Exploit the possiblities
Showing 1 - 25 of 285 RSS Feed

Files

Packet Storm New Exploits For 2015
Posted Jan 1, 2016
Authored by Todd J. | Site packetstormsecurity.org

Complete comprehensive archive of all 2,311 exploits added to Packet Storm in 2015.

tags | exploit
systems | linux
MD5 | ab698f4570f9f73b999bc51fb264341b
Packet Storm New Exploits For December, 2015
Posted Jan 1, 2016
Authored by Todd J. | Site packetstormsecurity.com

This archive contains 283 exploits that were added to Packet Storm in December, 2015.

tags | exploit
systems | linux
MD5 | 598cd3efae8bed45777d21410db18142
Joomla 3.4.5 Object Injection
Posted Dec 31, 2015
Authored by Khashayar Fereidani

Joomla versions 1.5.x through 3.4.5 object injection exploit that allows for code execution and more. Written in golang.

tags | exploit, code execution
advisories | CVE-2015-8562
MD5 | 3af9152f62884f6e44c7856c8220535b
Trend Micro DLL Hijacking
Posted Dec 31, 2015
Authored by Stefan Kanthak

TrendMicro_MAX_10.0_US-en_Downloader.exe loads and executes ProfAPI.dll and UXTheme.dll (and other DLLs too) eventually found in the directory it is started from.

tags | exploit
systems | windows
MD5 | 3d0e9b37aeae04a538b19928186d6499
KODExplorer 3.21 Cross Site Request Forgery
Posted Dec 31, 2015
Authored by Ben khlifa Fahmi

KODExplorer web file manager versions 3.21 and below suffer from multiple cross site request forgery vulnerabilities.

tags | exploit, web, csrf
MD5 | 325d02d0c4e72338724860381d72d646
WordPress Simple Ads Manager 2.9.4.116 SQL Injection
Posted Dec 30, 2015
Authored by Kacper Szurek

WordPress Simple Ads Manager plugin version 2.9.4.116 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2a5355428fa2f26280f1c837fff29c79
Netduma R1 1.03.4 / 1.03.5 Cross Site Request Forgery
Posted Dec 30, 2015
Authored by Josh Chaney

Netduma R1 router versions 1.03.4 and 1.03.5 suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 8fb01a1cf235fadf64984de9d1d1e742
FTPShell Client 5.24 Buffer Overflow
Posted Dec 30, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

FTPShell Client version 5.24 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 7fa0c63f321f6aba20f56ecf1865dd82
DeleGate 9.9.13 Local Root
Posted Dec 30, 2015
Authored by Larry W. Cashdollar

Installation of DeleGate version 9.9.13 sets some binaries setuid root and at least one of these binaries can be used to escalate the privileges of a local user. The binary dgcpnod creates a node allowing a local unprivileged user to create files anywhere on disk. By creating a file in /etc/cron.hourly a local user can execute commands as root.

tags | exploit, local, root
advisories | CVE-2015-7556
MD5 | 10da8841db2e338fc2f3452c22c24dae
KODExplorer Web File Manager Cross Site Scripting
Posted Dec 30, 2015
Authored by Ben khlifa Fahmi

KODExplorer web file manager suffers from a cross site scripting vulnerability.

tags | exploit, web, xss
MD5 | e600dcb5c3e3294541ea2ef3a1528299
InterPhoto 2.3.0 Persians Database Disclosure
Posted Dec 30, 2015
Authored by indoushka

InterPhoto version 2.3.0 Persians suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | fad698b1761d534b9380702979f74dec
AVG WebTune Hijacking
Posted Dec 29, 2015
Authored by Tavis Ormandy, Google Security Research

AVG's Web Tune extension maliciously works to bypass the Chrome malware checks and leaves broken JavaScript APIs available. The attached exploit steals cookies from avg.com.

tags | exploit, web, javascript
systems | linux
MD5 | ca7a098048ebef53ec3e3b8d23340b38
Beezfud Remote Code Execution
Posted Dec 29, 2015
Authored by Ehsan Hosseini

Beezfud suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 588abb919be7dc0f1af8076c51709c09
NASA Cross Site Scripting
Posted Dec 29, 2015
Authored by 4TT4CK3R

ghrc.nsstc.nasa.gov suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1e291fca632697be8550bc5562f63c5f
PHP Melody CMS 2.3 SQL Injection
Posted Dec 27, 2015
Authored by V For Vendetta

