what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 111

Files Date: 2005-08-14

mybb.pl.txt

Posted Aug 14, 2005

Authored by Alberto Trivero | Site codebug.org

MyBB versions 1.00 RC4 and below remote password hash extraction exploit.

tags | exploit, remote

SHA-256 | 0a44b8750c3688167b9319916306537a9a6485d3249e01d686dda2e59be4f2c7

Download | Favorite | View

calendarix.txt

Posted Aug 14, 2005

Authored by Dark Bicho | Site darkbicho.tk

Calendarix Advanced is susceptible to SQL injection attacks. Exploitation provided.

tags | exploit, sql injection

SHA-256 | f4a4f4fd748fe46767e80cf8950047f6933d09349a530d95b1956e257c4c6aee

Download | Favorite | View

codebug-7.txt

Posted Aug 14, 2005

Authored by Alberto Trivero | Site codebug.org

Multiple SQL injection and cross site scripting bugs have been discovered in MyBB 1.00 RC4.

tags | exploit, xss, sql injection

SHA-256 | 1a88cd902008b46e3b8e263d846464c7659ed8471f0507f7db50c50886d61a0e

Download | Favorite | View

NTAdos.txt

Posted Aug 14, 2005

Authored by Roy Hills | Site nta-monitor.com

Nortel VPN Router products are susceptible to a denial of service attack via a malformed IPsec IKE packet.

tags | advisory, denial of service

SHA-256 | 3757ae9bdbba6788484a12d306d65e40e70d5721c7b1adb352c54fee941eaf06

Download | Favorite | View

xcartGold.txt

Posted Aug 14, 2005

Site svt.nukleon.us

x-cart Gold version 4.0.8 suffer from many SQL injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, sql injection

SHA-256 | d4d664d9d9404c7c78c5741a9e5c3c4d47c9621f5eb381053090bd2d24e0ca50

Download | Favorite | View

SSExploit.c

Posted Aug 14, 2005

Authored by Cesar Cerrudo | Site argeniss.com

Exploit for the COM structured storage vulnerability as described in MS05-012. Work on Win2k SP4, WinXP SP2, and Win2k3 SP0.

tags | exploit

systems | windows

advisories | CVE-2005-0047

SHA-256 | b0254015a10b6594140ffe50bc4155344c5a36122f3f931e66aab2e4ea94425e

Download | Favorite | View

PowerDownloadExec.txt

Posted Aug 14, 2005

Site soulblack.com.ar

PowerDownload versions 3.0.2 and 3.0.3 suffer from remote file inclusion and arbitrary code execution flaws.

tags | exploit, remote, arbitrary, code execution, file inclusion

SHA-256 | ecfdb2a2835afad64dff3411356907948374c5ba676dc42f4b98bc9be3f02d7c

Download | Favorite | View

MyBB10rc4XSS.txt

Posted Aug 14, 2005

Authored by August Christopher

MyBB 1.0 RC4 suffers from cross site scripting bugs.

tags | advisory, xss

SHA-256 | 5f2d60d55221f0b3d1a8728024b7021c92a1aefcd2d82e5f0c05ebadc9f1178d

Download | Favorite | View

strong2boom.zip

Posted Aug 14, 2005

Authored by Luigi Auriemma | Site aluigi.altervista.org

Stronghold 2 versions 1.2 and below remote denial of service exploit.

tags | exploit, remote, denial of service

SHA-256 | 7995ef684ccec869dfa4649cf8e84a5c51abc99845e552c496ecf4d8a1d5f481

Download | Favorite | View

strong2boom.txt

Posted Aug 14, 2005

Authored by Luigi Auriemma | Site aluigi.altervista.org

Stronghold 2 versions 1.2 and below suffers from a denial of service flaw due to memory allocation issues with the STLport library.

tags | advisory, denial of service

SHA-256 | 976ad9a4db45122c9f94a89aa1c05cbc12d33cdf624c11b05ef389d9ba69831c

Download | Favorite | View

paypalFlaw.txt

Posted Aug 14, 2005

Authored by Lostmon, FalconDeOro

Paypal suffers from a price manipulation flaw via buttons.

tags | exploit

SHA-256 | 211444247900f329944ae021c4d844567452d60e0caf32e802160f31bad4fd83

Download | Favorite | View

sice-adv.txt

Posted Aug 14, 2005

Authored by Piotr Bania

Compuware Softice (DbgMsg driver) is susceptible to a local denial of service flaw.

tags | advisory, denial of service, local

SHA-256 | d0d925f20dc1bd78fb072fe01d69a8f72c38b5e48e7add0ec1a5c2ccb079a802

Download | Favorite | View

jawsGlossary.txt

Posted Aug 14, 2005

Authored by Paulino Calderon | Site nah.suckea.com

Jaws Glossary version 0.4 through 0.5.1 suffer from cross site scripting flaws.

