Section:  .. / 1007-exploits  /

Page 8 of 16
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 >> Files 175 - 200 of 378
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: customcms-xss.txt
Description:
CustomCMS suffers from a persistent cross site scripting vulnerability.
Author:Sid3 effects
File Size:1672
Last Modified:Jul 14 00:41:15 2010
MD5 Checksum:a7d43bd73af502ecd760e4423d5cd214

 ///  File Name: asxtomp3-seh.txt
Description:
ASX to MP3 Converter version 3.1.2.1 SEH exploit with DEP and ASLR bypass for multiple OSes.
Author:Node
File Size:12677
Last Modified:Jul 14 00:39:02 2010
MD5 Checksum:128a5d09cf798d9f66865e6e2c1c7a56

 ///  File Name: ms10_042_helpctr_xss_cmd_exec.rb.tx..>
Description:
Help and Support Center is the default application provided to access online documentation for Microsoft Windows. Microsoft supports accessing help documents directly via URLs by installing a protocol handler for the scheme "hcp". Due to an error in validation of input to hcp:// combined with a local cross site scripting vulnerability and a specialized mechanism to launch the XSS trigger, arbitrary command execution can be achieved. On IE7 on XP SP2 or SP3, code execution is automatic. If WMP9 is installed, it can be used to launch the exploit automatically. If IE8 and WMP11, either can be used to launch the attack, but both pop dialog boxes asking the user if execution should continue. This exploit detects if non-intrusive mechanisms are available and will use one if possible. In the case of both IE8 and WMP11, the exploit defaults to using an iframe on IE8, but is configurable by setting the DIALOGMECH option to "none" or "player".
Author:Tavis Ormandy
Homepage:http://www.metasploit.com
File Size:11486
Related OSVDB(s):65264
Related CVE(s):CVE-2010-1885
Last Modified:Jul 14 00:36:35 2010
MD5 Checksum:fe6a8f0469f30f0e780266ef8452f14b

 ///  File Name: diem-xss.txt
Description:
Diem version 5.1.2 suffers from multiple cross site scripting vulnerabilities.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:3945
Last Modified:Jul 14 00:34:21 2010
MD5 Checksum:9fda5cdbc4990cdeee1c7c452126a2c9

 ///  File Name: cmsqlite-sqlxss.txt
Description:
CMSQLite suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:4627
Last Modified:Jul 14 00:17:13 2010
MD5 Checksum:39fcf37a32e4abd97b37eaaeb165f474

 ///  File Name: campsitecms-xss.txt
Description:
Campsite CMS suffers from a cross site scripting vulnerability.
Author:D4rk357
File Size:946
Last Modified:Jul 14 00:14:16 2010
MD5 Checksum:5cac5657b73640589ad36a4f8ecae657

 ///  File Name: inetem-sql.txt
Description:
I-net Enquiry Management Script suffers from a remote SQL injection vulnerability.
Author:D4rk357
File Size:1793
Last Modified:Jul 12 23:30:30 2010
MD5 Checksum:2cc09aa8ece17239fb8fa6d49320eb1f

 ///  File Name: ari-lfixsrfxss.txt
Description:
Asterisk Recording Interface suffers from cross site request forgery, cross site scripting, denial of service, local file inclusion and path disclosure vulnerabilities.
Author:TurboBorland
File Size:11650
Last Modified:Jul 12 23:28:54 2010
MD5 Checksum:b12a4771ed771c943be7f6740a2c87ba

 ///  File Name: orbis-xsrf.txt
Description:
Orbis CMS version 1.0.2 suffers from multiple cross site request forgery vulnerabilities.
Author:10n1z3d
File Size:2172
Last Modified:Jul 12 23:03:57 2010
MD5 Checksum:25e855e74da853021982c729fb84bbbb

 ///  File Name: cmsmadesimpleantz-shell.txt
Description:
CMS Made Simple version 1.8 with the Antz Toolkit version 1.02 module remote shell upload exploit.
Author:John Leitch
File Size:2848
Last Modified:Jul 12 23:02:32 2010
MD5 Checksum:9b062664e67273ecaac22a925ae5241f

 ///  File Name: cmsmadesimpledm-shell.txt
Description:
CMS Made Simple version 1.8 with the Download Manager version 1.4.1 module remote shell upload exploit.
Author:John Leitch
File Size:2517
Last Modified:Jul 12 23:01:00 2010
MD5 Checksum:30fa6982b21969a815e2be0265102fce

