what you don't know can hurt you
Showing 1 - 25 of 133 RSS Feed

Files from Larry W. Cashdollar

Real NameLarry W. Cashdollar
Email addressprivate
Websitevapid.dhs.org
First Active1999-11-14
Last Active2020-07-15
View User Profile
Oracle Solaris 11 Device Driver Utility 1.3.1 Race Condition
Posted Jul 15, 2020
Authored by Larry W. Cashdollar

Oracle Solaris 11 Device Driver Utility version 1.3.1 suffers from an insecure use of /tmp that can allow for a race condition which leads to privilege escalation. Included exploit provides a root shell.

tags | exploit, shell, root
systems | solaris
advisories | CVE-2020-14724
SHA-256 | ab9f7d499e25ee29f512a1665d6b70ae126fc6bd0318afb737ac4598bbd67bee
Blueimp jQuery File Upload 9.22.0 Arbitrary File Upload
Posted Jan 17, 2019
Authored by Larry W. Cashdollar

Blueimp jQuery File Upload versions 9.22.0 and below suffer from a remote file upload vulnerability.

tags | exploit, remote, file upload
advisories | CVE-2018-9206
SHA-256 | e9f157afd7f59180b86e0627f3b9de79d4da7a9d147657e0cbddcbeeed0173eb
blueimp jQuery Arbitrary File Upload
Posted Nov 5, 2018
Authored by Larry W. Cashdollar, wvu, Claudio Viviani | Site metasploit.com

This Metasploit module exploits an arbitrary file upload in the sample PHP upload handler for blueimp's jQuery File Upload widget in versions 9.22.0 and below. Due to a default configuration in Apache 2.3.9+, the widget's .htaccess file may be disabled, enabling exploitation of this vulnerability. This vulnerability has been exploited in the wild since at least 2015 and was publicly disclosed to the vendor in 2018. It has been present since the .htaccess change in Apache 2.3.9. This Metasploit module provides a generic exploit against the jQuery widget.

tags | exploit, arbitrary, php, file upload
advisories | CVE-2018-9206
SHA-256 | d34fb14aa9b4338617c18788b969d61c2e2bb73edfa259074f37f0336142d5c4
jQuery-File-Upload 9.22.0 Arbitrary File Upload
Posted Oct 10, 2018
Authored by Larry W. Cashdollar

jQuery-File-Upload versions 9.22.0 and below suffer from an unauthenticated arbitrary file upload vulnerability that allows for remote command execution.

tags | exploit, remote, arbitrary, file upload
SHA-256 | 9b9e155688817d68e773b78e64aa874b246af6c757592c38ac8faeace00f863c
WordPress Arigato Autoresponder And Newsletter 2.5 SQL Injection / XSS
Posted Sep 18, 2018
Authored by Larry W. Cashdollar

WordPress Arigato Autoresponder and Newsletter plugin version 2.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2018-1002001
SHA-256 | 876e35305620fc31c8d2c65c203d9b3764e3c9d842428decfbf08fdaeaf1bd41
Drupal Avatar Uploader 7.x-1.0-beta8 Arbitary File Download
Posted Apr 21, 2018
Authored by Larry W. Cashdollar

Drupal Avatar Uploader module version 7.x-1.0-beta8 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, file inclusion
advisories | CVE-2018-9205
SHA-256 | 4cf85788db1bd1ddd89e069c2f58b01ca89ff2e43c554bce7aa6ad89915e6981
WordPress Membership Simplified 1.58 Arbitrary File Download
Posted Mar 17, 2017
Authored by Larry W. Cashdollar, The Martian

WordPress Membership Simplified plugin version 1.58 arbitrary file download exploit.

tags | exploit, arbitrary
advisories | CVE-2017-1002008
SHA-256 | 4c08533b53ceaa110bfa5f0e14cb895598bf93d3e447435710268285bdcdec4b
WordPress Membership Simplified 1.58 Arbitrary File Download
Posted Mar 16, 2017
Authored by Larry W. Cashdollar

WordPress Membership Simplified plugin version 1.58 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
SHA-256 | 49f3d2d3c61b472f332fbd1106c4ce7e59776bbb9ab0b8bb84d33daeedbd57c3
WordPress Mobile App Native 3.0 Shell Upload
Posted Mar 2, 2017
Authored by Larry W. Cashdollar

WordPress Mobile App Native plugin version 3.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 82c684ffec16cec057a097ac53b55c3e0975581fe9a3b9827068d8e17f8e043a
WordPress wp-json Content Injection
Posted Feb 8, 2017
Authored by Larry W. Cashdollar, Marc Montipas

WordPress wp-json API content injection exploit proof of concept.

tags | exploit, proof of concept
SHA-256 | f2bd654825c2a33cf9a482dda51a1c94d3caf75c65e12399b5758aed301edbbf
WP Easy Full Backup Brute Forcer
Posted Jan 31, 2017
Authored by Larry W. Cashdollar

This is a database download brute forcing script that is written for the WordPress WP Easy Full Backup plugin.

tags | tool, scanner
systems | unix
SHA-256 | 8009e8ab50cfe48e9e83d6221a42b01e2d9572a63fa30c4d3ef32db9c178dcd1
Teradata Studio Express 15.12.00.00 Race Condition
Posted Nov 19, 2016
Authored by Larry W. Cashdollar

Teradata Studio Express version 15.12.00.00 suffers from a /tmp race condition.