tags | exploit, xss

SHA-256 | e991bfb30f2a1a7245f48d2e163c87e0ac4bb872253d33e7407bbdf4b33c4c0b

Download | Favorite | View

peercast01211.txt

Posted Aug 14, 2005

Authored by James Bercegay | Site gulftech.org

Peercast versions 0.1211 and below suffer from a format string vulnerability.

tags | advisory

SHA-256 | 86bed774296909ae7c9df7c542098dbef171bbf6e1232a0e69c12cbfefe573b5

Download | Favorite | View

msCrashStack.txt

Posted Aug 14, 2005

Authored by Benjamin Tobias Franz

Microsoft Internet Explorer crashes when it attempts to handle more than 110 stack overflows.

tags | advisory, overflow

SHA-256 | 96d3ac8d6d0eb988502dbd7b292b5bc5f542e8c52e9c2691b4f61a1458a08621

Download | Favorite | View

msCrashEmbed.txt

Posted Aug 14, 2005

Authored by Benjamin Tobias Franz

There is a bug in Microsoft Internet Explorer, which causes a crash in it. The bug occurs, because Microsoft Internet Explorer doesn't limit the depth of embedded files.

tags | advisory

SHA-256 | 8f25fcb6f63c485539677e1666ef70f07aaf092897e24335b28034b74164bcd9

Download | Favorite | View

msCrashJava.txt

Posted Aug 14, 2005

Authored by Benjamin Tobias Franz

A crash causing flaw exists in Microsoft Internet Explorer when calling a javascript function with the name of the window() object.

tags | advisory, javascript

SHA-256 | e3a4ab880dae51393f3337c040dd0dd7bf8beb61d4026f35452b9149f1c7e8c4

Download | Favorite | View

msCrashZone.txt

Posted Aug 14, 2005

Authored by Benjamin Tobias Franz

A crash causing flaw exists in Microsoft Internet Explorer when adding a specially formed URL to a restricted zone.

tags | advisory

SHA-256 | 12a891cd7d0208f529a447e53a1438f652a9ac1adc44dc5fd02098f5595e0a13

Download | Favorite | View

invision.txt

Posted Aug 14, 2005

Invision Power Board versions 1.x and 2.x allow users to move themselves into the root group.

tags | advisory, root

SHA-256 | 53b37a7b6e63cf6cab018ece179117f1582accb73faa79eaddb81485e42be49c

Download | Favorite | View

clamavMac.txt

Posted Aug 14, 2005

Authored by Kevin Amorin, Timothy Morgan

A vulnerability was discovered in ClamAV during a code audit. This vulnerability could allow a local attacker on a MacOS system to elevate privileges to that of a user running a ClamAV process. This problem affects ClamAV versions 0.80rc4 through 0.84rc2, and is fixed in versions 0.84 and later.

tags | advisory, local

SHA-256 | 564b49d55e78da11d6825a8d653c8b71d3ec5587ec5359a008574997aa1a9cbb

Download | Favorite | View

PostNuke0750.txt

Posted Aug 14, 2005

Authored by sp3x | Site securityreason.com

PostNuke versions 0.750 and below suffer from SQL injection and cross site scripting flaws.

tags | exploit, xss, sql injection

SHA-256 | 8fc3d61af2f62298fa9053aa283fdf4a3d664c16d3dc97510075482c7e0df365

Download | Favorite | View

phpmailerLoop.txt

Posted Aug 14, 2005

Site cybsec.com

PHPMailer versions 1.72 and below suffer from a denial of service flaw.

tags | advisory, denial of service

SHA-256 | 6fb2ba63ab1889eb2afc5738e6883e8a3e2aa64611f1ded1bf962eeb374517bf

Download | Favorite | View

mybloggie.pl.txt

Posted Aug 14, 2005

Authored by Alberto Trivero

SQL injection exploit for myBloggie versions 2.1.1 through 2.1.2.

tags | exploit, sql injection

SHA-256 | 6a807f834589098b7b520fb2dc93027fd334223bfa683846fa07a2150c6a229f

Download | Favorite | View

BEA05-V0100.txt

Posted Aug 14, 2005

Site appsecinc.com

BEA WebLogic Server versions 7.0 and 8.1 suffer from a cross site scripting vulnerability in their error page.

tags | exploit, xss

SHA-256 | 73927fc23663cbc4dccf3dd111e9b4e9da9e01ab4db88f32a6aff8a785e1dbec

Download | Favorite | View

BEA05-V0101.txt

Posted Aug 14, 2005

Site appsecinc.com

BEA WebLogic Server versions 7.0 and 8.1 suffer from a cross site scripting vulnerability in their login page.

tags | exploit, xss

SHA-256 | 2a58e30cd9efeff84e3f7bf89e1182fa641264f9c16bf6b78f4f68588b00649d

Download | Favorite | View