were tricked into opening a specially crafted image with an application that uses Imlib2, an attacker could cause a denial of service and possibly execute arbitrary code with the user's privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 10017 | | Related CVE(s): | CVE-2008-5187 | | Last Modified: | Dec 2 14:42:00 2008 | | MD5 Checksum: | 8d312ff3d894835bdc57219ce4ff40b7 |
|
| /// File Name: | dsa-1676-1.txt | Description:
| Debian Security Advisory 1676-1 - Dmitry E. Oboukhov discovered that flamethrower creates predictable temporary filenames, which may lead to a local denial of service through a symlink attack. | | Homepage: | http://www.debian.org/security | | File Size: | 2971 | | Related CVE(s): | CVE-2008-5141 | | Last Modified: | Dec 2 14:40:45 2008 | | MD5 Checksum: | 912bd5e15a194ab77ca1edf498845d79 |
|
| /// File Name: | pacpoll-disclose.txt | Description:
| PacPoll version 4.0 suffers from a remote database disclosure vulnerability. | | Author: | OffensiveTrack | | Homepage: | http://www.offensivetrack.org/ | | File Size: | 894 | | Last Modified: | Dec 1 17:51:02 2008 | | MD5 Checksum: | d99a14ceeaa24e01d9ce9805c3832314 |
|
| /// File Name: | USN-682-1.txt | Description:
| Ubuntu Security Notice USN-682-1 - It was discovered that libvorbis did not correctly handle certain malformed sound files. If a user were tricked into opening a specially crafted sound file with an application that uses libvorbis, an attacker could execute arbitrary code with the user's privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 12589 | | Related CVE(s): | CVE-2008-1419, CVE-2008-1420, CVE-2008-1423 | | Last Modified: | Dec 1 17:50:02 2008 | | MD5 Checksum: | 1560ab2afeeb34aeff6acc170b7a1d4a |
|
| /// File Name: | USN-681-1.txt | Description:
| Ubuntu Security Notice USN-681-1 - It was discovered that ImageMagick did not correctly handle certain malformed XCF images. If a user were tricked into opening a specially crafted image with an application that uses ImageMagick, an attacker could cause a denial of service and possibly execute arbitrary code with the user's privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 11655 | | Related CVE(s): | CVE-2008-1096 | | Last Modified: | Dec 1 17:49:27 2008 | | MD5 Checksum: | ab83603b48fb33d8beb11a1c24b415c3 |
|
| /// File Name: | BMSA-2008-09.txt | Description:
| Rumpus version 6.0 contains two buffer overflow vulnerabilities in its HTTP and FTP modules. Exploitation details provided. | | Author: | Nam Nguyen | | Homepage: | http://www.bluemoon.com.vn/ | | File Size: | 3642 | | Last Modified: | Dec 1 17:47:06 2008 | | MD5 Checksum: | 509568fd9e424180b690bb987e5349ec |
|
| /// File Name: | webhub-bypass.txt | Description:
| Web Hub CMS has a default administrator login/password pair left in the system. | | Author: | P47r1ck | | Homepage: | http://www.darkc0de.com/ | | File Size: | 1726 | | Last Modified: | Dec 1 17:46:16 2008 | | MD5 Checksum: | 10c6c9b665c6704377eeb8047448ba47 |
|
| /// File Name: | infinite-bypass.txt | Description:
| Infinite IT Solutions CMS has a default administrator login/password pair left in the system. | | Author: | P47r1ck | | Homepage: | http://www.darkc0de.com/ | | File Size: | 1735 | | Last Modified: | Dec 1 17:44:42 2008 | | MD5 Checksum: | 485257bb148591199e988fc1a3b94d0a |
|
| /// File Name: | VA_VD_87_08_XRDP.pdf | Description:
| Multiple buffer overflow vulnerabilities exist in xrdp which can be leveraged to execute arbitrary code. | | Author: | Hamid Ebadi | | Homepage: | http://www.bugtraq.ir/ | | File Size: | 112048 | | Last Modified: | Dec 1 17:28:29 2008 | | MD5 Checksum: | 65d5e2f4f1dbf66e66c013e9d7dd85d8 |
|
| /// File Name: | TKADV2008-013.txt | Description:
| VLC media players versions below 0.9.7 suffer from a RealMedia processing integer overflow vulnerability. | | Author: | Tobias Klein | | Homepage: | http://www.trapkit.de/ | | File Size: | 5214 | | Related CVE(s): | CVE-2008-5276 | | Last Modified: | Dec 1 17:24:10 2008 | | MD5 Checksum: | 53dd0932afc1be3807df1da75a8a9fd0 |
|
| /// File Name: | sqlinj-insouts.txt | Description:
| Whitepaper discussing the ins and outs of SQL injection vulnerabilities and exploitation. | | Author: | Don | | Homepage: | http://balcan-crew.org/ | | File Size: | 14372 | | Last Modified: | Dec 1 17:19:16 2008 | | MD5 Checksum: | c035c0f0774632e35207ea604687ee56 |
|
| /// File Name: | bcoos1013-sql.txt | Description:
| bcoos version 1.0.13 remote SQL injection exploit that makes use of viewcat.php. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 3623 | | Last Modified: | Dec 1 17:17:43 2008 | | MD5 Checksum: | 8e8d99f3b5eb8254bc857c176abd665f |
|
| /// File Name: | preonline-cmsqlxss.txt | Description:
| Pre Online Tests Generator suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 1093 | | Last Modified: | Dec 1 17:16:38 2008 | | MD5 Checksum: | d220b7f0a800b11aee1906db80f88892 |
|
| /// File Name: | preclass-sqlxss.txt | Description:
| Pre Classifieds Listings suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 850 | | Last Modified: | Dec 1 17:15:23 2008 | | MD5 Checksum: | 7bb1766c3df1bdeca1568590dcba35bc |
|
| /// File Name: | aspportal-disclose.txt | Description:
| ASPPortal version 3.2.5 suffers from a remote database disclosure vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 933 | | Last Modified: | Dec 1 17:13:58 2008 | | MD5 Checksum: | 3658ee46705e8b78b1a5c9c51861b27f |
|
| /// File Name: | preshoppingmall-cmsqlxss.txt | Description:
| Pre Shopping Mall suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 774 | | Last Modified: | Dec 1 17:11:33 2008 | | MD5 Checksum: | d30d9596ccd72e430a3c8f145aad1edd |
|
| /// File Name: | ezpoll-sql.txt | Description:
| E.Z. Poll version 2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | !-BUGJACK-! | | Homepage: | http://www.it-dark.com/ | | File Size: | 425 | | Last Modified: | Dec 1 17:09:45 2008 | | MD5 Checksum: | de8608bfc66215dd26e56648ecaf6816 |
|
| /// File Name: | prejobboard-cmsqlxss.txt | Description:
| Pre Job Board suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 732 | | Last Modified: | Dec 1 17:04:07 2008 | | MD5 Checksum: | ca06654c7d884a6a743f3b301373e8f7 |
|
| /// File Name: | preaspjob-xsscm.txt | Description:
| Pre ASP Job Board suffers from cookie manipulation and cross site scripting vulnerabilities. | | Author: | Pouya Server | | File Size: | 738 | | Last Modified: | Dec 1 16:40:25 2008 | | MD5 Checksum: | 44f2098cb336a892c01df3187a98ea4a |
|
| /// File Name: | classifieds-xss.txt | Description:
| SoftBiz Classifieds Script suffers from multiple cross site scripting vulnerabilities. | | Author: | Pouya Server | | File Size: | 1473 | | Last Modified: | Dec 1 16:37:27 2008 | | MD5 Checksum: | e8f7d798c7b330ddd84f2745227804ed |
|
| /// File Name: | phpjobwebsite-cmsqlxss.txt | Description:
| PHP JobWebSite Pro suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 755 | | Last Modified: | Dec 1 16:35:23 2008 | | MD5 Checksum: | a4e54a472ead8eeb3cf3cda5135d486f |
|
| /// File Name: | toast-disclose.txt | Description:
| Toast Forums suffers from a database disclosure vulnerability. | | Author: | Pouya Server | | File Size: | 432 | | Last Modified: | Dec 1 16:30:37 2008 | | MD5 Checksum: | e0f02d3f6cf8bb922d8217dc8e9d40e9 |
|
| /// File Name: | aspshoppingcart-xss.txt | Description:
| ASP Shopping Cart suffers from a cross site scripting vulnerability. | | Author: | Pouya Server | | File Size: | 540 | | Last Modified: | Dec 1 16:28:44 2008 | | MD5 Checksum: | 27466adef74707d6ddc6d1a0729dd195 |
