Section:  .. / 1005-exploits  /

Page 4 of 20
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 >> Files 75 - 100 of 489
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: lizzardactivemedia-xss.html
Description:
Lizzard Active Media suffers from a cross site scripting vulnerability.
Author:XroGuE
File Size:1559
Last Modified:May 26 20:24:52 2010
MD5 Checksum:0d85167582ce48ee448eb36409018cc7

 ///  File Name: bypassing-chrome.pdf
Description:
Google Chrome 4 suffers from a javascript filter bypass vulnerability.
Author:Manuel Fernandez
File Size:184813
Last Modified:May 26 20:23:35 2010
MD5 Checksum:4bd84749b0a8d69ff082269bc52ca4c4

 ///  File Name: ruubikcms-xss.txt
Description:
Ruubik CMS version 1.0.3 suffers from a cross site scripting vulnerability.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:1941
Last Modified:May 26 19:50:14 2010
MD5 Checksum:690dc7a4429b8eac3249dc1ebb1e7647

 ///  File Name: getsimplecms-xss.txt
Description:
GetSimple CMS version 2.01 suffers from a cross site scripting vulnerability.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:1685
Last Modified:May 26 19:48:52 2010
MD5 Checksum:71c934fc19fc3799a0734f9fa2cc26a9

 ///  File Name: razorcms-xss.txt
Description:
Razor CMS version 1.0 stable suffers from a cross site scripting vulnerability.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:1478
Last Modified:May 26 19:47:42 2010
MD5 Checksum:2a5337d2df23833db9d663d8e1f3fc9b

 ///  File Name: 360-xss.txt
Description:
360 Web Manager version 3.0 suffers from a cross site scripting vulnerability.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:1038
Last Modified:May 26 19:44:23 2010
MD5 Checksum:fd5305277ed3d624f842c6633e9e2945

 ///  File Name: ms01_026_dbldecode.rb.txt
Description:
This Metasploit module will execute an arbitrary payload on a Microsoft IIS installation that is vulnerable to the CGI double-decode vulnerability of 2001. NOTE: This Metasploit module will leave a metasploit payload in the IIS scripts directory.
Author:jduck
Homepage:http://www.metasploit.com
File Size:4074
Related OSVDB(s):556
Related CVE(s):CVE-2001-0333
Last Modified:May 26 19:28:52 2010
MD5 Checksum:d8cc76c987e3da3d8b69e025a0767453

 ///  File Name: web5000-sql.txt
Description:
Design by Web5000 suffer from a remote SQL injection vulnerability.
Author:BLaCk RevenGe
File Size:861
Last Modified:May 26 01:39:10 2010
MD5 Checksum:6695387f81fb535d753bfb3a0544d9de

 ///  File Name: flock-dos.txt
Description:
Flock Web Browser version 2.5.6 remote memory corruption denial of service crash exploit.
Author:eidelweiss
File Size:2143
Last Modified:May 26 01:38:50 2010
MD5 Checksum:afbe57b9338f134049ad976634df423c

 ///  File Name: Dr_IDE-OCFTP_DoS.py.txt
Description:
Open and Compact FTP Server version 1.2 universal pre-auth denial of service exploit.
Author:Dr_IDE
File Size:991
Last Modified:May 26 01:34:07 2010
MD5 Checksum:18d7908244ca01c10c51dfeddf02332c

 ///  File Name: webitcms-sql.txt
Description:
Webit CMS suffers from a remote SQL injection vulnerability.
Author:CoBRa_21
File Size:840
Last Modified:May 26 01:31:36 2010
MD5 Checksum:fa1bfe3e157e1b5e884b55965a5582cf

 ///  File Name: webby-overflow.txt
Description:
Webby Webserver version 1.01 suffers from a buffer overflow vulnerability.
Author:Michael Messner
File Size:1584
Last Modified:May 26 01:28:18 2010
MD5 Checksum:6d5e25e7db92da1084775d222ee76f0e

