Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:32:09 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1022854425&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0612-exploits%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1022854425.1338183129.1338183129.1338183129.1%3B%2B__utmz%3D32867617.1338183129.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/53334/2006-exploits.tgz http://packetstormsecurity.org/files/53334/2006-exploits.tgz http://packetstormsecurity.org/files/53334/2006-exploits.tgz.html Tue, 02 Jan 2007 02:20:36 GMT Complete comprehensive archive of all exploits posted to Packet Storm for 2006. http://packetstormsecurity.org/files/53333/0612-exploits.tgz http://packetstormsecurity.org/files/53333/0612-exploits.tgz http://packetstormsecurity.org/files/53333/0612-exploits.tgz.html Tue, 02 Jan 2007 02:19:32 GMT Packet Storm new exploits for December, 2006. http://packetstormsecurity.org/files/53331/maviportal-xss.txt http://packetstormsecurity.org/files/53331/maviportal-xss.txt http://packetstormsecurity.org/files/53331/maviportal-xss.txt.html Sat, 30 Dec 2006 02:05:48 GMT MaviPortal suffers from a cross site scripting flaw in credits.php. http://packetstormsecurity.org/files/53330/ldu-sql.txt http://packetstormsecurity.org/files/53330/ldu-sql.txt http://packetstormsecurity.org/files/53330/ldu-sql.txt.html Sat, 30 Dec 2006 02:05:01 GMT Land Down Under versions 8.x and below suffer from a SQL injection vulnerability in journal.php. http://packetstormsecurity.org/files/53328/oracle10g-xss.txt http://packetstormsecurity.org/files/53328/oracle10g-xss.txt http://packetstormsecurity.org/files/53328/oracle10g-xss.txt.html Sat, 30 Dec 2006 02:03:13 GMT Oracle Portal 10g suffers from a cross site scripting flaw. http://packetstormsecurity.org/files/53327/mobilelib-xss.txt http://packetstormsecurity.org/files/53327/mobilelib-xss.txt http://packetstormsecurity.org/files/53327/mobilelib-xss.txt.html Sat, 30 Dec 2006 02:02:02 GMT Mobilelib Gold version 2 suffers from cross site scripting flaws. http://packetstormsecurity.org/files/53325/durian-302-exec.txt http://packetstormsecurity.org/files/53325/durian-302-exec.txt http://packetstormsecurity.org/files/53325/durian-302-exec.txt.html Fri, 29 Dec 2006 15:24:20 GMT Durian Web Application Server version 3.02 freeware for Win32 buffer overflow exploit. http://packetstormsecurity.org/files/53324/durian-302-dos.txt http://packetstormsecurity.org/files/53324/durian-302-dos.txt http://packetstormsecurity.org/files/53324/durian-302-dos.txt.html Fri, 29 Dec 2006 15:22:14 GMT Durian Web Application Server version 3.02 freeware for Win32 denial of service exploit. http://packetstormsecurity.org/files/53320/limboCMS-rfi.txt http://packetstormsecurity.org/files/53320/limboCMS-rfi.txt http://packetstormsecurity.org/files/53320/limboCMS-rfi.txt.html Fri, 29 Dec 2006 15:06:16 GMT The Limbo CMS event module suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/53302/phpicalendar-xss.txt http://packetstormsecurity.org/files/53302/phpicalendar-xss.txt http://packetstormsecurity.org/files/53302/phpicalendar-xss.txt.html Thu, 28 Dec 2006 01:09:23 GMT PHP icalendar versions 2.23rc1 and below are susceptible to multiple cross site scripting vulnerabilities. http://packetstormsecurity.org/files/53301/csrssexe.txt http://packetstormsecurity.org/files/53301/csrssexe.txt http://packetstormsecurity.org/files/53301/csrssexe.txt.html Thu, 28 Dec 2006 01:07:57 GMT Microsoft Windows NTRaiseHardError Csrss.exe proof of concept memory disclosure exploit. http://packetstormsecurity.org/files/53300/slm10-sql.txt http://packetstormsecurity.org/files/53300/slm10-sql.txt http://packetstormsecurity.org/files/53300/slm10-sql.txt.html Thu, 28 Dec 2006 01:05:51 GMT Secure Login Manager