what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 20 of 20

Files from Sora

Simple PHP Blog 5.11 Cross Site Scripting

Posted Jan 13, 2010

Authored by Sora

Simple PHP Blog version 5.11 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss

SHA-256 | 0cab6c54a24606b14a4da3360bf1e9deb225ef5e0875dd3aaa8c291ac33e88fb

Download | Favorite | View

Calendar Express 2 Cross Site Scripting

Posted Jan 12, 2010

Authored by Sora

Calendar Express 2 version 2.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | ef606f40ab468debfd3f62da5185c8d532378a1f2a6d517da4edf92600ea0a07

Download | Favorite | View

Sniggabo CMS 2.21 Cross Site Scripting

Posted Jan 7, 2010

Authored by Sora

Sniggabo CMS version 2.21 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | a892685595e5f19d5ff6f696e8d2e2479ef09161f35bd8df02752fcda68b3dfa

Download | Favorite | View

Ulisse's Scripts 2.6.1 SQL Injection

Posted Jan 7, 2010

Authored by Sora

Ulisse's Scripts version 2.6.1 suffers from a remote SQL injection vulnerability in ladder.php.

tags | exploit, remote, php, sql injection

SHA-256 | 3662f1abb30ab7a3dc33f968583b82391eeefb84830ffb52acf94002a3582c9d

Download | Favorite | View

ESET Cross Site Scripting

Posted Jan 5, 2010

Authored by Sora

ESET.com suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | c89397c70db52686ce763e21e2937dabd8affe7a8b6fc849308fcf0774f69bd6

Download | Favorite | View

NOD32 Cross Site Scripting

Posted Jan 5, 2010

Authored by Sora

NOD32.com.cn suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | fb4b1550bb37da38c4ab17d717730a41ab2bded81a2de65c8471c31e204e9a4c

Download | Favorite | View

Zone-H Cross Site Scripting

Posted Jan 5, 2010

Authored by Sora

Zone-H.com.cn suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | fc637706713f958906a767b9db011553c3f977c4ac74f4f4374cafdb59a4db83

Download | Favorite | View

Blocking Common Web Attacks

Posted Jan 4, 2010

Authored by Sora

Whitepaper called Blocking Common Web Attacks.

tags | paper, web

SHA-256 | 259e9e275105cef9d8e57da54d438055f0988b9ee4e47b8a4f896b378bf02608

Download | Favorite | View

HLstatsX Community Edition 1.6.5 Cross Site Scripting

Posted Jan 4, 2010

Authored by Sora

HLstatsX Community Edition version 1.6.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 319c4be297db7afa7056300611b1b21fea9ecd5ac119e752bdce7722cbf1cf19

Download | Favorite | View

Elite Gaming Ladders 3.0 SQL Injection

Posted Jan 4, 2010

Authored by Sora

Elite Gaming Ladders version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 83ba0cde8b2cc9646f5a05c1f9ddcfba6ebe2a82404cd7a1e1c128c6589c0e5c

Download | Favorite | View

Left 4 Dead Stats SQL Injection

Posted Jan 4, 2010

Authored by Sora

Left 4 Dead Stats version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 076ec161ec82a883a608b91bf7256e0eb085831f187a4a279e95c6412604efbe

Download | Favorite | View

WD-CMS 3.0 XSS / File Disclosure

Posted Jan 4, 2010

Authored by Sora

WD-CMS version 3.0 suffers cross site scripting and file disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure

SHA-256 | b9b61086c098d5990e6b8b235162dc7ec35090bbdda007ea74fc2b095179bf63

Download | Favorite | View

UCStats 1.1 SQL Injection

Posted Jan 4, 2010

Authored by Sora

UCStats version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 59eb88ca5fdfa45d50864bad5005ed79cf00f7fc3f06916c0d825fbabdd5792e

Download | Favorite | View

HLstats 1.35 Cross Site Scripting

Posted Jan 4, 2010

Authored by Sora

HLstats version 1.35 suffers from a cross site scripting vulnerability. Same issue as previously discovered in 1.34.

tags | exploit, xss

SHA-256 | 1c0107515ae5fb400c7068193fc93d88f1835735bbde29ae58e65a4127fb2ecb

Download | Favorite | View

Cype CMS SQL Injection

Posted Jan 4, 2010

Authored by Sora

Cype CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 3bb2ee35b6c8c73db6c5650048c3eb27718f1e5072c5884c4bb0ef241dd17499

Download | Favorite | View

Jevonweb Guestbook Administrative Access

Posted Dec 30, 2009

Authored by Sora

Jevonweb Guestbook version 1.0 suffers from a remote administrative access vulnerability.

tags | exploit, remote, add administrator

SHA-256 | 15951652eb1bc464ce1a839b2fad028b822f53431f0536e2563083e26d1853e4

Download | Favorite | View

Simple PHP Guestbook 1.0 Administrative Access

Posted Dec 30, 2009

Authored by Sora

Simple PHP Guestbook version 1.0 suffers from a remote administrative access vulnerability.

tags | exploit, remote, php, add administrator

SHA-256 | 85f25638e622b18238b77452d7aedc3e6507c2d014ef97daecac03a373e2a9c4

Download | Favorite | View

ImageVue 2.0 Administrative Bypass

Posted Dec 30, 2009

Authored by Sora

ImageVue version 2.0 suffers from a default administrative login vulnerability.

tags | exploit, bypass

SHA-256 | f402f0bfab1aa1226cd2d850e1adf366f8908575e4791c2f4e73993579b4ad5a

Download | Favorite | View

Jax Guestbook 3.50 Administrative Login Bypass

Posted Dec 29, 2009

Authored by Sora

Jax Guestbook version 3.50 suffers from a direct access vulnerability that allows for administrative login bypass.

tags | exploit, bypass

SHA-256 | a17d907cf40a6fb15b6e755567027de9f0e8939c8b205a2c88e84c28095aa208

Download | Favorite | View

Drumbeat CMS 1.0 SQL Injection

Posted Dec 22, 2009

Authored by Sora

Drumbeat CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 251a84fc9b4b6b1cdcf38c0692d1132c2b98f5e6a2b34435d0d3efbc15b6e78a

Download | Favorite | View