PHP Melody CMS version 2.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 41635ab28e55f306b25617d8c132563a
RW::Download 4.0.8 File Inclusion / SQL Injection
Posted Dec 26, 2015
Authored by indoushka

RW::Download version 4.0.8 suffers from remote and local file inclusion and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, sql injection, file inclusion
MD5 | 0d63f99edb367c299dbd6cbd12b99a68
AccessDiver 4.301 Build 5888 Buffer Overflow
Posted Dec 26, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

AccessDiver version 4.301 build 5888 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 3137a57c2f210cb9927cad1183236fc7
EasyCafe Server 2.2.14 Remote File Read
Posted Dec 25, 2015
Authored by R-73eN

EasyCafe Server versions 2.2.14 and below suffer from a remote file read vulnerability.

tags | exploit, remote
MD5 | 77ef57731a114a2d5b65d61198c83f79
Bigware Shop 2.3.01 Cross Site Scripting / File Upload
Posted Dec 25, 2015
Authored by indoushka

Bigware Shop version 2.3.01 suffers from cross site scripting and remote file upload vulnerabilities.

tags | exploit, remote, vulnerability, xss, file upload
MD5 | 5c0b06d734609190e4658f891dc28b01
Backshell Web Shell Cross Site Request Forgery
Posted Dec 25, 2015
Authored by Ehsan Hosseini

Backshell Web Shell suffers from a cross site request forgery vulnerability.

tags | exploit, web, shell, csrf
MD5 | ce4ab13bef888885a4aacb0091168a49
Bigware Shop 2.3.01 Local File Inclusion
Posted Dec 24, 2015
Authored by bd0rk

Bigware Shop version 2.3.01 suffers from multiple local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, file inclusion
MD5 | 7620418db0a61e97bdd33923aa8284fb
PHP 7.0.0 Format String
Posted Dec 24, 2015
Authored by Andrew Kramer

PHP version 7.0.0 suffers from a format string vulnerability.

tags | exploit, php
MD5 | 14cd505975c23427e8caf30044469256
eWON XSS / CSRF / Session Management / RBAC Issues
Posted Dec 24, 2015
Authored by Karn Ganeshen

eWON routers with firmware versions prior to 10.1s0* suffer from cross site request forgery, session management, RBAC control, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
advisories | CVE-2015-7925, CVE-2015-7926, CVE-2015-7927, CVE-2015-7928, CVE-2015-7929
MD5 | 85a41c7af1c5de16f2d293c793efa34d
Nordex Control 2 (NC2) SCADA 16 Cross Site Scripting
Posted Dec 24, 2015
Authored by Karn Ganeshen

Nordex Control 2 (NC2) SCADA version 16 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2015-6477
MD5 | 22a8935590c26defe35235066ee16f5d
XZERES 442SR Wind Turbine Cross Site Scripting
Posted Dec 24, 2015
Authored by Karn Ganeshen

XZERES 442SR wind turbine suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | cf3e0517deb4265abb234ad48cbe8772
Page 1 of 12
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
PlexCoin Scam Founder Sentenced To Jail And Fined $10k
Posted Dec 10, 2017

tags | headline, cybercrime, fraud, scam, cryptography
Google Lifts Lid On FBI Data Requests: Now You Can Read Actual Letters Online
Posted Dec 9, 2017

tags | headline, government, privacy, usa, google, fbi
Android Flaw Lets Attack Code Slip Into Signed Apps
Posted Dec 9, 2017

tags | headline, malware, phone, flaw, google
Millions Stolen In NiceHash Bitcoin Heist
Posted Dec 9, 2017

tags | headline, hacker, cybercrime, fraud, cryptography
Apple HomeKit Flaw Left Smart Gadgets Vulnerable
Posted Dec 9, 2017

tags | headline, flaw, apple
Intel Management Engine Pwned By Buffer Overflow
Posted Dec 7, 2017

tags | headline, hacker, flaw, conference, intel
Google Steps Up Browser Rivalry With Site Isolation Security
Posted Dec 7, 2017

tags | headline, google, chrome
Ajit Pai Falsely Claims Killing Net Neutrality Helps The Sick
Posted Dec 7, 2017

tags | headline, government, usa, fraud
Bitcoin Breaks Through The $15,000 Mark
Posted Dec 7, 2017

tags | headline, cryptography
CryptoKitties Craze Slows Down Transactions On Ethereum
Posted Dec 6, 2017

tags | headline, denial of service, cryptography
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close