what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 230 RSS Feed

Files

WebSkinz SQL Injection
Posted Oct 25, 2011
Authored by 3spi0n

WebSkinz suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c323f211d653bedde9efd56a560f8ab5ee6d481a27de0f4e5f477ebd1bedcdee
Download | Favorite | View
Cisco Nexus OS (NX-OS) Command Injection
Posted Oct 25, 2011
Authored by Peter Adkins

Cisco Nexus OS (NX-OS) suffers from command injection and sanitization issues. Nexus 7000, 5000, 4000, 3000, 2000, and 1000V are all affected. MDS and UCS are also affected. Local access is required.

tags | exploit, local
systems | cisco
advisories | CVE-2011-2569
SHA-256 | 47ed64acbc222f10e010b71d8e52e2cba99ae9f8d77b045062214f7a5253578c
Download | Favorite | View
SAP Management Console OSExecute Payload Execution
Posted Oct 24, 2011
Authored by Chris John Riley | Site metasploit.com

This Metasploit module executes an arbitrary payload through the SAP Management Console SOAP Interface. A valid username and password must be provided.

tags | exploit, arbitrary
SHA-256 | 631d430623b1bdaf08c10284315fb2752c47e9e4c998de80b05ea83f243e5517
Download | Favorite | View
Cytel Studio 9.0 (CY3 File) Stack Buffer Overflow
Posted Oct 24, 2011
Authored by Luigi Auriemma, James Fitts | Site metasploit.com

This Metasploit module exploits a stack based buffer overflow found in Cytel Studio <= 9.0. The overflow is triggered during the copying of strings to a stack buffer of 256 bytes.

tags | exploit, overflow
advisories | OSVDB-75991
SHA-256 | 54cba2669ee78e390a6c7b20623fad6a9b5c9f2f49e59b8a55adc94afd84b482
Download | Favorite | View
Core Security Technologies Advisory 2011.0810
Posted Oct 24, 2011
Authored by Core Security Technologies, Matthew Bergin, Matias Blanco | Site coresecurity.com

Core Security Technologies Advisory - When the install script for e107 CMS has not been removed, an attacker can "reinstall" the application using arbitrary parameters. If the attacker puts a valid MySql server followed a semicolon and PHP code, this will be executed when the config file gets requested. This parameters are stored in the config file "e107_config.php". Version 0.7.24 is affected.

tags | exploit, arbitrary, php
advisories | CVE-2011-1513
SHA-256 | f1aa6364a9b7aec87affa0e57cc0ec5d09d69d9a12a32fe5e884c8288d964039
Download | Favorite | View
InverseFlow 2.4 Cross Site Scripting
Posted Oct 24, 2011
Authored by Amir Expl0its

InverseFlow version 2.4 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 6d58621745c9445aa8e48b328ff3f2cbb28a3eddc45c49e3963eefaf7b723404
Download | Favorite | View
Bleeding Life 2 Exploit Pack
Posted Oct 24, 2011
Site blackhatacademy.org

Black Hat Academy has decided to go open source with the Bleeding Life 2 exploit pack. This is an exploit pack that affects Windows-based web browsers via Adobe and Java.

tags | exploit, java, web
systems | linux, windows
advisories | CVE-2008-2992, CVE-2010-1297, CVE-2010-2884, CVE-2010-0188, CVE-2010-0642, CVE-2010-3552
SHA-256 | 36303b4d6d25064a2ca162802f5dd9c42e121666c9a8518b0f3c3041b3c36994
Download | Favorite | View
Jara 1.6 SQL Injection
Posted Oct 23, 2011
Authored by muuratsalo

Jara version 1.6 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 3ac5e3f7dc5549c45c61f724ceee2c7a6f2db4dd11e0a70d05bcaded181744a9
Download | Favorite | View
Rinkya Cross Site Scripting
Posted Oct 23, 2011
Authored by Mr.PaPaRoSSe

