[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]

Author:

SirGod

Homepage:http://insecurity-ro.org


[ exploits/shellcode ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-08-05 MyBackup 1.4.0 (AFD/RFI) Multiple Remote Vulnerabilities 2693 R D SirGod
2009-08-05 Tenrok 1.1.0 (UDD/RCE) Multiple Remote Vulnerabilities 1823 R D SirGod
2009-08-05 OpenNews 1.0 (SQLI/RCE) Multiple Remote Vulnerabilities 2180 R D SirGod
2009-08-04 MOC Designs PHP News 1.1 (Auth Bypass) SQL Injection Vulnerability 2540 R D SirGod
2009-08-03 Netpet CMS 1.9 (confirm.php language) Local File Inclusion Vulnerability 1313 R D SirGod
2009-08-03 QuickDev 4 (download.php file) File Disclosure Vulnerability 1241 R D SirGod
2009-08-03 TT Web Site Manager 0.5 (Auth Bypass) SQL Injection Vulnerability 1427 R D SirGod
2009-08-03 SimpleLoginSys 0.5 (Auth Bypass) SQL Injection Vulnerability 1517 R D SirGod
2009-08-03 simplePHPWeb 0.2 (files.php) Authentication Bypass Vulnerability 1484 R D SirGod
2009-08-01 PortalXP - Teacher Edition 1.2 Multiple SQL Injection Vulnerabilities 2152 R D SirGod
2009-08-01 aa33code 0.0.1 (LFI/Auth Bypass/DCD) Multiple Remote Vulnerabilites 2023 R D SirGod
2009-07-30 justVisual 1.2 (fs_jVroot) Remote File Inclusion Vulnerabilities 2022 R D SirGod
2009-07-30 Orbis CMS 1.0 (AFD/ADF/ASU/SQL) Multiple Remote Vulnerabilities 1563 R D SirGod
2009-07-30 dit.cms 1.3 (path/sitemap/relPath) Local File Inclusion Vulnerabilities 1439 R D SirGod
2009-07-30 CMSphp 0.21 (LFI/XSS) Multiple Remote Vulnerabilities 1949 R D SirGod
2009-07-30 d.net CMS (LFI/SQLI) Multiple Remote Vulnerabilities 1955 R D SirGod
2009-07-30 Really Simple CMS 0.3a (pagecontent.php PT) Local File Inclusion Vulnerability 2076 R D SirGod
2009-07-30 MUJE CMS 1.0.4.34 Local File Inclusion Vulnerabilities 1826 R D SirGod
2009-07-28 PaoLink 1.0 (login_ok) Authentication Bypass Vulnerability 1814 R D SirGod
2009-07-28 PaoBacheca Guestbook 2.1 (login_ok) Auth Bypass Vulnerability 2083 R D SirGod
2009-07-28 PaoLiber 1.1 (login_ok) Authentication Bypass Vulnerability 2162 R D SirGod
2009-07-27 iWiccle 1.01 (LFI/SQL) Multiple Remote Vulnerabilities 1497 R D SirGod
2009-07-27 Limny 1.01 (Auth Bypass) SQL Injection Vulnerability 2037 R D SirGod
2009-07-20 MCshoutbox 1.1 (SQL/XSS/Shell) Multiple Remote Vulnerabilities 2347 R D SirGod
2009-07-17 AJOX Poll (managepoll.php) Authentication Bypass Vulnerability 1740 R D SirGod
2009-07-02 AdminLog 0.5 (valid_login) Authentication Bypass Vulnerability 4824 R D SirGod
2009-06-30 phpMyBlockchecker 1.0.0055 Insecure Cookie Handling Vulnerability 2041 R D SirGod
2009-06-26 Mega File Manager 1.0 (index.php page) LFI Vulnerability 4668 R D SirGod
2009-06-15 Impleo Music Collection 2.0 (SQL/XSS) Multiple Remote Vulnerabilities 1750 R D SirGod
2009-06-15 DB Top Sites 1.0 Remote Command Execution Exploit 2251 R D SirGod
2009-06-15 DB Top Sites 1.0 (index.php u) Local File Inclusion Vulnerability 1997 R D SirGod
2009-06-15 Elvin BTS 1.2.0 Multiple Remote Vulnerabilities 1701 R D SirGod
2009-06-15 AdaptWeb 0.9.2 (LFI/SQL) Multiple Remote Vulnerabilities 1951 R D SirGod
2009-06-15 phpCollegeExchange 0.1.5c (listing_view.php itemnr) SQL Injection Vuln 2624 R D SirGod
2009-06-03 Movie PHP Script 2.0 (init.php anticode) Code Execution Vulnerability 2784 R D SirGod
2009-06-02 PropertyMax Pro FREE (SQL/XSS) Multiple Remote Vulnerabilities 2313 R D SirGod
2009-05-14 DigiMode Maya 1.0.2 (.m3u / .m3l files) Buffer Overflow PoCs 1987 R D SirGod
2009-05-05 LinkBase 2.0 Remote Cookie Grabber Vulnerability 2485 R D SirGod
2009-05-04 EW-MusicPlayer 0.8 (.m3u file) Local Buffer Overflow PoC 1722 R D SirGod
2009-05-04 Bmxplay 0.4.4b (.BMX File) Local Buffer Overflow PoC 1940 R D SirGod
2009-05-01 Beatport Player 1.0.0.283 (.M3U File) Local Buffer Overflow PoC 2131 R D SirGod