 ///  File Name: mkportalcatphones-xss.txt
Description:
The MKPortal Catphones module suffers from a cross site scripting vulnerability.
Author:Inj3ct0r
File Size:1832
Last Modified:May 26 01:22:56 2010
MD5 Checksum:90a1aa49f5022360feefb5a278f990a4

 ///  File Name: simpleside-sql.txt
Description:
Simpleside suffers from a remote SQL injection vulnerability.
Author:MN9
File Size:1266
Last Modified:May 26 01:11:37 2010
MD5 Checksum:9c0bb0731caea0ec49fe3bd781205161

 ///  File Name: nitro-sql.txt
Description:
Nitro Web Gallery suffers from a remote SQL injection vulnerability.
Author:cyberlog
File Size:2269
Last Modified:May 25 23:47:50 2010
MD5 Checksum:2e17d5f1532aa8c830ddd71370579359

 ///  File Name: netricks-sql.txt
Description:
Website Design and Hosting By Netricks, Inc suffers from a remote SQL injection vulnerability.
Author:Dr.SiLnT HilL
File Size:2436
Last Modified:May 25 23:41:54 2010
MD5 Checksum:43783256ff87793b1c53bfd0c2911438

 ///  File Name: MOPS-2010-040.pdf
Description:
Month Of PHP Security - PHP's strtr() function can be abused for information leak attacks, similar to all the other interruption exploits. However the interruption is not triggered inside the zend_parse_parameters() function and therefore another fix is required. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:66939
Last Modified:May 25 23:25:13 2010
MD5 Checksum:07349a70c2ec4dae56e786408452609f

 ///  File Name: MOPS-2010-039.pdf
Description:
Month Of PHP Security - PHP's strpbrk() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:65427
Last Modified:May 25 23:22:40 2010
MD5 Checksum:c86bdd33424d949ac003fcd1c6a53485

 ///  File Name: MOPS-2010-038.pdf
Description:
Month Of PHP Security - PHP's http_build_query() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:68257
Last Modified:May 25 23:19:30 2010
MD5 Checksum:174e7f2d708eed382f8512559f3fbdad

 ///  File Name: MOPS-2010-037.pdf
Description:
Month Of PHP Security - PHP's str_getcsv() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:64804
Last Modified:May 25 23:14:29 2010
MD5 Checksum:388e0fd4bb12bfa8dc6af2aafb30c88b

 ///  File Name: MOPS-2010-036.pdf
Description:
Month Of PHP Security - PHP’s htmlentities() and htmlspecialchars() functions can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:65167
Last Modified:May 25 18:22:01 2010
MD5 Checksum:58a2282704682891d8a123b19550f836

 ///  File Name: realestateportal-shell.txt
Description:
Real Estate Portal suffers from a shell upload vulnerability.
Author:MasterGipy
File Size:1643
Last Modified:May 25 18:18:24 2010
MD5 Checksum:88a3cf3e0c8e4568400e939519a7ec4c

 ///  File Name: MOPS-2010-035.pdf
Description:
Month Of PHP Security - It was discovered that access control to the [php] bbcode which allows executing PHP code is wrongly implemented in e107. This allows unauthenticated users to execute arbitrary PHP code easily. e107 versions 0.7.20 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:73511
Last Modified:May 25 18:15:53 2010
MD5 Checksum:4346bfb6d6ada1280a974af5e3c38c10

 ///  File Name: mkportalhoroscop-xss.txt
Description:
The MKPortal Horoscop module suffers from a cross site scripting vulnerability.
Author:Inj3ct0r
File Size:1312
Last Modified:May 25 18:12:54 2010
MD5 Checksum:6bafb5a7d79cc0a8866005031aa543ab

 ///  File Name: MOPS-2010-034.pdf
Description:
Month Of PHP Security - PHP's iconv_mime_encode() function can be abused for information leak attacks, because of the call time pass by reference feature. This vulnerability also demonstrates that fixing zend_parse_parameters() is not enough to kill some of these vulnerabilities. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
Author:Stefan Esser
Homepage:http://www.php-security.org/
File Size:67606
Last Modified:May 25 18:10:05 2010
MD5 Checksum:9867aef6cb0e23eb7e1c90501a688b87