|
| /// File Name: | aspforum-cmsqlxss.txt | Description:
| ASP Forum Script suffers from cookie manipulation, cross site scripting, and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 974 | | Last Modified: | Dec 1 16:23:26 2008 | | MD5 Checksum: | 54ab851fd69d982362168e408e3c63d5 |
|
| /// File Name: | ewb-overflow.txt | Description:
| Electronics Workbench .EWB file stack buffer overflow proof of concept exploit. | | Author: | Zigma | | File Size: | 2041 | | Last Modified: | Dec 1 16:15:14 2008 | | MD5 Checksum: | bd98a61213a2a434a4f72d7ae5fa43e1 |
|
| /// File Name: | debian-symlink.txt | Description:
| Debian GNU/Linux symbolic link attack arbitrary file ownership proof of concept exploit. | | Author: | Paul Szabo | | File Size: | 1908 | | Last Modified: | Dec 1 16:12:37 2008 | | MD5 Checksum: | bdbc9435e85a7cc7a8765104b6499e9e |
|
| /// File Name: | dsa-1675-1.txt | Description:
| Debian Security Advisory 1675-1 - Masako Oono discovered that phpMyAdmin, a web-based administration interface for MySQL, insufficiently sanitises input allowing a remote attacker to gather sensitive data through cross site scripting, provided that the user uses the Internet Explorer web browser. | | Homepage: | http://www.debian.org/security | | File Size: | 3343 | | Related CVE(s): | CVE-2008-4326 | | Last Modified: | Dec 1 13:28:50 2008 | | MD5 Checksum: | a270ad8083dd0956b7681b12bb56bebb |
|
| /// File Name: | andysphpkb-upload.txt | Description:
| Andy's PHP Knowledgebase version 0.92.9 suffers from an arbitrary file upload vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 3736 | | Last Modified: | Dec 1 13:27:19 2008 | | MD5 Checksum: | 57f2258ea6b5bdd482a9ba5c64e16be0 |
|
| /// File Name: | z1exchange-sql.txt | Description:
| z1exchange versions 1.0 suffers from a remote SQL injection vulnerability in edit.php. | | Author: | jiko | | File Size: | 2108 | | Last Modified: | Dec 1 13:26:16 2008 | | MD5 Checksum: | 83a6043efa9393088dcd9a9a616db09f |
|
| /// File Name: | broadcast-rfi.txt | Description:
| Broadcast Machine version 0.1 suffers from multiple remote file inclusion vulnerabilities. | | Author: | NoGe | | File Size: | 1889 | | Last Modified: | Nov 30 22:44:22 2008 | | MD5 Checksum: | 8198cfbd1086bbe4e2f09a3b8a923f06 |
|
| /// File Name: | cpcommerce-bypass.txt | Description:
| cpCommerce version 1.2.6 suffers from input variable overwrite and authentication bypass vulnerabilities. | | Author: | __GiReX__ | | Homepage: | http://girex.altervista.org/ | | File Size: | 5643 | | Last Modified: | Nov 30 21:21:21 2008 | | MD5 Checksum: | 8a67c6d9744fadb9a83cc798169b41a3 |
|
| /// File Name: | minimalablog-sqlfubypass.txt | Description:
| Minimal Ablog version 0.4 suffers from file upload, administrative bypass, and remote SQL injection vulnerabilities. | | Author: | NoGe | | File Size: | 1653 | | Last Modified: | Nov 30 20:22:22 2008 | | MD5 Checksum: | 9ec5f0536ae171d5ba3242bf27d501f8 |
|
| /// File Name: | ktpccd-sql.txt | Description:
| KTP Computer Customer Database CMS suffers from a blind SQL injection vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1821 | | Last Modified: | Nov 30 17:32:33 2008 | | MD5 Checksum: | ad0a2f2f16fa3b1a3ffc081ac17ba2c3 |
|
| /// File Name: | ktpccd-lfi.txt | Description:
| KTP Computer Customer Database CMS local file inclusion exploit. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 5378 | | Last Modified: | Nov 30 16:22:10 2008 | | MD5 Checksum: | 908db80332718321ad09a1a444a66cd4 |
|
| /// File Name: | activebizdir-sql.txt | Description:
| Active Business Directory version 2 suffers from a remote blind SQL injection vulnerability. | | Author: | OffensiveTrack | | Homepage: | http://www.offensivetrack.org/ | | File Size: | 688 | | Last Modified: | Nov 30 14:22:11 2008 | | MD5 Checksum: | 2bc454ed304fa0e9367deb91d9af4985 |
|
| /// File Name: | activetimebilling-sql.txt | Description:
| Active Time Billing version 3.2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | OffensiveTrack | | Homepage: | http://www.offensivetrack.org/ | | File Size: | 722 | | Last Modified: | Nov 30 12:44:34 2008 | | MD5 Checksum: | c969118f9f2d1e530e81adc693c8667f |
|
| /// File Name: | activeprice-blindsql.txt | Description:
| Active Price Comparison version 4 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1187 | | Last Modified: | Nov 30 12:21:21 2008 | | MD5 Checksum: | 7e96990233ac30d798122a7bd89e8a31 |
|
| /// File Name: | activephotogal-sql.txt | Description:
| Active Photo Gallery version 6.2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1054 | | Last Modified: | Nov 30 12:20:01 2008 | | MD5 Checksum: | aa0269a9d4eefd9afa57a26c735328b5 |
|
| /// File Name: | activewebhelpdesk-sql.txt | Description:
| Active Web Helpdesk version 2 suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | Cyber-Zone | | Homepage: | http://www.iq-ty.com/ | | File Size: | 7328 | | Last Modified: | Nov 30 12:15:01 2008 | | MD5 Checksum: | e27528ffd28fca522f5a23d5206433b8 |
|
| /// File Name: | activewebmail-blindsql.txt | Description:
| Active Web Mail version 4 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1625 | | Last Modified: | Nov 30 12:01:11 2008 | | MD5 Checksum: | 9673d6c429848b0389b0267dae62b031 |
|
| /// File Name: | dsa-1674-1.txt | Description:
| Debian Security Advisory 1674-1 - Javier Fernandez-Sanguino Pena discovered that updatejail, a component of the chroot maintenance tool Jailer, creates a predictable temporary file name, which may lead to local denial of service through a symlink attack. | | Homepage: | http://www.debian.org/security | | File Size: | 3184 | | Related CVE(s): | CVE-2008-5139 | | Last Modified: | Nov 30 14:50:20 2008 | | MD5 Checksum: | cf1c348f9336982c7bfdb41148f11a58 |
|
| /// File Name: | activebids-sql.txt | Description:
| Active Bids version 3.5 suffers from a blind SQL injection vulnerability. | | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 570 | | Last Modified: | Nov 30 14:48:43 2008 | | MD5 Checksum: | e951d6ce10698f269567ffffa5991644 |
|
| /// File Name: | activetest21-sql.txt | Description:
| Active Test version 2.1 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1528 | | Last Modified: | Nov 30 14:45:44 2008 | | MD5 Checksum: | 777dc043442c70ccc8f1678ed52ef493 |
|
| /// File Name: | activewebmail4-sql.txt | Description:
| Active Web Mail version 4 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1626 | | Last Modified: | Nov 30 14:41:18 2008 | | MD5 Checksum: | 5598c51144c84d9bb9c2904247b31dbf |
|
| /// File Name: | activevotes22-sql.txt | Description:
| Active Votes version 2.2 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1116 | | Last Modified: | Nov 30 14:39:03 2008 | | MD5 Checksum: | 4c15393b3f1c524c9598b5e245667ceb |
|
| /// File Name: | oramon-disclose.txt | Description:
| OraMon version 2.0.1 suffers from a remote configuration file disclosure vulnerability. | | Author: | ahmadbady | | File Size: | 709 | | Last Modified: | Nov 30 14:37:09 2008 | | MD5 Checksum: | 5219239d7b4f352e07fe99b998823402 |
|
| /// File Name: | aspthai-disclose.txt | Description:
| ASPThai.NET Forum version 8.5 suffers from a remote database disclosure vulnerability. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 870 | | Last Modified: | Nov 30 14:34:46 2008 | | MD5 Checksum: | 37cc7d80a9c3d5f89e3a4887580eb457 |
|