2009-05-01 pecio cms 1.1.5 (index.php language) Local File Inclusion Vulnerability 3977 R D SirGod
2009-04-30 Mercury Audio Player 1.21 (.M3U File) Local Stack Overflow PoC 1789 R D SirGod
2009-04-27 Thickbox Gallery v2 (index.php ln) Local File Inclusion Vulnerability 2317 R D SirGod
2009-04-27 Flatchat 3.0 (pmscript.php with) Local File Inclusion Vulnerability 2514 R D SirGod
2009-04-27 ABC Advertise 1.0 Admin Password Disclosure Vulnerability 3347 R D SirGod
2009-04-21 PastelCMS 0.8.0 (LFI/SQL) Multiple Remote Vulnerabilities 2148 R D SirGod
2009-04-21 TotalCalendar 2.4 (include) Local File Inclusion Vulnerability 2532 R D SirGod
2009-04-16 DNS Tools (PHP Digger) Remote Command Execution Vuln 3703 R D SirGod
2009-04-14 GuestCal 2.1 (index.php lang) Local File Inclusion Vulnerability 2322 R D SirGod
2009-04-10 moziloCMS 1.11 (LFI/PD/XSS) Multiple Remote Vulnerabilities 3249 R D SirGod
2009-04-10 Redaxscript 0.2.0 (language) Local File Inclusion Vulnerability 2625 R D SirGod
2009-03-30 BandSite CMS 1.1.4 (members.php memid) SQL Injection Vulnerability 2790 R D SirGod
2009-03-26 Acute Control Panel 1.0.0 (SQL/RFI) Multiple Remote Vulnerabilities 5511 R D SirGod
2009-03-16 Beerwin's PHPLinkAdmin 1.0 RFI/SQL Injection Vulnerabilities 4793 R D SirGod
2009-03-16 YAP 1.1.1 Blind SQL Injection/SQL Injection Vulnerabilities 3149 R D SirGod
2009-02-10 Papoo CMS 3.x (pfadhier) Local File Inclusion Vulnerability 2600 R D SirGod
2009-02-06 Mailist 3.0 Insecure Backup/Local File Inclusion Vulnerabilities 3599 R D SirGod
2009-02-05 ClearBudget 0.6.1 Insecure Cookie Handling / LFI Vulnerabilities 2488 R D SirGod
2009-01-20 Max.Blog 1.0.6 Arbitrary Delete Post Exploit 2825 R D SirGod
2009-01-11 BKWorks ProPHP 0.50b1 (Auth Bypass) SQL Injection Vulnerability 2809 R D SirGod
2008-12-30 CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities 3565 R D SirGod
2008-12-22 Text Lines Rearrange Script (filename) File Disclosure Vulnerability 3301 R D SirGod
2008-12-15 BabbleBoard 1.1.6 (username) CSRF/Cookie Grabber Exploit 2614 R D SirGod
2008-12-14 AutositePHP 2.0.3 (LFI/CSRF/Edit File) Multiple Remote Vulnerabilities 2010 R D SirGod
2008-10-04 JMweb Multiple (src) Local File Inclusion Vulnerabilities 2942 R D SirGod
2008-10-03 CCMS 3.1 (skin) Multiple Local File Inclusion Vulnerabilities 3440 R D SirGod
2008-10-02 Bux.to Clone Script Insecure Cookie Handling Vulnerability 4189 R D SirGod
2008-09-30 SG Real Estate Portal 2.0 Blind SQL Injection/Local File Inclusion Vulns 7096 R D SirGod
2008-09-16 iScripts EasyIndex (produid) Remote SQL Injection Vulnerability 3414 R D SirGod
2008-09-15 Link Bid Script 1.5 Multiple Remote SQL Injection Vulnerabilities 3735 R D SirGod
2008-09-13 Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure Vulns 3331 R D SirGod
2008-09-13 Free PHP VX Guestbook 1.06 Arbitrary Database Backup Vulnerability 3644 R D SirGod
2008-09-11 D-iscussion Board 3.01 (topic) Local File Inclusion Vulnerability 2864 R D SirGod
2008-09-10 Zanfi CMS lite 1.2 Multiple Local File Inclusion Vulnerabilities 3157 R D SirGod
2008-08-26 CMME 1.12 (LFI/XSS/CSRF/Backup/MkDir) Multiple Vulnerabilities 3856 R D SirGod
2008-08-26 Thickbox Gallery v2 (admins.php) Admin Data Disclosure Vulnerability 4965 R D SirGod
2008-08-23 NoName Script <= 1.1 Multiple Remote Vulnerabilities 6858 R D SirGod
2008-08-21 BandSite CMS 1.1.4 (Download Backup/XSS/CSRF) Remote Vulnerabilities 4182 R D SirGod
2008-08-21 EasySite 2.3 Multiple Remote Vulnerabilities 5527 R D SirGod
2008-08-03 syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability 5222 R D SirGod

[ papers ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-09Finding vulnerabilities in PHP scripts (FULL)15133DSirGod
2009-08-07How to find RCE in scripts (with examples)6146DSirGod
2009-08-04shell via LFI - proc/self/environ method5159DSirGod



send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm