what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 4 of 4

Files from Astharot

ZH2005-03SA.txt

Posted Mar 28, 2005

Authored by Astharot | Site zone-h.org

NukeBookmarks version 6 contains SQL injection, cross site scripting, and path-disclosure vulnerabilities. Advisory contains example exploit URLs.

tags | exploit, vulnerability, xss, sql injection

SHA-256 | aa04cadcaf0e6dc00925b0ece1251381dcb2058c48cddd82c5318bc21db41adc

Download | Favorite | View

cpCommerce.exp.txt

Posted Oct 30, 2003

Authored by Astharot | Site zone-h.org

cpCommerce v0.5f and below contains an input validation error in _functions.php which allows remote arbitrary code execution. Exploit URL included. Fix available here.

tags | exploit, remote, arbitrary, php, code execution

SHA-256 | 82a27c83f94222dae3692667195106e99a8da26568c8204f9da7e758dc5513ad

Download | Favorite | View

ZH2003-28SA.txt

Posted Oct 9, 2003

Authored by Astharot | Site zone-h.org

Zone-H Security Team Advisory - A file inclusion vulnerability in the PayPal Store Front allows for remote malicious code to be loaded and executed server-side. Patch available here.

tags | advisory, remote, file inclusion

SHA-256 | 479d36dc9bb94d6b4a59e3a3243ec5f2a16692bd2af697520b1a7bc7c611a4c2

Download | Favorite | View

ZH2003-3SP

Posted Oct 7, 2003

Authored by Astharot | Site zone-h.org

Zone-H Security Team has written a patch for the unresolved vulnerabilities found in the debug mode of mod_gzip.

tags | advisory, vulnerability

SHA-256 | fa266e7dba719a31c885b48f23b86412b23f448f407cb9d14b570bc14f9699e0

Download | Favorite | View