what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 213 RSS Feed

Files

C Market 1.1 Cross Site Scripting
Posted Dec 21, 2011
Authored by longrifle0x | Site vulnerability-lab.com

C Market version 1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 7eee8a6e8b2efa913036f13a68c7e147df4b15ed400e1c7a8b08cb2e7ddc3a00
ImageShack Service Cross Site Scripting
Posted Dec 21, 2011
Authored by Chokri Ben Achor, Vulnerability Laboratory | Site vulnerability-lab.com

The ImageShack main vendor website suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8302a621c340b765c1cb38377c2bb5005aeaa0fba45914ca0a29060fa6a43d07
Bundesregierung Website Cross Site Scripting
Posted Dec 21, 2011
Authored by Alexander Fuchs, Vulnerability Laboratory | Site vulnerability-lab.com

Bundesregierung Website suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8a4b85d15dd2b98d678c7d61fb666b56effe507ef131ce0a80b2239800bd08e4
IrfanView FlashPix Plugin Double-Free
Posted Dec 21, 2011
Authored by Francis Provencher

A vulnerability in the IrfanView FlashPix plugin exists due to the "Free_All_Memory()" function not properly setting certain decoder elements to NULL after freeing them, which can be exploited to cause a double-free condition via specially crafted FPX images. Proof of concept exploit included.

tags | exploit, proof of concept
systems | linux
SHA-256 | fd583f5874fee2012eada88e8599ffeaa35b493c3a60e8084c24257dfd12afb7
IrfanView TIFF Image Processing Buffer Overflow
Posted Dec 21, 2011
Authored by Francis Provencher

IrfanView suffers from a heap-based buffer overflow vulnerability when parsing malicious TIFF images. Proof of concept exploit included.

tags | exploit, overflow, proof of concept
systems | linux
SHA-256 | 0d475986f882b8c441677da90e11f68d6d58c3d8306b9fea5575d224ba69b2d2
Plone / Zope Remote Command Execution
Posted Dec 21, 2011
Authored by Nick Miles | Site npenetrable.com

Proof of concept code that demonstrates a remote command execution in Plone versions 4.0 through 4.0.9, 4.1, 4.2 (a1 and a2) and Zope versions 2.12.x and 2.13.x.

tags | exploit, remote, proof of concept
advisories | CVE-2011-3587
SHA-256 | 233198580f60b5c19807e7dc79ce1f1aaf6a9b1290ddd21adb2e624fea5f177d
TORCS 1.3.1 Buffer Overflow
Posted Dec 21, 2011
Authored by Andres Gomez

Local buffer overflow exploit for TORCS version 1.3.1 that creates a malicious .acc file.

tags | exploit, overflow, local
SHA-256 | 939526dbe3782fc5e3b30b79c600c848488a9ffffe97b13145f2f0d46831633c
epesi BIM 1.2.0-rev8154 Cross Site Scripting
Posted Dec 21, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

epesi BIM version 1.2.0-rev8154 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 5b59a2617e80ed3a1950f67746807d8c80cd4ac9e0382b4f2f81496b14e06957
OBM 2.4.0-rc13 XSS / LFI / SQL Injection
Posted Dec 21, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

OBM version 2.4.0-rc13 suffers from information disclosure, cross site scripting, local file inclusion, remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, xss, sql injection, file inclusion, info disclosure
SHA-256 | 32cd7c40beed039d478c01f5a79246b2f4906d3da94c27ddf5e45ea5678a6298
SpamTitan 5.08 Cross Site Scripting
Posted Dec 21, 2011
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

SpamTitan version 5.08 suffers from persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 0d7686367add0ed0adb58d2bca4b727c36be122f8456213678ef5158f414532b
Barracuda Control Center 620 Session Hijacking
Posted Dec 21, 2011
Authored by Pim J.F. Campers, Vulnerability Laboratory | Site vulnerability-lab.com

The Barracuda Control Center 620 suffers from a remote session hijacking vulnerability.

tags | exploit, remote
SHA-256 | 8c69fa930e196991bbf895fc71606a169b03a3cb9ec3ab4781fe44c5371bdd13
Facebook Juniors-Cheesecake-Foxwoods SQL Injection
Posted Dec 21, 2011
Authored by longrifle0x, Vulnerability Laboratory | Site vulnerability-lab.com

The Facebook Juniors-Cheesecake-Foxwoods application suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b20151233aa79350631d9e3702280da179b94e666fa7d412d3766d0981492730
IBM TS3100/TS3200 Web UI Authentication Bypass
Posted Dec 21, 2011
Site trustwave.com

The IBM TS3200/TS3200 Web User Interface is vulnerable to an authentication bypass attack. By sending a series of requests to the authentication function, it is possible to trigger a condition which causes the application to grant an access cookie which permits remote administration. Firmware less than A.60 is affected.

tags | exploit, remote, web
advisories | CVE-2011-1372
SHA-256 | 251930962a416ff086d78263b78eb5f8dcc016095a831b437bd5a97ae19df1ac
Kaspersky Internet Security / Anti-Virus 2011 / 2012 Memory Corruption
Posted Dec 20, 2011
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Kaspersky Internet Security 2011/2012 and Kaspersky Anti-Virus 2011/2012 suffer from a local memory corruption vulnerability.

