Websecurity - Веб безпека

В даній добірці експлоіти в веб додатках:

• Zomplog <= 3.8 (mp3playlist.php speler) Remote SQL Injection Exploit (деталі)
• TutorialCMS <= 1.01 Authentication Bypass Vulnerability (деталі)
• Ol Bookmarks Manager 0.7.4 (root) Remote File Inclusion Vulnerabilities (деталі)
• AlstraSoft Template Seller Pro <= 3.25 Remote Code Execution Exploit (деталі)
• AlstraSoft Template Seller Pro <= 3.25 Admin Password Change Exploit (деталі)
• Microsoft IIS 6.0 (/AUX/.aspx) Remote Denial of Service Exploit (деталі)
• BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability (деталі)
• Scallywag (template.php path) Remote File Inclusion Vulnerabilities (деталі)
• NavBoard 2.6.0 Remote Code Execution Exploit (деталі)
• S-Gastebuch <= V.1.5.3 (gb_pfad) Remote File Include Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• XOOPS Module resmanager <= 1.21 BLIND SQL Injection Exploit (деталі)
• GeekLog 2.x ImageImageMagick.php Remote File Inclusion Vulnerability (деталі)
• Mambo com_yanc 1.4 beta (id) Remote SQL Injection Vulnerability (деталі)
• FAQEngine <= 4.16.03 (question.php questionref) SQL Injection Exploit (деталі)
• SimpNews <= 2.40.01 (print.php newnr) Remote SQL Injection Exploit (деталі)
• PHPGlossar 0.8 (format_menue) Remote File Inclusion Vulnerabilities (деталі)
• Build it Fast (bif3) 0.4.1 Multiple Remote File Inclusion Vulnerabilities (деталі)
• MolyX BOARD 2.5.0 (index.php lang) Local File Inclusion Vulnerability (деталі)
• Libstats <= 1.0.3 (template_csv.php) Remote File Inclusion Vulnerability (деталі)
• Php-Nuke Module Emporium <= 2.3.0 Remote Blind SQL Injection Exploit (деталі)

В даній добірці експлоіти в веб додатках:

• Feindt Computerservice News 2.0 (newsadmin.php action) RFI Vuln (деталі)
• NagiosQL 2005 2.00 (prepend_adm.php) Remote File Inclusion Vuln (деталі)
• Media Gallery for Geeklog <= 1.4.8a Remote File Inclusion Vulnerability (деталі)
• Linksnet Newsfeed 1.0 Remote File Inclusion Vulnerability (деталі)
• Achievo 1.1.0 (atk.inc config_atkroot) Remote File Inclusion Vulnerability (деталі)
• XOOPS Module MyConference 1.0 (index.php) SQL Injection Exploit (деталі)
• XOOPS Module Glossarie <= 1.7 (sid) Remote SQL Injection Exploit (деталі)
• RunawaySoft Haber portal 1.0 (tr) Multiple Remote Vulnerabilities (деталі)
• Glossword 1.8.1 custom_vars.php Remote File Inclusion Vulnerability (деталі)
• Exploits Asterisk cdr_addon_mysql CSS (деталі)

В даній добірці експлоіти в веб додатках:

• W1L3D4 Philboard 0.2 (W1L3D4_bolum.asp forumid) SQL Injection Vuln (деталі)
• YAAP <= 1.5 __autoload() Remote File Inclusion Vulnerability (деталі)
• iG Shop 1.4 (page.php) Remote SQL Injection Vulnerability (деталі)
• PHP FirstPost 0.1 (block.php Include) Remote File Inclusion Exploit (деталі)
• EfesTECH Haber 5.0 (id) Remote SQL Injection Vulnerability (деталі)
• Beacon 0.2.0 (splash.lang.php) Remote File Inclusion Vulnerability (деталі)
• phpAtm 1.30 (downloadfile) Remote File Disclosure Vulnerability (деталі)
• CJG EXPLORER PRO 3.2 (g_pcltar_lib_dir) RFI Vulnerabilities (деталі)
• BlogMe 3.0 (archshow.asp var) Remote SQL Injection Vulnerability (деталі)
• SunLight CMS 5.3 (root) Remote File Inclusion Vulnerabilities (деталі)

В даній добірці експлоіти в веб додатках:

• phpMyPortal 3.0.0 RC3 GLOBALS[CHEMINMODULES] RFI Exploit (деталі)
• Thyme Calendar 1.3 Remote SQL Injection Vulnerability (деталі)
• Original 0.11 config.inc.php x[1] Remote File Inclusion Vulnerability (деталі)
• TaskDriver <= 1.2 Login Bypass/SQL Injection Exploit (деталі)
• Seditio v121 (plug.php h) Remote File Disclosure Vulnerability (деталі)
• Monalbum 0.8.7 Remote Code Execution Exploit (деталі)
• R2K Gallery 1.7 (galeria.php lang2) Local File Inclusion Vulnerability (деталі)
• maGAZIn 2.0 (phpThumb.php src) Remote File Disclosure Vulnerability (деталі)
• Snaps! Gallery 1.4.4 Remote User Pass Change Exploit (деталі)
• Jupiter CMS “Logged Guest” XSS Vulnerability (POC #3) (деталі)