Rinkya suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | de4fdece5dffe8f098690c6026b3e330848de2599c45b9b2872be49da80d375d
Download | Favorite | View
phpLDAPadmin 1.2.1.1 Remote PHP Code Injection
Posted Oct 23, 2011
Authored by EgiX

phpLDAPadmin versions 1.2.1.1 and below query engine remote PHP code injection exploit.

tags | exploit, remote, php
SHA-256 | 6fb07afd579e5b0523100f2b0fc138c68c62c528e99fe2059b04a97bb6870ffa
Download | Favorite | View
Caleidos Blind SQL Injection
Posted Oct 22, 2011
Authored by m3rciL3Ss

Caleidos suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 25196410a12cdb1b9499a11d0c0044d5c9f47e51d0cce0aab629e56ee74bc3be
Download | Favorite | View
Google Chrome Proof Of Concept
Posted Oct 22, 2011
Authored by pigtail23

Google Chrome thread killing proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
SHA-256 | 23f7ea69d7420ad20b2b0c67672eb28ea0971480330bf554eea22a6e224d964e
Download | Favorite | View
Open EMR 4.0 SQL Injection
Posted Oct 21, 2011
Authored by Houssam Sahli, Mehdi Boukazoula

Open EMR version 4.0 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 115ccc61323b5f3e6518c7a2084a9bd363254a02e7ef505592e749b25644dfd5
Download | Favorite | View
Cyclope Internet Filtering Proxy 4.0 Denial Of Service
Posted Oct 21, 2011
Authored by loneferret

Cyclope Internet Filtering Proxy version 4.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | 88e107c4bd84cd131ab1004d7397c57eab86ce2aa642b91196f8730223d2e824
Download | Favorite | View
Sports PHool 1.0 Remote File Inclusion
Posted Oct 21, 2011
Authored by cr4wl3r

Sports PHool versions 1.0 and below remote file inclusion exploit.

tags | exploit, remote, code execution, file inclusion
SHA-256 | c9a5c128ec7ff9c3d7ec7c6edb9409f77c5343312821b394125b2666c39bb2b6
Download | Favorite | View
WordPress ThemeCity Cross Site Scripting
Posted Oct 21, 2011
Authored by Mr.PaPaRoSSe

WordPress ThemeCity suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 480a0862d20875300617c3117d32f28a213fe2b504fccb44353af5cad6b61d1c
Download | Favorite | View
inCommand Technologies Cross Site Scripting
Posted Oct 21, 2011
Authored by md.r00t

inCommand Technologies suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | dc4746b27e2df90e6a39ca95395e5cc14bd1078f7b2ede898c0defeb07d1f3bd
Download | Favorite | View
Radius Manager 3.9.0 SQL Injection
Posted Oct 21, 2011
Authored by Mehdi Boukazoula

Radius Manager version 3.9.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | d7465d1cae603ceb6c99ab6cb16dcc593475dfd9122a239007bd547a0423fc45
Download | Favorite | View
Oracle AutoVue 20.0.1 AutoVueX SaveViewStateToFile File Creation
Posted Oct 21, 2011
Authored by rgod | Site retrogod.altervista.org

Oracle AutoVue version 20.0.1 suffers from an AutoVueX Active-X Control SaveViewStateToFile remote file creation / overwrite vulnerability. Proof of concept code included.

tags | exploit, remote, activex, proof of concept
systems | linux
SHA-256 | aeb1dfdd12a44a730bcec5864f95e60c365b938d372f776b6178f5919b0b4cf8
Download | Favorite | View
Oracle AutoVue 20.0.1 AutoVueX Export3DBom Code Execution
Posted Oct 21, 2011
Authored by rgod | Site retrogod.altervista.org

Oracle AutoVue version 20.0.1 suffers from an AutoVueX Active-X Control Export3DBom remote code execution vulnerability. Proof of concept code included.

tags | exploit, remote, code execution, activex, proof of concept
systems | linux
SHA-256 | f6e3523ba390057db8b6b08be7f5fe37093ca96f4f6757e658263c95e5e02a38
Download | Favorite | View
Oracle AutoVue 20.0.1 AutoVueX ExportEdaBom Code Execution
Posted Oct 21, 2011
Authored by rgod | Site retrogod.altervista.org

