Showing 1 - 25 of 29

Files from Kaustubh G. Padwad

First Active	2015-01-30
Last Active	2019-02-13

Nokia 8810 Denial Of Service: Posted Feb 13, 2019; Authored by Kaustubh G. Padwad; A denial of service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G devices. When a crafted web page is visited with the internal browser, the Gecko process crashes with a segfault. Successful exploitation could lead to the remote code execution on the device.; tags | exploit, remote, web, denial of service, code execution; advisories | CVE-2019-7386; MD5 | 3634f2043d52856b3dc8fee6e53be5da; Download | Favorite | View

Raisecom Technology GPON-ONU HT803G-07 Command Injection: Posted Feb 13, 2019; Authored by Kaustubh G. Padwad; Raisecom Technology GPON-ONU HT803G-07 suffers from an authenticated command injection vulnerability in the newpass and confpass parameters in /bin/WebMGR.; tags | exploit; advisories | CVE-2019-7385; MD5 | 96852f7edee55b1d7fe41b06c5100e95; Download | Favorite | View

Raisecom Technology GPON-ONU HT803G-07 Command Injection: Posted Feb 13, 2019; Authored by Kaustubh G. Padwad; Raisecom Technology GPON-ONU HT803G-07 suffers from an authenticated command injection vulnerability in the fmgpon_loid parameter.; tags | exploit; advisories | CVE-2019-7384; MD5 | a7b4b967b526835e031e08633772389a; Download | Favorite | View

SYSTORME ISG Command Injection: Posted Feb 13, 2019; Authored by Kaustubh G. Padwad; SYSTORME ISG products ISG-600C, ISG-600H, and ISG-800W suffer from an authenticated command injection vulnerability.; tags | exploit; advisories | CVE-2019-7383; MD5 | 2b900c12b8546c4e8e5c9f117e930eb6; Download | Favorite | View

SYSTORME ISG Cross Site Request Forgery: Posted Feb 13, 2019; Authored by Kaustubh G. Padwad; SYSTORME ISG products ISG-600C, ISG-600H, and ISG-800W suffer from a cross site request forgery vulnerability.; tags | exploit, csrf; advisories | CVE-2018-19525; MD5 | d5e0c75c7f7c7d6ee5d9b1c51cadf251; Download | Favorite | View

Skyworth GPON HomeGateways / Optical Network Stack Overflow: Posted Feb 11, 2019; Authored by Kaustubh G. Padwad; A stack overflow vulnerability has been identified in multiple Skyworth GPON HomeGateways and Optical Network terminals. Affected products include 1.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 2.DT741 Converged Intelligent Terminal (G/EPON+IPTV), 3.DT721-cb GPON uplink home gateway (GPON+2FE+1POTS), 4.DT721-cb GPON Uplink Home Gateway (GPON+2FE+1POTS), 5.DT741-cb GPON uplink home gateway (GPON+4FE+1POTS+WIFI+USB), 6.DT741-cb GPON Uplink Home Gateway (GPON+4FE+1POTS+WIFI+USB), and 7.DT741-cbGPON uplink home gateway DT741-cb.; tags | exploit, overflow; advisories | CVE-2018-19524; MD5 | de912c87729b8b98ea82b52200e61947; Download | Favorite | View

Manage Engine OPutils 8.0 Authorization Bypass: Posted Feb 16, 2016; Authored by Kaustubh G. Padwad; Manage Engine OPutils version 8.0 suffers from an authorization bypass vulnerability due to a missing function level access control.; tags | exploit, bypass; MD5 | 33975dda3e20de9f77b37db8e8b804cb; Download | Favorite | View

Manage Engine OPutils 8.0 Privilege Escalation: Posted Feb 16, 2016; Authored by Kaustubh G. Padwad; Manage Engine OPutils version 8.0 suffers from a privilege escalation vulnerability.; tags | exploit; MD5 | ddd1dfdab1ec43b051037edad0b026e9; Download | Favorite | View

Manage Engine OPutils 8.0 Cross Site Request Forgery / Cross Site Scripting: Posted Feb 16, 2016; Authored by Kaustubh G. Padwad; Manage Engine OPutils version 8.0 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | da0b63310ce05af56ec547821e62bb2c; Download | Favorite | View

ManageEngine Network Configuration Management Build 11000 Privilege Escalation: Posted Feb 10, 2016; Authored by Kaustubh G. Padwad; ManageEngine Network Configuration Management build version 11000 suffers from a privilege escalation vulnerability.; tags | exploit; MD5 | 721f8a3a32e703192c42c95a2ac482cc; Download | Favorite | View

ManageEngine Network Configuration Management Build 11000 CSRF: Posted Jan 29, 2016; Authored by Kaustubh G. Padwad; ManageEngine Network Configuration Management build 11000 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | f9c1968f467ae9126fb372c962dd3e1b; Download | Favorite | View

WordPress Ad Buttons 2.3.1 CSRF / Cross Site Scripting: Posted May 7, 2015; Authored by Kaustubh G. Padwad; WordPress Ad Buttons plugin version 2.3.1 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | e852b9ba527e9d29868c110941c97701; Download | Favorite | View

