Exploit the possiblities
Showing 1 - 25 of 163 RSS Feed

Files

Packet Storm New Exploits For October, 2017
Posted Nov 1, 2017
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 162 exploits added to Packet Storm in October, 2017.

tags | exploit
MD5 | 71e5efdfc6853913e1afe7fcc9881762
WordPress User Login History 1.5.2 Cross Site Scripting
Posted Oct 31, 2017
Authored by Nicolas Buzy-Debat

WordPress User Login History plugin version 1.5.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-15867
MD5 | 55794b951aa88e688d42b194d06710b9
Progea Movicon 11.5.1181 Search Path Issues
Posted Oct 31, 2017
Authored by Karn Ganeshen

Progea Movicon versions 11.5.1181 and below suffer from search path related vulnerabilities.

tags | exploit, vulnerability
advisories | CVE-2017-14017, CVE-2017-14019
MD5 | 1de6e04aa62eca5a923d8fc55a9f1748
SpiderControl SCADA Web Server 2.02.0007 Improper Privilege Management
Posted Oct 31, 2017
Authored by Karn Ganeshen

SpiderControl SCADA Web Server versions 2.02.0007 and below suffer from an improper privilege management vulnerability.

tags | exploit, web
advisories | CVE-2017-12728
MD5 | d6acb33e7b8598a0c01679e484876aef
JanTek JTC-200 RS232-NET Connector CSRF / Missing Authentication
Posted Oct 31, 2017
Authored by Karn Ganeshen

JanTek JTC-200 RS232-NET Connector suffers from cross site request forgery and missing authentication vulnerabilities.

tags | exploit, vulnerability, csrf
advisories | CVE-2016-5789, CVE-2016-5791
MD5 | 020bc5ac941329974bf88c561dc914f2
Website Broker Script SQL Injection
Posted Oct 30, 2017
Authored by Ihsan Sencan

Website Broker Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15992
MD5 | c268db54348e06f2a891e1e4b8a0c162
Vastal I-Tech Agent Zone SQL Injection
Posted Oct 30, 2017
Authored by Ihsan Sencan

Vastal I-Tech Agent Zone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15991
MD5 | 9eefe317c733dfe1b72c7b1be2b593be
Zomato Clone Script SQL Injection
Posted Oct 30, 2017
Authored by Ihsan Sencan

Zomato Clone Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15993
MD5 | f3b76106b5efbfbfb78a82cf61145a68
PHP Inventory Arbitrary File Upload
Posted Oct 30, 2017
Authored by Ihsan Sencan

PHP Inventory suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, php, file upload
advisories | CVE-2017-15990
MD5 | f0ea39e29684cdfddf40e9ddbea32ec3
Online Exam Test Application SQL Injection
Posted Oct 30, 2017
Authored by Ihsan Sencan

Online Exam Test Application suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15989
MD5 | d0a31c65ef54e756c675fc31b1f78950
WordPress Ultimate Product Catalog 4.2.24 PHP Object Injection
Posted Oct 30, 2017
Authored by tomplixsee

WordPress Ultimate Product Catalog plugin versions 4.2.24 and below suffer from a PHP object injection vulnerability.

tags | exploit, php
MD5 | 3f4ffd5d0fa22e90026bf5db1d8f6c0b
MitraStar DSL-100HN-T1/GPT-2541GNAC Privilege Escalation
Posted Oct 28, 2017
Authored by j0lama

MitraStar DSL-100HN-T1 and GPT-2541GNAC routers suffer from a privilege escalation vulnerability.

tags | exploit
MD5 | 9bd18e64e9682092e8293cf4eeb301a2
Android Private Internet Access Denial Of Service
Posted Oct 27, 2017
Authored by Yakov Shafranovich | Site wwws.nightwatchcybersecurity.com

The Android application provided by Private Internet Access (PIA) VPN service can be crashed by downloading a large file containing a list of current VPN servers. This can be exploited by an MITM attacker via intercepting and replacing this file. While the file is digitally signed, it is not served over SSL and the application did not contain logic for checking if the provided file is very large. The vendor has fixed this issue in version 1.3.3.1 and users should install the latest version.

tags | exploit, denial of service
advisories | CVE-2017-15882
MD5 | f39a851f2873bfcdf23e16b4dfb9ed46
Tizen Studio 1.3 Smart Development Bridge Buffer Overflow
Posted Oct 27, 2017
Authored by Marcin Kopec

Tizen Studio version 1.3 Smart Development Bridge versions prior to 2.3.2 buffer overflow proof of concept exploit.

