what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 10 of 10 RSS Feed

Files from Felipe Molina

Email addressfelmoltor at gmail.com
First Active2014-01-10
Last Active2021-01-05
SpamTitan 7.07 Command Injection
Posted Jan 5, 2021
Authored by Christophe de la Fuente, Felipe Molina | Site metasploit.com

This Metasploit module exploits an improper input sanitization in SpamTitan versions 7.01, 7.02, 7.03 and 7.07 to inject command directives into the SNMP configuration file and get remote code execution as root. Note that only version 7.03 needs authentication and no authentication is required for versions 7.01, 7.02 and 7.07.

tags | exploit, remote, root, code execution
advisories | CVE-2020-11698
SHA-256 | cc011f3d97e6e780eac9a8ecaf045f486a51374234b82311aea352d9a57efef0
SpamTitan 7.07 Remote Code Execution
Posted Oct 5, 2020
Authored by Felipe Molina

SpamTitan version 7.07 suffers from an unauthenticated remote code execution vulnerability in snmp-x.php.

tags | exploit, remote, php, code execution
advisories | CVE-2020-11698
SHA-256 | 46511399bed0e9da7c7e842465a1d68fcec18943d583bc702307a069fc3d4fa3
SpamTitan 7.07 Remote Code Execution
Posted Sep 18, 2020
Authored by Felipe Molina

SpamTitan version 7.07 suffers from an authenticated remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2020-11699, CVE-2020-11700, CVE-2020-11803, CVE-2020-11804
SHA-256 | 4234f62e0c44c2e3dad423c5cc769129588ffafbed80a16f8610281916cc3da9
ManageEngine Service Desk 10.0 Cross Site Scripting
Posted May 15, 2020
Authored by Felipe Molina

ManageEngine Service Desk version 10.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-15083
SHA-256 | 469e92a043840addd4c43d4eb114c7ef988c00069a831c8b52bc518e495ec1e9
WordPress XCloner 3.1.5 Denial Of Service / Code Execution
Posted Nov 9, 2016
Authored by Felipe Molina

WordPress XCloner plugin versions 3.1.5 and below suffer from remote command execution and denial of service vulnerabilities.

tags | exploit, remote, denial of service, vulnerability
SHA-256 | c4adc46421e9ec345a0a8073a2bf4641c876bfa11c86f2671926c405a99cdeab
WordPress Memphis Document Library 3.1.5 Arbitrary File Download
Posted Mar 23, 2016
Authored by Felipe Molina

WordPress Memphis Document Library plugin version 3.1.5 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary
SHA-256 | b72346b0c1735575621f6102ef6ef9845d42644148787b3ded9d0b7bddc09cb7
WordPress Freshmail 1.5.8 SQL Injection
Posted May 7, 2015
Authored by Felipe Molina

WordPress Freshmail plugin versions 1.5.8 and below suffer from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | ecaa20fa237cb0a8aa083981c48b64cc3785f441002a277f54d0ce324677ced0
WordPress Ultimate Product Catalogue 3.1.2 SQL Injection
Posted May 7, 2015
Authored by Felipe Molina

WordPress Ultimate Product Catalogue plugin versions 3.1.2 and below suffer from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | a02ef720dd359a3d52d92fb498b5e55a1386cf0896a4bf4b869dc635ad52f563
WordPress Ultimate Product Catalogue 3.1.2 XSS / CSRF / File Upload
Posted May 5, 2015
Authored by Felipe Molina

WordPress Ultimate Product Catalogue plugin version 3.1.2 suffers from cross site request forgery, cross site scripting, and file upload vulnerabilities.

tags | exploit, vulnerability, xss, file upload, csrf
SHA-256 | 4904e671aa6eff5340a6349f8597bed6a49cb0e9bdf1e5db158931aa95913c4d
Conceptronic CIPCAMPTIWL 21.37.2.49 Cross Site Request Forgery
Posted Jan 10, 2014
Authored by Felipe Molina

Conceptronic camera CIPCAMPTIWL with firmware 21.37.2.49 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2013-7204
SHA-256 | c936953abc9b003cdedd3e88f2c0d79e0d4917e23725676c6212ee65de3ad7d4
Page 1 of 1
Back1Next

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    57 Files
  • 7
    Jun 7th
    6 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    12 Files
  • 11
    Jun 11th
    27 Files
  • 12
    Jun 12th
    38 Files
  • 13
    Jun 13th
    16 Files
  • 14
    Jun 14th
    14 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    16 Files
  • 18
    Jun 18th
    26 Files
  • 19
    Jun 19th
    15 Files
  • 20
    Jun 20th
    18 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close