Websecurity - Веб безпека

В даній добірці експлоіти в веб додатках:

• Joomla Component Cinema 1.0 Remote SQL Injection Vulnerability (деталі)
• Joomla Component d3000 1.0.0 Remote SQL Injection Vulnerability (деталі)
• BolinOS 4.6.1 (LFI/XSS) Multiple Security Vulnerabilities (деталі)
• e107 Plugin My_Gallery 2.3 Arbitrary File Download Vulnerability (деталі)
• TopperMod 1.0 (mod.php) Local File Inclusion Vulnerability (деталі)
• TopperMod 2.0 Remote SQL Injection Vulnerability (деталі)
• PacketTrap Networks pt360 2.0.39 TFTPD Remote DoS Exploit (деталі)
• JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities (деталі)
• AuraCMS 2.x (user.php) Security Code Bypass / Add Administrator Exploit (деталі)
• Mybb <= 1.2.2 Remote SQL Injecton Exploit v.2.0 (деталі)

В даній добірці експлоіти в веб додатках:

• RunCMS Module section (artid) Remote SQL Injection Vulnerability (деталі)
• Joomla Components custompages 1.1 Remote File Inclusion Vulnerability (деталі)
• Cuteflow Bin 1.5.0 (login.php) Local File Inclusion Vulnerability (деталі)
• destar 0.2.2-5 Arbitrary Add New User Exploit (деталі)
• Joomla Component rekry 1.0.0 (op_id) SQL Injection Vulnerability (деталі)
• PowerBook 1.21 (index.php page) Local File Inclusion Vulnerability (деталі)
• phpBB Module XS-Mod 2.3.1 Local File Inclusion Vulnerability (деталі)
• PowerPHPBoard 1.00b Multiple Local File Inclusion Vulnerabilities (деталі)
• HIS-Webshop (his-webshop.pl t) Remote File Disclosure Vulnerability (деталі)
• Exploits CodeBreak (codebreak.php process_method) - Remote File Inclusion Vulnerability (деталі)

В даній добірці експлоіти в веб додатках:

• Joomla Component joovideo 1.2.2 (id) SQL Injection Vulnerability (деталі)
• Joomla Component Datsogallery 1.3.1 Remote SQL Injection Vulnerability (деталі)
• RunCMS Module Photo 3.02 (cid) Remote SQL Injection Vulnerability (деталі)
• ZyXEL ZyWALL Quagga/Zebra (default pass) Remote Root Vulnerability (деталі)
• phpAddressBook 2.11 Multiple Local File Inclusion Vulnerabilities (деталі)
• ASPapp Knowledge Base Remote SQL Injection Vulnerability (деталі)
• PHP-Nuke Platinum 7.6.b.5 (dynamic_titles.php) SQL Injection Exploit (деталі)
• XLPortal <= 2.2.4 (search) Remote SQL Injection Exploit (деталі)
• PostNuke <= 0.764 Blind SQL Injection Exploit (деталі)
• Exploits CMS Creamotion - Remote File include (деталі)

В даній добірці експлоіти в веб додатках:

• Home FTP Server 1.4.5 Remote Denial of Service Exploit (деталі)
• ASPapp (links.asp CatId) Remote SQL Injection Vulnerability (деталі)
• Easy-Clanpage 2.2 (id) Remote SQL Injection Vulnerability (деталі)
• Joomla Component Restaurante 1.0 (id) SQL Injection Vulnerability (деталі)
• Mambo Component accombo 1.x (id) SQL Injection Vulnerability (деталі)
• Joomla Component Alberghi <= 2.1.3 (id) SQL Injection Vulnerability (деталі)
• PEEL CMS Admin Hash Extraction and Remote Upload Exploit (деталі)
• CenterIM <= 4.22.3 Remote Command Execution Vulnerability (деталі)
• D.E. Classifieds (cat_id) Remote SQL Injection Vulnerability (деталі)
• Exploits ELSE IF CMS Multiple vulnerabilities (деталі)

В даній добірці експлоіти в веб додатках:

• eXV2 Module eblog 1.2 (blog_id) Remote SQL Injection Vulnerability (деталі)
• eXV2 Module MyAnnonces (lid) Remote SQL Injection Vulnerability (деталі)
• XOOPS Module Dictionary <= 0.94 Remote SQL Injection Vulnerability (деталі)
• PHPauction GPL Enhanced 2.51 Multiple RFI Vulnerabilities (деталі)
• Exero CMS 1.0.1 (theme) Multiple Local File Inclusion Vulnerabilities (деталі)
• Apple Safari (webkit) Remote Denial of Service Exploit (iphone/osx/win) (деталі)
• MG-SOFT Net Inspector 6.5.0.828 Multiple Remote Vulnerabilities (деталі)
• KAPhotoservice (album.asp) Remote SQL Injection Exploit (деталі)
• Joomla Component Acajoom (com_acajoom) SQL Injection Vulnerability (деталі)
• GCALDaemom DoS Expoit (деталі)

