Section: .. / 1002-exploits /
| /// File Name: |
omnidocs-sql.txt |
Description:
|
Omnidocs suffers from a remote SQL injection vulnerability.
| | Author: | thebluegenius | | File Size: | 1410 | | Last Modified: | Feb 12 01:26:12 2010 |
| MD5 Checksum: | 2989d37f601129d19d0be75fdf3076f2 |
|
| /// File Name: |
opencart-xsrf.txt |
Description:
|
OpenCart suffers from a cross site request forgery vulnerability.
| | File Size: | 2054 | | Last Modified: | Feb 2 22:52:47 2010 |
| MD5 Checksum: | 7d2db0f41439f8d3d1bc0001942db877 |
|
| /// File Name: |
opencompact-preauth.txt |
Description:
|
Open and Compact FTPd pre-authentication remote exploit that binds a shell to port 4444.
| | Author: | Lincoln | | File Size: | 2528 | | Last Modified: | Feb 12 14:17:46 2010 |
| MD5 Checksum: | 32303e65b7147228aad8736f08543ca8 |
|
| /// File Name: |
opera3.pl.txt |
Description:
|
Opera version 10.10 remote denial of service exploit.
| | Author: | Dj7xpl,cr4wl3r | | File Size: | 1934 | | Last Modified: | Feb 8 17:32:47 2010 |
| MD5 Checksum: | 12967b6a65dd615075519869ea5b637b |
|
| /// File Name: |
oputils_5-sql.txt |
Description:
|
ManageEngine OpUtils 5 suffers from a remote SQL injection vulnerability in Login.DO.
| | Author: | Asheesh Kumar Mani Tripathi | | File Size: | 2281 | | Last Modified: | Feb 4 02:09:14 2010 |
| MD5 Checksum: | ab4dbe3b908d1e7283e0f2d25720467e |
|
| /// File Name: |
oputils_5-xss.txt |
Description:
|
ManageEngine OpUtils 5 suffers from multiple cross site scripting vulnerabilities in Login.DO.
| | Author: | Asheesh Kumar Mani Tripathi | | File Size: | 5236 | | Last Modified: | Feb 4 02:10:51 2010 |
| MD5 Checksum: | b569e4cd245b6a5868965bb9949c002e |
|
| /// File Name: |
oraclesiebel-xss.txt |
Description:
|
Oracle Siebel Loyalty version 8.1 suffers from a cross site scripting vulnerability.
| | Author: | thebluegenius | | File Size: | 1495 | | Last Modified: | Feb 26 14:04:45 2010 |
| MD5 Checksum: | 4f969044b54609676819c812f0d962f4 |
|
| /// File Name: |
orbitalviewer-overflow.txt |
Description:
|
Orbital Viewer version 1.04 local universal SEH overflow exploit that creates a malicious .orb file. Comes complete with calc.exe, reverse shell, and bind shell execution options.
| | Author: | mr_me | | File Size: | 10174 | | Related CVE(s): | CVE-2010-0688 | | Last Modified: | Feb 26 19:05:37 2010 |
| MD5 Checksum: | fd49ef64d5a4993d0bb0e61caf30d7fa |
|
| /// File Name: |
osclassifieds-sqlxss.txt |
Description:
|
Open Source Classifieds version 1.1.0 Alpha suffers from cross site scripting and remote SQL injection vulnerabilities.
| | Author: | Sioma Labs | | File Size: | 2636 | | Last Modified: | Feb 18 21:37:27 2010 |
| MD5 Checksum: | 6ce5bef409461fcc5c50fc32b3a1b57e |
|
| /// File Name: |
osTicket-1.6-RC5-ReflectedXSS.pdf |
Description:
|
osTicket version 1.6 RC5 suffers from a reflected cross site scripting vulnerability.
| | Author: | N. Grisolia | | File Size: | 60831 | | Last Modified: | Feb 9 20:06:53 2010 |
| MD5 Checksum: | 9ac54fb81c95c8a33e75c2502f8895b0 |
|
| /// File Name: |
osTicket-1.6-RC5-SQLi.pdf |
Description:
|
osTicket version 1.6 RC5 suffers from a remote SQL injection vulnerability.
| | Author: | N. Grisolia | | File Size: | 62268 | | Last Modified: | Feb 9 20:07:07 2010 |
| MD5 Checksum: | ec1529f995756f640c70fa6a43bf4af8 |
|
| /// File Name: |
ots100047-overflow.txt |
Description:
|
OtsTurntables Free version 1.00.047 universal buffer overflow exploit that creates a malicious .olf file and binds a shell to port 4444.
| | Author: | mr_me | | File Size: | 4090 | | Last Modified: | Feb 16 16:57:55 2010 |
| MD5 Checksum: | e64dcdad33b1610e958a6b302c0e83bb |
|
| /// File Name: |
owa-bypass.txt |
Description:
|
Outlook Web Access (OWA) suffers from a vulnerability that allows direct access to files blocked by policy.
