Showing 51 - 75 of 433

Files

Edimestre Plus 2.0 SQL Injection: Posted Jun 27, 2012; Authored by Dark-Puzzle; Edimestre Plus version 2.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | afd9f46314a3e4b22be45a44bcd35ed48502149cf2ccef3133884a2bcdb6d419; Download | Favorite | View

Toko Flamboyan Local File Inclusion: Posted Jun 27, 2012; Authored by Dark-Puzzle; Toko Flamboyan suffers from a local file inclusion vulnerability.; tags | exploit, local, file inclusion; SHA-256 | b63e714907a91af1839c9d190986d9b859d9a354780f0f9cc80978fe936d97fa; Download | Favorite | View

Monstra CMS 1.1.6 Cross Site Request Forgery: Posted Jun 27, 2012; Authored by the_cyber_nuxbie; Monstra CMS version 1.1.6 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 731af584c0e15ee24021912c4c439fb486a533ce3eb3f64e31912a90faa9b533; Download | Favorite | View

CMS Schoolhos 2.29 Cross Site Request Forgery / Cross Site Scripting / Shell Upload: Posted Jun 27, 2012; Authored by the_cyber_nuxbie; CMS Schoolhos version 2.29 suffers from cross site request forgery, cross site scripting, and remote shell upload vulnerabilities.; tags | exploit, remote, shell, vulnerability, xss, csrf; SHA-256 | 8c52b0a930e74fc8e99a43dc214d1d9ad81e8f6781510fc34a208b1871870548; Download | Favorite | View

Zend Framework XXE Injection: Posted Jun 26, 2012; Authored by Kestutis Gudinavicius | Site sec-consult.com; Zend Framework versions 1.11.11, 1.12.0 RC1, and 2.0.0 beta4 suffer from remote file disclosure via an XXE injection vulnerability.; tags | exploit, remote, xxe; SHA-256 | c3bbf3eadcb973470c3821625d1d343feeac92ba6e51810c867cb80422569cac; Download | Favorite | View

IMCE Mkdir Shell Upload: Posted Jun 26, 2012; Authored by Ryuzaki Lawlet; IMCE Mkdir suffers from a shell upload vulnerability.; tags | exploit, shell; SHA-256 | e4862ad1c8229486e151ffef5d58a420b118ab778afbcf8bf5ccae86186955b0; Download | Favorite | View

DigPHP Remote File Disclosure: Posted Jun 26, 2012; Authored by Ryuzaki Lawlet; DigPHP, the web based file browser, suffers from a remote file disclosure vulnerability.; tags | exploit, remote, web, info disclosure; SHA-256 | 137ed2183213444ec50bf2684d013c77e6db58c57e7fbdb23e6d44bacd5f9f38; Download | Favorite | View

WordPress Website FAQ 1.0 SQL Injection: Posted Jun 26, 2012; Authored by Chris Kellum; WordPress Website FAQ plugin version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 194080a9c6d560ac3dd0cf6014d77cc563bfbf371d95c99fbee6c22e24ceed4e; Download | Favorite | View

Dove Forums 1.0.3 Cross Site Request Forgery: Posted Jun 26, 2012; Authored by Ashiyane Digital Security Team; Dove Forums version 1.0.3 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 03a69411efa7ea797c72c3c1d9d50aec88ce945f381905f67ca1dae3d0077606; Download | Favorite | View

Asus iKVM/IPMI Backdoor / Cleartext Passwords: Posted Jun 25, 2012; Authored by Pedro Dias; The Asus iKVM/IPMI implementation stores credentials in the clear, in a text file, and readable by the anonymous user which has a hardcoded password of "anonymous" with no way to change it.; tags | exploit, info disclosure; systems | linux; SHA-256 | 113384f21d7260eda3e28efe8b129c714d9f70b1f537a8ebb70663c9928415dc; Download | Favorite | View

Apple QuickTime Security Bypass: Posted Jun 25, 2012; Authored by Adam Gowdiak | Site security-explorations.com; Security Explorations does not agree with Apple's evaluation of a vulnerability they reported. They have decided to release proof of concept code to demonstrate a bypass vulnerability in Apple QuickTime Java extensions.; tags | exploit, java, proof of concept, bypass; systems | linux, apple; SHA-256 | c2aeee9d3f479037cf3a1177e445be5a6068ad94532c3d4c68af96ada0b39421; Download | Favorite | View

Kingview Touchview 6.53 EIP Overwrite: Posted Jun 25, 2012; Authored by Carlos Mario Penagos Hollmann; Kingview Touchview version 6.53 suffers from an EIP direct control vulnerability.; tags | exploit; SHA-256 | f614238bf00bbff01c4cacb0de5e0d817d19edb0c4b62a906b365aace0a82525; Download | Favorite | View

Kingview Touchview 6.53 Heap Overflows: Posted Jun 25, 2012; Authored by Carlos Mario Penagos Hollmann; Kingview Touchview version 6.53 suffers from multiple heap overflow vulnerabilities.; tags | exploit, overflow, vulnerability; SHA-256 | 37f45498f2bff4a854d189b580bf99ea79b9dc21dfa6b458fdc14b0c63e2c8b6; Download | Favorite | View

