what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Sick Codes

IpMatcher 1.0.4.1 Server-Side Request Forgery

Posted May 16, 2022

Authored by Sick Codes, Kelly Kaoudis

IpMatcher versions 1.0.4.1 and below for .NET Core 2.0 and .NET Framework 4.5.2 incorrectly validates octal and hexadecimal input data which can lead to indeterminate server-side request forgery, local file inclusion, remote file inclusion, and denial of service vectors.

tags | exploit, remote, denial of service, local, file inclusion

advisories | CVE-2021-33318

SHA-256 | 98c5f3ee4fded068839fc2a03bbd74be24dce6bd2b2774a8a477b3d476489bb1

Download | Favorite | View

RTLO Injection URI Spoofing

Posted Mar 25, 2022

Authored by Sick Codes, zadewg

RTLO injection URI spoofing generator for WhatsApp, iMessage, Instagram, and Facebook Messenger.

tags | exploit, spoof

advisories | CVE-2020-20093, CVE-2020-20094, CVE-2020-20095, CVE-2020-20096

SHA-256 | 8add20e505d85dfcd1125eb892d0726f12751ed7cff691329973ac7c8d3c4a25

Download | Favorite | View

Gurock Testrail 7.2.0.3014 Improper Access Control

Posted Sep 23, 2021

Authored by JohnJHacking, Sick Codes

Gurock Testrail version 7.2.0.3014 suffers from an improper access control vulnerability.

tags | exploit

advisories | CVE-2021-40875

SHA-256 | 7bba00b51d41b2b65a23473a45e1f268fd17d33d0a245f0ae9d5ca532c688d3e

Download | Favorite | View