exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Philipp Espernberger

Planet eStream Code Execution / SQL Injection / XSS / Broken Control

Posted Dec 9, 2022

Authored by Philipp Espernberger, Timon Vogel, Hrvoje Filakovic | Site sec-consult.com

Planet eStream versions prior to 6.72.10.07 suffer from shell upload, account takeover, broken access control, SQL injection, both persistent and reflective cross site scripting, path traversal, and information disclosure vulnerabilities.

tags | exploit, shell, vulnerability, xss, sql injection, info disclosure

advisories | CVE-2022-45889, CVE-2022-45890, CVE-2022-45891, CVE-2022-45892, CVE-2022-45893, CVE-2022-45894, CVE-2022-45895, CVE-2022-45896

SHA-256 | 0dca96db49c3aae632e40d6b29c30d32088f3d7c6667b64b954a6a6345dcc625

Download | Favorite | View

SoftGuard SNMP Network Management Extension HTML Injection / File Download

Posted Jun 20, 2022

Authored by Philipp Espernberger | Site sec-consult.com

SoftGuard Web (SGW) versions prior to 5.1.5 suffer from html injection and arbitrary file system access allow for file downloads.

tags | exploit, web, arbitrary

advisories | CVE-2022-31201, CVE-2022-31202

SHA-256 | 76ee74097962529e003cf64b8fba1a3e1b9794c172699cc4c97189ef5a243d7c

Download | Favorite | View

Namirial SIGNificant SignAnyWhere 6.10.x Cross Site Scripting

Posted Jul 30, 2020

Authored by Philipp Espernberger | Site sec-consult.com

Namirial SIGNificant SignAnyWhere versions 6.10.60.25434 and 6.10.100.25817 suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | f1f328b29dff74e4d952fa4373e9d20661bd0e05eaba6a1b6734c53afefab851

Download | Favorite | View