tags | exploit
advisories | CVE-2016-7490
SHA-256 | 583918d299382692f75adf180be7fce3356ec3b11412eae6360e55551f4db194
Teradata Virtual Machine Community Edition 15.0 Insecure File Creation
Posted Nov 18, 2016
Authored by Larry W. Cashdollar

Teradata Virtual Machine Community Edition version 15.10 suffers from an insecure creation of files in /tmp that may lead to elevated code execution.

tags | exploit, code execution
advisories | CVE-2016-7489
SHA-256 | e691a1d0946b6dec697dabedfd9fbb69365159048c57b7f3860a30cc91f0e9aa
Teradata Virtual Machine Community Edition 15.10 Insecure File Permission
Posted Nov 11, 2016
Authored by Larry W. Cashdollar

Teradata Virtual Machine Community Edition version 15.10 suffers from an insecure file permission vulnerability.

tags | exploit
advisories | CVE-2016-7488
SHA-256 | 12ab3c47e222e2424905eb04541b8502f7178bbf5977133e83cb3a134c9d7aa0
Joomla Huge-IT Portfolio Gallery 1.0.6 SQL Injection
Posted Sep 30, 2016
Authored by Larry W. Cashdollar

Joomla Huge-IT Portfolio Gallery plugin version 1.0.6 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2016-1000124
SHA-256 | c736d80fc3abb2b181ac9b8ebf78e33ac2a58f366fa330b5853b34264816675e
Joomla Huge-IT Catalog 1.0.7 SQL Injection
Posted Sep 30, 2016
Authored by Larry W. Cashdollar

Joomla Huge-IT Catalog component version 1.0.7 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2016-1000125
SHA-256 | ec7c54b92dde7ae79e9dedd8de808f51247be85b0c3eea5eefcd781c3c987514
Joomla Huge-IT Video Gallery 1.0.9 SQL Injection
Posted Sep 22, 2016
Authored by Larry W. Cashdollar

Joomla Huge-IT Video Gallery component version 1.0.9 suffers from a remote unauthenticated SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2016-1000123
SHA-256 | 23591d1c5baab1dd97cf541e0e9530809619db9d2680fd8d0aa19ddcb03cd816
Huge IT Joomla Slider 1.0.9 XSS / SQL Injection
Posted Jul 27, 2016
Authored by Larry W. Cashdollar

Huge IT Joomla Slider extension version 1.0.9 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2016-1000121, CVE-2016-1000122
SHA-256 | 4de2f91b2188085d1b161495281b6932b70d1cec9be6d62cde8cfe1b2ce6aa59
Huge IT Joomla Catalog Extension 1.0.4 XSS / SQL Injection
Posted Jul 27, 2016
Authored by Larry W. Cashdollar

Huge IT Joomla Catalog extension version 1.0.4 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2016-1000119
SHA-256 | 9c25166a6b055251167cac9d73f262cb8fdfe462fc610b07ff5ffe47e4f85893
Joomla Huge IT Gallery 1.1.5 Cross Site Scripting / SQL Injection
Posted Jul 24, 2016
Authored by Larry W. Cashdollar, Elitza Neytcheva

Joomla Huge IT Gallery component version 1.1.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2016-1000113
SHA-256 | 120e40124b2650bf6bce6e60a521c443d54b15ebf39bb3e4eefcfa1bddb21b44
WordPress Contus Video Comments 1.0 File Upload
Posted Jun 22, 2016
Authored by Larry W. Cashdollar

WordPress Contus Video Comments plugin version 1.0 suffers from a remote file upload vulnerability.

tags | exploit, remote, file inclusion, file upload
SHA-256 | 4f6ec1ff49f824524c93da0857f1b6f61521cb94809158b755faa6e7a4516efa
DeleGate 9.9.13 Local Root
Posted Dec 30, 2015
Authored by Larry W. Cashdollar

Installation of DeleGate version 9.9.13 sets some binaries setuid root and at least one of these binaries can be used to escalate the privileges of a local user. The binary dgcpnod creates a node allowing a local unprivileged user to create files anywhere on disk. By creating a file in /etc/cron.hourly a local user can execute commands as root.

tags | exploit, local, root
advisories | CVE-2015-7556
SHA-256 | 7f7b948cf0c658577a60b54e041918a12f7d33a376ff4d93c8a8740f4fddad56
WordPress Cool Video Gallery 1.9 Command Injection
Posted Dec 3, 2015
Authored by Larry W. Cashdollar

WordPress Cool Video Gallery plugin version 1.9 suffers from a remote command injection vulnerability.

tags | exploit, remote
advisories | CVE-2015-7527
SHA-256 | 5527218243efe625a95dd6c7587560dc325ce8d0f1365babde77ebbdb4973007
IBM Installation Manager 1.8.1 Race Condition
Posted Nov 12, 2015
Authored by Larry W. Cashdollar

The install script for IBM Installation Manager version 1.8.1 suffers from a /tmp race condition.

tags | exploit
SHA-256 | 61ddc1ecef489ff69c00edb7ed3182af444a773253d7beed708c57be0d98de12
WordPress MP3-jPlayer 2.3.2 Path Disclosure
Posted Aug 6, 2015
Authored by Larry W. Cashdollar

WordPress MP3-jPlayer plugin version 2.3.2 suffers from a path disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | b8fbb759e7b1e1395decffc5aa185e679dc8ee3e5aea8bf2ca8664c00c24b580
Page 1 of 6
Back12345Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    19 Files
  • 25
    May 25th
    5 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close