Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:56:19 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2085582098&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Add%20Admin%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fadd_administrator%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2085582098.1338191779.1338191779.1338191779.1%3B%2B__utmz%3D32867617.1338191779.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/105696/zoho-admin.txt http://packetstormsecurity.org/files/105696/zoho-admin.txt http://packetstormsecurity.org/files/105696/ZOHO-ManageEngine-ADSelfService-Plus-4.5-Build-4521-Administrative-Access.html Wed, 12 Oct 2011 01:35:31 GMT ZOHO ManageEngine ADSelfService Plus version 4.5 Build 4521 suffers from an authentication bypass vulnerability. http://packetstormsecurity.org/files/103141/perfectxp-addadmin.txt http://packetstormsecurity.org/files/103141/perfectxp-addadmin.txt http://packetstormsecurity.org/files/103141/112-Bytes-Win32-PerfectXp-pc1-sp3-Add-Admin-Shellcode.html Tue, 19 Jul 2011 02:30:56 GMT 112 bytes small Win32/PerfectXp-pc1/sp3 (Tr) add administrator shellcode. http://packetstormsecurity.org/files/103086/izlebizi-addadmin.txt http://packetstormsecurity.org/files/103086/izlebizi-addadmin.txt http://packetstormsecurity.org/files/103086/Izlebizi-Video-Script-Add-Administrator.html Sun, 10 Jul 2011 12:12:12 GMT Izlebizi Video Script remote add administrator account exploit. http://packetstormsecurity.org/files/99842/wespaphpnewsletter-admin.txt http://packetstormsecurity.org/files/99842/wespaphpnewsletter-admin.txt http://packetstormsecurity.org/files/99842/WESPA-PHP-Newsletter-3.0-Administrator-Password-Change.html Tue, 29 Mar 2011 20:26:50 GMT WESPA PHP Newsletter version 3.0 suffers from a remote administrative password changing vulnerability when the install script is left in place. http://packetstormsecurity.org/files/99841/simplephpnewsletter-admin.txt http://packetstormsecurity.org/files/99841/simplephpnewsletter-admin.txt http://packetstormsecurity.org/files/99841/Simple-PHP-Newsletter-Administrator-Password-Change.html Tue, 29 Mar 2011 20:25:46 GMT Simple PHP Newsletter suffers from a remote administrative password changing vulnerability when the install script is left in place. http://packetstormsecurity.org/files/97077/webatall-admin.txt http://packetstormsecurity.org/files/97077/webatall-admin.txt http://packetstormsecurity.org/files/97077/Web-All-1.1-Remote-Admin-Settings-Change-Exploit.html Mon, 27 Dec 2010 16:02:45 GMT Web@All versions 1.1 and below remote administrative settings changing exploit. http://packetstormsecurity.org/files/91213/pagedirector-sqladdadmin.txt http://packetstormsecurity.org/files/91213/pagedirector-sqladdadmin.txt http://packetstormsecurity.org/files/91213/PageDirector-CMS-SQL-Injection-Add-Administrator.html Tue, 29 Jun 2010 03:58:02 GMT PageDirector CMS suffers from add administrator and remote SQL injection vulnerabilities. http://packetstormsecurity.org/files/91201/sysax-addadmin.txt http://packetstormsecurity.org/files/91201/sysax-addadmin.txt http://packetstormsecurity.org/files/91201/Sysax-Multi-Server-Add-Administrator.html Tue, 29 Jun 2010 03:39:18 GMT Sysax Multi Server add administrator exploit. http://packetstormsecurity.org/files/88631/dlstats-sqlxssadmin.txt http://packetstormsecurity.org/files/88631/dlstats-sqlxssadmin.txt http://packetstormsecurity.org/files/88631/DL_Stats-Cross-Site-Scripting-Admin-Bypass-SQL-Injection.html Mon, 19 Apr 2010 20:53:11 GMT DL_Stats suffers from cross site scripting, arbitrary administrative access and remote SQL injection vulnerabilities. http://packetstormsecurity.org/files/88025/amss-addadmin.txt http://packetstormsecurity.org/files/88025/amss-addadmin.txt http://packetstormsecurity.org/files/88025/Advanced-Management-For-Services-Sites-Add-Administrator.html Sat, 03 Apr 2010 17:19:53 GMT Advanced Management For Services Sites remote add administrator exploit. http://packetstormsecurity.org/files/87387/ninkobb-addadmin.txt http://packetstormsecurity.org/files/87387/ninkobb-addadmin.txt http://packetstormsecurity.org/files/87387/NinkoBB-1.3RC4-Cross-Site-Request-Forgery.html Wed, 17 Mar 2010 23:14:10 GMT NinkoBB version 1.3RC4 change / add administrator cross site request forgery exploit. http://packetstormsecurity.org/files/86733/fileexecutive-shelllfiaddadmin.txt http://packetstormsecurity.org/files/86733/fileexecutive-shelllfiaddadmin.txt http://packetstormsecurity.org/files/86733/FileExecutive-File-Disclosure-Path-Disclosure-Shell-Upload.html Fri, 26 Feb 2010 