WordPress Ultimate Profile Builder 2.3.3 CSRF / Cross Site Scripting: Posted May 7, 2015; Authored by Kaustubh G. Padwad; WordPress Ultimate Profile Builder plugin version 2.3.3 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | b3f5807199cf9c2264400f6b795a374e; Download | Favorite | View

WordPress ClickBank Ads 1.7 CSRF / Cross Site Scripting: Posted May 7, 2015; Authored by Kaustubh G. Padwad; WordPress ClickBank Ads plugin version 1.7 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 854d8aa6e035bc9bb841486fbf2431f7; Download | Favorite | View

Manage Engine Asset Explorer 6.1.0 Build 6110 CSRF / XSS: Posted May 7, 2015; Authored by Kaustubh G. Padwad; Manage Engine Asset Explorer version 6.10 build 6110 suffers from cross site request forgery and persistent cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | a8ea4e7d7e34c2ce795986ac29c3b9dc; Download | Favorite | View

WordPress Ad Inserter 1.5.2 CSRF / XSS: Posted May 7, 2015; Authored by Kaustubh G. Padwad; WordPress Ad Inserter plugin version 1.5.2 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 97567eb9adf2f8df4eb066de7d468e3c; Download | Favorite | View

WordPress Embed-Articles 7.0.3 CSRF / XSS: Posted May 7, 2015; Authored by Kaustubh G. Padwad; WordPress Embed-Articles plugin version 7.0.3 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | ef1c75d6c95a9725753213ca9c3d7940; Download | Favorite | View

WordPress WP Statistics 9.1.2 Cross Site Scripting: Posted Apr 16, 2015; Authored by Kaustubh G. Padwad; WordPress WP Statistics plugin version 9.1.2 suffers from stored cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; MD5 | ed1090d2a309cf94eb64607f6b91474e; Download | Favorite | View

WordPress Google Map Travel 3.4 XSS / CSRF: Posted Mar 28, 2015; Authored by Kaustubh G. Padwad; WordPress AB Google Map Travel (AB-MAP) plugin version 4.0 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; advisories | CVE-2015-2755; MD5 | 4e136df0edf911a0cfccfb3f4ad7a168; Download | Favorite | View

Manage Engine Device Expert 5.9.9.0 Cross Site Scripting: Posted Mar 24, 2015; Authored by Kaustubh G. Padwad; Manage Engine Device Expert version 5.9.9.0 suffers from a reflective cross site scripting vulnerability.; tags | exploit, xss; MD5 | f74cd28cfe9efd5be51456c3a60bd809; Download | Favorite | View

ManageEngine Network Configuration Management CSRF: Posted Mar 23, 2015; Authored by Kaustubh G. Padwad; ManageEngine Network Configuration Management suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 758c46f5ea5bd4b20d2dbbaa4a25d4a5; Download | Favorite | View

Manage Engine Device Expert 5.9.9.0 Cross Site Scripting: Posted Mar 23, 2015; Authored by Kaustubh G. Padwad; Manage Engine Device Expert version 5.9.9.0 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 0c28afbd1b355f909ade578987e45261; Download | Favorite | View

WordPress AB Google Map Travel CSRF / XSS: Posted Mar 23, 2015; Authored by Kaustubh G. Padwad; WordPress AB Google Map Travel (AB-MAP) plugin suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 80dcf6019c4692249d074a56866f506f; Download | Favorite | View

Manage Engine Device Expert 5.9.9.0 CSRF: Posted Mar 23, 2015; Authored by Kaustubh G. Padwad; Manage Engine Device Expert version 5.9.9.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 7f054347f8b11273f1fce5627ee76275; Download | Favorite | View

WordPress Yoast Google Analytics 5.3.2 Cross Site Scripting: Posted Mar 7, 2015; Authored by Kaustubh G. Padwad, Rohit Kumar; Yoast WordPress plugin version 5.3.2 for Google Analytics suffers from a stored cross site scripting vulnerability.; tags | exploit, xss; MD5 | 35a33e54e25e1815eb7c4bf8a6579c9b; Download | Favorite | View

Page 1 of 2 Back 1 2 Next

Top Authors In Last 30 Days

Red Hat 103 files
Ubuntu 42 files
Apple 16 files
Gentoo 13 files
Google Security Research 11 files
BKpatron 9 files
Zied Aouini 5 files
SunCSR 5 files
LiquidWorm 5 files
h00die 5 files

File Archives

Systems

AIX (417)
Apple (1,728)
BSD (366)
Cisco (1,889)
Debian (5,944)
Fedora (1,688)
FreeBSD (1,239)
Gentoo (3,829)
HPUX (871)
iOS (262)
iPhone (107)
IRIX (220)
Juniper (67)
Linux (37,641)
Mac OS X (668)
Mandriva (3,105)
NetBSD (255)
OpenBSD (471)
RedHat (8,592)
Slackware (941)
Solaris (1,591)
SUSE (1,444)
Ubuntu (6,687)
UNIX (8,661)
UnixWare (178)
Windows (5,635)
Other

Files from Kaustubh G. Padwad

File Archive:

June 2020

Top Authors In Last 30 Days

File Tags

File Archives

Systems