 ///  File Name: cmsmadesimple18-lfi.txt
Description:
CMS Made Simple version 1.8 local file inclusion exploit.
Author:John Leitch
File Size:1179
Last Modified:Jul 12 23:00:07 2010
MD5 Checksum:4cca55eaade0d3f8cd38fb41e9f7ec38

 ///  File Name: pyrocms-xsrf.txt
Description:
PyroCMS 0.9.9.1 cross site request forgery exploit that adds a new administrator.
Author:John Leitch
File Size:1622
Last Modified:Jul 12 22:58:24 2010
MD5 Checksum:3f41945b790c8e633ff1179e8d8fff38

 ///  File Name: thehostingtool-xsrf.txt
Description:
TheHostingTool version 1.2.2 suffers from multiple cross site request forgery vulnerabilities.
Author:10n1z3d
File Size:1679
Last Modified:Jul 12 22:56:37 2010
MD5 Checksum:ef0c8c125314579a5273a7134f149b71

 ///  File Name: campsitecms-xsrf.txt
Description:
Campsite CMS version 3.4.0 suffers from multiple cross site request forgery vulnerabilities.
Author:10n1z3d
File Size:3793
Last Modified:Jul 12 22:55:28 2010
MD5 Checksum:739152d8a468762daa976415438d7da5

 ///  File Name: grafikcms-xsrf.txt
Description:
Grafik CMS version 1.1.2 suffers from multiple cross site request forgery vulnerabilities.
Author:10n1z3d
File Size:2010
Last Modified:Jul 12 22:51:11 2010
MD5 Checksum:23c4630b09f8d4be1d44223e583f37e2

 ///  File Name: image22-overflow.txt
Description:
Image22 version 1.1.1 Active-X buffer overflow exploit that binds a shell to port 4444.
Author:Blake
File Size:3982
Last Modified:Jul 12 21:06:24 2010
MD5 Checksum:e1ee24b151ecbe8c442c145847e1eef9

 ///  File Name: orbis-bypass.txt
Description:
Orbis version 1.0.2 suffers from an authentication bypass vulnerability.
Author:John Leitch
File Size:933
Last Modified:Jul 12 21:01:33 2010
MD5 Checksum:c58ffda277cae496d41f21a5437f6c4f

 ///  File Name: koobicms430-sql.txt
Description:
Koobi CMS versions 4.3.0, 4.2.5 and 4.2.4 suffers from a remote SQL injection vulnerability.
Author:SIL3NCIO
File Size:1531
Last Modified:Jul 12 21:00:06 2010
MD5 Checksum:7aa24b13da175e462a4d76847b8aff19

 ///  File Name: lifetype-xsrf.txt
Description:
LifeType version 1.2.10 cross site request forgery exploit that adds a new administrator.
Author:John Leitch
File Size:1795
Last Modified:Jul 12 20:58:32 2010
MD5 Checksum:e71f5bdb76d61f1d7281b9817cc07a32

 ///  File Name: globber-xsrf.txt
Description:
Globber version 1.4 cross site request forgery exploit that can add and delete blog posts.
Author:John Leitch
File Size:1471
Last Modified:Jul 12 20:57:29 2010
MD5 Checksum:281a764e2efa872759b4a1a245226e6a

 ///  File Name: tomatocms205-xsrf.txt
Description:
TomatoCMS version 2.0.5 suffers from multiple cross site request forgery vulnerabilities.
Author:10n1z3d
File Size:3361
Last Modified:Jul 12 20:56:28 2010
MD5 Checksum:fd67aac30023d37e5161d44867d598b8

 ///  File Name: tomatocart101-xsrf.txt
Description:
TomatoCart version 1.0.1 suffers from multiple cross site request forgery vulnerabilities.
Author:10n1z3d
File Size:2889
Last Modified:Jul 12 20:55:08 2010
MD5 Checksum:4deb8ed3a827e74b33e5d2fe7ce84779

 ///  File Name: joomlaeasyblog-xss.txt
Description:
The Joomla EasyBlog component suffers from a cross site scripting vulnerability.
Author:Sid3 effects
File Size:1159
Last Modified:Jul 12 20:49:06 2010
MD5 Checksum:04cfab08e350d1bda2133dd4a9f3076e

 ///  File Name: macscms-xssxsrf.txt
Description:
Macs CMS version 1.1.4 suffers from cross site request forgery and cross site scripting vulnerabilities.
Author:10n1z3d
File Size:1480
Last Modified:Jul 12 20:48:17 2010
MD5 Checksum:35575a4a4b02aaa98a55723c3cc252e7