what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 298 RSS Feed

Files

Gr8 Tutorial Script SQL Injection
Posted Mar 24, 2017
Authored by Ihsan Sencan

Gr8 Tutorial Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 8b6a6007ea8937aa9c224d330e0df5f987f8002cc7f690afbea6394d7f18588e
Sparrow Web Server Directory Traversal
Posted Mar 24, 2017
Authored by Nassim Asrir

Sparrow Web Server suffers from a directory traversal vulnerability.

tags | exploit, web, file inclusion
SHA-256 | bca941889016395fc4ea26b1d05b3ad0300e1155974bdfb8ba314432a81335ea
Gr8 Gallery Script SQL Injection
Posted Mar 24, 2017
Authored by Ihsan Sencan

Gr8 Gallery Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 3b4d29b9be17ecd5e950581d8da3d980189292ab4e1cfe9e2316095a6a287e04
NETGEAR WNR2000v5 (Un)authenticated hidden_lang_avi Stack Overflow
Posted Mar 24, 2017
Authored by Pedro Ribeiro | Site metasploit.com

The NETGEAR WNR2000 router has a buffer overflow vulnerability in the hidden_lang_avi parameter. In order to exploit it, it is necessary to guess the value of a certain timestamp which is in the configuration of the router. An authenticated attacker can simply fetch this from a page, but an unauthenticated attacker has to brute force it. Brute-forcing the timestamp token might take a few minutes, a few hours, or days, but it is guaranteed that it can be brute-forced. This Metasploit module implements both modes, and it works very reliably. It has been tested with the WNR2000v5, firmware versions 1.0.0.34 and 1.0.0.18. It should also work with hardware revisions v4 and v3, but this has not been tested - with these routers it might be necessary to adjust the LibcBase variable as well as the gadget addresses.

tags | exploit, overflow
advisories | CVE-2016-10174
SHA-256 | 9a070ce74f71e2662326a2f24f0e886e3c26c8510e555c2e622810bbc7f545ed
LastPass Domain Design Flaw
Posted Mar 23, 2017
Authored by Tavis Ormandy, Google Security Research

The LastPass domain regex does not handle data and other pseudo-url schemes.

tags | exploit
SHA-256 | c0a8fe296712f524a32da5c517945525e5ab13ee7092ff234e231f8b07fc44f8
LastPass FireFox Content Script Loading
Posted Mar 23, 2017
Authored by Tavis Ormandy, Google Security Research

LastPass had an issue with websiteConnector.js content script allows proxying internal RPC commands. The fix appears to not work on FireFox.

tags | exploit
SHA-256 | 27d63cb0f60259717435f5611911b967a0c0559c6c2c10dfabac06098d0685e1
Logsign Remote Command Injection
Posted Mar 23, 2017
Authored by Mehmet Ince | Site metasploit.com

This Metasploit module exploits an command injection vulnerability in Logsign. By exploiting this vulnerability, unauthenticated users can execute arbitrary code under the root user. Logsign has a publicly accessible endpoint. That endpoint takes a user input and then use it during operating system command execution without proper validation. This Metasploit module was tested against 4.4.2 and 4.4.137 versions.

tags | exploit, arbitrary, root
SHA-256 | 514278ac234d24bce62d18b93726fb1600a3b3355c201fea7091430ea41f75e7
QNAP QTS Privilege Escalation / Information Disclosure
Posted Mar 23, 2017
Authored by Pasquale Florillo, Guido Oricchio

QNAP QTS versions prior to 4.2.4 suffer from a sensitive data exposure vulnerability that allows for privilege escalation.

tags | exploit
advisories | CVE-2017-5227
SHA-256 | 3d248b7122dde92c3c6cff49c15a639517a9a2504a008042fa15212812bc6b27
APNGDis 2.8 Buffer Overflow
Posted Mar 23, 2017
Authored by Alwin Peppels

APNGDis version 2.8 suffers from multiple overflow vulnerabilities.

tags | exploit, overflow, vulnerability
advisories | CVE-2017-6191, CVE-2017-6192, CVE-2017-6193
SHA-256 | 5a19a1e4e31c23da558e2d90f1f4413bdf2655fa2b5f9dd5c30d65e457f6cf8a
Joomla FocalPoint 1.2.3 SQL Injection
Posted Mar 23, 2017
Authored by Mojtaba MobhaM

Joomla FocalPoint component version 1.2.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 419f784ff8442434b7fa865ec9cef0df98b08ae1c02fbf2bd8df38f7db6e6502
Joomla Modern Booking 1.0 SQL Injection
Posted Mar 23, 2017
Authored by Hamed Izadi

Joomla Modern Booking component version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 006e913445e924a197da572f04e6f6c0d0b601aaa1321e1129e402542bcaba08
SpyCamLizard SC Liz 1.230 Buffer Overflow
Posted Mar 23, 2017
Authored by Greg Priest

SpyCamLizard SC Liz version 1.230 remote buffer overflow exploit.

