Section:  .. / 0603-exploits  /

Page 4 of 7
<< 1 2 3 4 5 6 7 >> Files 75 - 100 of 158
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: runcms1xXSS.txt
Description:
Runcms version 1.x is susceptible to cross site scripting attacks in bigshow.php.
Author:Roozbeh Afrasiabi
Homepage:http://www.kapda.ir
File Size:1769
Last Modified:Mar 8 06:40:19 2006
MD5 Checksum:5344b3c668e49ef9704a3fe27f57379b

 ///  File Name: MyBB104SQL.txt
Description:
MyBB versions 1.04 and below remote SQL injection exploit using misc.php.
Author:D3vil-0x1
File Size:1764
Last Modified:Mar 6 08:05:23 2006
MD5 Checksum:d7f8361d963c9df610c082b6962c6366

 ///  File Name: HYSA-2006-006-g-book.txt
Description:
G-Book version 1.0 is susceptible to cross site scripting attacks.
Author:matrix_k, h4cky0u
Homepage:http://www.h4cky0u.org
File Size:1701
Last Modified:Apr 1 07:40:49 2006
MD5 Checksum:ea986e4e11da064400f16b6d1c4bc8bd

 ///  File Name: greymatter121d-1.pl.txt
Description:
GreyMatter WebLog versions 1.21d and below remote command execution exploit.
Author:Hessam-X
Homepage:http://www.deltahacking.com
File Size:1645
Last Modified:Apr 1 08:22:43 2006
MD5 Checksum:0cf8dfe232f4a9b52eaa5e4423a388c4

 ///  File Name: EV0087.txt
Description:
ShoutLIVE v1.1.0 is vulnerable to PHP code execution.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1626
Last Modified:Mar 9 04:44:08 2006
MD5 Checksum:504f38939583759eb075943a21d00910

 ///  File Name: EV0086.txt
Description:
Simple Machines Forum, or SMF, version 1.0.6 is susceptible to a cross site scripting vulnerable in the X-Forwarded-For directive that can be used to commit attacks against an administrator.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1593
Related CVE(s):CVE-2006-0896
Last Modified:Mar 8 08:40:28 2006
MD5 Checksum:6b725ad32cbdf9382bdbf482e095d4ee

 ///  File Name: aztek40.txt
Description:
AZTEK forums version 4.0 suffers from cross site scripting and information leakage flaws.
Homepage:http://ght.c.la/
File Size:1581
Last Modified:Mar 6 07:59:25 2006
MD5 Checksum:3be4ed6847fb947971c1d7bb65b55a1a

 ///  File Name: joomla.txt
Description:
Joomla! CMS version 1.0.7 is susceptible to arbitrary file creation and denial of service flaws.
Author:Foster
Homepage:http://rst.void.ru/
File Size:1578
Last Modified:Mar 3 09:20:09 2006
MD5 Checksum:cbd8a8e2905436bf59ace2879d86f52c

 ///  File Name: JupiterCMS.txt
Description:
Jupiter CMS versions 1.1.5 and below suffer from multiple cross site scripting attack vectors. Details provided.
Author:zerogue
Homepage:http://0x4f4c.awardspace.com
File Size:1528
Last Modified:Mar 12 22:58:46 2006
MD5 Checksum:2a7b56e72aceb285d2cee9f31217e29b

 ///  File Name: directContact03b.txt
Description:
DirectContact version 0.3b is susceptible to a classic directory traversal attack.
Author:Donato Ferrante
Homepage:http://www.autistici.org/fdonato
File Size:1511
Last Modified:Mar 2 11:05:03 2006
MD5 Checksum:dd67b6f6eea0e43c663d7ad8e95bc8ae

 ///  File Name: vbulletinXSSpasswd.txt
Description:
vBulletin versions 3.0.12 through 3.5.3 are susceptible to cross site scripting.
Author:imei addmimistrator
File Size:1477
Last Modified:Mar 3 10:09:00 2006
MD5 Checksum:1d1e7f3c2996a5952be1f855e95d55a0

 ///  File Name: EV0088.txt
Description:
EKINboard v1.0.3 suffers from XSS and SQL injection vulnerabilities.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1463
Last Modified:Mar 9 04:54:34 2006
MD5 Checksum:0f1d349caf06da3fd30faab69d071baf

