exploit the possibilities
Showing 1 - 25 of 73 RSS Feed

Files from Bobby Cooke

Real NameBobby Cooke
Email addressprivate
First Active2019-12-13
Last Active2020-11-25
View User Profile

Personal Background

Just a dude who's passionate about infosec.


House Rental 1.0 SQL Injection
Posted Nov 25, 2020
Authored by Bobby Cooke, hyd3sec

House Rental version 1.0 remote SQL injection exploit that leverages the keywords variable.

tags | exploit, remote, sql injection
MD5 | c74de0bcdcb478a0ebbca36dac706cc0
CloudMe 1.11.2 Buffer Overflow
Posted Sep 29, 2020
Authored by hyp3rlinx, Bobby Cooke

CloudMe version 1.11.2 exploit that uses MSVCRT.System to create a new user (boku:0v3R9000!) and add the new user to the Administrators group. A requirement of successful exploitation is the CloudMe.exe process must be running as administrator.

tags | exploit, overflow
advisories | CVE-2018-6892
MD5 | ee00ae19cbee8ea397dcd21d71b0c0f1
Tailor MS 1.0 Cross Site Scripting
Posted Sep 15, 2020
Authored by Bobby Cooke, hyd3sec

Tailor MS version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8b140ec9d3e79e50039c0fd163119144
GetSimple CMS Multi User 1.8.2 Cross Site Request Forgery
Posted Aug 13, 2020
Authored by Bobby Cooke, hyd3sec

GetSimple CMS Multi User plugin version 1.8.2 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | b7868197fa770b7cffbd822964b7f528
Travel Management System 1.0 Remote Code Execution
Posted Aug 11, 2020
Authored by Bobby Cooke, hyd3sec

Travel Management System version 1.0 unauthenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 481e294a5c3b19ae9308d1e27f22aece
Travel Management System 1.0 SQL Injection
Posted Aug 11, 2020
Authored by Bobby Cooke, hyd3sec

Travel Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | c518e2efaa06ce2e1007f8bacde5aec9
Warehouse Inventory System 1.0 Cross Site Request Forgery
Posted Aug 10, 2020
Authored by Bobby Cooke, hyd3sec

Warehouse Inventory System version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 01290f1430fc0c874d2441c5bbeb39f0
Tailor MS 1.0 Cross Site Scripting
Posted Aug 10, 2020
Authored by Bobby Cooke, hyd3sec

Tailor MS version 1.0 reflected cross site scripting key logger exploit.

tags | exploit, xss
MD5 | e7c6a76445ffac2108a614abbaec5d98
BarracudaDrive 6.5 Local Privilege Escalation
Posted Aug 10, 2020
Authored by Bobby Cooke, hyd3sec

BarracudaDrive version 6.5 suffers from a privilege escalation vulnerability.

tags | exploit
MD5 | 46d297f212c73f78372745c92dba3e78
House Rental 1.0 SQL Injection
Posted Aug 10, 2020
Authored by Bobby Cooke, hyd3sec

House Rental version 1.0 SQL injection exploit that changes the administrative password. Written in python.

tags | exploit, sql injection, python
MD5 | 4835e335cf4e574990008b7767ccd72a
Car Rental Management System 1.0 Cross Site Scripting
Posted Aug 7, 2020
Authored by Bobby Cooke

Car Rental Management System version 1.0 unauthenticated persistent cross site scripting session harvester exploit.

tags | exploit, xss
MD5 | af3f86a5e983da7361832c54ce227ebd
Stock Management System 1.0 Cross Site Request Forgery
Posted Aug 3, 2020
Authored by Bobby Cooke

Stock Management System version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 3c5b73ade86e8add863d011533c5b13b
Stock Management System 1.0 Cross Site Scripting
Posted Aug 3, 2020
Authored by Bobby Cooke

Stock Management System version 1.0 cross site scripting credential harvesting exploit.

tags | exploit, xss
MD5 | e446b8905eecb3fea89495e9af42d485
Online Bike Rental 1.0 Shell Upload
Posted Aug 1, 2020
Authored by Bobby Cooke, hyd3sec

Online Bike Rental version 1.0 suffers from an authenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | c24d92ba32b907f53df823c312feb8d2
Daily Tracker System 1.0 SQL Injection
Posted Jul 31, 2020
Authored by Bobby Cooke, hyd3sec

