Section: .. / 0605-exploits /
| /// File Name: |
1asphost.txt |
Description:
|
1ASPHost and Domain DLX hosting services suffer from cross site scripting flaws.
| | Author: | Spymeta | | File Size: | 1359 | | Last Modified: | May 9 16:18:33 2006 |
| MD5 Checksum: | dd54b31260ba9c9ff85e192a69cf7a08 |
|
| /// File Name: |
invision215.txt |
Description:
|
Invision Power Board version 2.1.5 is subject to remote SQL injection attacks. Details provided. Earlier versions may also be susceptible.
| | Author: | Devil-00 | | File Size: | 1306 | | Last Modified: | May 2 01:24:23 2006 |
| MD5 Checksum: | 4e288262e4e718c92b5c50b1a47ca8f4 |
|
| /// File Name: |
ipswitchXSS.txt |
Description:
|
Ipswitch WhatsUp Professional suffers from source disclosure, information disclosure, and cross site scripting flaws. Weaknesses are confirmed in version 2006. Earlier versions may also be susceptible.
| | Author: | David Maciejak | | File Size: | 1287 | | Last Modified: | May 21 15:11:46 2006 |
| MD5 Checksum: | b2debe79832942b4a35c1a7ad4af0af2 |
|
| /// File Name: |
e107072.txt |
Description:
|
e107 CMS versions 0.7.2 and below suffer from a SQL injection vulnerability during cookie processing.
| | Author: | socsam | | File Size: | 1250 | | Last Modified: | May 21 23:10:22 2006 |
| MD5 Checksum: | 79fada3bde8e622553df82754bd34d8a |
|
| /// File Name: |
UBBThreads-md5.txt |
Description:
|
The XSS vulnerabilities reported for UBBThreads 5.x,6.x will allow you to inject javascript and steal MD5 Hashes.
| | Author: | splices | | Homepage: | http://www.securident.com | | File Size: | 1245 | | Last Modified: | May 29 19:57:52 2006 |
| MD5 Checksum: | 7b8a682ad449ff74b787d53c15f3231c |
|
| /// File Name: |
newsportalsploit.txt |
Description:
|
Newsportal versions 0.36 and below are susceptible to a remote file inclusion vulnerability.
| | Author: | Philipp Niedziela | | Related File: | newsportal.txt | | File Size: | 1223 | | Last Modified: | May 22 01:31:42 2006 |
| MD5 Checksum: | 381b809b49edc33ab2764f4c64b8bdc4 |
|
| /// File Name: |
openfaq040XSS.txt |
Description:
|
OpenFAQ version 0.4.0 is susceptible to cross site scripting attacks.
| | Author: | Kamil Sienicki | | File Size: | 1213 | | Last Modified: | May 6 17:58:52 2006 |
| MD5 Checksum: | 27ec9de6c80b739de2a60006773402f5 |
|
| /// File Name: |
fastclick238.txt |
Description:
|
Fast Click versions 2.3.8 and below suffer from a remote file inclusion flaw that can allow for remote command execution. Details provided.
| | Author: | R@1D3N | | Homepage: | http://www.aria-security.net/ | | File Size: | 1202 | | Last Modified: | May 6 15:58:06 2006 |
| MD5 Checksum: | 0012b5860e2224267fffd33dfe4ae08e |
|
| /// File Name: |
fastclicklite113.txt |
Description:
|
Fast Click SQL Lite versions 1.1.3 and below suffer from a remote file inclusion flaw that can allow for remote command execution. Details provided.
| | Author: | R@1D3N | | Homepage: | http://www.aria-security.net/ | | File Size: | 1197 | | Last Modified: | May 6 15:59:24 2006 |
| MD5 Checksum: | b9109950fe9cdaf6487a3a07e75c3734 |
|
| /// File Name: |
topsitesXSS.txt |
Description:
|
Xtremescripts Topsites version 1.1 is susceptible to cross site scripting and SQL injection attacks.
| | Author: | luny | | File Size: | 1192 | | Last Modified: | May 22 03:02:44 2006 |
| MD5 Checksum: | 7e0869a664a4079af398fac9f75b5751 |
|
| /// File Name: |
invisionCBSQL.txt |
Description:
|
Invision Community Blog is susceptible to SQL injection attacks.
| | Author: | o.y.6 | | File Size: | 1189 | | Last Modified: | May 6 17:46:17 2006 |
| MD5 Checksum: | 5a1e0baae65f50b0afc7c43a3a32d938 |
|
| /// File Name: |
OpenEngineTraverse.txt |
Description:
|
OpenEngine CMS versions 1.8 Beta 2 and below are susceptible to directory traversal attacks.
| | Author: | ck | | File Size: | 1145 | | Last Modified: | May 9 16:24:25 2006 |
| MD5 Checksum: | 4ac124bc81e4b33193315480607a790d |
|
| /// File Name: |
zawhttpd0823.txt |
Description:
|
zawhttpd version 0.8.23 is susceptible to a remote denial of service condition.