Oracle AutoVue version 20.0.1 suffers from an AutoVueX Active-X Control ExportEdaBom remote code execution vulnerability. Proof of concept code included.

tags | exploit, remote, code execution, activex, proof of concept
systems | linux
SHA-256 | 1803baa2803612ed90a10f88057d39ae9f52161fa48eacbdfb002679c5977463
Download | Favorite | View
HP Power Manager 'formExportDataLogs' Buffer Overflow
Posted Oct 20, 2011
Authored by Alin Rad Pop, sinn3r, ipax | Site metasploit.com

This Metasploit module exploits a buffer overflow in HP Power Manager's 'formExportDataLogs'. By creating a malformed request specifically for the fileName parameter, a stack-based buffer overflow occurs due to a long error message (which contains the fileName), which may result in arbitrary remote code execution under the context of 'SYSTEM'.

tags | exploit, remote, overflow, arbitrary, code execution
advisories | CVE-2009-3999
SHA-256 | 0e4c84f448f90124f9f12c53d533fe71d62881437ab85d0ea37f8f9dff741fe0
Download | Favorite | View
OCS Inventory NG 2.0.1 Cross Site Scripting
Posted Oct 20, 2011
Authored by Nicolas DEROUET

OCS Inventory NG version 2.0.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2011-4024
SHA-256 | 2edc29ba63a069d988d3b4b142e76efb8065de62461e42ceb42809493e2fbbd2
Download | Favorite | View
Opera Use-After-Free Proof Of Concept
Posted Oct 20, 2011
Authored by Roberto Suggi Liverani

Opera use-after-free proof of concept denial of service exploit. A full analysis is provided as well.

tags | exploit, denial of service, proof of concept
SHA-256 | 8419c6bd6968801cd9b15a92576ef242081b83329fd21b4ab556bdc4d0c512c6
Download | Favorite | View
Cyclope Internet Filtering Proxy Cross Site Scripting
Posted Oct 20, 2011
Authored by loneferret

Cyclope Internet Filtering Proxy suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 2ae6988217abbff9103711510b40b94c33812480a0cbdbb90ceefbd299e54ed1
Download | Favorite | View
Page 3 of 10
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Google Patches Critical Chrome Vulnerability
Posted Apr 24, 2024

tags | headline, flaw, google, patch, chrome
Favorite | View
Hackers Are Using Developing Countries For Ransomware Practice
Posted Apr 24, 2024

tags | headline, hacker, malware, cybercrime, fraud, cryptography
Favorite | View
Authorities Investigate LabHost Users After Phishing Service Shutdown
Posted Apr 23, 2024

tags | headline, cybercrime, fraud, phish
Favorite | View
Windows Vulnerability Reported By The NSA Exploited To Install Russian Malware
Posted Apr 23, 2024

tags | headline, government, microsoft, usa, russia, flaw, cyberwar, spyware, nsa
Favorite | View
UnitedHealth Admits Breach Could Cover Substantial Proportion Of People In America
Posted Apr 23, 2024

tags | headline, hacker, privacy, data loss
Favorite | View
Microsoft DRM Hack Could Allow Movie Downloads From Streaming
Posted Apr 23, 2024

tags | headline, microsoft, flaw, pirate
Favorite | View
Over A Million Neighbourhood Watch Members Exposed
Posted Apr 23, 2024

tags | headline, privacy, britain, data loss
Favorite | View
MITRE Hacked By State Sponsored Group Via Ivanti Zero Days
Posted Apr 23, 2024

tags | headline, hacker, government
Favorite | View
Russia's Sandworm APT Linked To Attack On Texas Water Plant
Posted Apr 18, 2024

tags | headline, malware, usa, russia, cyberwar, scada
Favorite | View
EU Tells Meta It Can't Paywall Privacy
Posted Apr 18, 2024

tags | headline, government, privacy, facebook, social
Favorite | View
View More News →
packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close