Daily Tracker System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
advisories | CVE-2020-24193
MD5 | 4f5a24a83647c98bdc4387fb5214ec35
LibreHealth 2.0.0 Remote Code Execution
Posted Jul 27, 2020
Authored by Bobby Cooke

LibreHealth version 2.0.0 authenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | c21b4b511f291e76d1d84cb98e90cd06
LibreHealth 2.0.0 Remote Code Execution
Posted Jul 20, 2020
Authored by Bobby Cooke

LibreHealth version 2.0.0 authentication remote code execution exploit that leverages file upload.

tags | exploit, remote, code execution, file upload
MD5 | fdb429c0607ceadf1536570f0e8ac8d9
Online Course Registration 1.0 Remote Code Execution
Posted Jul 16, 2020
Authored by Bobby Cooke

Online Course Registration version 1.0 unauthenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 29323f09b2dcf8094d31e62a8ddf1759
10-Strike Bandwidth Monitor 3.9 Unquoted Service Path
Posted Jun 16, 2020
Authored by Bobby Cooke

10-Strike Bandwidth Monitor version 3.9 services Svc10StrikeBandMontitor, Svc10StrikeBMWD, and Svc10StrikeBMAgent suffer from unquoted service path vulnerabilities.

tags | exploit, vulnerability
MD5 | 9c7f67a912da09530ade02dbff2d9187
Bandwidth Monitor 3.9 Full ROP Buffer Overflow
Posted Jun 9, 2020
Authored by Bobby Cooke

Bandwidth Monitor version 3.9 full ROP buffer overflow exploit with SEH, DEP, and ASLR taken into consideration.

tags | exploit, overflow
MD5 | e485411f8850c19591908825d56fde0f
10-Strike Bandwidth Monitor 3.9 Buffer Overflow
Posted Jun 8, 2020
Authored by Bobby Cooke

10-Strike Bandwidth Monitor version 3.9 ROP VirtualAlloc buffer overflow exploit with SEH, DEP, and ASLR.

tags | exploit, overflow
MD5 | 62c59edf3af57cd07c3c6f2a164c81b8
macOS/x64 zsh RickRolling Shellcode
Posted May 31, 2020
Authored by Bobby Cooke

198 bytes small macOS/x64 RickRolling shellcode.

tags | shellcode
MD5 | 629ad7b064b5d84ed3f906842421a4f2
Gym Management System 1.0 Remote Code Execution
Posted May 21, 2020
Authored by Bobby Cooke

Gym Management System version 1.0 suffers from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | ce64ae85eae1a7a26c36e368e636d47b
ACal 2.2.6 Remote Code Execution
Posted May 15, 2020
Authored by Bobby Cooke

ACal version 2.2.6 suffers from a one-click remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 168d9516623ec5c828c45bf6cbea0151
WebTareas 2.0p8 Cross Site Scripting
Posted May 8, 2020
Authored by Bobby Cooke

WebTareas version 2.0p8 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1e1b18d6abc7bfaf1594a5ee92f4b133
Page 1 of 3
Back123Next

File Archive:

February 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    33 Files
  • 2
    Feb 2nd
    30 Files
  • 3
    Feb 3rd
    15 Files
  • 4
    Feb 4th
    8 Files
  • 5
    Feb 5th
    11 Files
  • 6
    Feb 6th
    2 Files
  • 7
    Feb 7th
    1 Files
  • 8
    Feb 8th
    37 Files
  • 9
    Feb 9th
    15 Files
  • 10
    Feb 10th
    11 Files
  • 11
    Feb 11th
    26 Files
  • 12
    Feb 12th
    8 Files
  • 13
    Feb 13th
    1 Files
  • 14
    Feb 14th
    1 Files
  • 15
    Feb 15th
    9 Files
  • 16
    Feb 16th
    33 Files
  • 17
    Feb 17th
    6 Files
  • 18
    Feb 18th
    10 Files
  • 19
    Feb 19th
    20 Files
  • 20
    Feb 20th
    1 Files
  • 21
    Feb 21st
    1 Files
  • 22
    Feb 22nd
    17 Files
  • 23
    Feb 23rd
    15 Files
  • 24
    Feb 24th
    16 Files
  • 25
    Feb 25th
    28 Files
  • 26
    Feb 26th
    25 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close