what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 12 of 12 RSS Feed

Files from Frog Man

First Active2003-03-10
Last Active2007-04-05
phpmynewsletter-rfi.txt
Posted Apr 5, 2007
Authored by Frog Man | Site frog-man.org

phpMyNewsletter version 0.6.10 suffers from a remote file inclusion vulnerability in customize.php.

tags | exploit, remote, php, code execution, file inclusion
SHA-256 | 0333f2da914b3e2bd412cdca1fa72c61409478150c888babb33ddd2e0336cfb1
php.advanced.poll.txt
Posted Oct 30, 2003
Authored by Frog Man | Site phpsecure.info

PHP Advanced Poll v2.0.2 contains remotely exploitable PHP code injection, file include, and phpinfo vulnerabilities. Exploit URLs and vulnerable code snippets included. Patch and vulnerability details available here.

tags | exploit, php, vulnerability
SHA-256 | 6008eb83abb995f5d86ca8e6da5d1c3d4e7dd8f7e12ece0b469a3c5301799f86
calendar.txt
Posted Oct 15, 2003
Authored by Frog Man

myPHPCalendar version 10192000 Build 1 Beta has information disclosure and file inclusion vulnerabilities that lie in the admin.php, contacts.php, and convert-date.php files.

tags | advisory, php, vulnerability, file inclusion, info disclosure
SHA-256 | f56d14d24dbb672d0ed0dc9af5d9067138454aecf329388b20d3cfd8edb2dbec
guppy24.txt
Posted Oct 6, 2003
Authored by Frog Man | Site phpsecure.info

GuppY versions 2.4p3 and below are susceptible to cross site scripting attacks and have a lack of authentication when various data submissions are performed.

tags | exploit, xss
SHA-256 | 638ddd4acfb1768d65554ad49dc68964fd98689e44a4646b73d7ba18355e680b
EMML.txt
Posted Oct 6, 2003
Authored by Frog Man | Site phpsecure.info

EMML version 1.32, or EternalMart Mailing List Manager, and EMGB version 1.1, or EternalMart Guestbook, are both vulnerable to cross site scripting attacks that allow for remote PHP code execution from another site.

tags | exploit, remote, php, code execution, xss
SHA-256 | 850e833f809c4877c234514fd44139518b0302cac84561137c81c6348bc08e0e
php67.txt
Posted Oct 6, 2003
Authored by Frog Man | Site phpsecure.info

PHP Nuke 6.7 is susceptible to allowing arbitrary file upload and execution via the file mailattach.php.

tags | exploit, arbitrary, php, file upload
SHA-256 | 685e128399a15d42c3ea8f47b608c882803d1bd7b26e13a3e5a915ccdbd4fabf
myPHPNuke.txt
Posted Sep 13, 2003
Authored by Frog Man | Site phpsecure.info

myPHPNuke version 1.8.8_7 performs improper variable sanitizing that will inadvertently allow a remote attacker to upload files from another site to the current site.

tags | exploit, remote
SHA-256 | 3a1d3adb28ded0cb43ab4856777f220e3e957aa1f45290d28d02a1d2cd088a90
newbb.txt
Posted Aug 16, 2003
Authored by Frog Man | Site phpsecure.info

A cross site scripting vulnerability was found in the 1.3.x and below versions of the NewBB PHP forum.

tags | advisory, php, xss
SHA-256 | 00d96f7169f7641a97347e52b62e2660900b9502f3e7ee0e9f0830b0edd7b6c5
pMachine.txt
Posted Jun 17, 2003
Authored by Frog Man | Site frog-man.org

Pmachine version 2.2.1 has a fault Include() routine that allows a remote attacker to supply a malicious URL that in turn can be a script that the webserver will then execute.

tags | exploit, remote
SHA-256 | 3a954f23f36da44d1a53b9c709a5c45c9eee6bf4b1b93f9c0048194f7b4eb754
truegalerie.txt
Posted Apr 27, 2003
Authored by Frog Man | Site frog-man.org

A problem exists in True Galerie v1.0 that allows a remote attacker to obtain administrative access to this utility due to misuse of cookies.

tags | exploit, remote
SHA-256 | d60704ec2fd8a3caefc2462af52a5c5019ab052febae606e69424fa837d5ec1a
phpnuke60.2.txt
Posted Mar 11, 2003
Authored by Frog Man | Site phpsecure.info

PHP Nuke 6.0 has vulnerabilities in the Forums and Private_Messages modules which allow attackers to save forum information and user data to a text file.

tags | exploit, php, vulnerability
SHA-256 | 7b1313ba497ad7dec8ca3b3a90d79592630c5aa71b940def865f36032997e154
phpnuke60.txt
Posted Mar 10, 2003
Authored by Frog Man | Site phpsecure.info

PHP Nuke 6.0 is vulnerable to multiple SQL injection attacks that will allow an attacker to access member lists, show users by user ID, show moderators, show administrators, privilege escalation, and more.

tags | exploit, php, sql injection
SHA-256 | fe41573d8793ef04be219cd767b52d76999813cb7aff1ed34330fd4dc79bbdee
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    17 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close