exploit the possibilities
Showing 1 - 25 of 29 RSS Feed

Files from Kaustubh G. Padwad

First Active2015-01-30
Last Active2019-02-13
Nokia 8810 Denial Of Service
Posted Feb 13, 2019
Authored by Kaustubh G. Padwad

A denial of service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G devices. When a crafted web page is visited with the internal browser, the Gecko process crashes with a segfault. Successful exploitation could lead to the remote code execution on the device.

tags | exploit, remote, web, denial of service, code execution
advisories | CVE-2019-7386
MD5 | 3634f2043d52856b3dc8fee6e53be5da
Raisecom Technology GPON-ONU HT803G-07 Command Injection
Posted Feb 13, 2019
Authored by Kaustubh G. Padwad

Raisecom Technology GPON-ONU HT803G-07 suffers from an authenticated command injection vulnerability in the newpass and confpass parameters in /bin/WebMGR.

tags | exploit
advisories | CVE-2019-7385
MD5 | 96852f7edee55b1d7fe41b06c5100e95
Raisecom Technology GPON-ONU HT803G-07 Command Injection
Posted Feb 13, 2019
Authored by Kaustubh G. Padwad

Raisecom Technology GPON-ONU HT803G-07 suffers from an authenticated command injection vulnerability in the fmgpon_loid parameter.

tags | exploit
advisories | CVE-2019-7384
MD5 | a7b4b967b526835e031e08633772389a
SYSTORME ISG Command Injection
Posted Feb 13, 2019
Authored by Kaustubh G. Padwad

SYSTORME ISG products ISG-600C, ISG-600H, and ISG-800W suffer from an authenticated command injection vulnerability.

tags | exploit
advisories | CVE-2019-7383
MD5 | 2b900c12b8546c4e8e5c9f117e930eb6
SYSTORME ISG Cross Site Request Forgery
Posted Feb 13, 2019
Authored by Kaustubh G. Padwad

SYSTORME ISG products ISG-600C, ISG-600H, and ISG-800W suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-19525
MD5 | d5e0c75c7f7c7d6ee5d9b1c51cadf251
Skyworth GPON HomeGateways / Optical Network Stack Overflow
Posted Feb 11, 2019
Authored by Kaustubh G. Padwad

A stack overflow vulnerability has been identified in multiple Skyworth GPON HomeGateways and Optical Network terminals. Affected products include 1.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 2.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 3.DT721-cb GPON uplink home gateway (GPON+2FE+1POTS), 4.DT721-cb GPON Uplink Home Gateway (GPON+2FE+1POTS), 5.DT741-cb GPON uplink home gateway (GPON+4FE+1POTS+WIFI+USB), 6.DT741-cb GPON Uplink Home Gateway (GPON+4FE+1POTS+WIFI+USB), and 7.DT741-cbGPON uplink home gateway DT741-cb.

tags | exploit, overflow
advisories | CVE-2018-19524
MD5 | de912c87729b8b98ea82b52200e61947
Manage Engine OPutils 8.0 Authorization Bypass
Posted Feb 16, 2016
Authored by Kaustubh G. Padwad

Manage Engine OPutils version 8.0 suffers from an authorization bypass vulnerability due to a missing function level access control.

tags | exploit, bypass
MD5 | 33975dda3e20de9f77b37db8e8b804cb
Manage Engine OPutils 8.0 Privilege Escalation
Posted Feb 16, 2016
Authored by Kaustubh G. Padwad

Manage Engine OPutils version 8.0 suffers from a privilege escalation vulnerability.

tags | exploit
MD5 | ddd1dfdab1ec43b051037edad0b026e9
Manage Engine OPutils 8.0 Cross Site Request Forgery / Cross Site Scripting
Posted Feb 16, 2016
Authored by Kaustubh G. Padwad

Manage Engine OPutils version 8.0 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | da0b63310ce05af56ec547821e62bb2c
ManageEngine Network Configuration Management Build 11000 Privilege Escalation
Posted Feb 10, 2016
Authored by Kaustubh G. Padwad

ManageEngine Network Configuration Management build version 11000 suffers from a privilege escalation vulnerability.

tags | exploit
MD5 | 721f8a3a32e703192c42c95a2ac482cc
ManageEngine Network Configuration Management Build 11000 CSRF
Posted Jan 29, 2016
Authored by Kaustubh G. Padwad

ManageEngine Network Configuration Management build 11000 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | f9c1968f467ae9126fb372c962dd3e1b
WordPress Ad Buttons 2.3.1 CSRF / Cross Site Scripting
Posted May 7, 2015
Authored by Kaustubh G. Padwad