| /// File Name: | openforum-password.txt | Description:
| OpenForum version 0.66 Beta remote administrator password reset exploit. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 5087 | | Last Modified: | Nov 30 14:33:11 2008 | | MD5 Checksum: | f9f98107c5d6c44bd400b28443984d22 |
|
| /// File Name: | litolite-sql.txt | Description:
| Lito Lite CMS remote SQL injection exploit that makes use of cate.php. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 3542 | | Last Modified: | Nov 30 04:37:02 2008 | | MD5 Checksum: | 100fe695f03fd188610bf6dc8dad05ab |
|
| /// File Name: | quicktree-disclose.txt | Description:
| Quick Tree View .NET version 3.1 suffers from a qtv.mdg database disclosure vulnerability. | | Author: | Cyber-Zone | | Homepage: | http://www.iq-ty.com/ | | File Size: | 7228 | | Last Modified: | Nov 30 04:34:43 2008 | | MD5 Checksum: | 9419fdf8c7f31d4676dcd182d0dcfbb2 |
|
| /// File Name: | cmsmadesimple-lfi.txt | Description:
| CMS Made Simple version 1.4.1 suffers from a local file inclusion vulnerability. | | Author: | M4ck-h@cK | | File Size: | 691 | | Last Modified: | Nov 30 04:31:17 2008 | | MD5 Checksum: | 54add7e34d48f6a0e37e638fd84fd29b |
|
| /// File Name: | cainabel.py.txt | Description:
| Cain and Abel version 4.9.23 RDP file buffer overflow proof of concept exploit. | | Author: | Encrypt3d.M!nd | | File Size: | 1084 | | Last Modified: | Nov 30 04:28:10 2008 | | MD5 Checksum: | d98563b8a2db8788880b84876c0c7930 |
|
| /// File Name: | itune-overflow.txt | Description:
| iTunes version 8.0.2.20 and QuickTime 7.5.5 overflow proof of concept exploit that leverages .mov files. | | Author: | laurent gaffi | | File Size: | 2799 | | Last Modified: | Nov 30 04:26:29 2008 | | MD5 Checksum: | 6a0351cb21c3fe6bbb146e7356691997 |
|
| /// File Name: | phptvportal-sql.txt | Description:
| PHP TV Portal version 2.0 suffers from a remote SQL injection vulnerability in index.php. | | Author: | Cyber-Zone | | Homepage: | http://www.iq-ty.com/ | | File Size: | 7311 | | Last Modified: | Nov 29 15:19:05 2008 | | MD5 Checksum: | cd201d53bb060b8eff42eff370fe74dc |
|
| /// File Name: | ewebquiz-sql.txt | Description:
| eWebquiz version 8 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1224 | | Last Modified: | Nov 29 15:17:49 2008 | | MD5 Checksum: | b4e403eebb098b3b1a84d90d9eec4dc3 |
|
| /// File Name: | activewebmail-sql.txt | Description:
| Active Web Mail version 4 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1029 | | Last Modified: | Nov 29 15:16:26 2008 | | MD5 Checksum: | c1ad581bef37b94fbb28347539ae5196 |
|
| /// File Name: | activenewsletter-sql.txt | Description:
| Active Newsletter version 4.3 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1112 | | Last Modified: | Nov 29 15:15:29 2008 | | MD5 Checksum: | e5950296a0e3a027daa5a8fa8ad62df5 |
|
| /// File Name: | activeprice-sql.txt | Description:
| Active Price Comparison version 4 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1059 | | Last Modified: | Nov 29 15:13:45 2008 | | MD5 Checksum: | abcc0d26b02cdc3d3e7256ee7f25f2ff |
|
| /// File Name: | activetrade-sql.txt | Description:
| Active Trade version 2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1038 | | Last Modified: | Nov 29 15:12:58 2008 | | MD5 Checksum: | 50b8c9b050b51cb8bd1209577f483185 |
|
| /// File Name: | activemembership-sql.txt | Description:
| Active Membership version 2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1048 | | Last Modified: | Nov 29 15:12:07 2008 | | MD5 Checksum: | 39c54a340d8a830af571a0cea96fe67e |
|
| /// File Name: | activewebsurvey-sql.txt | Description:
| Active Websurvey version 9.1 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1224 | | Last Modified: | Nov 29 15:10:48 2008 | | MD5 Checksum: | a2a22beafef927411592abb0641e9b6f |