В даній добірці експлоіти в веб додатках:

• Motorola Timbuktu Pro 8.6.5/8.7 Path Traversal / Log Injection Exploit (деталі)
• EasyGallery <= 5.0tr Multiple Remote Vulnerabilities (деталі)
• EasyCalendar <= 4.0tr Multiple Remote Vulnerabilities (деталі)
• AuraCMS <= 2.2.1 (online.php) Remote Blind SQL Injection Exploit (деталі)
• eXV2 Module WebChat 1.60 (roomid) Remote SQL Injection Vulnerability (деталі)
• eXV2 Module Viso <= 2.0.4.3 (kid) Remote SQL Injection Vulnerability (деталі)
• fuzzylime cms <= 3.01 (admindir) Remote File Inclusion Vulnerability (деталі)
• phpBP <= RC3 (2.204) FIX4 Remote SQL Injection Vulnerability (деталі)
• Multiple Timesheets <= 5.0 Multiple Remote Vulnerabilities (деталі)
• Gelato SQL Injection exploit (деталі)

В даній добірці експлоіти в веб додатках:

• Joomla Component ProductShowcase <= 1.5 SQL Injection Vulnerability (деталі)
• Bloo <= 1.00 Multiple Remote SQL Injection Vulnerabilities (деталі)
• Mapbender 2.4.4 (gaz) Remote SQL Injection Vulnerability (деталі)
• Mapbender <= 2.4.4 (mapFiler.php) Remote Code Execution Vulnerability (деталі)
• phpMyNewsletter <= 0.8b5 (archives.php msg_id) SQL Injection Exploit (деталі)
• Argon Client Management Services <= 1.31 Directory Traversal Vuln (деталі)
• ASG-Sentry <= 7.0.0 Multiple Remote Vulnerabilities (деталі)
• Acronis PXE Server 2.0.0.1076 Directory Traversal / NULL Pointer Vulns (деталі)
• Danneo CMS <= 0.5.1 Remote Blind SQL Injection Exploit (деталі)
• Flashbb <= 1.1.7 - Remote File Inclusion Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• XOOPS Module wfdownloads (cid) Remote SQL Injection Vulnerability (деталі)
• zKup CMS 2.0 <= 2.3 Remote Upload Exploit (деталі)
• zKup CMS 2.0 <= 2.3 Remote Add Admin Exploit (деталі)
• Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability (деталі)
• BM Classifieds <= 20080409 Multiple SQL Injection Vulnerabilities (деталі)
• QuickTicket <= 1.5 (qti_usr.php id) SQL Injection Vulnerability (деталі)
• Mambo Component eWriting 1.2.1 (cat) SQL Injection Vulnerability (деталі)
• VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit (деталі)
• phpBB Mod FileBase (id) Remote SQL Injection Vulnerability (деталі)
• Pluxml 0.3.1 Remote Code Execution Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• PHP-Nuke My_eGallery <= 2.7.9 Remote SQL Injection Vulnerability (деталі)
• phpArcadeScript <= 3.0RC2 (userid) SQL Injection Vulnerability (деталі)
• Mambo Component com_Musica (id) Remote SQL Injection Vulnerability (деталі)
• Galaxy FTP Server 1.0 (Neostrada Livebox DSL Router) DoS Exploit (деталі)
• Dynamic photo gallery 1.02 (albumID) Remote SQL Injection Vulnerability (деталі)
• MiniWebSvr 0.0.9a Remote Directory Transversal Vulnerability (деталі)
• Versant server <= 7.0.1.3 Arbitrary Commands Execution Exploit (деталі)
• Mitra Informatika Solusindo cart Remote SQL Injection Vulnerability (деталі)
• XOOPS Module Glossario 2.2 (sid) Remote SQL Injection Vulnerability (деталі)
• iG Shop 1.4 eval Inclusion Vulnerability (деталі)

В даній добірці експлоіти в веб додатках:

• PHP-Nuke Modules Manuales 0.1 (cid) SQL Injection Vulnerability (деталі)
• PHP-Nuke Module Kose_Yazilari (artid) SQL Injection Vulnerability (деталі)
• Barryvan Compo Manager 0.5pre-1 Remote File Inclusion Vulnerability (деталі)
• Podcast Generator <= 1.0 BETA 2 RFI / File Disclosure Vulnerabilities (деталі)
• SiteBuilderElite 1.2 Multiple Remote File Inclusion Vulnerabilities (деталі)
• Koobi Pro 5.7 (categ) Remote SQL Injection Vulnerability (деталі)
• GROUP-E 1.6.41 (head_auth.php) Remote File Inclusion Vulnerability (деталі)
• Koobi CMS 4.3.0 - 4.2.3 (categ) Remote SQL Injection Vulnerability (деталі)
• phpComasy 0.8 (mod_project_id) Remote SQL Injection Vulnerability (деталі)
• SMF WAV capcha breaker (деталі)