Slim PDF Reader 1.0 Memory Corruption: Posted Jun 25, 2012; Authored by Carlos Mario Penagos Hollmann; Slim PDF Reader version 1.0 suffers from a denial of service vulnerability.; tags | exploit, denial of service; advisories | CVE-2011-4220; SHA-256 | d1ffdeb69b179bf453e9df13d5f38f2ea80e5975170ad4c9dfbaf90077a7117b; Download | Favorite | View

Western Digital TV (WD-TV) Live Remote Code Execution: Posted Jun 25, 2012; Authored by Wolf Bee; The WD TV Live Streaming Media Player suffers from two implementation flaws that together allow for remote command execution as root.; tags | exploit, remote, root; SHA-256 | 30e038aaf42732de5c7c31917ec77feb71e99f5a032ca468e8d514c9181e41c1; Download | Favorite | View

Drupal Drag And Drop 6.x-1.5 Shell Upload: Posted Jun 25, 2012; Authored by Sammy FORGIT; Drupal Drag and Drop third party module version 6.x-1.5 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | d20be48fb476e6e13f7e457963b8e28ac136039c50a776c45993e46260ecf151; Download | Favorite | View

Autopagina CMS 2.8 SQL Injection: Posted Jun 25, 2012; Authored by Sammy FORGIT; Autopagina CMS version 2.8 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | a563a2bdda1882cafa89faf3ca21ba53255d47d50c45f1edde7b0866d86b906f; Download | Favorite | View

Umapresence 2.6.0 Shell Upload / File Deletion: Posted Jun 25, 2012; Authored by Sammy FORGIT; Umapresence version 2.6.0 suffers from remote shell upload and file deletion vulnerabilities.; tags | exploit, remote, shell, vulnerability; SHA-256 | 34c100c2e912e0c0e0f50bd32af4870f83873de3311da8742d14b3108c80e283; Download | Favorite | View

Able2Extract 6.0 Memory Corruption: Posted Jun 25, 2012; Authored by Carlos Mario Penagos Hollmann; Able2Extract and Able2Extract server version 6.0 suffers from a denial of service vulnerability.; tags | exploit, denial of service; advisories | CVE-2011-4222; SHA-256 | ab32292905312ba912de21c5e6dc97b63078bc9aba3c2d7e2bb0d20ef3ff08fb; Download | Favorite | View

Able2Doc / Able2Doc Professional 6.0 Memory Corruption: Posted Jun 25, 2012; Authored by Carlos Mario Penagos Hollmann; Able2Doc and Able2Doc Professional version 6.0 suffers from a denial of service vulnerability.; tags | exploit, denial of service; advisories | CVE-2011-4221; SHA-256 | c10a756810f848125bb592c0fffa27ca8b2a9b951b84b8538dac2d376c20130c; Download | Favorite | View

Parodia 6.8 SQL Injection: Posted Jun 25, 2012; Authored by Carlos Mario Penagos Hollmann; Parodia versions 6.8 and below suffer from multiple remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; advisories | CVE-2012-2751; SHA-256 | 3346fbc895106be67797c2ad22951a0528f242762f726de17bfbffbe295c2925; Download | Favorite | View

Winamp 5.13 Exception Handling: Posted Jun 25, 2012; Authored by Dark-Puzzle; Winamp version 5.13 suffers from an exception handling vulnerability that can result in a denial of service condition.; tags | exploit, denial of service; SHA-256 | 2127aabbcaa4db304cf0c119fce2dc6c3fd0e678df17d3ddab23e717e65636b1; Download | Favorite | View

UCCASS 1.8.1 Blind SQL Injection: Posted Jun 25, 2012; Authored by dun; UCCASS versions 1.8.1 and below suffer from a remote blind SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | b8c072201969e215c928967dd018fca97955e7ebb45ed7b5871beabe68f2e728; Download | Favorite | View

SugarCRM CE 6.3.1 PHP Code Execution: Posted Jun 25, 2012; Authored by EgiX; SugarCRM CE versions 6.3.1 and below suffer from an unserialize() PHP code execution vulnerability.; tags | exploit, php, code execution; advisories | CVE-2012-0694; SHA-256 | aab5a6efe1a4cde61efe9db861472c86ce178987dbf7a7fa592b500fdf1a7a17; Download | Favorite | View

IrfanView 4.33 Heap Overflow: Posted Jun 25, 2012; Authored by Francis Provencher; IrfanView version 4.33 suffers from a DJVU image processing heap overflow vulnerability. Proof of concept included.; tags | exploit, overflow, proof of concept; systems | linux; SHA-256 | e436390561dec51d8a5dee5ab9cec39964b18ee239173724fdeb63a1dfbb24c1; Download | Favorite | View

Page 3 of 18 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

Files

Top Authors In Last 30 Days

Recent News