|
| /// File Name: | activetest-sql.txt | Description:
| Active Test version 2.1 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1039 | | Last Modified: | Nov 29 15:09:29 2008 | | MD5 Checksum: | 1a55665f05bb53f2c365e084d1a8a315 |
|
| /// File Name: | activevotes-sql.txt | Description:
| Active Votes version 2.2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1040 | | Last Modified: | Nov 29 15:08:41 2008 | | MD5 Checksum: | 19faf6a13c95a2ca7734910bb96e4581 |
|
| /// File Name: | activeforce-sql.txt | Description:
| Active Force Matrix version 2 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1067 | | Last Modified: | Nov 29 15:07:41 2008 | | MD5 Checksum: | 1753f9d302aa068cd784e4c9abd04347 |
|
| /// File Name: | aspreferral-sql.txt | Description:
| ASPReferral version 5.3 suffers from a blind SQL injection vulnerability. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1119 | | Last Modified: | Nov 29 15:06:39 2008 | | MD5 Checksum: | 57070cb97ad91974e49f7fb60ed74bed |
|
| /// File Name: | dsa-1672-1.txt | Description:
| Debian Security Advisory 1672-1 - Julien Danjou and Peter De Wachter discovered that a buffer overflow in the XPM loader of Imlib2, a powerful image loading and rendering library, might lead to arbitrary code execution. | | Homepage: | http://www.debian.org/security | | File Size: | 6708 | | Related CVE(s): | CVE-2008-5187 | | Last Modified: | Nov 28 22:09:06 2008 | | MD5 Checksum: | 2fa8b95db4c1de901b203e34086204b2 |
|
| /// File Name: | Exomind-v0.2.tar.gz | Description:
| Exomind is an experimental Python console and programmatic framework for building decorated graphs and developing open-source intelligence modules and ideas, centered on social network services, search engines and instant messaging. | | Author: | Jose Orlicki | | Homepage: | http://corelabs.coresecurity.com/ | | File Size: | 626364 | | Last Modified: | Nov 28 22:07:17 2008 | | MD5 Checksum: | 243ddeac2722235a9aeb12da81925aec |
|
| /// File Name: | revou-sql.txt | Description:
| ReVou Twitter Clone suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | R3d-D3v!L | | Homepage: | http://www.ahacker.net/ | | File Size: | 1031 | | Last Modified: | Nov 28 22:01:41 2008 | | MD5 Checksum: | bf85304f9a8c8e0561de957e1e27d701 |
|
| /// File Name: | cmslittle-sql.txt | Description:
| CMS little remote SQL injection exploit that makes use of index.php. | | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 3566 | | Last Modified: | Nov 28 22:00:35 2008 | | MD5 Checksum: | 6864a2d2bad1bb91146ef84f43685c21 |
|
| /// File Name: | booking-sqlxss.txt | Description:
| Booking System suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Pouya Server | | File Size: | 734 | | Last Modified: | Nov 28 21:58:40 2008 | | MD5 Checksum: | 67e40ff44b396861f92c55450cad92fb |
|
| /// File Name: | basiccms-xss.txt | Description:
| Basic CMS suffers from a cross site scripting vulnerability. | | Author: | Pouya Server | | File Size: | 505 | | Last Modified: | Nov 28 21:57:24 2008 | | MD5 Checksum: | f30467071f0e75516805f8e442b87de6 |
|
| /// File Name: | comersuscart-xss.txt | Description:
| Comersus ASP Shopping Cart suffers from a cross site scripting vulnerability. | | Author: | Pouya Server | | File Size: | 621 | | Last Modified: | Nov 28 21:52:03 2008 | | MD5 Checksum: | d30e77d8a37dfb03052fe53285f4927e |
|
| /// File Name: | turnkeyarcade-xss.txt | Description:
| Turnkey Arcade Script suffers from a cross site scripting vulnerability. | | Author: | Pouya Server | | File Size: | 564 | | Last Modified: | Nov 28 21:51:11 2008 | | MD5 Checksum: | 37fecf66e2325da7156ee0b7533fe9ac |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
