Showing 1 - 13 of 13

Files from Cleiton Pinheiro

Personal Background

(GED) - Gambiarras Exploits Dorking

Typo3 4.2 / 4.5 Information Disclosure: Posted Oct 14, 2015; Authored by Cleiton Pinheiro; Typo3 versions 4.2 and 4.5 suffer from information disclosure vulnerabilities.; tags | exploit, vulnerability, info disclosure; SHA-256 | 964fb0833da0c5c9f1c07ef9adf90cc4233a7a258608fbfabc59b774d1d0f1a4; Download | Favorite | View

iBooking CMS SQL Injection: Posted Sep 18, 2015; Authored by Cleiton Pinheiro; iBooking CMS suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | f940a1514994a822f9b19f66067c704407e5484e1dded2db9cec7600be48e779; Download | Favorite | View

INURLBR Search Scanner 2.1.0: Posted May 25, 2015; Authored by Cleiton Pinheiro; INURL is a php tool written to make searching across multiple engines easier when researching web site targets.; tags | tool, web, scanner, php; systems | unix; SHA-256 | 46d0ecb060e9ed535e15234b1dd662cffc850ac87a4c0001b555c95e639dda2c; Download | Favorite | View

Xpl-SHELLSHOCK-Ch3ck Shellshock Vulnerability Scanner: Posted May 3, 2015; Authored by Cleiton Pinheiro; PHP script that leverages user agents to scan for the shellshock vulnerability.; tags | tool, scanner, php; systems | unix; advisories | CVE-2014-6271, CVE-2014-6277, CVE-2014-6278, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187; SHA-256 | c3fb3a101c43ddb2ec35601038641d0e74080bb19c7ab688fea8961529e512d4; Download | Favorite | View

WordPress NEX-Forms 3.0 SQL Injection: Posted Apr 21, 2015; Authored by Cleiton Pinheiro; WordPress NEX-Forms plugin version 3.0 remote SQL injection exploit.; tags | exploit, remote, sql injection; SHA-256 | ea15e9b2d9dd075be1540595aba9beb5f09e85bb2b6295eb3c61de9681bde77b; Download | Favorite | View

T35T-SSH Password Cracker / Scanner: Posted Apr 20, 2015; Authored by Cleiton Pinheiro; This is a php script that uses a pre-defined set of possible passwords and tries them against a given ssh server.; tags | tool, cracker, php; SHA-256 | 2316d8b598d7c0a482970338c9957ea4a0a7f7e9923cf97c9506f57ab34e463d; Download | Favorite | View

WebDepo CMS SQL Injection: Posted Mar 29, 2015; Authored by Cleiton Pinheiro; WebDepo CMS suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | f56f63f5febb8cdd466c97568d2d801a1f2724b2c57e61fbaf91feeeb476dc43; Download | Favorite | View

WordPress Reflex Gallery 3.1.3 Shell Upload: Posted Mar 16, 2015; Authored by Cleiton Pinheiro; WordPress Reflex Gallery plugin version 3.1.3 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | 6f6077fb138d9af502aa58092022e9d24de2532b93fddc77dd4cb542c63ea916; Download | Favorite | View

Router Hunter 1.0: Posted Feb 13, 2015; Authored by Cleiton Pinheiro, Johnathan Davi; Router Hunter is a php script that scans for and exploits DNS change vulnerabilities in Shuttle Tech ADSL Modem-Router 915 WM and D-Link DSL-2740R routers and also exploits the credential disclosure vulnerability in LG DVR LE6016D devices.; tags | tool, scanner, php, vulnerability; systems | unix; SHA-256 | 9cf69c958fcf9b85f5aff152f7b92ca2f6c7e10bf683c01ea6febad6a68716b9; Download | Favorite | View

INURLBR MD5 Checker: Posted Feb 5, 2015; Authored by Cleiton Pinheiro; This is a PHP script that uses md5.gromweb.com to see if a provided md5 is a known value.; tags | tool, cracker, php; SHA-256 | c73ae04c4c236adb2affb5d2c8f2de8a0fc5e20f2ac1d1130ab005aa86398063; Download | Favorite | View

Facebook Data Mining Utility: Posted Jan 13, 2015; Authored by Cleiton Pinheiro; This is a php script that can be used to mine friends and metadata of a person from Facebook using their API.; tags | tool, php; systems | unix; SHA-256 | 0da8bd0bb78184f37a0db7481b8e582a3dd328ea9caf4fe7f13e54ce97a8169d; Download | Favorite | View

WordPress Themes download.php File Disclosure: Posted Dec 24, 2014; Authored by Cleiton Pinheiro; Multiple WordPress themes suffer from an arbitrary file download vulnerability in download.php. These include Ultimatum, Medicate, Centum, Avada, Striking Theme & E-Commerce, cuckootap, IncredibleWP, Ultimatum, Medicate, Centum, Avada, Trinity, Lote27, and Revslider themes.; tags | exploit, arbitrary, php; SHA-256 | 79c86b5eac6b7d9b26307fbc9f51aeb8f4fae1522a59b66fb561d7f899630c1f; Download | Favorite | View

WordPress A.F.D. Theme Echelon Arbitrary File Download: Posted Dec 16, 2014; Authored by Cleiton Pinheiro; WordPress A.F.D. Theme Echelon suffers from an arbitrary file download vulnerability.; tags | exploit, arbitrary; SHA-256 | 0eaf643cace3cd4ee48bc42f9138192f2f3dbcf77a8c32224d60e11ac79ce0c4; Download | Favorite | View

Page 1 of 1 Back 1 Next