В даній добірці експлоіти в веб додатках:

• PHPLojaFacil 0.1.5 (path_local) Remote File Inclusion Vulnerabilities (деталі)
• CGX 20050314 (pathCGX) Remote File Inclusion Vulnerabilities (деталі)
• LaVague <= 0.3 (printbar.php views_path) RFI Vulnerability (деталі)
• Berylium2 2003-08-18 (beryliumroot) Remote File Inclusion Vulnerability (деталі)
• Miplex2 (SmartyFU.class.php) Remote File Inclusion Vulnerability (деталі)
• TutorialCMS <= 1.00 (search.php search) SQL Injection Exploit (деталі)
• SimpleNews <= 1.0.0 FINAL (print.php news_id) SQL Injection Exploit (деталі)
• telltarget <= 1.3.3 (tt_docroot) Remote File Inclusion Vulnerabilities (деталі)
• aForum <= 1.32 (CommonAbsDir) Remote File Inclusion Vulnerability (деталі)
• Jupiter CMS File Upload Vulnerability (POC #2) (деталі)

В даній добірці експлоіти в веб додатках:

• Nuked-klaN 1.7.6 Remote Code Execution Exploit (деталі)
• Wikivi5 (show.php sous_rep) Remote File Inclusion Vulnerability (деталі)
• XOOPS Module wfquotes 1.0 0 Remote SQL Injection Vulnerability (деталі)
• NoAh <= 0.9 pre 1.2 (mfa_theme.php) Remote File Inclusion Vulnerability (деталі)
• Friendly <= 1.0d1 (friendly_path) Remote File Inclusion Vulnerabilities (деталі)
• DynamicPAD <= 1.02.18 (HomeDir) Remote File Inclusion Vulnerabilities (деталі)
• ACGVAnnu <= 1.3 (acgv.php rubrik) Local File Inclusion Vulnerability (деталі)
• Tropicalm Crowell Resource 4.5.2 (RESPATH) RFI Vulnerabilities (деталі)
• GNUEDU 1.3b2 Multiple Remote File Inclusion Vulnerabilities (деталі)
• Jupiter CMS SQL Injection Vulnerability (POC #1) (деталі)

В даній добірці експлоіти в веб додатках:

• Versado CMS 1.07 (ajax_listado.php urlModulo) RFI Vulnerability (деталі)
• E-GADS! 2.2.6 (common.php locale) Remote File Inclusion Vulnerability (деталі)
• PHP TopTree BBS 2.0.1a (right_file) Remote File Inclusion Vulnerability (деталі)
• Persism CMS <= 0.9.2 system[path] Remote File Inclusion Vulnerabilities (деталі)
• PMECMS <= 1.0 config[pathMod] Remote File Inclusion Vulnerabilities (деталі)
• Net Portal Dynamic System (NPDS) <= 5.10 Remote Code Execution (2) (деталі)
• vm watermark for Gallery 0.4.1 Remote File Inclusion Vulnerability (деталі)
• PHPtree 1.3 (cms2.php s_dir) Remote File Inclusion Vulnerability (деталі)
• Archangel Weblog 0.90.02 Local File Inclusion / Admin Bypass Vulns (деталі)
• PhpSploit Class (деталі)

В даній добірці експлоіти в веб додатках:

• Pre Shopping Mall 1.0 Remote SQL Injection Vulnerability (деталі)
• Pre News Manager 1.0 Remote SQL Injection Vulnerability (деталі)
• Pre Classifieds Listings 1.0 Remote SQL Injection Vulnerability (деталі)
• PHP Coupon Script 3.0 (index.php bus) Remote SQL Injection Vulnerability (деталі)
• Open Translation Engine (OTE) 0.7.8 (header.php ote_home) RFI Vuln (деталі)
• phpChess Community Edition 2.0 Multiple RFI Vulnerabilities (деталі)
• RunCms <= 1.5.2 (debug_show.php) Remote SQL Injection Exploit (деталі)
• Xoops Flashgames Module 1.0.1 Remote SQL Injection Vulnerability (деталі)
• workbench 0.11 (header.php path) Remote File Inclusion Vulnerability (деталі)
• WebInsta FM <= 0.1.4 Remote File Inclusion Vulnerability (деталі)

Продовжуючи тему експлоітів для PHP, пропоную вам наступну добірку.

Цього разу есплоіти в функціях glob() та ntuser_getuserlist() в PHP версії 5.2.3 та в розширенні Perl Extension.

• PHP 5.2.3 glob() Remote DoS Exploit (деталі)
• PHP 5.2.3 php_ntuser ntuser_getuserlist() Local Buffer Overflow PoC (деталі)
• PHP Perl Extension Safe_mode Bypass Exploit (деталі)