| | Author: | Kamil Sienicki | | File Size: | 1131 | | Last Modified: | May 6 16:03:05 2006 |
| MD5 Checksum: | 7d54074779404135c0f08e442d24881d |
|
| /// File Name: |
DMCounter092b.txt |
Description:
|
DMCounter version 0.9.2-b suffers from a remote file inclusion flaw that allows for arbitrary code execution.
| | Author: | beford | | File Size: | 1094 | | Last Modified: | May 2 02:03:30 2006 |
| MD5 Checksum: | 187ac0d1ffb1dc44d1502e5c69d1ae0d |
|
| /// File Name: |
vpasp600.txt |
Description:
|
VP-ASP version 6.00 is susceptible to SQL injection attacks. Exploitation details provided.
| | Author: | tracewar | | File Size: | 1087 | | Last Modified: | May 6 17:57:31 2006 |
| MD5 Checksum: | de586563bb83f334985a9a32f02593ad |
|
| /// File Name: |
phpRaid-2.txt |
Description:
|
phpRaid versions 3.0.b3 through 2.9.5 suffer from a remote file inclusion vulnerability when used with SMF.
| | Author: | botan | | File Size: | 1064 | | Last Modified: | May 9 16:44:29 2006 |
| MD5 Checksum: | 387d548a7f99e28373b8167d10209d24 |
|
| /// File Name: |
vp-asp-new.txt |
Description:
|
VP-ASP versions 6.00 through 6.08 suffer from a remote SQL injection vulnerability.
| | Author: | tracewar | | File Size: | 1062 | | Last Modified: | May 22 03:17:04 2006 |
| MD5 Checksum: | 2e0cae0fb1482400b10e7afb1fa9b07d |
|
| /// File Name: |
zenphotoXSS.txt |
Description:
|
Zenphoto versions 1.0.1 Beta and below suffer from path disclosure and cross site scripting vulnerabilities.
| | Author: | Raphael Huck | | File Size: | 1061 | | Last Modified: | May 5 06:24:24 2006 |
| MD5 Checksum: | ef58c4b7055089eab445140ec28c9233 |
|
| /// File Name: |
squirrelcart.txt |
Description:
|
Squirrelcart versions 2.2.0 and below suffer from a remote file inclusion vulnerability.
| | Author: | OLiBekaS | | File Size: | 1021 | | Last Modified: | May 21 23:37:37 2006 |
| MD5 Checksum: | 53c5604329a479a65955cceecd9b74d4 |
|
| /// File Name: |
ASP-Nuke-community-v1.4SP2.txt |
Description:
|
ASP-Nuke community version 1.4 SP2 suffers from multiple cross site scripting flaws. Earlier versions also may be affected.
| | Author: | MurderSkillz | | File Size: | 929 | | Last Modified: | May 2 02:14:15 2006 |
| MD5 Checksum: | 751beb9cfb8c24fd29f482e246c74bbd |
|
| /// File Name: |
zix112.txt |
Description:
|
Zix Forum versions 1.12 and below suffer from SQL injection vulnerabilities.
| | Author: | PHP Emperor | | File Size: | 910 | | Last Modified: | May 22 03:12:35 2006 |
| MD5 Checksum: | 65798d5810a745563adb51ab10a6928e |
|
| /// File Name: |
Boastmachine.txt |
Description:
|
Boastmachine version 3.1 is susceptible to cross site scripting attacks.
| | Author: | Yunus Emre Yilmaz | | Homepage: | http://yns.zaxaz.com/ | | File Size: | 903 | | Last Modified: | May 22 01:21:29 2006 |
| MD5 Checksum: | a7d3b10e85ac706b9263a909ce48b672 |
|
| /// File Name: |
PhpRemoteView.txt |
Description:
|
PhpRemoteView is susceptible to multiple cross site scripting vulnerabilities.
| | Author: | Soot | | Homepage: | http://www.shabgard.org/ | | File Size: | 896 | | Last Modified: | May 22 00:57:12 2006 |
| MD5 Checksum: | 5351a2f8b1618c246b3b77802e56bbb4 |
|
| /// File Name: |
CmscoutXSS.txt |
Description:
|
Cmscout versions 1.10 and below suffer from multiple cross site scripting flaws.
| | Author: | Nomenumbra | | File Size: | 884 | | Last Modified: | May 6 15:43:58 2006 |
| MD5 Checksum: | afb0242181292d1ffa575c5be8275c95 |
|
| /// File Name: |
phpFoX.txt |
Description:
|
phpFoX could allow a malicious person to log in as any user by editing their cookie.
| | Author: | mx | | Homepage: | http://www.hackmx.net | | File Size: | 872 | | Last Modified: | May 26 18:49:30 2006 |
| MD5 Checksum: | 03bb9735c4b2d18d60f219d1f501b3c0 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