tags | exploit, local, virus
SHA-256 | 18c23b61b3a5130f1676e81339edfa843b2843bccb7b7083fd3c502bd069ce8e
CertificationMagazine Blind SQL Injection
Posted Dec 20, 2011
Authored by Chokri Ben Achor, Vulnerability Laboratory | Site vulnerability-lab.com

CertificationMagazine suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | cc9755e4bd476d7e39514d1537348ba2ee0e32be53724bc41aa0528154c0f225
Cyberoam UTM Application CR300i / CR500i v10 SQL Injection
Posted Dec 20, 2011
Authored by Benjamin Kunz Mejri, Pim J.F. Campers, Vulnerability Laboratory | Site vulnerability-lab.com

Cyberoam UTM Application versions CR300i, CR500i v10 and older versions suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b7bba3ca0e5d097d05c5be48898e06313af6ba34e1a9a89ae413b95095e5c55e
Tiki Wiki CMS Groupware 8.1 / 6.4 LTS Cross Site Scripting
Posted Dec 20, 2011
Authored by Stefan Schurtz

Tiki Wiki CMS Groupware versions 8.1 and 6.4 LTS suffer from a stored cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2011-4551
SHA-256 | b6a4a107433a40e17f0035aef8bc745879ef539726e9eb3576090bc83cbb1b15
PHPShop CMS Free 3.4 Cross Site Scripting / SQL Injection
Posted Dec 20, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

PHPShop CMS Free version 3.4 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 8ffe5013bd85e933f7b064840141184420503d7040ec325bd1e48b4133e7824b
Joomla Matrimony SQL Injection
Posted Dec 20, 2011
Authored by CoBRa_21

The Joomla Matrimony component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 58b8300185759c21c44594a5e2a718b78355ded87228dff646e9f63896be325d
Joomla Caproductprices SQL Injection
Posted Dec 20, 2011
Authored by CoBRa_21

The Joomla Caproductprices component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 59707d1de7e36d6494fa2fa62d29df92adf2172fb61d2bfde49b145cfc0f1b94
Artmedic Links 5.0 Remote File Inclusion
Posted Dec 20, 2011
Authored by 3spi0n

Artmedic Webdesign Links version 5.0 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | f0792f7220dbeea15bec70c0269c980119b5f0683dfeb27d780b641edfe2e437
Gold Coast Web Design SQL Injection
Posted Dec 19, 2011
Authored by AngelParrot

Gold Coast Web Design suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
SHA-256 | db6711970c527db2e9981f731ea5f0e3c00408f918538a1face2bcf27ab2c2a3
Free MP3 Player 1.0 Denial Of Service
Posted Dec 19, 2011
Authored by JaMbA

Free MP3 Player version 1.0 local denial of service exploit that creates a malicious mp3 file.

tags | exploit, denial of service, local
SHA-256 | a8d50ae173920d82786db1c55461ca701b5b672c3a52d83d4da71f924ae15cc9
PHP Booking Calendar 10e Cross Site Scripting
Posted Dec 19, 2011
Authored by G13

PHP Booking Calendar version 10e suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
SHA-256 | 482251c8f23fc16eb1e5939226f88efda2fbfdaa271fdaa4fb16a327e01775f1
Joomla Dshop SQL Injection
Posted Dec 19, 2011
Authored by CoBRa_21

The Joomla Dshop component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 6a52e7d893c2665958898ad01d124ce3ebcaf1af7dd716c0efef90a5caeb521a
Page 3 of 9
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Move Over, Cobalt Strike. Splinter's The New Post Exploit Menace In Town
Posted Sep 23, 2024

tags | headline, hacker, malware, backdoor
Apple's Latest macOS Release Is Breaking Security Software, Network Connections
Posted Sep 23, 2024

tags | headline, denial of service, flaw, apple
Exploiting Exploiting Exchange PowerShell After ProxyNotShell: Part 3 – DLL Loading Chain for RCE
Posted Sep 20, 2024

tags | headline, hacker, microsoft, flaw
Using YouTube To Steal Your Files
Posted Sep 20, 2024

tags | headline, hacker, flaw, google
Life Imitates xkcd Comic As Florida Gang Beats Crypto Password From Retiree
Posted Sep 20, 2024

tags | headline, cybercrime, data loss, cryptography
1 In 10 Orgs Dumping Their Security Vendors After CrowdStrike Outage
Posted Sep 20, 2024

tags | headline, denial of service
Cyber Crooks Strut Away With Haute Couture Harvey Nichols Data
Posted Sep 20, 2024

tags | headline, hacker, privacy, britain, cybercrime, data loss, fraud
Noise Storms: Massive Amounts Of Spoofed Web Traffic Linked To China
Posted Sep 20, 2024

tags | headline, china
Tor Network Denies Report That Anonymity Is Completely Canceled
Posted Sep 20, 2024

tags | headline, government, privacy, cryptography
Marko Polo Hackers Found To Be Running Dozens Of Scams
Posted Sep 20, 2024

tags | headline, hacker, cybercrime, fraud, phish, cryptography
View More News →
packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close