Showing 1 - 25 of 126

Files from Securify B.V.

Email address	lists at securify.nl
First Active	2014-09-22
Last Active	2017-08-14

Xamarin Studio For Mac 6.2.1 (Build 3) / 6.3 (Build 863) Privilege Escalation: Posted Aug 14, 2017; Authored by Yorick Koster, Securify B.V.; Xamarin Studio for Mac versions 6.2.1 (build 3) and 6.3 (build 863) suffer from a local privilege escalation vulnerability.; tags | exploit, local; MD5 | 0eb7c4204f9e48e3f70079bf8624f7da; Download | Favorite | Comments (0)

Virtuozzo Power Panel (VZPP) 6.1.2 Buffer Over-Read: Posted Jul 5, 2017; Authored by Securify B.V., Sipke Mellema; Virtuozzo Power Panel (VZPP) and Automator version 6.1.2 suffers from a buffer over-read vulnerability.; tags | advisory; MD5 | 2af4bc88b18673fd24ac2f529c2fd96b; Download | Favorite | Comments (0)

SyntaxHighlight 2.0 MediaWiki 1.28.0 Stored Cross Site Scripting: Posted Apr 29, 2017; Authored by Yorick Koster, Securify B.V.; A vulnerability was found in the SyntaxHighlight MediaWiki extension. Using this vulnerability it is possible for an anonymous attacker to pass arbitrary options to the Pygments library. By specifying specially crafted options, it is possible for an attacker to trigger a (stored) cross site scripting condition. In addition, it allows the creating of arbitrary files containing user-controllable data. Depending on the server configuration, this can be used by an anonymous attacker to execute arbitrary PHP code. This issue was tested on SyntaxHighlight version 2.0 as bundled with MediaWiki version 1.28.0.; tags | exploit, arbitrary, php, xss; advisories | CVE-2017-0372; MD5 | c2f465d0fafdbcf4b9a63fb413f084f5; Download | Favorite | Comments (0)

Western Digital My Cloud 2.21.126 Authentication Bypass: Posted Apr 22, 2017; Authored by Securify B.V., Remco Vermeulen; Western Digital My Cloud with firmware version 2.21.126 suffers from an authentication bypass vulnerability that allows escalation to administrative privileges.; tags | exploit, bypass; MD5 | 03efc4e9cf55948800f65cb80dd0da13; Download | Favorite | Comments (0)

WordPress Connection Information Cross Site Request Forgery: Posted Apr 20, 2017; Authored by Yorick Koster, Securify B.V.; The FTP/SSH form functionality of WordPress was found to be vulnerable to cross site request forgery. WordPress versions 4.5.3 through 4.7.4 are affected.; tags | exploit, csrf; MD5 | 25a2023423f7860059c0e4cb8e179437; Download | Favorite | Comments (0)

Scriptler Jenkins 2.9 Cross Site Scripting: Posted Apr 15, 2017; Authored by Securify B.V., Burak Kelebek; Scriptler Jenkins version 2.9 suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 51c7b60005aa4d94fc3a39b0ebc67e50; Download | Favorite | Comments (0)

Microsoft Office OneNote 2007 DLL Hijacking: Posted Apr 11, 2017; Authored by Yorick Koster, Securify B.V.; Microsoft Office OneNote 2007 suffers from a dll hijacking vulnerability.; tags | exploit; systems | windows; MD5 | b33e14dcb95985bd6976931c23b1f515; Download | Favorite | Comments (0)

Microsoft Edge Fetch API Arbitrary Header Setting: Posted Mar 14, 2017; Authored by Securify B.V.; It was found that the Fetch API in Microsoft Edge allows websites to set arbitrary HTTP request headers, including the Content-Length, and Host headers. Amongst others, a malicious website can use this issue to bypass the same origin policy, read HTTP response headers, or initiate arbitrary HTTP requests from the victim's browser (HTTP request smuggling).; tags | exploit, web, arbitrary; advisories | CVE-2017-0140; MD5 | c5887ca20f54ac55ae19e8611c88c6f7; Download | Favorite | Comments (0)

Western Digital My Cloud Cross Site Request Forgery: Posted Mar 7, 2017; Authored by Securify B.V., Remco Vermeulen; Western Digital My Cloud suffers from a cross site request forgery vulnerability.; tags | advisory, csrf; MD5 | 1f1be9f28d76dd964efe11d9a8018d08; Download | Favorite | Comments (0)

Western Digital My Cloud Buffer Overflow: Posted Mar 7, 2017; Authored by Securify B.V., Remco Vermeulen; Western Digital My Cloud suffers from a buffer overflow vulnerability that allows for remote code execution.; tags | exploit, remote, overflow, code execution; MD5 | e64dc08f721927ea61266f162a334e42; Download | Favorite | Comments (0)

Western Digital My Cloud Command Injection: Posted Mar 7, 2017; Authored by Securify B.V., Remco Vermeulen; Western Digital My Cloud suffers from multiple command injection vulnerabilities.; tags | exploit, vulnerability; MD5 | 769ded7ef3ae77dad8b7bc9a03ec8c4b; Download | Favorite | Comments (0)

WordPress 4.5.3 Press This Function CSRF / Denial Of Service: Posted Mar 7, 2017; Authored by Securify B.V., Sipke Mellema; WordPress version 4.5.3 Press This Function suffers from a cross site request forgery vulnerability that can cause a denial of service condition.; tags | exploit, denial of service, csrf; MD5 | 83fd7fe78cebb4f12e22a40081367585; Download | Favorite | Comments (0)