WordPress Ad Buttons plugin version 2.3.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | e852b9ba527e9d29868c110941c97701
WordPress Ultimate Profile Builder 2.3.3 CSRF / Cross Site Scripting
Posted May 7, 2015
Authored by Kaustubh G. Padwad

WordPress Ultimate Profile Builder plugin version 2.3.3 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | b3f5807199cf9c2264400f6b795a374e
WordPress ClickBank Ads 1.7 CSRF / Cross Site Scripting
Posted May 7, 2015
Authored by Kaustubh G. Padwad

WordPress ClickBank Ads plugin version 1.7 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 854d8aa6e035bc9bb841486fbf2431f7
Manage Engine Asset Explorer 6.1.0 Build 6110 CSRF / XSS
Posted May 7, 2015
Authored by Kaustubh G. Padwad

Manage Engine Asset Explorer version 6.10 build 6110 suffers from cross site request forgery and persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | a8ea4e7d7e34c2ce795986ac29c3b9dc
WordPress Ad Inserter 1.5.2 CSRF / XSS
Posted May 7, 2015
Authored by Kaustubh G. Padwad

WordPress Ad Inserter plugin version 1.5.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 97567eb9adf2f8df4eb066de7d468e3c
WordPress Embed-Articles 7.0.3 CSRF / XSS
Posted May 7, 2015
Authored by Kaustubh G. Padwad

WordPress Embed-Articles plugin version 7.0.3 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | ef1c75d6c95a9725753213ca9c3d7940
WordPress WP Statistics 9.1.2 Cross Site Scripting
Posted Apr 16, 2015
Authored by Kaustubh G. Padwad

WordPress WP Statistics plugin version 9.1.2 suffers from stored cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | ed1090d2a309cf94eb64607f6b91474e
WordPress Google Map Travel 3.4 XSS / CSRF
Posted Mar 28, 2015
Authored by Kaustubh G. Padwad

WordPress AB Google Map Travel (AB-MAP) plugin version 4.0 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
advisories | CVE-2015-2755
MD5 | 4e136df0edf911a0cfccfb3f4ad7a168
Manage Engine Device Expert 5.9.9.0 Cross Site Scripting
Posted Mar 24, 2015
Authored by Kaustubh G. Padwad

Manage Engine Device Expert version 5.9.9.0 suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
MD5 | f74cd28cfe9efd5be51456c3a60bd809
ManageEngine Network Configuration Management CSRF
Posted Mar 23, 2015
Authored by Kaustubh G. Padwad

ManageEngine Network Configuration Management suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 758c46f5ea5bd4b20d2dbbaa4a25d4a5
Manage Engine Device Expert 5.9.9.0 Cross Site Scripting
Posted Mar 23, 2015
Authored by Kaustubh G. Padwad

Manage Engine Device Expert version 5.9.9.0 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 0c28afbd1b355f909ade578987e45261
WordPress AB Google Map Travel CSRF / XSS
Posted Mar 23, 2015
Authored by Kaustubh G. Padwad

WordPress AB Google Map Travel (AB-MAP) plugin suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 80dcf6019c4692249d074a56866f506f
Manage Engine Device Expert 5.9.9.0 CSRF
Posted Mar 23, 2015
Authored by Kaustubh G. Padwad

Manage Engine Device Expert version 5.9.9.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 7f054347f8b11273f1fce5627ee76275
WordPress Yoast Google Analytics 5.3.2 Cross Site Scripting
Posted Mar 7, 2015
Authored by Kaustubh G. Padwad, Rohit Kumar

Yoast WordPress plugin version 5.3.2 for Google Analytics suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
MD5 | 35a33e54e25e1815eb7c4bf8a6579c9b
Page 1 of 2
Back12Next

File Archive:

November 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    28 Files
  • 2
    Nov 2nd
    1 Files
  • 3
    Nov 3rd
    1 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    19 Files
  • 6
    Nov 6th
    65 Files
  • 7
    Nov 7th
    22 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    1 Files
  • 10
    Nov 10th
    1 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    65 Files
  • 13
    Nov 13th
    27 Files
  • 14
    Nov 14th
    22 Files
  • 15
    Nov 15th
    18 Files
  • 16
    Nov 16th
    1 Files
  • 17
    Nov 17th
    3 Files
  • 18
    Nov 18th
    22 Files
  • 19
    Nov 19th
    17 Files
  • 20
    Nov 20th
    15 Files
  • 21
    Nov 21st
    13 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close