exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from S. M. Zia Ur Rashid

Wisetail Learning Ecosystem 4.11.6 Insecure Direct Object Reference

Posted Sep 13, 2018

Authored by S. M. Zia Ur Rashid

Wisetail Learning Ecosystem (LE) versions up to 4.11.6 suffer from multiple insecure direct object reference vulnerabilities that allow an attacker to download files and get access to the non-purchased course quiz test via a modified id parameter.

tags | exploit, vulnerability, info disclosure

advisories | CVE-2018-16970, CVE-2018-16971

SHA-256 | cc36e32ff6b7ae17f07bc9e0331c469bc08d5e7f11e8832e9800e8f423a2219c

Download | Favorite | View

IDOR On ProConf Peer-Review And Conference Management 6.0 File Disclosure

Posted Sep 6, 2018

Authored by S. M. Zia Ur Rashid

IDOR on ProConf Peer-Review and Conference Management versions 6.0 and below suffer from an insecure direct object reference vulnerability that allows for file disclosure.

tags | exploit, info disclosure

advisories | CVE-2018-16606

SHA-256 | cf0a798397e6134737fc62d6ddc8c42553a30335d607055c61361acb9eaaa401

Download | Favorite | View