Section: .. / 0806-exploits /
| /// File Name: |
ccleaguepro-auth.txt |
Description:
|
CCLeague Pro versions 1.2 and below suffer from an insecure cookie authentication vulnerability.
| | Author: | t0pp8uzz | | File Size: | 3742 | | Last Modified: | Jun 23 02:21:33 2008 |
| MD5 Checksum: | c7f3c87efad93d94afe736c6119410ce |
|
| /// File Name: |
cep-blindsql.txt |
Description:
|
Comparison Engine Power version 1.0 blind SQL injection exploit that makes use of product.detail.php.
| | Author: | Mr.SQL | | Homepage: | http://www.pal-hacker.com/ | | File Size: | 3610 | | Last Modified: | Jun 17 14:13:16 2008 |
| MD5 Checksum: | 90a3f9953f779560bc52333681eede20 |
|
| /// File Name: |
cheatswebsite-sql.txt |
Description:
|
Cheats Complete Website version 1.1.1 suffers from a SQL injection vulnerability.
| | Author: | Cyb3r-1sT | | File Size: | 1664 | | Last Modified: | Jun 28 10:48:36 2008 |
| MD5 Checksum: | 40221464d5ae35a73a0e3ff520accf9b |
|
| /// File Name: |
ciblog-sql.txt |
Description:
|
CiBlog version 3.1 suffers from a remote SQL injection vulnerability in links-extern.php.
| | Author: | Mr.SQL | | Homepage: | http://www.pal-hacker.com/ | | File Size: | 1611 | | Last Modified: | Jun 20 21:12:49 2008 |
| MD5 Checksum: | 8f3beadd5dbc5cc4e02d7c888928298c |
|
| /// File Name: |
clevercopy3-sql.txt |
Description:
|
Clever Copy version 3.0 suffers from a SQL injection vulnerability in results.php.
| | Author: | h0yt3r | | File Size: | 2166 | | Last Modified: | Jun 12 21:55:51 2008 |
| MD5 Checksum: | 555bb185cada066f75eb54e53a9a394f |
|
| /// File Name: |
clipshare301-sql.txt |
Description:
|
ClipShare versions below 3.0.1 suffer from a remote SQL injection vulnerability in group_posts.php.
| | Author: | SuNHouSe2 | | File Size: | 1409 | | Last Modified: | Jun 17 14:06:30 2008 |
| MD5 Checksum: | 72aec6170ed36e14a1f76235548d0d1c |
|
| /// File Name: |
cmsbrd-sql.txt |
Description:
|
CMS-BRD suffers from a remote SQL injection vulnerability.
| | Author: | dun | | File Size: | 937 | | Last Modified: | Jun 19 15:04:28 2008 |
| MD5 Checksum: | 2457a873c7db6fb770e5ff9ca699dcb2 |
|
| /// File Name: |
cmsmini-lfi.txt |
Description:
|
CMS Mini version 0.2.2 suffers fro multiple local file inclusion vulnerabilities.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 2797 | | Last Modified: | Jun 23 02:55:34 2008 |
| MD5 Checksum: | 6646d65d3f4a1a63fa056b66d42eaa99 |
|
| /// File Name: |
cmsream-lfixss.txt |
Description:
|
CMSReams CMS version 1.3.1.1 B2 suffers from local file inclusion and cross site scripting vulnerabilities.
| | Author: | CraCkEr | | File Size: | 4551 | | Last Modified: | Jun 23 04:02:48 2008 |
| MD5 Checksum: | 0402ef6f1789081d38589f666b90fec5 |
|
| /// File Name: |
cmsworks-rfi.txt |
Description:
|
cmsWorks version 2.2 RC4 suffers from a remote file inclusion vulnerability.
| | Author: | CraCkEr | | File Size: | 4475 | | Last Modified: | Jun 23 18:42:27 2008 |
| MD5 Checksum: | 9e11889741e6f598539ae792e243c590 |
|
| /// File Name: |
cmsworks-upload.txt |
Description:
|
cmsWorks version 2.2 RC4 remote arbitrary file upload exploit.
| | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 3873 | | Last Modified: | Jun 24 15:23:17 2008 |
| MD5 Checksum: | cfe2cb5af1fdd3ce31e80522e8efd72d |
|
| /// File Name: |
cod4vamap.zip |
Description:
|
Proof of concept exploit for Call of Duty 4: Modern Warfare versions 1.6 and below which suffer from denial of service vulnerabilities. To test, copy the files in the main folder of CoD4 and then type /exec cod4va or /exec cod4map.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | cod4vamap.txt | | File Size: | 764 | | Last Modified: | Jun 23 18:37:51 2008 |
| MD5 Checksum: | ba0a368e8280c811a706e49007ec6fa0 |
|
| /// File Name: |
comicshout28-sql.txt |
Description:
|
ComicShout version 2.8 suffers from a remote SQL injection vulnerability in news.php.
| | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 1054 | | Last Modified: | Jun 2 11:22:52 2008 |
| MD5 Checksum: | 54a8e38d9a7192c5f6127236ce983a8f |
|
| /// File Name: |
commtouch-xss.txt |
Description:
|
The Commtouch Anti-Spam Enterprise Gateway solution suffers from a reflected cross site scripting vulnerability.
| | Author: | Erez Metula | | File Size: | 4535 | | Last Modified: | Jun 26 12:10:51 2008 |
| MD5 Checksum: | 64502b630861699fbe53059371bb552a |
|
| /// File Name: |
contenideo-rfixss.txt |
Description:
|
Contenido version 4.8.4 suffers from remote file inclusion and cross site scripting vulnerabilities.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 3311 | | Last Modified: | Jun 16 19:04:39 2008 |
| MD5 Checksum: | 190986736dc9768d520ee8b97517f62c |
|
| /// File Name: |
CORE-2008-0425.txt |
Description:
|
Core Security Technologies Advisory - The NASA BigView package suffers from a stack buffer overflow when parsing specially crafted (invalid) PNM input files. If successful, a malicious third party could trigger execution of arbitrary code within the context of the application, or otherwise crash the whole application.
| | Author: | Alfredo Ortega | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 9216 | | Related CVE(s): | CVE-2008-2542 | | Last Modified: | Jun 4 22:13:22 2008 |
| MD5 Checksum: | f3bb46112a00e3dca32ab1e3bf3cc30c |
|
| /// File Name: |
crysislog.zip |
Description:
|
Proof of concept exploit for Crysis versions 1.21 and below which suffer from an information disclosure vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | crysislog.txt | | File Size: | 11300 | | Last Modified: | Jun 16 19:47:52 2008 |
| MD5 Checksum: | 73feffeaa2989eb0234bbeb127f931ef |
|
| /// File Name: |
CVE-2008-1947.txt |
Description:
|
Tomcat versions 5.5.9 through 5.5.26 and versions 6.0.0 through 6.0.16 suffer from a host-manager cross site scripting vulnerability.
| | Author: | Petr Splichal | | Homepage: | http://tomcat.apache.org/security.html | | File Size: | 1404 | | Related CVE(s): | CVE-2008-1947 | | Last Modified: | Jun 3 14:13:21 2008 |
| MD5 Checksum: | e6e6eeb089bf09dc0ef016da95861796 |
|
| /// File Name: |
daggercms-rfi.txt |
Description:
|
Dagger CMS suffers from a remote file inclusion vulnerability.
| | Author: | CraCkEr | | File Size: | 4463 | | Last Modified: | Jun 23 18:39:31 2008 |
| MD5 Checksum: | 97cacac4d50c1bdf2bb027ac5044cd40 |
|
| /// File Name: |
danairc-dos.txt |
Description:
|
Dana IRC versions 1.3 and below remote buffer overflow denial of service proof of concept exploit.
| | Author: | t0pp8uzz | | File Size: | 1129 | | Last Modified: | Jun 16 19:34:03 2008 |
| MD5 Checksum: | 832a2d402f275559758ec48fb7fc24af |
|
| /// File Name: |
dcfm-sql.txt |
Description:
|
DCFM Blog version 0.9.4 suffers from a remote SQL injection vulnerability.
| | Author: | unohope | | Homepage: | http://www.chroot.org/ | | File Size: | 1296 | | Last Modified: | Jun 10 20:34:15 2008 |
| MD5 Checksum: | f7813665aa2281fb71c4e42317203eb4 |
|
| /// File Name: |
debianprng-ssh.txt |
Description:
|
Debian OpenSSL predictable PRNG bruteforce SSH exploit that is written in Python.
| | Author: | hitz | | Homepage: | http://warcat.no-ip.org/ | | File Size: | 4187 | | Last Modified: | Jun 2 17:42:50 2008 |
| MD5 Checksum: | 6c9ca4844b75c77cde9bccc1d0aac89a |
|
| /// File Name: |
demo4-sql.txt |
Description:
|
Demo4 CMS suffers from a remote SQL injection vulnerability in index.php.
| | Author: | CWH Underground | | Homepage: | http://www.citecclub.org/ | | File Size: | 1738 | | Last Modified: | Jun 23 18:10:48 2008 |
| MD5 Checksum: | cc830a68f6fc5f45276eb2e2e3785f60 |
|
| /// File Name: |
demo4cms-upload.txt |
Description:
|
Demo4 CMS version Beta01 remote arbitrary file upload exploit.
| | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 4685 | | Last Modified: | Jun 24 15:24:13 2008 |
| MD5 Checksum: | 504b1fc1ba2283e8b835f802ab877c31 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