| | Author: | Ricardo Martins | | File Size: | 1672 | | Last Modified: | Feb 4 01:54:01 2010 |
| MD5 Checksum: | d8f70bc0f1a1bbc62540ee3043f2a50d |
|
| /// File Name: |
pbboard-addadminupload.txt |
Description:
|
PBBoard version 2.0.5 suffers from add administrator and shell upload vulnerabilities.
| | Author: | indoushka | | File Size: | 1991 | | Last Modified: | Feb 25 00:13:02 2010 |
| MD5 Checksum: | e260d5b1aa14649a57add955517ced45 |
|
| /// File Name: |
pcl-sql.txt |
Description:
|
Pre Classified Listings suffers from a remote SQL injection vulnerability.
| | Author: | Crux | | Related Exploit: | preclass-sqlxss.txt | | File Size: | 1059 | | Last Modified: | Feb 28 14:25:02 2010 |
| MD5 Checksum: | cc8a05b0c0a40b6aee36f6728da68e99 |
|
| /// File Name: |
pear-rfi.txt |
Description:
|
PEAR version 1.9.0 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | eidelweiss | | File Size: | 1706 | | Last Modified: | Feb 15 17:06:29 2010 |
| MD5 Checksum: | 03b5dac15e62b21a146805831c34601d |
|
| /// File Name: |
peazip_command_injection.rb.txt |
Description:
|
This Metasploit module exploits a command injection vulnerability in PeaZip. All versions prior to 2.6.2 are suspected vulnerable. Testing was conducted with version 2.6.1 on Windows. In order for the command to be executed, an attacker must convince someone to open a specially crafted zip file with PeaZip, and access the specially file via double-clicking it. By doing so, an attacker can execute arbitrary commands as the victim user.
| | Author: | Nine:Situations:Group::pyrokinesis,jduck | | Homepage: | http://www.metasploit.com | | File Size: | 2535 | | Related OSVDB(s): | 54966 | | Related CVE(s): | CVE-2009-2261 | | Last Modified: | Feb 11 19:18:49 2010 |
| MD5 Checksum: | 7e46d8877655b8dc00799890963a50a1 |
|
| /// File Name: |
phpappslinks-insecure.txt |
Description:
|
PHP Apps Links suffers from an insecure cookie handling vulnerability.
| | Author: | jiko | | File Size: | 876 | | Last Modified: | Feb 9 18:39:00 2010 |
| MD5 Checksum: | 122cea400ed7bf6f9eecccbb3dbde11b |
|
| /// File Name: |
phpauktionpro-sql.txt |
Description:
|
PHP Auktion Pro suffers from a remote SQL injection vulnerability.
| | Author: | Easy Laster | | File Size: | 1653 | | Last Modified: | Feb 23 20:00:12 2010 |
| MD5 Checksum: | 6f9ca31beac31b95ccc2c4eb0ee5af0a |
|
| /// File Name: |
phpautovideo-xsrf.txt |
Description:
|
phpAutoVideo suffers from a cross site request forgery vulnerability.
| | Author: | GoLdeN-z3r0 | | File Size: | 1158 | | Last Modified: | Feb 20 13:24:51 2010 |
| MD5 Checksum: | 4d30bc155571221a02a79eee40088322 |
|
| /// File Name: |
phpbugtracker-disclose.txt |
Description:
|
phpBugTracker version 1.0.1 suffers from a file disclosure vulnerability.
| | Author: | ViRuSMaN | | File Size: | 1209 | | Last Modified: | Feb 20 13:42:39 2010 |
| MD5 Checksum: | 32cef8a0f4f80ef27d5cef18089af9b4 |
|
| /// File Name: |
phpcarrental-sql.txt |
Description:
|
PHP Car Rental Script suffers from a remote SQL injection vulnerability that allows for authentication bypass.
| | Author: | MizoZ | | File Size: | 374 | | Last Modified: | Feb 4 01:09:26 2010 |
| MD5 Checksum: | 2d12cc041c0ad3d7d5d158a6e7c3741a |
|
| /// File Name: |
phpcdb-lfi.txt |
Description:
|
phpCDB version 1.0 suffers from a local file inclusion vulnerability.
| | Author: | cr4wl3r | | File Size: | 764 | | Last Modified: | Feb 28 13:50:59 2010 |
| MD5 Checksum: | ddec54e998bb62a48f11a098b4161752 |
|
| /// File Name: |
phpcoin121-sql.txt |
Description:
|
phpCOIN version 1.2.1 suffers from a remote SQL injection vulnerability in mod.php.
| | Author: | Baybora | | Related Exploit: | dc_phpcoin.txt | | File Size: | 921 | | Last Modified: | Feb 25 00:57:36 2010 |
| MD5 Checksum: | 8271e8217a1b406cd701aeb40950ce66 |
|
| /// File Name: |
phpids-rfi.txt |
Description:
|
PHPIDS version 0.4 suffers from a remote file inclusion vulnerability.
| | Author: | eidelweiss | | File Size: | 1475 | | Last Modified: | Feb 17 18:46:01 2010 |
| MD5 Checksum: | 2d588bb3c839b05992aed904f4b0560e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
