Websecurity - Веб безпека

В даній добірці експлоіти в веб додатках:

• RadLance Gold 7.5 Multiple Remote Vulnerabilities (деталі)
• RadBIDS GOLD v4 Multiple Remote Vulnerabilities (деталі)
• MCshoutbox 1.1 (SQL/XSS/Shell) Multiple Remote Vulnerabilities (деталі)
• MiniCWB 2.3.0 (LANG) Remote File Inclusion Vulnerabilities (деталі)
• Netrix CMS 1.0 Authentication Bypass Vulnerability (деталі)
• Silentum Guestbook 2.0.2 (silentum_guestbook.php) SQL Injection Vuln (деталі)
• powerUpload 2.4 (Auth Bypass) Insecure Cookie Handling Vulnerability (деталі)
• E-Xoopport 3.1 Module MyAnnonces (lid) SQL Injection Vulnerability (деталі)
• Alibaba-clone CMS (SQL/bSQL) Remote SQL Injection Vulnerabilities (деталі)
• BLIND SQLi exploit S-CMS <= v-2.0 Beta3 (деталі)

В даній добірці експлоіти в веб додатках:

• PHP Live! 3.2.1/2 (x) Remote Blind SQL Injection Vulnerability (деталі)
• VS PANEL 7.5.5 (results.php Cat_ID) SQL Injection Vulnerability (деталі)
• WebVision 2.1 (news.php n) Remote SQL Injection Exploit (деталі)
• Joomla Component Jobline <= 1.3.1 Blind SQL Injection Vulnerability (деталі)
• Good/Bad Vote (XSS/LFI) Multiple Remote Vulnerabilities (деталі)
• Ger Versluis 2000 5.5 24 SITE_fiche.php SQL Injection Vulnerability (деталі)
• Battle Blog 1.25 Auth Bypass SQL Injection / HTML Injection Vulns (деталі)
• GBook 1.6 (mes_id) Remote SQL Injection Vulnerability (деталі)
• RadNICS Gold v5 Multiple Remote Vulnerabilities (деталі)
• BLIND SQLi exploit Open Biller 0.1 (деталі)

В даній добірці експлоіти в веб додатках:

• onepound shop 1.x products.php SQL Injection Vulnerability (деталі)
• Admin News Tools 2.5 (fichier) Remote File Disclosure Vulnerability (деталі)
• ILIAS LMS <= 3.9.9/3.10.7 Arbitrary Edition/Info Disclosure Vulns (деталі)
• Infinity <= 2.0.5 Arbitrary Create Admin Exploit (деталі)
• Greenwood Content Manager 0.3.2 Local File Inclusion Exploit (деталі)
• PHPGenealogy 2.0 (DataDirectory) RFI Vulnerability (деталі)
• ZenPhoto 1.2.5 Completely Blind SQL Injection Exploit (деталі)
• dB Masters Multimedia’s Content Manager 4.5 SQL Injection Vulnerability (деталі)
• Sguil/PADS SQL Injection / Server Crash Vulnerability (деталі)
• (’dest’) Blind (SQLi) EXPLOIT Kjtechforce mailman Beta-1 (деталі)

В даній добірці експлоіти в веб додатках:

• Ebay Clone 2009 Multiple SQL Injection Vulnerabilities (деталі)
• Opial 1.0 Arbitrary File Upload/XSS/SQL Injection Vulnerabilities (деталі)
• d.net CMS Arbitrary Reinstall/Blind SQL Injection Exploit (деталі)
• Censura 1.16.04 (bSQL/XSS) Multiple Remote Vulnerabilities (деталі)
• Php AdminPanel Free version 1.0.5 Remote File Disclosure Vuln (деталі)
• Traidnt UP 2.0 Remote Blind SQL Injection Exploit (деталі)
• Mobilelib Gold v3 Local File Disclosure Vulnerability (деталі)
• Virtualmin < 3.703 Multiple Local/Remote Vulnerabilities (деталі)
• DJ Calendar (DJcalendar.cgi TEMPLATE) File Disclosure Vuln (деталі)
• Blind (SQLi) EXPLOIT Online Grades & Attendance v3.2.6 (деталі)

В даній добірці експлоіти в веб додатках:

• ToyLog 0.1 SQL Injection Vulnerability/RCE Exploit (деталі)
• Morcego CMS <= 1.7.6 Remote Blind SQL Injection Exploit (деталі)
• LionWiki (index.php page) Local File Inclusion Vulnerability (деталі)
• Ebay Clone 2009 (SQL/bSQL) Multiple Remote Vulnerabilities (деталі)
• HTC / Windows Mobile OBEX FTP Service Directory Traversal Vuln (деталі)
• Digitaldesign CMS 0.1 Remote Database Disclosure Vulnerability (деталі)
• Joomla Component com_propertylab (auction_id) SQL injection Vuln (деталі)
• Jobbr 2.2.7 Multiple Remote SQL Injection Vulnerabilities (деталі)
• Joomla Component com_category (catid) SQL Injection Vulnerability (деталі)
• EXPLOIT Online Grades & Attendance v3.2.6 (деталі)

