Files ≈ Packet Storm

Files ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 06:32:44 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2331813160&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0807-exploits%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2331813160.1338186764.1338186764.1338186764.1%3B%2B__utmz%3D32867617.1338186764.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) 0807-exploits.tgz http://packetstormsecurity.org/files/68737/0807-exploits.tgz http://packetstormsecurity.org/files/68737/0807-exploits.tgz http://packetstormsecurity.org/files/68737/0807-exploits.tgz.html Fri, 01 Aug 2008 19:55:45 GMT Packet Storm new exploits for July, 2008. phpx-cookie.txt http://packetstormsecurity.org/files/68699/phpx-cookie.txt http://packetstormsecurity.org/files/68699/phpx-cookie.txt http://packetstormsecurity.org/files/68699/phpx-cookie.txt.html Thu, 31 Jul 2008 22:36:59 GMT PHPX version 3.5.16 suffers from a cookie poisoning and login bypass vulnerability. symphony-exec.txt http://packetstormsecurity.org/files/68698/symphony-exec.txt http://packetstormsecurity.org/files/68698/symphony-exec.txt http://packetstormsecurity.org/files/68698/symphony-exec.txt.html Thu, 31 Jul 2008 22:34:21 GMT Symphony versions 1.7.01 and below remote code execution exploit. cpg-lfiexec.txt http://packetstormsecurity.org/files/68697/cpg-lfiexec.txt http://packetstormsecurity.org/files/68697/cpg-lfiexec.txt http://packetstormsecurity.org/files/68697/cpg-lfiexec.txt.html Thu, 31 Jul 2008 22:33:13 GMT Coppermine Photo Gallery versions 1.4.18 and below local file inclusion and remote code execution exploit. letterit2-lfi.txt http://packetstormsecurity.org/files/68696/letterit2-lfi.txt http://packetstormsecurity.org/files/68696/letterit2-lfi.txt http://packetstormsecurity.org/files/68696/letterit2-lfi.txt.html Thu, 31 Jul 2008 22:32:10 GMT LetterIt 2 suffers from a local file inclusion vulnerability. cas-sql.txt http://packetstormsecurity.org/files/68695/cas-sql.txt http://packetstormsecurity.org/files/68695/cas-sql.txt http://packetstormsecurity.org/files/68695/cas-sql.txt.html Thu, 31 Jul 2008 22:30:13 GMT The PozScripts Classified Ads Script suffers from a remote SQL injection vulnerability in product_desc.php. csphonebook-xss.txt http://packetstormsecurity.org/files/68689/csphonebook-xss.txt http://packetstormsecurity.org/files/68689/csphonebook-xss.txt http://packetstormsecurity.org/files/68689/csphonebook-xss.txt.html Thu, 31 Jul 2008 22:11:40 GMT csphonebook version 1.02 suffers from a cross site scripting vulnerability. fprot-dos.tgz http://packetstormsecurity.org/files/68675/fprot-dos.tgz http://packetstormsecurity.org/files/68675/fprot-dos.tgz http://packetstormsecurity.org/files/68675/fprot-dos.tgz.html Thu, 31 Jul 2008 15:25:30 GMT F-PROT Antivirus version 6.2.1.4252 suffers from an infinite loop denial of service vulnerability when handling a malformed archive. Such an archive is included. nctsoft-activex.txt http://packetstormsecurity.org/files/68673/nctsoft-activex.txt http://packetstormsecurity.org/files/68673/nctsoft-activex.txt http://packetstormsecurity.org/files/68673/nctsoft-activex.txt.html Thu, 31 Jul 2008 15:19:16 GMT NCTsoft ActiveX related remote buffer overflow exploit that takes advantage of AudFile.dll. pozscripts-sql.txt http://packetstormsecurity.org/files/68672/pozscripts-sql.txt http://packetstormsecurity.org/files/68672/pozscripts-sql.txt http://packetstormsecurity.org/files/68672/pozscripts-sql.txt.html Thu, 31 Jul 2008 15:18:13 GMT The PozScripts Classified Ads Script suffers from a remote SQL injection vulnerability in browsecats.php. tubeguru-sql.txt http://packetstormsecurity.org/files/68671/tubeguru-sql.txt http://packetstormsecurity.org/files/68671/tubeguru-sql.txt http://packetstormsecurity.org/files/68671/tubeguru-sql.txt.html Thu, 31 Jul 2008 15:17:05 GMT TubeGuru Video Sharing Script suffers from a remote SQL injection vulnerability in ugroups.php. endonesia-sql.txt http://packetstormsecurity.org/files/68670/endonesia-sql.txt http://packetstormsecurity.org/files/68670/endonesia-sql.txt http://packetstormsecurity.org/files/68670/endonesia-sql.txt.html Thu, 31 Jul 2008 15:15:53 GMT eNdonesia version 8.4 remote SQL injection exploit that takes advantage of the calendar module. pligg-exec.txt http://packetstormsecurity.org/files/68669/pligg-exec.txt http://packetstormsecurity.org/files/68669/pligg-exec.txt http://packetstormsecurity.org/files/68669/pligg-exec.txt.html Thu, 