BlackHawk (38 exploits) - page 1 - Code Exploits Collection

Title	Author	Platform	Source	Description	Date
Project Pier Arbitrary File Upload	BlackHawk	na	sinn3r	This Metasploit module exploits a vulnerability found in Project Pier. The application's uploading tool does not require any authentication, which allows a malicious user to upload an arbitrary file onto the web server, and then cause remote code execution by simply requesting it. This Metasploit module is known to work against Apache servers due to the way it handles an extension name, but the vulnerability may not be exploitable on others.	October 12
ProjectPier 0.8.8 Shell Upload	BlackHawk	na	packetstormsecurity.org	ProjectPier versions 0.8.8 and below suffers from a remote shell upload vulnerability.	October 2
Pligg CMS 0.9 / 1.x Command Execution	BlackHawk	na	packetstormsecurity.org	Pligg CMS versions 0.9 BETA and 1.1.1 suffer from a remote command execution vulnerability.	July 22
CMSQLite 1.2 / CMySQLite 1.3.1 Code Execution	BlackHawk	na	itablackhawk.altervista.org	CMSQLite versions 1.2 and below and CMySQLite versions 1.3.1 and below remote code execution exploit.	August 17, 2010
CMSQLite <= 1.2 & CMySQLite <= 1.3.1 Remote Code Execution Exploit	BlackHawk	php	exploit-db.com	!/usr/bin/php -q -d short_open_tag=on Thanks to rgod for the php code and Natural Killer "; if ($argc<4) { echo "Usage: php ".$argv[0]." Host	August 15, 2010
Podcast Generator 1.1 Code Execution	BlackHawk	na	itablackhawk.altervista.org	Podcast Generator versions 1.1 and below remote code execution exploit.	April 1, 2009
Podcast Generator <= 1.1 Remote Code Execution Exploit	BlackHawk	php	exploit-db.com	!/usr/bin/php -q -d short_open_tag=on	March 31, 2009
Evilsentinel <= 1.0.9 (multiple vulnerabilities) Disable Exploit	BlackHawk	php	exploit-db.com	!/usr/bin/php -q -d short_open_tag=on Thanks to rgod for the php code and Marty for the Love '; if ($argc<3) { echo "Usage: php ".$argv[0]." Host Path [new_mail] Host:	January 10, 2008
evilsentinel-disable.txt	BlackHawk	na	itablackhawk.altervista.org	Evilsentinel versions 1.0.9 and below disable exploit.	January 10, 2008
lightblog-exec.txt	BlackHawk	na	itablackhawk.altervista.org	LightBlog version 8.4.1.1 remote code execution exploit.	October 10, 2007
LightBlog 8.4.1.1 Remote Code Execution Exploit	BlackHawk	php	exploit-db.com	!/usr/bin/php -q -d short_open_tag=on Thanks to rgod for the php code and Marty for the Love "; if ($argc<3) { echo "Usage: php ".$argv[0]." Host Path Host:	October 9, 2007
mycms-exec.txt	BlackHawk	na	itablackhawk.altervista.org	MyCMS version 0.9.8 and below remote command execution exploit.	July 7, 2007
mycms098-exec.txt	BlackHawk	na	itablackhawk.altervista.org	MyCMS version 0.9.8 and below remote command execution exploit (another version).	July 7, 2007
MyCMS <= 0.9.8 Remote Command Execution Exploit (2 method)	BlackHawk	php	exploit-db.com	!/usr/bin/php -q -d short_open_tag=on Thanks to rgod for the php code and Marty for the Love "; if ($argc<3) { echo "Usage: php ".$argv[0]." Host Path CMD H	July 3, 2007
MyCMS <= 0.9.8 Remote Command Execution Exploit	BlackHawk	php	exploit-db.com	!/usr/bin/php -q -d short_open_tag=on Thanks to rgod for the php code and Marty for the Love "; if ($argc<3) { echo "Usage: php ".$argv[0]." Host Path CMD Host:	July 3, 2007

Older posts >>