В даній добірці експлоіти в веб додатках:

• TalkBack 2.3.14 Multiple Remote Vulnerabilities (деталі)
• Sun One WebServer 6.1 JSP Source Viewing Vulnerability (деталі)
• Siteframe CMS 3.2.x SQL Injection/phpinfo() Multiple Vulnerabilities (деталі)
• Universe CMS 1.0.6 (vnews.php id) Remote SQL Injection Exploit (деталі)
• phpBMS 0.96 Multiple Remote Vulnerabilities (деталі)
• GenCMS 2006 Multiple Remote Vulnerabilities (деталі)
• MyMsg 1.0.3 (uid) Remote SQL Injection Vulnerability (деталі)
• Citrix XenCenterWeb (XSS/SQL/RCE) Multiple Remote Vulnerabilities (деталі)
• Phenotype CMS 2.8 (login.php user) Blind SQL Injection Vulnerability (деталі)
• Exploits Buffer Overflow in NaviCopa HTTP server 2.01 (cgi-bin) (деталі)

В даній добірці експлоіти в веб додатках:

• Opial 1.0 (albumid) Remote SQL Injection Vulnerability (деталі)
• Opial 1.0 (Auth Bypass) Remote SQL Injection Vulnerability (деталі)
• MRCGIGUY Thumbnail Gallery Post 1b Arb. Shell Upload Vulnerability (деталі)
• Nwahy Dir 2.1 Arbitrary Change Admin Password Exploit (деталі)
• Glossword <= 1.8.11 Arbitrary Uninstall / Install Vulnerability (деталі)
• ClearContent (image.php url) RFI/LFI Vulnerability (деталі)
• Mlffat 2.2 Remote Blind SQL Injection Exploit (деталі)
• WebAsyst Shop-Script (bSQL/XSS) Multiple Remote Vulnerabilities (деталі)
• EasyVillaRentalSite (Id) Remote SQL Injection Vulnerability (деталі)
• FreeSSHD 1.2.1 (Post Auth) Remote Seh Overflow (деталі)

В даній добірці експлоіти в веб додатках:

• ARD-9808 DVR Card Security Camera (GET Request) Remote DoS Exploit (деталі)
• YourTube <= 2.0 Arbitrary Database Disclosure Exploit (деталі)
• Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit (деталі)
• Apple Safari 4.x JavaScript Reload Remote Crash Exploit (деталі)
• conpresso 3.4.8 (detail.php) Remote Blind SQL Injection Vuln (деталі)
• Almnzm 2.0 Remote Blind SQL Injection Exploit (деталі)
• AdminLog 0.5 (valid_login) Authentication Bypass Vulnerability (деталі)
• Sourcefire 3D Sensor & Defense Center 4.8.x Privilege Escalation Vuln (деталі)
• Rentventory Multiple Remote SQL Injection Vulnerabilities (деталі)
• Exploits FreeSSHd Multiple Remote Stack Overflow Vulnerabilities (деталі)

В даній добірці експлоіти в веб додатках:

• Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability (деталі)
• PunBB Extension Vote For Us <= 1.0.1 Blind SQL Injection Exploit (деталі)
• TSEP <= 0.942.02 Multiple Remote Vulnerabilities (деталі)
• Messages Library 2.0 Arbitrary Administrator Account Vulnerability (деталі)
• ARD-9808 DVR Card Security Camera Arbitrary Config Disclosure Vuln (деталі)
• Messages Library 2.0 Insecure Cookie Handling Vulnerability (деталі)
• Messages Library 2.0 Arbitrary Delete Message Vulnerability (деталі)
• CMS Chainuk <= 1.2 Multiple Remote VUlnerabilities (деталі)
• KerviNet Forum <= 1.1 Multiple Remote Vulnerabilities (деталі)
• (GET var ‘id’) BLIND SQL INJECTION EXPLOIT Dog Pedigree Online Database v1.0.1-Beta (деталі)

В даній добірці експлоіти в веб додатках:

• Audio Article Directory (file) Remote File Disclosure Vulnerability (деталі)
• Joomla com_bookflip (book_id) Remote SQL Injection Vulnerability (деталі)
• Cpanel (lastvisit.html domain) Arbitrary File Disclosure Vuln (auth) (деталі)
• SMF Mod Member Awards 1.0.2 Blind SQL Injection Exploit (деталі)
• DM FileManager 3.9.4 Remote File Disclosure Vulnerability (деталі)
• MDPro Module CWGuestBook <= 2.1 Remote SQL Injection Vulnerability (деталі)
• PunBB Affiliates Mod <= 1.1 Remote Blind SQL Injection Exploit (деталі)
• phpMyBlockchecker 1.0.0055 Insecure Cookie Handling Vulnerability (деталі)
• BIGACE CMS 2.6 (cmd) Local File Inclusion Vulnerability (деталі)
• maxcms2.0 create new admin exploit (деталі)