version 1.0 suffers from cross site scripting and SQL injection vulnerabilities. http://packetstormsecurity.org/files/53299/wp205-xss.txt http://packetstormsecurity.org/files/53299/wp205-xss.txt http://packetstormsecurity.org/files/53299/wp205-xss.txt.html Thu, 28 Dec 2006 01:04:44 GMT WordPress versions 2.0.5 and below suffer from a cross site scripting flaw in templates.php. http://packetstormsecurity.org/files/53298/Ksirc-PoC.c http://packetstormsecurity.org/files/53298/Ksirc-PoC.c http://packetstormsecurity.org/files/53298/Ksirc-PoC.c.html Thu, 28 Dec 2006 01:00:51 GMT KSirc version 1.3.12 PRIVMSG remote buffer overflow proof of concept exploit. http://packetstormsecurity.org/files/53297/luckybot3-rfi.txt http://packetstormsecurity.org/files/53297/luckybot3-rfi.txt http://packetstormsecurity.org/files/53297/luckybot3-rfi.txt.html Thu, 28 Dec 2006 00:59:58 GMT LuckyBot version 3 suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/53291/phplive322-xss.txt http://packetstormsecurity.org/files/53291/phplive322-xss.txt http://packetstormsecurity.org/files/53291/phplive322-xss.txt.html Thu, 28 Dec 2006 00:51:52 GMT PHP Live! version 3.2.2 suffers from multiple cross site scripting vulnerabilities. http://packetstormsecurity.org/files/53287/fab-sql.txt http://packetstormsecurity.org/files/53287/fab-sql.txt http://packetstormsecurity.org/files/53287/fab-sql.txt.html Thu, 28 Dec 2006 00:36:19 GMT Forum AnyBoard suffers from a SQL injection flaw. http://packetstormsecurity.org/files/53286/phpbbxtra20-rfi.txt http://packetstormsecurity.org/files/53286/phpbbxtra20-rfi.txt http://packetstormsecurity.org/files/53286/phpbbxtra20-rfi.txt.html Thu, 28 Dec 2006 00:34:56 GMT PhpBBXtra version 2.0 suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/53285/hlstats-sql.txt http://packetstormsecurity.org/files/53285/hlstats-sql.txt http://packetstormsecurity.org/files/53285/hlstats-sql.txt.html Thu, 28 Dec 2006 00:28:27 GMT HLStats versions between 1.34 and 1.20 suffer from a SQL injection vulnerability. Exploit included. http://packetstormsecurity.org/files/53284/phpcms117-rfi.txt http://packetstormsecurity.org/files/53284/phpcms117-rfi.txt http://packetstormsecurity.org/files/53284/phpcms117-rfi.txt.html Thu, 28 Dec 2006 00:26:47 GMT PHP-CMS version 1.1.7 suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/53283/youtube-js.txt http://packetstormsecurity.org/files/53283/youtube-js.txt http://packetstormsecurity.org/files/53283/youtube-js.txt.html Thu, 28 Dec 2006 00:24:19 GMT YouTube.com has a flaw that allows for arbitrary javascript execution. http://packetstormsecurity.org/files/53281/timberwolf122-xss.txt http://packetstormsecurity.org/files/53281/timberwolf122-xss.txt http://packetstormsecurity.org/files/53281/timberwolf122-xss.txt.html Thu, 28 Dec 2006 00:20:13 GMT TimberWolf version 1.2.2 suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/53280/chatwm10-sql.txt http://packetstormsecurity.org/files/53280/chatwm10-sql.txt http://packetstormsecurity.org/files/53280/chatwm10-sql.txt.html Thu, 28 Dec 2006 00:19:24 GMT Chatwm version 1.0 suffers from a SQL injection vulnerability. http://packetstormsecurity.org/files/53279/fishyshoop-vuln.txt http://packetstormsecurity.org/files/53279/fishyshoop-vuln.txt http://packetstormsecurity.org/files/53279/fishyshoop-vuln.txt.html Thu, 28 Dec 2006 00:17:06 GMT Fishyshoop Shopping Cart 0.930 Beta suffers from a vulnerability that allows arbitrary users to create accounts with administrator privileges. http://packetstormsecurity.org/files/53278/omp10-rfi.txt http://packetstormsecurity.org/files/53278/omp10-rfi.txt http://packetstormsecurity.org/files/53278/omp10-rfi.txt.html Thu, 28 Dec 2006 00:15:53 GMT Okul Merkezi Portal version 1.0 suffers from a remote file inclusion flaw.