/* Exploit Title: TORCS <= 1.3.2 buffer overflow /SAFESEH evasion
# Date: 07/02/2012
# Discovered and exploited by: Fluidsignal Group -> Research Team Division
# Author: Andres Gomez and David Mora (a.k.a Mighty-D) … Pwn and beans!
# Software Link: http://torcs.sourceforge.net/
[...]
#!/usr/bin/python
##########################################################################################################
#Title: Sysax Multi Server <= 5.52 File Rename BoF RCE (Egghunter)
#Author: Craig Freyman (@cd1zz)
#Tested on: XP SP3 32bit and Server 2003 SP2 32bit(No DEP)
#Software Versions Tested: 5.50 and 5.52
#Date Discovered: Febrary [...]
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ [...]
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ [...]
# Title :Linux x86 BackBox BackConnect & Reverse TCP SSL shellcode 442 byte(s)
# Author : TrOoN
# E-mail : www.facebook.com/fysl.fyslm
# Home : city 617 logt Draria algeria
# Web Site : www.1337day.com
# platform :backboX 32 bit Eng
[...]
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ [...]
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ [...]
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ [...]
# Title: almnzm 2.4 <= CSRF Vulnerability (Add Admin)
# Vendor: almnzm.com
# Author: HaNniBaL KsA (HK)
# Email: hk@r00t-s3c.com
# Home: r00t-s3c.com
# Published: 2o12-o2-1o
#
#——————————————————-
#
[...]
+—————————————————————————–
—————————————————+
# Exploit Title : SyndeoCMS <= 3.0 CSRF Vulnerability
# Date : 19-02-2012
# Author : Ivano Binetti (http://ivanobinetti.com)
# Vendor site : http://www.syndeocms.org/
[...]
+—————————————————————————–
—————————————————+
# Exploit Title : PlumeCMS <= 1.2.4 CSRF Vulnerability
# Date : 20-02-2012
# Author : Ivano Binetti (http://ivanobinetti.com)
# Software link : http://sourceforge.net/projects/pxsystem/files/latest/download?source=directory
[...]
Source: http://www.1337day.com/exploits/17558
+—————————————————————————–
———————————————————————-+
# Exploit Title : DFLabs PTK <= 1.0.5 Multiple Vulnerabilities (Steal Authentication Credentials)
# Date : 22-02-2012
# Author : Ivano Binetti (http://ivanobinetti.com)
# Software link [...]
############################################################
#
# Title : phpDenora <= 1.4.6 Multiple SQL Injection Vulnerabilities
#
# Author : P. de Brouwer – KnickLighter
# [...]
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
[...]
#!/usr/bin/python
# Tiny HTTP Server <=v1.1.9 Remote Crash PoC
# written by localh0t
# Date: 24/02/11
# Contact: mattdch0@gmail.com
# Follow: @mattdch
# www.localh0t.com.ar
# Targets: Windows (All)
import httplib,sys
[...]
+—————————————————————————–
—————————————————+
# Exploit Title : ContaoCMS (aka TYPOlight) <= 2.11 CSRF (Delete Admin- Delete Article)
# Date : 25-02-2012
# Author : Ivano Binetti (http://ivanobinetti.com)
# Software [...]
#!/usr/bin/perl
# Title : Hloun v1.0.x => xss csrf to inject php code
# Author : Or4nG.M4n
# Version : 1.0.x
# Homepage : http://www.hloun.in/
# video : http://youtu.be/62H3ojk2c-k
[...]
+—————————————————————————–
—————————————————+
# Exploit Title : WebfolioCMS <= 1.1.4 CSRF (Add Admin/Modify Pages)
# Date : 28-02-2012
# Author : Ivano Binetti [...]
Title:
======
Wolf CMS 0.7.5 Cross Site Scripting / SQL Injection
Date:
=====
2012-02-27
Introduction:
=============
Wolf CMS is a content management system and is Free Software published under the GNU [...]