Showing 101 - 125 of 213

Files

Browser CRM 5.100.01 Cross Site Scripting / SQL Injection: Posted Dec 15, 2011; Authored by High-Tech Bridge SA | Site htbridge.com; Browser CRM version 5.100.01 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; SHA-256 | bae97a2f001f9e5a7e7f686512d05a5386310e22c1fd7651534103e0c0799133; Download | Favorite | View

Citrix XenDesktop, XenServer, Receiver 5.6 SP2 Pass-The-Hash: Posted Dec 15, 2011; Authored by vtek63; Citrix XenDesktop, XenServer, Receiver version 5.6 SP2 suffer from a pass-the-hash attack vulnerability due to not using SSL.; tags | exploit; SHA-256 | 1cdc447222c2b4047d47fb0a65039267225b922c70e82b599759e03fa6d8207b; Download | Favorite | View

PHP-SCMS 1.6.8 Cross Site Scripting: Posted Dec 15, 2011; Authored by Stefan Schurtz; PHP-SCMS version 1.6.8 suffers from a lang parameter cross site scripting vulnerability.; tags | exploit, php, xss; SHA-256 | 8af2e21c899f1dbe3d291696e18143a62b665b81a4f1fd151f55371e03968046; Download | Favorite | View

Nagios XI Privilege Escalation: Posted Dec 15, 2011; Authored by 0a2940; Nagios XI versions prior to 2011R1.9 suffer from privilege escalation vulnerabilities.; tags | exploit, vulnerability; SHA-256 | 643fef59b27e303e0e2fa119f2e8b592b6fe5c23465d56ba6cf208e2b0d73e94; Download | Favorite | View

Nagios XI Cross Site Scripting: Posted Dec 15, 2011; Authored by 0a2940; Nagios XI versions prior to 2011R1.9 suffer from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 5640334d1067d67c36be2d867c6ee9221a65d4d25ea44ef78f66a49b6bc9bc5a; Download | Favorite | View

i4Style Web Design SQL Injection / Cross Site Scripting: Posted Dec 14, 2011; Authored by AngelParrot; i4Style Web Design suffer from remote SQL injection and cross site scripting vulnerabilities.; tags | exploit, remote, web, vulnerability, xss, sql injection; SHA-256 | 1c38a500e4e3bdab6965199201e8033eaa702be19dfcba11c26c7d32d01d9ef3; Download | Favorite | View

Pulse Pro CMS 1.7.2 Cross Site Scripting: Posted Dec 13, 2011; Authored by d3v1l, RandomStorm; Pulse Pro CMS version 1.7.2 suffers from a reflective cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 7ac8b17da44b732b9b90bd09f91ffc20f29f62b91f7658435d9276d8d927ea3d; Download | Favorite | View

Faculte SQL Injection: Posted Dec 13, 2011; Authored by Th4 MasK; Faculte suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | b1f51062912e66889bce1041634f968380ede406aedf5e9975d55ab092099082; Download | Favorite | View

Google Open Redirects: Posted Dec 13, 2011; Authored by Riyaz Walikar; Two additional open redirects have been discovered under google.com.; tags | exploit; SHA-256 | bbfc0a480b7dc05e10c1976807a555b3da5b314d4ad5afc42fb6f791b6f5330d; Download | Favorite | View

CoDeSys SCADA 2.3 Webserver Stack Buffer Overflow: Posted Dec 13, 2011; Authored by sinn3r, TecR0c, Celil Unuver | Site metasploit.com; This Metasploit module exploits a remote stack buffer overflow vulnerability in 3S-Smart Software Solutions product CoDeSys Scada Web Server Version 1.1.9.9.; tags | exploit, remote, web, overflow; SHA-256 | 9380ae1d770450dec8ad28bbf0b92b9e420e8cda38119169c69b13c41f6b845a; Download | Favorite | View

Traq 2.3 Authentication Bypass / Remote Code Execution: Posted Dec 13, 2011; Authored by EgiX, TecR0c | Site metasploit.com; This Metasploit module exploits an arbitrary command execution vulnerability in Traq 2.0 to 2.3. It's in the admincp/common.php script. This function is called in each script located into /admicp/ directory to make sure the user has admin rights, but this is a broken authorization schema due to the header() function not stopping the execution flow.; tags | exploit, arbitrary, php; SHA-256 | dffc7356e911b26d771f5011bfe215352e628f842cedc4e8945c25cf29569ed8; Download | Favorite | View

Fork CMS 3.1.5 Cross Site Scripting: Posted Dec 13, 2011; Authored by d3v1l, RandomStorm; Fork CMS version 3.1.5 suffers from multiple reflective cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | ce9a1264ed0a258fa8e69b7087ad7b548a63a7017062b50ae45a1bde1d9dbc79; Download | Favorite | View

