what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files from Hodorsec

Email addresshodorsec at protonmail.com
First Active2018-09-11
Last Active2021-01-22
ERPNext 12.14.0 SQL Injection
Posted Jan 22, 2021
Authored by Hodorsec

ERPNext version 12.14.0 suffers from an authenticated remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 152e5fd7d5acb8bc4b494946522659f5
LibreNMS 1.46 SQL Injection
Posted Dec 14, 2020
Authored by Hodorsec

LibreNMS version 1.46 suffers from an authenticated remote SQL injection vulnerability in the MAC Account Graph. Original discovery of SQL injection in this version is attributed to Punt in May of 2020.

tags | exploit, remote, sql injection
MD5 | f2ded99e14c6ef8d7a6b3197a0529fee
ManageEngine Applications Manager Authenticated Remote Code Execution
Posted Sep 4, 2020
Authored by Hodorsec

ManageEngine Applications Manager authenticated remote code execution exploit that leverages the newInstance() and loadClass() methods being used by the "WeblogicReference", when attempting a Credential Test for a new Monitor. Versions below 14720 are affected.

tags | exploit, remote, code execution
advisories | CVE-2020-14008
MD5 | c91e6651f35b95c2f31437f3f8bc1b36
ATutor LMS 2.2.4 Weak Password Reset Hash
Posted May 5, 2020
Authored by Hodorsec

ATutor LMS version 2.2.4 suffers from having a weak password reset hash.

tags | exploit
MD5 | 63f346a37c58f06e15e7f77022dc02bf
AIDA64 Engineer 6.20.5300 Buffer Overflow
Posted Apr 2, 2020
Authored by Hodorsec

AIDA64 Engineer version 6.20.5300 Report File filename SEH buffer overflow exploit.

tags | exploit, overflow
MD5 | 6590017886deb392714463804d9171f6
10Strike LANState 9.32 Host Check hostname Buffer Overflow
Posted Apr 1, 2020
Authored by Hodorsec

10Strike LANState version 9.32 on x86 Host Check hostname SEH buffer overflow exploit.

tags | exploit, overflow, x86
MD5 | 7f1eb06b56c5aa79bd94057284b6f222
10-Strike Network Inventory Explorer 9.03 Buffer Overflow
Posted Mar 30, 2020
Authored by Hodorsec

10-Strike Network Inventory Explorer version 9.03 Read-from-file buffer overflow exploit that uses SEH and ROP.

tags | exploit, overflow
MD5 | 4149e3e557d63c733212a574642fceed
FreeCommander XE 2020 Pathname Buffer Overflow
Posted Mar 28, 2020
Authored by Hodorsec

FreeCommander XE 2020 Build 810a 32-bit suffers from a pathname buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 6266ab0960d59612e8b66b9812e41dd0
Yachtcontrol 2019-10-06 Remote Code Execution
Posted Dec 6, 2019
Authored by Hodorsec

Yachtcontrol versions dated 2019-10-06 suffer from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2019-17270
MD5 | ca74a5272a744f07e91607ab0200e00a
Core FTP 2.0 Build 653 PBSZ Denial Of Service
Posted Mar 12, 2019
Authored by Hodorsec

Core FTP version 2.0 build 653 suffers from a PBSZ command denial of service vulnerability.

tags | exploit, denial of service
MD5 | 1c1de1481d4cb8235b7bfeb45179b294
Anyburn 4.x x86 Buffer Overflow
Posted Mar 7, 2019
Authored by Hodorsec

Anyburn version 4.3 x86 "Copy disc to image file" buffer overflow SEH unicode exploit.

tags | exploit, overflow, x86
MD5 | 8e92d805dee2a379fca84a0aa0ea1dda
RealTerm Serial Terminal 2.0.0.70 Echo Port Buffer Overflow
Posted Mar 6, 2019
Authored by Matteo Malvica, Hodorsec, Alejandra Sanchez

RealTerm Serial Terminal version 2.0.0.70 suffers from an echo port buffer overflow vulnerability. Modifications to the original proof of concept include the fact that it uses a larger payload size for shellcode due to different jump offsets and filters the bad character 0x3a as this is the character for port which causes an error ":".

tags | exploit, overflow, shellcode, proof of concept
MD5 | 9b31bdb38b680b223198f700a17dcfa6
Hodorsec Linux Binary Encryption Utility
Posted Jan 10, 2019
Authored by Hodorsec

This archive contains a Linux x86/x64 payload AES-128 CBC encrypter and payload decrypter/runner.

tags | tool, x86
systems | linux, unix
MD5 | 5a5ac347d6ff823061529155881b38a8
Ricoh myPrint Hardcoded Credentials / Information Disclosure
Posted Nov 20, 2018
Authored by Hodorsec

Ricoh myPrint suffers from hardcoded application credential and information disclosure vulnerabilities. The myPrint windows client version 2.9.2.4 and myPrint android client version 2.2.7 are both affected.

tags | exploit, vulnerability, info disclosure
systems | windows
advisories | CVE-2018-18006
MD5 | 4d051bae92eaadb5058aaec46aca59d2
Easy File Sharing Web Server 6.9 Buffer Overflow
Posted Sep 11, 2018
Authored by Hodorsec

Easy File Sharing Web Server version 6.9 POST msg.ghp UserID remote buffer overflow SEH exploit with DEP bypass and ROP.

tags | exploit, remote, web, overflow
MD5 | b31f7c399d1e719caf9218f318385547
Page 1 of 1
Back1Next

File Archive:

May 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    1 Files
  • 2
    May 2nd
    4 Files
  • 3
    May 3rd
    26 Files
  • 4
    May 4th
    17 Files
  • 5
    May 5th
    3 Files
  • 6
    May 6th
    32 Files
  • 7
    May 7th
    11 Files
  • 8
    May 8th
    2 Files
  • 9
    May 9th
    2 Files
  • 10
    May 10th
    13 Files
  • 11
    May 11th
    17 Files
  • 12
    May 12th
    22 Files
  • 13
    May 13th
    11 Files
  • 14
    May 14th
    9 Files
  • 15
    May 15th
    2 Files
  • 16
    May 16th
    2 Files
  • 17
    May 17th
    21 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close