tags | exploit, overflow, proof of concept
MD5 | e22467b2016604b70e379a7ceeb375e7
DameWare Remote Controller 12.0.0.520 Remote Code Execution
Posted Oct 27, 2017
Authored by Securifera

DameWare Remote Controller versions 12.0.0.520 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2016-2345
MD5 | 8c30f8a31a9271d0e9bbf103ee24be7b
Watchdog Development Anti-Malware / Online Security Pro NULL Pointer Dereference
Posted Oct 27, 2017
Authored by Parvez Anwar

Watchdog Development Anti-Malware / Online Security Pro version 2.74.186.150 suffers from a NULL pointer dereference vulnerability.

tags | exploit
advisories | CVE-2017-15920, CVE-2017-15921
MD5 | fa22dc9a96abfa8e521d186c00e90208
HitmanPro 3.7.15 Build 281 Kernel Pool Overflow
Posted Oct 26, 2017
Authored by cbayet

HitmanPro version 3.7.15 Build 281 kernel pool overflow exploit.

tags | exploit, overflow, kernel
advisories | CVE-2017-6008
MD5 | cfbc3a0d41abca2ae9761108e1bf5ddd
PHPMailer 5.2.21 Local File Disclosure
Posted Oct 26, 2017
Authored by Yongxiang Li, Maciej Krupa

PHPMailer versions 5.2.21 and below suffer from a file disclosure vulnerability.

tags | exploit
advisories | CVE-2017-5223
MD5 | a21bf718aa3bbe772180a151ff098db0
Mura CMS Server-Side Request Forgery / XXE Injection
Posted Oct 26, 2017
Authored by Anthony Cole

Mura CMS versions prior to 6.2 suffer from server-side request forgery and XML external entity injection vulnerabilities.

tags | exploit, vulnerability
advisories | CVE-2017-15639
MD5 | 082f770ed9b178ced262ba51f73e3f10
FS Shutter Stock Clone SQL Injection
Posted Oct 26, 2017
Authored by 8bitsec

FS Shutter Stock Clone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0a29af0c7176a61783bbafa2fd9ec4bc
FS Thumbtack Clone SQL Injection
Posted Oct 26, 2017
Authored by 8bitsec

FS Thumbtack Clone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 58e820cb9131804c0d6f9c1b94b2c144
FS Trademe Clone SQL Injection
Posted Oct 26, 2017
Authored by 8bitsec

FS Trademe Clone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 54ea77b77d0952c0f60760443b89b1c7
FS Monster Clone SQL Injection
Posted Oct 26, 2017
Authored by 8bitsec

FS Monster Clone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 205ec95cf63927ae912b80b63c975fd7
FS Care Clone SQL Injection
Posted Oct 26, 2017
Authored by 8bitsec

FS Care Clone suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 3281a4f2f0df534d804f36b3ea6b904f
FS Crowdfunding Script SQL Injection
Posted Oct 26, 2017
Authored by 8bitsec

FS Crowdfunding Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 26d9f95285eea3c7e08796d13bf38b0f
Page 1 of 7
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Ajit Pai Screws Entire Internet, Repeals Net Neutrality
Posted Nov 21, 2017

tags | headline, government, usa, fraud
Germany Urges Parents To Destroy Snooping Smartwatches
Posted Nov 20, 2017

tags | headline, privacy, germany
Drone Maker Makes Hacking Accusations
Posted Nov 20, 2017

tags | headline, hacker, flaw
DNS Resolver 9.9.9.9 Will Check Requests Against IBM Threat Database
Posted Nov 20, 2017

tags | headline, malware, dns
F5 DROWNing, Not Waving, In Crypto Fail
Posted Nov 20, 2017

tags | headline, flaw, cryptography
Cap'n Crunch Booted From Conferences Due To Sexual Misconduct Claims
Posted Nov 18, 2017

tags | headline, hacker, phone, conference
3 More Android Malware Families Invade Google Play Store
Posted Nov 18, 2017

tags | headline, malware, phone, google
Shamed TLS/SSL Cert Authority StartCom To Shut Up Shop
Posted Nov 18, 2017

tags | headline, privacy, data loss, flaw, cryptography
Massive US Military Social Media Spying Archive Left Wide Open In AWS S3 Buckets
Posted Nov 18, 2017

tags | headline, government, privacy, usa, amazon, data loss, flaw, spyware, social
NYPD Cops Need A Warrant To Snoop On Your Phone
Posted Nov 17, 2017

tags | headline, government, privacy, usa, phone
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close