UseBB 1.0.14 Cross Site Request Forgery: Posted Dec 13, 2011; Authored by Muhammet Cagri Tepebasili; UseBB version 1.0.14 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 256d8a2f76ff4e449264a7c192c18c16d6a0fa6c26f91c39b0532243007a2538; Download | Favorite | View

ClickIt Proof Of Concept: Posted Dec 13, 2011; Authored by Michal Zalewski | Site lcamtuf.coredump.cx; JavaScript allows you to exploit human cognitive abilities to a remarkable extent; tools such as window positioning, history.forward() and history.back(), open some scary possibilities that we are completely unprepared to deal with. This proof-of-concept aims to demonstrate this; while it is intentionally crude and makes no real effort to conceal its operation, the transitions can be made seamless and very difficult to perceive. Very accurate click prediction can be achieved by carefully measuring mouse velocity and distance to destination, too.; tags | exploit, javascript; SHA-256 | d7658f0d5bd78b6a2d13c915b7f4668b18228fb508f0cca309cdc5652565e5c9; Download | Favorite | View

Squiz Matrix User Account Enumeration: Posted Dec 12, 2011; Authored by Troy Rose; Squiz Matrix suffers from a user account enumeration vulnerability. Version 4.6.0 is affected.; tags | exploit; SHA-256 | 11e51947110c45d05b178439be90c82da92993cb59103aae985050de627374f7; Download | Favorite | View

Keshav Infotech SQL Injection: Posted Dec 12, 2011; Authored by g3mbeL_YCL; Keshav Infotech suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 0c59b34a87c8c8a18df1a7525a0eb028882f5990eb4342d2c01fb08ffa918121; Download | Favorite | View

zFTPServer Suite 6.0.0.52 Directory Traversal: Posted Dec 12, 2011; Authored by Stefan Schurtz; zFTPServer Suite version 6.0.0.52 suffers from a rmdir directory traversal vulnerability.; tags | exploit; advisories | CVE-2011-4717; SHA-256 | d81dabccf1613859742df0258d0815399dcc0bb6fa8c6a6f658c9b63f62edd12; Download | Favorite | View

UseBB Forum 1.0.14 Cross Site Request Forgery: Posted Dec 12, 2011; Authored by Muhammet Cagri Tepebasili; UseBB Forum version 1.0.14 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 9af21b91ae8876e6b4a35b96e4811e8405fdd1ffd49025453b5bb750ad6e5c4b; Download | Favorite | View

Hrithikrules.com Cross Site Scripting: Posted Dec 12, 2011; Authored by Abhinav Singh; Hrithikrules.com suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | f7a1ca6541294603c3cb438915676b51cae599bac1e98eee4060d51690a8f423; Download | Favorite | View

FCMS 2.7.2 Cross Site Request Forgery: Posted Dec 11, 2011; Authored by Ahmed Elhady Mohamed; FCMS versions 2.7.2 and below suffer from multiple cross site request forgery vulnerabilities.; tags | exploit, vulnerability, csrf; SHA-256 | 09afb1bfca46b03a639f6d879a92455fc64819f72f67724e6c3a57992651ccb7; Download | Favorite | View

Xoops 2.5.4 Blind SQL Injection: Posted Dec 11, 2011; Authored by blkhtc0rp; Xoops version 2.5.4 suffers from a remote blind SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 2b179a5b592970daa6c84cd35f7b2c76a1fa845165abf65d270f5d19cbea058e; Download | Favorite | View

Digital Scribe 1.5 Cross Site Request Forgery: Posted Dec 11, 2011; Authored by Muhammet Cagri Tepebasili; Digital Scribe version 1.5 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | d89220e612658209a0a53bf2f07815e4783ae69c51cc994725f7bf68d71fc8c9; Download | Favorite | View

Pixie 1.04 Cross Site Request Forgery: Posted Dec 11, 2011; Authored by hackme; Pixie version 1.04 suffers from a blog post cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 51e68d1acd27d0ec24b2a7bc2def683ca87f6f06cb2075fc170ea91ce0b7e7eb; Download | Favorite | View

2B.COM sprl SQL Injection: Posted Dec 11, 2011; Authored by Metropolis; 2B.COM sprl suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 7c7d483a891e647b0933ba514aa6478bf11df06521a5fa3a5c37fd900ec9796e; Download | Favorite | View

Babylon Cross Site Scripting: Posted Dec 11, 2011; Authored by Abhinav Singh; The search engine at search.babylon.com suffers from a reflective cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | a058da3322355dea54968eb6a909522538f6f19ddac9df9320726a42c32c2df3; Download | Favorite | View

Page 5 of 9 Back 3 4 5 6 7 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

Files

Top Authors In Last 30 Days

Recent News