what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 175 RSS Feed

Files

Wifi Drive Pro 1.2 Local File Inclusion
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Wifi Drive Pro version 1.2 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | c5cf5d3f463bf90cc37405e42f2ed0f1feba8800be2c7df9bc9363ef6c8a6500
Download | Favorite | View
Linkus Photo Manager Pro 4.4.0 Local File Inclusion
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Linkus Photo Manager Pro version 4.4.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | b614388f9b4c56cef7c47d2b254c9e8138617bec9ef83f17c6453718b3ce62ab
Download | Favorite | View
Mobile Drive HD 1.8 Local File Inclusion
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Mobile Drive HD version 1.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 5666a93c4bdae7dc1cd57519a7bbf8bf25003b817d748de7aa3502b66c378287
Download | Favorite | View
Linkus Photo Manager Pro 4.4.0 Code Execution
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Linkus Photo Manager Pro version 4.4.0 suffers from a code execution vulnerability.

tags | exploit, code execution
SHA-256 | 17f43a96d245003246de2b030644e3fb197c4bc15ff7079485eb6279503bef62
Download | Favorite | View
PayPal Cross Site Scripting
Posted Apr 21, 2015
Authored by Vulnerability Laboratory, Milan A Solanki | Site vulnerability-lab.com

PayPal suffered from a cross site scripting vulnerability in the merchant directory functionality.

tags | exploit, xss
SHA-256 | cb16d835e91864e2fd12a56e0f8d4b54c672986a7f464fbd094742ce8da23445
Download | Favorite | View
Ebay Xcom Policy CMS / API Cross Site Scripting
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Ebay Policy CMS and API suffered from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 640f7802754c69626702ae63de020270df5f0b938065c4221335903f9286ca71
Download | Favorite | View
Ebay Magento CMS / API Cross Site Scripting
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Ebay Magento CMS and API suffered from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 79dddf1cb7c553ddf29b677cd9a9b41786da11bff0463642c273fbe7690594d9
Download | Favorite | View
Ebay Xcom Item Preview Cross Site Scripting
Posted Apr 21, 2015
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Ebay Xcom Item Preview functionality suffered from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 6a48404cf1eebbb0f5b22ddcaa8f5c2dae1874b532ef5baa0057bd698d548ad4
Download | Favorite | View
GoAutoDial SQL Injection / Command Execution / File Upload
Posted Apr 21, 2015

GoAutoDial versions 3.3-1406088000 and below suffer from arbitrary file upload, command injection, and remote SQL injection vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, sql injection, file upload
advisories | CVE-2015-2842, CVE-2015-2843, CVE-2015-2844, CVE-2015-2845
SHA-256 | 7256456084495a4dbe3a66cfe151aa2d0781d6b24ed4d1d7335c61904ecd970c
Download | Favorite | View
WordPress Yoast Google Analytics Cross Site Scripting
Posted Apr 21, 2015
Authored by Jouko Pynnonen | Site klikki.fi

WordPress Yoast Google Analytics plugin versions prior to 5.4 suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 6b96d28de3f357652545a0bed162424636126d5a3cec6ab77e597aa31454bbc8
Download | Favorite | View
OpenBSD 5.6 Kernel Panic
Posted Apr 21, 2015
Authored by nitr0us

Proof of concept exploit for OpenBSD versions 5.6 and below that causes a kernel panic in sys/uvm/uvm_map.c.

tags | exploit, kernel, proof of concept
systems | openbsd
SHA-256 | 85418d5d6e75f156c9e54a0e8d83c42c375ef65d5592db9ab51ada3a7746d9f6
Download | Favorite | View
WordPress NEX-Forms 3.0 SQL Injection
Posted Apr 21, 2015
Authored by Claudio Viviani

WordPress NEX-Forms version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f3d2ee0169a4862b50a26f4db64ebb0dd910007cf1db21e531bf128f5fd07b11
Download | Favorite | View
ProFTPd 1.3.5 Remote Command Execution
Posted Apr 21, 2015
Authored by R-73eN

ProFTPd version 1.3.5 remote command execution exploit.

tags | exploit, remote
advisories | CVE-2015-3306
SHA-256 | 33b411f75e9e92f4cce90334c9d86dca66a06474776854a23ec5f542a52da3b9
Download | Favorite | View
WordPress NEX-Forms 3.0 SQL Injection
Posted Apr 21, 2015
Authored by Cleiton Pinheiro

WordPress NEX-Forms plugin version 3.0 remote SQL injection exploit.

tags | exploit, remote, sql injection
SHA-256 | ea15e9b2d9dd075be1540595aba9beb5f09e85bb2b6295eb3c61de9681bde77b
Download | Favorite | View
PROLiNK H5004NK Cross Site Request Forgery
Posted Apr 21, 2015
Authored by Osanda Malith

PROLiNK H5004NK suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
SHA-256 | b210515168778f66be7b43848af94d8ab68b509ccefdebb2e6027e6451d59008
Download | Favorite | View
WordPress Community Events 1.3.5 SQL Injection
Posted Apr 20, 2015
Authored by Hannes Trunde

WordPress Community Events plugin version 1.3.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2015-3313
SHA-256 | 70c4d2ad7fac8ef6eafa221405685f5b06178fda04b4836ca54fa6d07950996d
Download | Favorite | View
WordPress SlideShow Gallery Authenticated File Upload
Posted Apr 20, 2015
Authored by Jesus Ramirez Pichardo | Site metasploit.com

The WordPress SlideShow Gallery plugin contains an authenticated file upload vulnerability. You can upload arbitrary files to the upload folder, because the plugin also uses it's own file upload mechanism instead of the WordPress API it's possible to upload any file type.