tags | exploit, remote, overflow
SHA-256 | 7938a0efc48b2f7f0a9e2c43e3fbf274467f37d1710f4630bee19ddb1dd55215
onArcade 2.4.x Local File Disclosure
Posted Mar 23, 2017
Authored by Deyaa Muhammad

onArcade version 2.4.x suffers from a local file disclosure vulnerability.

tags | exploit, local
SHA-256 | a313d87067397f6047c1d3c3d831ff7a33e56265508ee0f36b5c7fe87bd6d51b
D-Link DSL-2640B Remote DNS Changer
Posted Mar 23, 2017
Authored by cryptolulz666

D-Link DSL-2640B remote DNS changing exploit.

tags | exploit, remote
SHA-256 | b82d3dc13d1e33a86fea85f7796a9cb127096e83601da1cf601b180a867a6c29
Flippa Clone SQL injection
Posted Mar 23, 2017
Authored by Ihsan Sencan

Flippa Clone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | d6dd20b68e90bded5f7799e8e0df17012400a8847e305b9036d43feee93a232a
Bonza Digital Cart Script 1 SQL Injection
Posted Mar 23, 2017
Authored by Bilal Kardadou

Bonza Digital Cart Script version 1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 48603fce8c4fe0b8afb1aaf706ef92565762029c3b126cafcb957b6793f449bd
Omegle Clone 2.0 SQL Injection
Posted Mar 23, 2017
Authored by Bilal Kardadou

Omegle Clone version 2.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 97033a8a798b81482880293a4b5f1d6cc9ac04b8a4e2b1ccfe9ef1c780f20c48
Membership Site Script 1 SQL Injection
Posted Mar 23, 2017
Authored by Bilal Kardadou

Membership Site Script version 1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b0a221aa6057753730df3ce5e09a7341b8c05c4f125c3306271aef9260cfcefb
SysGauge SMTP Validation Buffer Overflow
Posted Mar 22, 2017
Authored by Chris Higgins, Peter Baris | Site metasploit.com

This Metasploit module will setup an SMTP server expecting a connection from SysGauge 1.5.18 via its SMTP server validation. The module sends a malicious response along in the 220 service ready response and exploits the client, resulting in an unprivileged shell.

tags | exploit, shell
SHA-256 | 4baa08befe8f7e2bbccdcae8c675d729f0222bafa9e6eadc97b5a044bd54592c
Solar-Log CSRF / Information Disclosure / DoS / File Upload
Posted Mar 22, 2017
Authored by T. Weber | Site sec-consult.com

Solare Datensysteme GmbH Solar-Log versions 250, 300, 500, 800e, 1000, 1000 PM+, 1200, and 2000 suffer from cross site request forgery, cross site scripting, file upload, information disclosure, and denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability, xss, info disclosure, file upload, csrf
SHA-256 | 2d4ea59b67a6e2e050f10517f0354018d7194b9a69fe3ed5b13cfef0aeab7eeb
Disk Sorter Enterprise 9.5.12 Buffer Overflow
Posted Mar 22, 2017
Authored by Daniel Teixeira

Disk Sorter Enterprise version 9.5.12 GET buffer overflow SEH exploit.

tags | exploit, overflow
SHA-256 | 9bcbe319bc61fad1c46803139c12a81d49aef3ac226ad042a33e2cd8d25b179c
OpenSSH On Cygwin SFTP Client Directory Traversal
Posted Mar 22, 2017
Authored by Jann Horn, Google Security Research

Portable OpenSSH supports running on Cygwin. However, the SFTP client only filters out forward slashes (in do_lsreaddir()) and the directory names "." and ".." (in download_dir_internal()). On Windows, including in Cygwin, backslashes can a lso be used for directory traversal.

tags | exploit
systems | windows
SHA-256 | 653080ead75f1a09ebf8449dc6271901603c629ff1cecc6eeb9ae0c1a78ce3da
LastPass websiteConnector.js RPC Command Proxy
Posted Mar 22, 2017
Authored by Tavis Ormandy, Google Security Research

websiteConnector.js content script in LastPass allows for proxying of internal RPC commands.

tags | exploit
SHA-256 | c01b74d3513ae36c123c2c3bd27e5429944df7d35416e37f930ce4fb1b95e591
Joomla Extra Search 2.2.8 SQL Injection
Posted Mar 22, 2017
Authored by Ihsan Sencan

Joomla Extra Search component version 2.2.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 5be2f98138805bf2cc9f1d2224fed71b68edd376c41d767b3a824ec1ae04d21d
GLink Word Link Script 1.2.3 SQL Injection
Posted Mar 22, 2017
Authored by Ihsan Sencan

GLink Word Link Script version 1.2.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 747e4c63b964c0b2248900a592b92907cc45965bc58ebbc6f8bf03f0e3e21876
Page 3 of 12
Back12345Next

Top Authors In Last 30 Days

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close