accept no compromises
Showing 1 - 25 of 311 RSS Feed

Files

Packet Storm New Exploits For April, 2012
Posted May 2, 2012
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 310 exploits added to Packet Storm in April, 2012.

tags | exploit
systems | linux
MD5 | bcc076c0dd5ed52131ad3ee1ec2912cb
McAfee Virtual Technician 6.3.0.1911 Code Execution
Posted Apr 30, 2012
Authored by rgod | Site retrogod.altervista.org

McAfee Virtual Technician version 6.3.0.1911 suffers from a MVT.MVTControl.6300 GetObject() active-x control security bypass remote code execution vulnerability.

tags | exploit, remote, code execution, activex
systems | linux
MD5 | fac7449425b40ef4af6501db05a9f65c
WebCalendar 1.2.4 Remote Code Execution
Posted Apr 30, 2012
Authored by EgiX

WebCalendar versions 1.2.4 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2012-1495, CVE-2012-1496
MD5 | 5f262ed03724a9203109c2bb48d3886f
vBulletin 4.1.10 Local File Inclusion
Posted Apr 30, 2012
Authored by Am!r, BHG Security Center

vBulletin version 4.1.10 suffers from a local file inclusion vulnerability in functions_cron.php.

tags | exploit, local, php, file inclusion
MD5 | 901765eddaecb7e2ddd9b56a53cdbb0e
Pritlog CMS 0.821 Cross Site Scripting
Posted Apr 30, 2012
Authored by Chokri Ben Achor | Site vulnerability-lab.com

Pritlog CMS version 0.821 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2e09f220a04e2e52065d240e4f52b5ad
PHP Volunteer Management 1.0.2 SQL Injection
Posted Apr 30, 2012
Authored by eidelweiss

PHP Volunteer Management version 1.0.2 suffers from a remote SQL injection vulnerability in get_messages.php.

tags | exploit, remote, php, sql injection
MD5 | 3e0f2910740ee66fc78fe170dce97825
N.E.T E-Commerce Group Cross Site Scripting
Posted Apr 30, 2012
Authored by Am!r, BHG Security Center

N.E.T E-Commerce Group suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b0c7061a9049001f12e7a6baf1645f32
WordPress WPsc-MijnPress Cross Site Scripting
Posted Apr 30, 2012
Authored by Am!r | Site irist.ir

The WordPress WPsc-MijnPress plugin suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 567d7f4550b2ba3044d33f6b500746bd
WebCalendar 1.2.4 Pre-Auth Remote Code Injection
Posted Apr 30, 2012
Authored by EgiX, sinn3r | Site metasploit.com

This Metasploit modules exploits a vulnerability found in WebCalendar versions 1.2.4 and below. If not removed, the settings.php script meant for installation can be updated by an attacker with injected code. This allows arbitrary code execution as www-data.

tags | exploit, arbitrary, php, code execution
advisories | CVE-2012-1495
MD5 | a55191dbaa9e44a1c3c9352259ba3d7f
Remote Anything Player 5.60.15 Denial Of Service
Posted Apr 30, 2012
Authored by Saint Patrick

Remote Anything Player version 5.60.15 suffers from a denial of service vulnerability.

tags | exploit, remote, denial of service
MD5 | 0b466556879a512ae2083fdf895e14c6
Booklight SQL Injection
Posted Apr 30, 2012
Authored by BHG Security Center, Nitrojen90

Booklight suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f706b0a25ae1d26e10828d7e496245eb
Opial CMS 2.0 XSS / SQL Injection / Shell Upload
Posted Apr 29, 2012
Authored by the_storm | Site vulnerability-lab.com

Opial CMS version 2.0 suffers from cross site scripting, shell upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, xss, sql injection
MD5 | acccb552e07ec87ea83457bb160d54e8
Croogo CMS 1.3.4 Cross Site Scripting
Posted Apr 29, 2012
Authored by Chokri Ben Achor | Site vulnerability-lab.com

Croogo CMS version 1.3.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | a877ff771f56456dd636a7d89550b659
Soco CMS Local File Inclusion
Posted Apr 29, 2012
Authored by BHG Security Center

Soco CMS suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | c72a0ba13dc3a4dd000ea519c0204506
China Pujiang Government SQL Injection
Posted Apr 29, 2012
Authored by Chokri Ben Achor | Site vulnerability-lab.com

The Chinese Pujiang government suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4aeb1073fd69f453d9ae641e2741a9e3
Varzesh3.com Cross Site Scripting
Posted Apr 29, 2012
Authored by l20ot

Varzesh3.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 14d328332a64a80e6ce64fca95817ab5
CMS GratingPeru S.A.C Cross Site Scripting / SQL Injection
Posted Apr 28, 2012
Authored by the_cyber_nuxbie

CMS GratingPeru S.A.C suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 8d7e011193836bbf70eb6fa57f91cb7b
MySQLDumper 1.24.4 LFI / XSS / CSRF / Code Execution / Traversal
Posted Apr 27, 2012
Authored by Akastep

MySQLDumper version 1.24.4 suffers from code execution, cross site request forgery, cross site scripting, local file inclusion, and directory traversal vulnerabilities.

tags | exploit, local, vulnerability, code execution, xss, file inclusion, csrf
MD5 | 568b012ba56a46dd489f0b6d555183ff
IPA-IAC.org Cross Site Scripting
Posted Apr 27, 2012
Authored by Atmon3r

IPA-IAC.org suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 399258e614d8d9680fc04cd21c88d067
eRealty Shop SQL Injection
Posted Apr 27, 2012
Authored by BHG Security Center

eRealty Shop suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 124cbc28812b9cfb5f098236f63908fe
Maxxweb CMS Cross Site Scripting
Posted Apr 27, 2012
Authored by Farbod Mahini

Maxxweb CMS suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 761dccbf9cfa507935b359e89aababee
Uiga Personal Portal SQL Injection
Posted Apr 27, 2012
Authored by Farbod Mahini

Uiga Personal Portal suffers from a remote SQL injection vulnerability in index2.php.

tags | exploit, remote, php, sql injection
MD5 | e59c9c4630ed5fbfefbc54cc2684ef83
Uiga FanClub SQL Injection
Posted Apr 27, 2012
Authored by Farbod Mahini

Uiga FanClub suffers from a remote SQL injection vulnerability in index2.php.

tags | exploit, remote, php, sql injection
MD5 | e00972e95769968a93571b80baefac5a
theEZsite CMS SQL Injection
Posted Apr 27, 2012
Authored by Farbod Mahini

theEZsite CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0cbe812f77b0274f93b0e1e102ded8fd
Source CMS SQL Injection
Posted Apr 27, 2012
Authored by Farbod Mahini

Source CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 828a7539bf9862345888c7a9781ba325
Page 1 of 13
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Phishers Getting Smarter By Making Use Of User Location
Posted Oct 20, 2017

tags | headline, malware, cybercrime, fraud, phish
OSX Malware Spread Via Compromised Software Downloads
Posted Oct 20, 2017

tags | headline, malware, apple
Canadian Spooks Release Their Own Malware Detection Tool
Posted Oct 20, 2017

tags | headline, government, malware, canada, spyware
Judge: MalwareTech Is No Longer Under Curfew, GPS Monitoring
Posted Oct 20, 2017

tags | headline, hacker, government, malware, usa, conference
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close