tags | exploit, arbitrary, file upload
advisories | CVE-2014-5460
SHA-256 | 9a7da5312dab92d7b283154818127736540719c6ad6ac81ce02c41aa922cfeb6
Download | Favorite | View
MediaSuite.ca File Disclosure
Posted Apr 20, 2015
Authored by KnocKout

Sites designed by MediaSuite.ca appear to suffer from a file disclosure vulnerability. Note that this finding houses site-specific data.

tags | exploit, info disclosure
SHA-256 | d1c2b8dfa6337ed1c63d44afd525ee484513b4d9af978679cddb553a633fcd34
Download | Favorite | View
Free Text-To-Speech 2.0 Cross Site Scripting
Posted Apr 20, 2015
Authored by TUNISIAN CYBER

Free Text-To-Speech version 2.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 46b05a206f7a1a4cbb0efcc61e5ac4f5fab77e9774ef23670eef275f70851f35
Download | Favorite | View
Adobe Flash Player copyPixelsToByteArray Integer Overflow
Posted Apr 19, 2015
Authored by Chris Evans, Nicolas Joly, juan vazquez, hdarwin | Site metasploit.com

This Metasploit module exploits an integer overflow in Adobe Flash Player. The vulnerability occurs in the copyPixelsToByteArray method from the BitmapData object. The position field of the destination ByteArray can be used to cause an integer overflow and write contents out of the ByteArray buffer. This Metasploit module has been tested successfully on Windows 7 SP1 (32-bit), IE 8 to IE 11 and Flash 14.0.0.176, 14.0.0.145 and 14.0.0.125.

tags | exploit, overflow
systems | windows
advisories | CVE-2014-0556
SHA-256 | 0261f65421dd66c2140dc4d01ec869ffa16a08028c90426650ee76ecbe40cc47
Download | Favorite | View
WordPress Reflex Gallery Upload
Posted Apr 19, 2015
Authored by temp66 | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code upload in the WordPress Reflex Gallery version 3.1.3. The vulnerability allows for arbitrary file upload and remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload
advisories | OSVDB-88853
SHA-256 | 66a2afe428abc2bc5fd7a07e29076cf8d642726dfba85da1125d083fa522fa6e
Download | Favorite | View
WordPress N-Media Website Contact Form Upload
Posted Apr 19, 2015
Authored by Claudio Viviani | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code upload in the WordPress N-Media Website Contact Form plugin, version 1.3.4. The vulnerability allows for arbitrary file upload and remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload
SHA-256 | 06defc0f9a3b1e41269ef7d6c96eebcf75e56a0475dd25a9e1826f8f400e3fd3
Download | Favorite | View
WordPress Creative Contact Form Upload
Posted Apr 19, 2015
Authored by Gianni Angelozzi | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code upload in the WordPress Creative Contact Form version 0.9.7. The vulnerability allows for arbitrary file upload and remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload
SHA-256 | f67d354bf1423deeda6860a5375cc709458e085127ee4fde423e1181e6630458
Download | Favorite | View
WordPress Work The Flow Upload
Posted Apr 19, 2015
Authored by Claudio Viviani | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code upload in the WordPress Work The Flow plugin, version 2.5.2. The vulnerability allows for arbitrary file upload and remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload
SHA-256 | 99dafcf218991769dca62fedd1f31fd6083ce929bdd0f494ed3fe6bdff34ddcb
Download | Favorite | View
Lychee 2.7.1 Remote Code Execution
Posted Apr 19, 2015
Authored by Filippo Cavallarin

Lychee version 2.7.1 suffers from a remote code execution vulnerability when logged in as an administrator.

tags | exploit, remote, code execution
SHA-256 | 838f6b6bb47ee54cd93284f806f636dbf53c9df7899e9dd5db885f98f9535dc9
Download | Favorite | View
Page 3 of 7
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Google Patches Critical Chrome Vulnerability
Posted Apr 24, 2024

tags | headline, flaw, google, patch, chrome
Favorite | View
Hackers Are Using Developing Countries For Ransomware Practice
Posted Apr 24, 2024

tags | headline, hacker, malware, cybercrime, fraud, cryptography
Favorite | View
Authorities Investigate LabHost Users After Phishing Service Shutdown
Posted Apr 23, 2024

tags | headline, cybercrime, fraud, phish
Favorite | View
Windows Vulnerability Reported By The NSA Exploited To Install Russian Malware
Posted Apr 23, 2024

tags | headline, government, microsoft, usa, russia, flaw, cyberwar, spyware, nsa
Favorite | View
UnitedHealth Admits Breach Could Cover Substantial Proportion Of People In America
Posted Apr 23, 2024

tags | headline, hacker, privacy, data loss
Favorite | View
Microsoft DRM Hack Could Allow Movie Downloads From Streaming
Posted Apr 23, 2024

tags | headline, microsoft, flaw, pirate
Favorite | View
Over A Million Neighbourhood Watch Members Exposed
Posted Apr 23, 2024

tags | headline, privacy, britain, data loss
Favorite | View
MITRE Hacked By State Sponsored Group Via Ivanti Zero Days
Posted Apr 23, 2024

tags | headline, hacker, government
Favorite | View
Russia's Sandworm APT Linked To Attack On Texas Water Plant
Posted Apr 18, 2024

tags | headline, malware, usa, russia, cyberwar, scada
Favorite | View
EU Tells Meta It Can't Paywall Privacy
Posted Apr 18, 2024

tags | headline, government, privacy, facebook, social
Favorite | View
View More News →
packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close