what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 4 of 4

Files from r3m0t3nu11

Bolt CMS 3.7.0 Authenticated Remote Code Execution

Posted Jun 29, 2020

Authored by r3m0t3nu11, Erik Wynter, Sivanesh Ashok | Site metasploit.com

This Metasploit module exploits multiple vulnerabilities in Bolt CMS version 3.7.0 and 3.6.x in order to execute arbitrary commands as the user running Bolt. Valid credentials for a Bolt CMS user are required. This module has been successfully tested against Bolt CMS 3.7.0 running on CentOS 7.

tags | exploit, arbitrary, vulnerability

systems | linux, centos

SHA-256 | 9f2d762b1d8e6bcbc5f7e02bde9b6d95028ec1015c112f2165e2847c2855320d

Download | Favorite | View

Bolt CMS 3.7.0 Remote Code Execution

Posted Apr 6, 2020

Authored by r3m0t3nu11

Bolt CMS version 3.7.0 suffers from an authenticated remote code execution vulnerability.

tags | exploit, remote, code execution

SHA-256 | 262facd2f0fdd5ed141e29f22bdab6b54fd025b952333424aa8f80d8ee4f027b

Download | Favorite | View

Bolt CMS 3.6.10 Cross Site Request Forgery

Posted Oct 15, 2019

Authored by r3m0t3nu11

Bolt CMS version 3.6.10 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 542707b978972f0d747d6caecd9f18999f07424eb2c9c2fa696a000f8afbe767

Download | Favorite | View

onArcade 2.4.2 Cross Site Request Forgery

Posted Aug 6, 2018

Authored by r3m0t3nu11

onArcade version 2.4.2 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 54626ca3c318d64213981a9d8cc93fe8af457f70f998f7ee04637a2f570bfd1a

Download | Favorite | View