Websecurity - Веб безпека

В даній добірці експлоіти в веб додатках:

• PHPMyRing <= 4.1.3b (path) Remote File Include Vulnerability (деталі)
• Hunkaray Duyuru Scripti (tr) Remote SQL Injection Exploit (деталі)
• JV2 Folder Gallery <= 3.0 Remote File Include Vulnerability (деталі)
• Cerulean Portal System 0.7b Remote File Include Vulnerability (деталі)
• Omegaboard <= 1.0beta4 (functions.php) Remote File Include Vuln (деталі)
• phpEventMan 1.0.2 (level) Remote File Include Vulnerabilities (деталі)
• SIPS <= 0.3.1 (box.inc.php) Remote File Include Vulnerability (деталі)
• Exploits WarFTPd 1.65 Username Stack-Based Buffer-Overflow Vulnerability (деталі)
• Guppy <= 4.5.16 remote commands execution exploit (деталі)
• EclipseBB 0.5.0 Lite (phpbb_root_path) Remote File Include Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• Phpbb Tweaked <= 3 (phpbb_root_path) Remote File Include Vulnerability (деталі)
• ExoPHPDesk <= 1.2.1 (faq.php) Remote SQL Injection Vulnerability (деталі)
• Fullaspsite Asp Hosting Sitesi (tr) SQL Injection Vulnerability (деталі)
• Michelles L2J Dropcalc <= v4 Remote SQL Injection Vulnerability (деталі)
• Cadre PHP Framework Remote File Include Vulnerability (деталі)
• Hailboards 1.2.0 (phpbb_root_path) Remote File Include Vulnerability (деталі)
• Extcalendar <= 2 (profile.php) Remote User Pass Change Exploit (деталі)
• FrontBase Database remote Proof Of Concept (деталі)
• Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit (деталі)
• Foro Domus v2.10 (phpbb_root_path) Remote File Include Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• Webfwlog <= 0.92 (debug.php) Remote File Disclosure Vulnerability (деталі)
• GuppY <= 4.5.16 Remote Commands Execution Exploit (деталі)
• phpBB2 MODificat <= 0.2.0 (functions.php) Remote Include Vulnerability (деталі)
• MyNews <= 4.2.2 (themefunc.php) Remote File Include Vulnerability (деталі)
• CascadianFAQ <= 4.1 (index.php) Remote SQL Injection Vulnerability (деталі)
• PHPFootball 1.6 (show.php) Remote Database Disclosure Vulnerability (деталі)
• Galeria Zdjec <= 3.0 (zd_numer.php) Local File Include Exploit (деталі)
• x86/linux mod_php v4.0.2rc1-v4.0.5 remote exploit (деталі)
• Exploits Xero Portal v1.2 (phpbb_root_path) Local File Include Vulnerablity (деталі)
• Oracle Database local elevation of privileges PoC exploit (деталі)

В даній добірці експлоіти в веб додатках:

• nsGalPHP (includes/config.inc.php racineTBS) Remote Inclusion Vuln (деталі)
• phpMyReports <= 3.0.11 (lib_head.php) Remote File Include Vulnerability (деталі)
• PhP Generic library & framework (include_path) RFI Vulnerability (деталі)
• xNews 1.3 (xNews.php) Remote SQL Injection Vulnerability (деталі)
• Foro Domus 2.10 (phpbb_root_path) Remote File Include Exploit (деталі)
• EclipseBB 0.5.0 Lite (phpbb_root_path) Remote File Include Exploit (деталі)
• CVSTrac 2.0.0 Post-Attack Database Resurrection DoS Exploit (деталі)
• Apache PHP DoS (деталі)
• Apache+php Proof of Concept Exploit (деталі)
• Aztek Forum 4.1 Multiple Vulnerabilities Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• Citrix Metaframe Presentation Server Print Provider Buffer Overflow PoC (деталі)
• FdScript <= 1.3.2 (download.php) Remote File Disclosure Vulnerability (деталі)
• chernobiLe Portal 1.0 (default.asp) Remote SQL Injection Vulnerability (деталі)
• Xt-Stats v.2.4.0.b3 (server_base_dir) Remote File Include Vulnerability (деталі)
• ACGVannu <= 1.3 (index2.php) Remote User Pass Change Vulnerability (деталі)
• Drunken:Golem Portal 0.5.1 Alpha 2 Remote File Include Exploit (деталі)
• ACGVclick <= 0.2.0 (path) Remote File Include Vulnerability (деталі)
• Exploits ProFTPD 1.3.0/1.3.0a Controls Buffer Overflow (2.6 kernel exploitation against gcc 4.x with canary) (деталі)
• Exploits mafia-2-0-0 (Index.php)Remote File Include Vulnerability (деталі)
• Vote-Pro Code Injection Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• makit Newsposter Script v3 Remote SQL Injection Vulnerability (деталі)
• Xero Portal (phpbb_root_path) Remote File Include Vulnerablity (деталі)
• Virtual Path 1.0 (vp/configure.php) Remote File Include Vulnerability (деталі)
• Forum Livre 1.0 (SQL Injection / XSS) Multiple Remote Vulnerabilities (деталі)
• Aztek Forum 4.0 Multiple Vulnerabilities Exploit (деталі)
• AINS 0.02b (ains_main.php ains_path) Remote File Include Vulnerability (деталі)
• MyPHPcommander 2.0 (package.php) Remote File Include Vulnerability (деталі)
• Woltlab Burning Board 2.3.6 <= / Lite Exploit (деталі)
• Exploits ProFTPD 1.3.0/1.3.0a Controls Buffer Overflow (2.4 kernel) (деталі)
• webSPELL SQL-injection exploit in gallery.php (деталі)