31 Jul 2008 15:14:53 GMT Pligg versions 9.9 and below remote code execution exploit. pligg99-sqlxss.txt http://packetstormsecurity.org/files/68666/pligg99-sqlxss.txt http://packetstormsecurity.org/files/68666/pligg99-sqlxss.txt http://packetstormsecurity.org/files/68666/pligg99-sqlxss.txt.html Thu, 31 Jul 2008 03:55:33 GMT Pligg versions 9.9 and below suffer from cross site scripting, arbitrary file access, and SQL injection vulnerabilities. aflistenerdos-08_007.txt http://packetstormsecurity.org/files/68661/aflistenerdos-08_007.txt http://packetstormsecurity.org/files/68661/aflistenerdos-08_007.txt http://packetstormsecurity.org/files/68661/aflistenerdos-08_007.txt.html Thu, 31 Jul 2008 03:42:31 GMT Affinium Campaign version 7.2.1.0.55 suffers from a denial of service vulnerability in its Listener. aflistenerdirectorytraversal-08_006.txt http://packetstormsecurity.org/files/68660/aflistenerdirectorytraversal-08_006.txt http://packetstormsecurity.org/files/68660/aflistenerdirectorytraversal-08_006.txt http://packetstormsecurity.org/files/68660/aflistenerdirectorytraversal-08_006.txt.html Thu, 31 Jul 2008 03:41:21 GMT Affinium Campaign version 7.2.1.0.55 suffers from a directory traversal vulnerability in its Listener. affolderdirectorytraversal-08_002.txt http://packetstormsecurity.org/files/68659/affolderdirectorytraversal-08_002.txt http://packetstormsecurity.org/files/68659/affolderdirectorytraversal-08_002.txt http://packetstormsecurity.org/files/68659/affolderdirectorytraversal-08_002.txt.html Thu, 31 Jul 2008 03:40:35 GMT Affinium Campaign version 7.2.1.0.55 suffers from a directory traversal vulnerability. afbookmarkxss-08_001.txt http://packetstormsecurity.org/files/68658/afbookmarkxss-08_001.txt http://packetstormsecurity.org/files/68658/afbookmarkxss-08_001.txt http://packetstormsecurity.org/files/68658/afbookmarkxss-08_001.txt.html Thu, 31 Jul 2008 03:39:22 GMT Affinium Campaign version 7.2.1.0.55 suffers from a javascript insertion vulnerability. afurlxss-08_005.txt http://packetstormsecurity.org/files/68657/afurlxss-08_005.txt http://packetstormsecurity.org/files/68657/afurlxss-08_005.txt http://packetstormsecurity.org/files/68657/afurlxss-08_005.txt.html Thu, 31 Jul 2008 03:38:12 GMT Affinium Campaign version 7.2.1.0.55 suffers from multiple cross site scripting vulnerabilities. ScrewTurn-Wiki_08_008.txt http://packetstormsecurity.org/files/68656/ScrewTurn-Wiki_08_008.txt http://packetstormsecurity.org/files/68656/ScrewTurn-Wiki_08_008.txt http://packetstormsecurity.org/files/68656/ScrewTurn-Wiki_08_008.txt.html Thu, 31 Jul 2008 03:37:01 GMT ScrewTurn Wiki versions 2.0.29 and 2.0.30 suffer from a cross site scripting vulnerability. atmail541-download.txt http://packetstormsecurity.org/files/68655/atmail541-download.txt http://packetstormsecurity.org/files/68655/atmail541-download.txt http://packetstormsecurity.org/files/68655/atmail541-download.txt.html Thu, 31 Jul 2008 03:35:47 GMT Atmail PHP version 5.41 suffers from a file download vulnerability that allows a remote attacker to gain access to database passwords and more. articlefriendly-sql.txt http://packetstormsecurity.org/files/68654/articlefriendly-sql.txt http://packetstormsecurity.org/files/68654/articlefriendly-sql.txt http://packetstormsecurity.org/files/68654/articlefriendly-sql.txt.html Thu, 31 Jul 2008 03:09:25 GMT Article Friendly Pro and Article Friendly Standard suffer from a SQL injection vulnerability in categorydetail.php. zeereviews-sql.txt http://packetstormsecurity.org/files/68653/zeereviews-sql.txt http://packetstormsecurity.org/files/68653/zeereviews-sql.txt http://packetstormsecurity.org/files/68653/zeereviews-sql.txt.html Thu, 31 Jul 2008 03:07:33 GMT ZeeReviews suffers from a remote SQL injection vulnerability in comments.php. atmail-disclose.txt http://packetstormsecurity.org/files/68649/atmail-disclose.txt http://packetstormsecurity.org/files/68649/atmail-disclose.txt http://packetstormsecurity.org/files/68649/atmail-disclose.txt.html Thu, 31 Jul 2008 02:46:59 GMT AtMail leaves world readable files available post install, allowing for the htpasswd file and more to be extracted. devwms-lfisqlxss.txt http://packetstormsecurity.org/files/68648/devwms-lfisqlxss.txt http://packetstormsecurity.org/files/68648/devwms-lfisqlxss.txt http://packetstormsecurity.org/files/68648/devwms-lfisqlxss.txt.html Thu, 31 Jul 2008 02:29:10 GMT DEV WMS suffers from local file inclusion, cross site scripting, and SQL injection vulnerabilities.