exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 13 of 13 RSS Feed

Files Date: 2009-04-11

Dynamic Flash Forum 1.0 Beta SQL Injection
Posted Apr 11, 2009
Authored by Salvatore Fresta

Dynamic Flash Forum version 1.0 Beta suffers from SQL injection vulnerabilities including one that allows for authentication bypass. It also suffers from an information disclosure vulnerability.

tags | exploit, vulnerability, sql injection, info disclosure
SHA-256 | 2b8bed2cec7e44b2c10d8e5e1ac38ed296189fd72bf2badae2c9052d9b7fa13d
VMware Security Advisory 2009-0006
Posted Apr 11, 2009
Authored by VMware | Site vmware.com

VMware Security Advisory - Updated VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability. A critical vulnerability in the virtual machine display function might allow a guest operating system to run code on the host.

tags | advisory
advisories | CVE-2009-1244
SHA-256 | ded0d04acbe4c8b889c0e5575d735098c83e86bfdfa2bfcf6b60809b3bf1577e
Mandriva Linux Security Advisory 2009-090
Posted Apr 11, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-090 - The JSON_parser function (ext/json/JSON_parser.c) in PHP 5.2.x before 5.2.9 allows remote attackers to cause a denial of service (segmentation fault) via a malformed string to the json_decode API function. The updated packages have been patched to correct these issues.

tags | advisory, remote, denial of service, php
systems | linux, mandriva
advisories | CVE-2009-1271
SHA-256 | 3a87e527ab8dfac604f5529c8360a28a8cb596eecd25191ee2b7931d433ae286
Whitepaper - OS Access Using IBM Websphere
Posted Apr 11, 2009
Authored by Sh2kerr | Site dsecrg.com

Whitepaper called Penetration from application down to OS - Getting OS access using IBM Websphere Application Server vulnerabilities.

tags | paper, vulnerability
SHA-256 | 8cb559ced52aca50e77a2ca1dd0ff696a7c3c944d422b4b8ac73a095b7c0ed54
Whitepaper - OS Access Using Oracle Database User
Posted Apr 11, 2009
Authored by Sh2kerr | Site dsecrg.com

Whitepaper called Penetration from application down to OS - Getting OS access using Oracle Database unprivileged user.

tags | paper
SHA-256 | 06a4f468cc6d983c52ce278ac87657eaa93f732c34490b98b2d0f73fc484fd6f
PHP 5.2.9 Bypass Exploit
Posted Apr 11, 2009
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHP 5.2.9 curl safe_mode and open_basedir bypass exploit.

tags | exploit, php, bypass
SHA-256 | f0b36ec719bc7e658f7f77f8ee5ea997db91aa373465e27bea1d0dd8347e2e70
PHP 5.2.9 Bypass
Posted Apr 11, 2009
Authored by Maksymilian Arciemowicz | Site securityreason.com

PHP 5.2.9 suffers from a safe_mode and open_basedir bypass vulnerability.

tags | advisory, php, bypass
SHA-256 | eca58f1ebba6d590a2e6a8522d12061c8bc9659ecd89694fbcbf0454e64d12b3
NullSearchAccess Default Login Scanner
Posted Apr 11, 2009
Authored by Simpp

NullSearchAccess is a scanner that attempts default logins for various services like ftp, pop3, imap, mysql, and more.

tags | tool, scanner, imap
systems | unix
SHA-256 | deb51f0cdf0a2234df7efbde07c893c2a68809e387b985c94f0da95bf8cdb7f0
Cisco ASA/PIX TCP Fragments
Posted Apr 11, 2009
Authored by Daniel Clemens

Cisco ASA/PIX appliances fail to properly check fragmented TCP packets.

tags | exploit, tcp
systems | cisco
SHA-256 | cf31e2d808f52215c9aa9a83ebaf0678772e6f5065c0f50988aaf86c9f3745b9
mozilloCMS 1.11 LFI / XSS
Posted Apr 11, 2009
Authored by SirGod | Site insecurity.ro

mozilloCMS version 1.11 suffers from local file inclusion, path disclosure, and cross site scripting vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
SHA-256 | 14e5d42d2c5aeeb509c76e5faedf776f4b6122c996d40b80850c1a375a7b9586
Redaxscript 0.2.0 Local File Inclusion
Posted Apr 11, 2009
Authored by SirGod | Site insecurity.ro

Redaxscript version 0.2.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 47d8f2b7b4ff4d2c57f88a8e09a42daf1365a46992d3aa47020a3f41973e759c
w3bcms Gaestebuch 3.0.0 SQL Injection
Posted Apr 11, 2009
Authored by DNX

w3bcms Gaestebuch version 3.0.0 blind SQL injection exploit.

tags | exploit, sql injection
SHA-256 | 1c4baf476dc11e43c2135a14c2c84a5e29ace90e5256b24a9885b69be7ce168f
FunkyASP Ad System 1.1 Shell Upload
Posted Apr 11, 2009
Authored by ZoRLu

FunkyASP AD System version 1.1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
SHA-256 | d6cc3891f2531947d0618201cf76d7db062ba278a711f5f156d9b0bd83cd6f60
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close