 ///  File Name: n8cmsFlaws.txt
Description:
n8cms versions 1.1 and 1.2 are susceptible to SQL injection and cross site scripting attacks.
Author:Liz0ziM
Homepage:http://biyosecurity.be/
File Size:1442
Last Modified:Mar 2 11:17:26 2006
MD5 Checksum:92171ee3a1eb9257b01cac39f2ba087f

 ///  File Name: EV0104.txt
Description:
Skull-Splitter's PHP Guestbook versions 2.6 and 2.7 suffer from cross site scripting flaws.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1380
Related CVE(s):CVE-2006-1256
Last Modified:Apr 1 08:50:39 2006
MD5 Checksum:f643f73628a9e41a1a4253b0c7e49aa2

 ///  File Name: dvguestbook.txt
Description:
DVguestbook versions 1.0 and 1.2.2 suffer from multiple cross site scripting flaws.
Author:Liz0ziM
Homepage:http://www.biyosecurity.com
File Size:1334
Last Modified:Mar 8 06:49:56 2006
MD5 Checksum:e2231c8a13520eccff9545d43192f705

 ///  File Name: UnrealIRCd3.2.3.pl.txt
Description:
Denial of Service exploit for UnrealIRCd 3.2.3 adding/removing Q:lines vulnerability.
Author:Brandon Milner
Homepage:http://redneck.servebeer.com
File Size:1326
Last Modified:Mar 10 01:39:27 2006
MD5 Checksum:eb815b5458b03804ebb7789c3745ec4c

 ///  File Name: PEHEPE-XSS.txt
Description:
The PEHEPE Membership Management System is susceptible to cross site scripting and remote command execution vulnerabilities.
Author:Yunus Emre Yilmaz
File Size:1323
Last Modified:Mar 2 11:30:06 2006
MD5 Checksum:57c900167f4630182e410d8d12d91d89

 ///  File Name: EV0105.txt
Description:
Skull-Splitter's PHP Downloadcounter for Wallpapers version 1.0 suffers from SQL injection flaws.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1295
Related CVE(s):CVE-2006-1328
Last Modified:Apr 1 08:52:30 2006
MD5 Checksum:f61c33eefe0a96021fdcf5284257b253

 ///  File Name: EV0083.txt
Description:
E-Blah Platinum is susceptible to cross site scripting via the use of HTTP_REFERER.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1294
Related CVE(s):CVE-2006-0829
Last Modified:Mar 3 11:15:11 2006
MD5 Checksum:025bedd0988716ef61024589146aae17

 ///  File Name: irix6local.txt
Description:
SGI IRIX 6.5 local root exploit that makes use of /usr/sysadm/bin/lezririx.
Author:RoDhEDoR
File Size:1248
Last Modified:Mar 12 23:05:39 2006
MD5 Checksum:accacb1a726b2b73f1a62b596bc361f3

 ///  File Name: EV0103.txt
Description:
Maian Support version 1.0 suffers from a SQL injection flaw allowing for authentication bypass.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1245
Related CVE(s):CVE-2006-1259
Last Modified:Apr 1 08:10:34 2006
MD5 Checksum:c43b4e750621ce22c0eec8b663687ae9

 ///  File Name: EV0078.txt
Description:
Quirex versions 2.0 and below suffer from an arbitrary file disclosure vulnerability.
Author:Aliaksandr Hartsuyeu
Homepage:http://evuln.com/
File Size:1228
Related CVE(s):CVE-2006-0795
Last Modified:Mar 2 10:20:16 2006
MD5 Checksum:66908a4395feaa3f691cc3c7c8520fae

 ///  File Name: myBB-SQL.txt
Description:
MyBB version 1.3 is susceptible to SQL injection attacks via a malformed user supplied cookie.
Author:D3vil-0x1
File Size:1217
Last Modified:Mar 2 11:20:19 2006
MD5 Checksum:f269a3fe79b009d85a081d597b2dc880

 ///  File Name: EzASPSiteSQL.txt
Description:
EzASPSite version 2.0 RC3 and below remote SQL injection exploit.
Author:nukedx
Homepage:http://www.nukedx.com
File Size:1214
Last Modified:Apr 1 08:56:14 2006
MD5 Checksum:288348ce057b31fd0f4c35b11a628b9d

 ///  File Name: php-atm.txt
Description:
It is possible to download the users password hashed in PHP Advanced Transfer Manager 1.x via a special URL.
Author:Liz0ziM
Homepage:http://www.biyosecurity.com
File Size:1197
Last Modified:Mar 10 01:58:05 2006
MD5 Checksum:2971dd86b7a3b7d9a653c2737ec2f0ad