what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 5 of 5

Files from Amel Bouziane-Leblond

Geonetwork 4.2.0 XML Injection

Posted Jul 29, 2022

Authored by Amel Bouziane-Leblond

Geonetwork versions 3.1.x through 4.2.0 suffer from an XML external entity injection vulnerability.

tags | exploit

SHA-256 | b6960c0b16c14d8c15e9fb95af349b9c0df4129ca1c1ec5012226c0cf1bf3a8b

Download | Favorite | View

Adobe ColdFusion 11 Remote Code Execution

Posted Feb 23, 2022

Authored by Amel Bouziane-Leblond

Adobe ColdFusion version 11.0.03.292866 suffers from an LDAP Java object deserialization remote code execution vulnerability.

tags | exploit, java, remote, code execution

SHA-256 | 9d45f7b3775110c52e0ff7ea7328e525f75a0d7067c029a47386e51894bfa08f

Download | Favorite | View

Kmaleon 1.1.0.205 SQL Injection

Posted Nov 8, 2021

Authored by Amel Bouziane-Leblond

Kmalen version 1.1.0.205 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 3dd17e129b5ca3b78333c0959bb01bcdf5bb8394a47bf31f1b3f27a72b924656

Download | Favorite | View

Lansweeper 7.2 Default Account / Remote Code Execution

Posted Jun 23, 2020

Authored by Amel Bouziane-Leblond

Lansweeper version 7.2 has a default admin account enabled which allows for remote code execution.

tags | exploit, remote, code execution

advisories | CVE-2020-14011

SHA-256 | 2073135423a87b7e2be3d1d7241576c43e03f2b3a632fa7737f4c3ae63e5d661

Download | Favorite | View

PackWeb Formap E-learning 1.0 SQL Injection

Posted Feb 9, 2020

Authored by Amel Bouziane-Leblond

PackWeb Formap E-learning version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 7b65f64ebeeb6dd5fadbe870d4ad802e40d8d2ee0460b3317a18b77b808ebb51

Download | Favorite | View