exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 12 of 12 RSS Feed

Files from Aaditya Purani

First Active2015-08-27
Last Active2017-11-03
WordPress WP Mobile Detector 3.5 Shell Upload
Posted Nov 3, 2017
Authored by h00die, Aaditya Purani | Site metasploit.com

WP Mobile Detector Plugin for WordPress contains a flaw that allows a remote attacker to execute arbitrary PHP code. This flaw exists because the /wp-content/plugins/wp-mobile-detector/resize.php script does contains a remote file include for files not cached by the system already. By uploading a .php file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the attacker to execute the script with the privileges of the web server.

tags | exploit, remote, web, arbitrary, php
SHA-256 | 78c713af652be903f93b72d84bd37300ff88c13c97f655448730f42c48f8d6a6
Download | Favorite | View
Brave Browser Address Bar Spoofing
Posted Jan 9, 2017
Authored by Aaditya Purani

Brave Browser suffers from an address bar spoofing vulnerability. iOS version 1.2.16 (16.09.30.10) and Android version 1.9.56 is affected.

tags | exploit, spoof
systems | ios
SHA-256 | c069cc5fd270e74c97b4fecf56ed55ff2a5716dfe46f318f46caefbe5ba9815f
Download | Favorite | View
Beats By Dre Cross Site Request Forgery
Posted Jul 31, 2016
Authored by Aaditya Purani

Beats By Dre suffered from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 2d3ccb9df19abcc28429634123e168d9e2ecdb52d40839bf2919ce9377d2a86d
Download | Favorite | View
WordPress CM Ad Changer 1.7.7 Cross Site Scripting
Posted Jun 11, 2016
Authored by Aaditya Purani

WordPress CM Ad Changer plugin version 1.7.7 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | c0be27eebca044470644e7a969b0287dff5a39a5a9e9b7408c2acf09861d5431
Download | Favorite | View
WordPress Levo-Slideshow 2.3 Shell Upload
Posted Jun 8, 2016
Authored by Vulnerability Laboratory, Aaditya Purani | Site vulnerability-lab.com

WordPress Levo-Slideshow plugin version 2.3 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 91775de6a26e93b2855a33e099c804901147d66ccd04b4eb384eb92a9f0580b8
Download | Favorite | View
WordPress Levo-Slideshow 2.3 Cross Site Scripting
Posted Jun 8, 2016
Authored by Vulnerability Laboratory, Aaditya Purani | Site vulnerability-lab.com

WordPress Levo-Slideshow plugin version 2.3 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 9607cdb93fb7ba7480efd9dcf67bf508b308c45ffbf0f540e4aacf6a6be04828
Download | Favorite | View
WordPress WP Mobile Detector 3.5 Shell Upload
Posted Jun 6, 2016
Authored by Aaditya Purani

WordPress WP Mobile Detector versions 3.5 and below suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 54c52f7c04066173a12655663242297e4ea661b091061074d1b10b403959b4bd
Download | Favorite | View
WordPress Levo-Slideshow 2.3 Shell Upload
Posted Jun 5, 2016
Authored by Aaditya Purani

WordPress Levo-Slideshow plugin version 2.3 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 1e3a87c6e895d83107e72876740165625d6152fbd1f136ce8f74484c904d980d
Download | Favorite | View
WordPress WP Mobile Detector 3.5 Shell Upload
Posted Jun 3, 2016
Authored by Aaditya Purani

WordPress WP Mobile Detector plugin versions 3.5 and below suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 85f64637f7e3d070e1c1fb384164c477e46d51fa5c96abcd37721c75c40e3eff
Download | Favorite | View
WebComIndia CMS 2015Q4 Authentication Bypass
Posted Oct 9, 2015
Authored by Vulnerability Laboratory, Aaditya Purani | Site vulnerability-lab.com

WebComIndia CMS 2015Q4 suffers from an authentication bypass vulnerability via remote SQL injection.

tags | exploit, remote, sql injection, bypass
SHA-256 | afc30dbcbcfb0ef32c6e8696ef381ed2d5d31290833839f08df44da1dacba8e1
Download | Favorite | View
LinuxOptic CMS 2009 Authentication Bypass
Posted Aug 27, 2015
Authored by Vulnerability Laboratory, Aaditya Purani | Site vulnerability-lab.com

LinuxOptic CMS 2009 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
SHA-256 | fb5510a4e8241f843f5f5647141f946a2f3127a5a149a226a545326bfffff821
Download | Favorite | View
Dogma India dogmaindia CMS Authentication Bypass
Posted Aug 27, 2015
Authored by Vulnerability Laboratory, Aaditya Purani | Site vulnerability-lab.com

Dogma India dogmaindia CMS suffers from an authentication bypass vulnerability.

tags | exploit, bypass
SHA-256 | e83e7863e16b666b0fa577c942a5232b031229a84ba725a9bedf9a2cb44b6929
Download | Favorite | View
Page 1 of 1
Back1Next

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    22 Files
  • 18
    Apr 18th
    45 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close