19:32:12 GMT FileExecutive suffers from file disclosure, path disclosure, shell upload, edit administrator and add administrator vulnerabilities. http://packetstormsecurity.org/files/86673/pbboard-addadminupload.txt http://packetstormsecurity.org/files/86673/pbboard-addadminupload.txt http://packetstormsecurity.org/files/86673/PBBoard-2.0.5-Add-Administrator-Shell-Upload.html Thu, 25 Feb 2010 05:13:02 GMT PBBoard version 2.0.5 suffers from add administrator and shell upload vulnerabilities. http://packetstormsecurity.org/files/86376/limny-addadminxsrf.zip http://packetstormsecurity.org/files/86376/limny-addadminxsrf.zip http://packetstormsecurity.org/files/86376/Limny-2.0-CMS-Add-Administrator-Cross-Site-Request-Forgery.html Tue, 16 Feb 2010 22:50:59 GMT Limny CMS version 2.0 suffers from a cross site request forgery vulnerability that allows for a malicious attacker to have an administrator account created. Proof of concept code included. http://packetstormsecurity.org/files/86305/genereparkdpics-addadmin.txt http://packetstormsecurity.org/files/86305/genereparkdpics-addadmin.txt http://packetstormsecurity.org/files/86305/Genere-par-KDPics-1.18-Add-Administrator.html Mon, 15 Feb 2010 22:20:49 GMT Genere par KDPics version 1.18 remote add administrator exploit. http://packetstormsecurity.org/files/85630/status2k-addadmin.txt http://packetstormsecurity.org/files/85630/status2k-addadmin.txt http://packetstormsecurity.org/files/85630/Status2k-Add-Administrator.html Tue, 26 Jan 2010 07:39:50 GMT Status2k remote add administrator exploit. http://packetstormsecurity.org/files/85552/iewshomocx-addadmin.txt http://packetstormsecurity.org/files/85552/iewshomocx-addadmin.txt http://packetstormsecurity.org/files/85552/Microsoft-Internet-Explorer-wshom.ocx-Code-Execution.html Fri, 22 Jan 2010 23:46:35 GMT Microsoft Internet Explorer wshom.ocx Active-X remote add administrator exploit. http://packetstormsecurity.org/files/84679/x7chat-addadmin.txt http://packetstormsecurity.org/files/84679/x7chat-addadmin.txt http://packetstormsecurity.org/files/84679/X7Chat-1.3.6b-Add-Administrator.html Mon, 04 Jan 2010 01:58:42 GMT X7Chat version 1.3.6b add administrator exploit. http://packetstormsecurity.org/files/84329/jevonweb-admin.txt http://packetstormsecurity.org/files/84329/jevonweb-admin.txt http://packetstormsecurity.org/files/84329/Jevonweb-Guestbook-Administrative-Access.html Wed, 30 Dec 2009 01:12:17 GMT Jevonweb Guestbook version 1.0 suffers from a remote administrative access vulnerability. http://packetstormsecurity.org/files/84328/sphpgb-admin.txt http://packetstormsecurity.org/files/84328/sphpgb-admin.txt http://packetstormsecurity.org/files/84328/Simple-PHP-Guestbook-1.0-Administrative-Access.html Wed, 30 Dec 2009 01:11:05 GMT Simple PHP Guestbook version 1.0 suffers from a remote administrative access vulnerability. http://packetstormsecurity.org/files/84304/traidntgallery-admin.txt http://packetstormsecurity.org/files/84304/traidntgallery-admin.txt http://packetstormsecurity.org/files/84304/Traidnt-Gallery-Add-Administrator.html Wed, 30 Dec 2009 00:08:23 GMT Traidnt Gallery suffers from a remote add administrator vulnerability. http://packetstormsecurity.org/files/84180/deluxebb-xssadminbypass.txt http://packetstormsecurity.org/files/84180/deluxebb-xssadminbypass.txt http://packetstormsecurity.org/files/84180/DeluxeBB-1.3-XSS-Bypass.html Tue, 22 Dec 2009 20:40:43 GMT DeluxeBB versions 1.3 and below suffer from cross site scripting, unprotected administrative panels, and disclosure vulnerabilities. http://packetstormsecurity.org/files/83974/basicphpel2-addadmin.txt http://packetstormsecurity.org/files/83974/basicphpel2-addadmin.txt http://packetstormsecurity.org/files/83974/Basic-PHP-Events-Lister-2-Add-Administrator.html Thu, 17 Dec 2009 21:53:00 GMT Basic PHP Events Listed version 2 suffers from a remote administrator addition vulnerability. http://packetstormsecurity.org/files/83350/hbns-admin.txt http://packetstormsecurity.org/files/83350/hbns-admin.txt http://packetstormsecurity.org/files/83350/HB-NS-1.3-Administrative-Access.html Tue, 01 Dec 2009 23:09:40 GMT The administrative interface for HB-NS version 1.3 appears to be left wide open by default. http://packetstormsecurity.org/files/80909/phpbb3-admin.txt http://packetstormsecurity.org/files/80909/phpbb3-admin.txt http://packetstormsecurity.org/files/80909/phpBB3-prime_quick_style-SQL-Injection.html Wed, 02 Sep 2009 13:38:29 GMT The phpBB3 add-on prime_quick_style suffers from a remote SQL injection vulnerability that allows for privilege escalation.