В даній добірці експлоіти в веб додатках:

• Sami HTTP Server 2.0.1 (HTTP 404 - Object not found) DoS Exploit (деталі)
• ASP EDGE <= 1.2b (user.asp) Remote SQL Injection Vulnerability (деталі)
• RPW 1.0.2 (config.php sql_language) Remote File Inclusion Vulnerability (деталі)
• phpXD <= 0.3 (path) Remote File Inclusion Vulnerability (деталі)
• BBClone 0.31 (selectlang.php) Remote File Inclusion Vulnerability (деталі)
• vhostadmin 0.1 (MODULES_DIR) Remote File Inclusion Vulnerability (деталі)
• GPS CMS 1.2 (print.asp) Remote SQL Injection Vulnerability (деталі)
• Remote Oracle dbms_export_extension exploit (any version) Grant or revoke dba permission to unprivileged user (деталі)
• Woltlab Burning Board Lite <= 1.0.2 / Woltlab Burning Board <= 2.3.6 GetHashes over search.php (деталі)
• Exploits phpindexpage 1.0 & 1.0.1 (config.php)Remote File Include Vulnerability (деталі)

В даній добірці експлоіти в веб додатках:

• Mafia Scum Tools 2.0.0 (index.php gen) Remote File Include Exploit (деталі)
• 3Com TFTP Service <= 2.0.1 Remote Buffer Overflow Exploit (meta) (деталі)
• Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit (деталі)
• Oracle 10g (SYS.KUPV$FT.ATTACH_JOB) PL/SQL Injection Exploit (деталі)
• Oracle 10g SYS.KUPW$WORKER.MAIN PL/SQL Injection Exploit (деталі)
• Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL/SQL Injection (деталі)
• ASP NEWS <= v3 (news_detail.asp) Remote SQL Injection Vulnerability (деталі)
• Exploits Oreon1.2.3 Remote File I.nclude (деталі)
• MGB <= 0.5.4.5 Exploit (деталі)
• Woltlab Burning Board 2.X/Lite search.php SQL Injection exploit (деталі)

В даній добірці експлоіти в веб додатках:

• Bradabra <= 2.0.5 (include/includes.php) Remote Inclusion Vulnerability (деталі)
• PhpSherpa (include/config.inc.php) Remote File Include Vulnerability (деталі)
• WebChat 0.77 (defines.php WEBCHATPATH) Remote File Include Vuln (деталі)
• Sun Microsystems Java GIF File Parsing Memory Corruption Exploit (деталі)
• VisoHotlink 1.01 functions.visohotlink.php Remote File Include Exploit (деталі)
• Upload Service 1.0 (top.php maindir) Remote File Inclusion Vulnerability (деталі)
• webSPELL 4.01.02 (gallery.php) Remote Blind SQL Injection Exploit (деталі)
• Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 (деталі)
• Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 (деталі)
• phpBP <= RC3 (2.204) (sql/cmd) Remote Code Execution Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• ComVironment 4.0 (grab_globals.lib.php) Remote File Include Vulnerability (деталі)
• Rumpus 5.1 Local Privilege Escalation / Remote FTP LIST PoC Exploit (деталі)
• Woltlab Burning Board <= 1.0.2, 2.3.6 search.php SQL Injection Exploit 3 (деталі)
• Transmit.app <= 3.5.5 ftps:// URL Handler Heap Buffer Overflow PoC (деталі)
• MySpeach <= 2.1b (up.php) Remote Inclusion Vulnerability (деталі)
• phpIndexPage <= 1.0.1 (config.php) Remote Inclusion Exploit (деталі)
• Neon Labs Website <= 3.2 (nl.php g_strRootDir) Remote Inclusion Vuln (деталі)
• Tiny FTPd 0.52 beta3 Buffer Overflow (деталі)
• Exploits PHPATM Remote Password Disclosure Vulnerablity (деталі)
• Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 (деталі)