WordPress 4.5.3 Audio Playlist Cross Site Scripting: Posted Mar 7, 2017; Authored by Yorick Koster, Securify B.V.; WordPress version 4.5.3 Audio Playlist suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 03337762b5f9e7ec64dbec0de777fb10; Download | Favorite | Comments (0)

WordPress Contact Form 4.0.0 Cross Site Scripting: Posted Mar 3, 2017; Authored by Securify B.V., Julien Rentrop; WordPress Contact Form plugin version 4.0.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 9a02b786071ae7946b341084679559f2; Download | Favorite | Comments (0)

WordPress Contact Form Manager CSRF / XSS: Posted Mar 3, 2017; Authored by Securify B.V., Edwin Molenaar; WordPress Contact Form Manager plugin suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 4987a2afdb93bc122ac36851c982c9ed; Download | Favorite | Comments (0)

WordPress Popup By Supsystic 1.7.6 Cross Site Request Forgery: Posted Mar 3, 2017; Authored by Securify B.V., Radjnies Bhansingh; WordPress Popup by Supsystic plugin 1.7.6 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 0b5ccac0638dde090a40ca6b20b5ac07; Download | Favorite | Comments (0)

WordPress Google Analytics Dashboard 2.1.1 Cross Site Scripting: Posted Mar 3, 2017; Authored by Yorick Koster, Securify B.V.; WordPress Google Analytics Dashboard plugin version 2.1.1 suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 2e909e9b3784d3c4edbbc4b193525cfd; Download | Favorite | Comments (0)

WordPress Magic Fields 1 1.7.1 Cross Site Scripting: Posted Mar 3, 2017; Authored by Securify B.V., Burak Kelebek; WordPress Magic Fields 1 plugin version 1.7.1 suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 5f73b17edab388c1e8270618cb22718f; Download | Favorite | Comments (0)

WordPress Gwolle Guestbook 1.7.4 Cross Site Request Forgery: Posted Mar 3, 2017; Authored by Securify B.V., Radjnies Bhansingh; WordPress Gwolle Guestbook plugin version 1.7.4 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 3e9b81957474152b4b44813b24b6a155; Download | Favorite | Comments (0)

WordPress Download Manager 2.8.99 Cross Site Request Forgery: Posted Mar 3, 2017; Authored by Securify B.V., Burak Kelebek; WordPress Download Manager plugin version 2.8.99 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 2cc3001139037abf9cba48bd74cae8e8; Download | Favorite | Comments (0)

WordPress Simple Ads Manager 2.9.8.125 PHP Object Injection: Posted Mar 3, 2017; Authored by Yorick Koster, Securify B.V.; WordPress Simple Ads Manager plugin version 2.9.8.125 suffers from a PHP object injection vulnerability.; tags | exploit, php; MD5 | d7391c18f04b169df0122e11b1c3dec8; Download | Favorite | Comments (0)

WordPress Gwolle Guestbook 1.7.4 Cross Site Scripting: Posted Mar 3, 2017; Authored by Securify B.V., Radjnies Bhansingh; WordPress Gwolle Guestbook plugin version 1.7.4 suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 36f247556fee0bff03704758a5a50f05; Download | Favorite | Comments (0)

WordPress Global Content Blocks 2.1.5 Cross Site Request Forgery: Posted Mar 3, 2017; Authored by Yorick Koster, Securify B.V.; WordPress Global Content Blocks plugin version 2.1.5 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 5b31f6714683c6a8b78dc4e25ca2f915; Download | Favorite | Comments (0)

WordPress Trust Form 2.0 Cross Site Scripting: Posted Mar 1, 2017; Authored by Yorick Koster, Securify B.V.; WordPress Trust Form plugin version 2.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 0b6b3c587ffe92e244f5f47cd441a34b; Download | Favorite | Comments (0)

WordPress Analytics Stats Counter Statistics 1.2.2.5 PHP Object Injection: Posted Mar 1, 2017; Authored by Yorick Koster, Securify B.V.; WordPress Analytics Stats Counter Statistics plugin version 1.2.2.5 suffers from a PHP object injection vulnerability.; tags | advisory, php; MD5 | 91725ba3f4733fa4edc420ef97e32a71; Download | Favorite | Comments (0)

Page 1 of 6 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Ubuntu 50 files
Red Hat 45 files
Google Security Research 45 files
Gentoo 35 files
Ihsan Sencan 30 files
Apple 16 files
mjurczyk 13 files
Debian 12 files
laginimaineb 12 files
hyp3rlinx 9 files

File Archives

Systems

AIX (407)
Apple (1,484)
BSD (328)
Cisco (1,790)
Debian (5,343)
Fedora (1,675)
FreeBSD (1,182)
Gentoo (3,463)
HPUX (863)
iOS (153)
iPhone (103)
IRIX (219)
Juniper (66)
Linux (32,259)
Mac OS X (649)
Mandriva (3,105)
NetBSD (253)
OpenBSD (454)
RedHat (6,041)
Slackware (789)
Solaris (1,565)
SUSE (1,444)
Ubuntu (5,314)
UNIX (8,157)
UnixWare (170)
Windows (5,204)
Other

Files from Securify B.V.

File Archive:

October 2017

Top Authors In Last 30 Days

File Tags

File Archives

Systems