what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 9 of 9

Files from Eric Flokstra

Kodi 17.0 Local File Inclusion

Posted Sep 1, 2024

Authored by Eric Flokstra, jvoisin | Site metasploit.com

This Metasploit module exploits a directory traversal flaw found in Kodi before 17.1.

tags | exploit

advisories | CVE-2017-5982

SHA-256 | 2c83338629d01da39dbd3ed7ab8a2be6c26a6811533c7adc08cd9bba00434c6f

Download | Favorite | View

Device Manager Express 7.8.20002.47752 SQL Injection / XSS / Code Execution / Traversal

Posted Feb 23, 2023

Authored by Eric Flokstra

Device Manager Express versions 7.8.20002.47752 and below suffer from code execution, command execution, cross site scripting, remote SQL injection, and traversal vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, sql injection, file inclusion

advisories | CVE-2022-24627, CVE-2022-24628, CVE-2022-24629, CVE-2022-24630, CVE-2022-24631, CVE-2022-24632

SHA-256 | 9f6dbcbbd09678c80d311d3e820d1c82de2bd7a04264742755ac9d8302b00c0f

Download | Favorite | View

Kodi 17.1 Arbitrary File Disclosure

Posted Feb 12, 2017

Authored by Eric Flokstra

Kodi version 17.1 suffers from an arbitrary file disclosure vulnerability.

tags | exploit, arbitrary, info disclosure

advisories | CVE-2017-5982

SHA-256 | b1c1652563efb5baca96d7b6a172a239bf90dba4a094ea1e33c0c33ab7375b42

Download | Favorite | View

EMC ViPR SRM Cross Site Scripting

Posted Sep 27, 2016

Authored by Eric Flokstra | Site emc.com

EMC ViPR SRM versions prior to 4.0.1 suffer from a stored cross site scripting vulnerability.

tags | advisory, xss

advisories | CVE-2016-6647

SHA-256 | e1828eb16abfb65ae9177f9aa8c447a3d49f6714d6cc7284391fd2913d94e586

Download | Favorite | View

Davolink DV-2051 Missing Access Control

Posted Aug 5, 2016

Authored by Eric Flokstra

Davolink DV-2051 suffers from a missing access control vulnerability.

tags | exploit, bypass

SHA-256 | 529fab643e46a9923439cedec6433afa1d5748b5345eb0c43795400ba84a058c

Download | Favorite | View

WordPress Easy Social Icons 1.2.2 CSRF / XSS

Posted Feb 19, 2015

Authored by Eric Flokstra

WordPress Easy Social Icons plugin version 1.2.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf

SHA-256 | fd957c35e50224cc064e2cf7276a9291121981439577b9efd85ab12f511589c2

Download | Favorite | View

WordPress WooCommerce 2.2.10 Cross Site Scripting

Posted Feb 19, 2015

Authored by Eric Flokstra

WordPress WooCommerce plugin version 2.2.10 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 3050b4f52a9bef799cfb09247cc5c4345f9a7d45e75923cfb83f6d4f552d9cff

Download | Favorite | View

InterWorx 5.0.13 Build 574 SQL Injection

Posted Mar 25, 2014

Authored by Eric Flokstra

InterWorx Web Control Panel version 5.0.13 build 574 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection

advisories | CVE-2014-2531

SHA-256 | afe204bd4b2997915e002624fe94d4bf76d844faa9571607108500b7840dbc16

Download | Favorite | View

InterWorx Web Control Panel Cross Site Scripting

Posted Feb 22, 2014

Authored by Eric Flokstra

InterWorx Web Control Panel version 5.0.12 build 569 suffers from a cross site scripting vulnerability.

tags | exploit, web, xss

advisories | CVE-2014-2035

SHA-256 | 955f6d56ae74fedcfe4e5e3b116ba99d361954921a81dec6f868f9a530f5bcfa

Download | Favorite | View