what you don't know can hurt you
Showing 1 - 25 of 27 RSS Feed

Files from Stefano Di Paola

Email addressstefano.dipaola at mindedsecurity.com
First Active2004-09-17
Last Active2011-09-09
Spring Framework Information Disclosure
Posted Sep 9, 2011
Authored by Stefano Di Paola, Arshan Dabirsiaghi, SpringSource Security Team

Spring Framework versions 3.0.0 to 3.0.5, 2.5.0 to 2.5.6.SEC02, and 2.5.0 to 2.5.7.SR01 suffer from an information disclosure vulnerability.

tags | advisory, info disclosure
advisories | CVE-2011-2730
MD5 | 224237f28405fe41ce3d0e268c139c03
Liferay JSON Service Information Leakage
Posted Aug 13, 2010
Authored by Stefano Di Paola | Site mindedsecurity.com

The Liferay JSON service suffers from multiple remote information disclosure vulnerabilities.

tags | exploit, remote, vulnerability, info disclosure
MD5 | 3c5f1afdba23ca08b950d9a88615b1b8
Liferay Calendar exportFileName Path Manipulation
Posted Aug 13, 2010
Authored by Stefano Di Paola | Site mindedsecurity.com

Liferay Calendar suffers from an exportFileName path manipulation vulnerability that allows for arbitrary JSP execution.

tags | exploit, arbitrary
MD5 | 2faa1a7bf02d26bc805f48d874277af1
Servlet Exec 5.0p06 File Retrieval
Posted Aug 13, 2010
Authored by Stefano Di Paola, Giorgio Fedon | Site mindedsecurity.com

New Atlanta Servlet Exec allows for the reading of system configuration files and unauthorized access to system information.

tags | exploit
MD5 | df4ae06c5cf59198b7ecfefc69022ad2
HTTP Parameter Pollution
Posted May 19, 2009
Authored by Stefano Di Paola, Luca Carettoni | Site ikkisoft.com

This is a presentation called HTTP Parameter Pollution that focuses on manipulation and injection of HTTP GET/POST parameters.

tags | paper, web
MD5 | c7bb70cc65ee5220083c5e6fcc81de7a
CVE-2008-2370.txt
Posted Aug 1, 2008
Authored by Stefano Di Paola | Site tomcat.apache.org

Tomcat versions 4.1.0 to 4.1.37, 5.5.0 to 5.5.26, and 6.0.0 to 6.0.16 all suffer from an information disclosure vulnerability.

tags | advisory, info disclosure
advisories | CVE-2008-2370
MD5 | 02852ef14495eaadbd4c7409e8b05a39
MSA02240108.txt
Posted Mar 21, 2008
Authored by Stefano Di Paola | Site mindedsecurity.com

Internet Explorer 7 allows the overwrite of headers such as Content-Length, Host and Referer, exposing the browser to HTTP request splitting attacks.

tags | advisory, web
MD5 | 0ba0b74eea72c57621a0aad45af45c2f
MSA01240108.txt
Posted Mar 21, 2008
Authored by Stefano Di Paola | Site mindedsecurity.com

Internet Explorer 7 allows the setting of header "Transfer Encoding: chunked" in setRequestHeader exposing the browser to HTTP request splitting/smuggling attacks.

tags | advisory, web
MD5 | 79a4a9d6a18fb214f42a3063df7b678f
apachemodneg-splitxss.txt
Posted Jan 23, 2008
Authored by Stefano Di Paola | Site mindedsecurity.com

mod_negotiation as shipped with Apache versions 1.3.39 and below, 2.0.61 and below, and 2.2.6 and below suffers from cross site scripting and http response splitting vulnerabilities.

tags | exploit, web, vulnerability, xss
MD5 | e18caed342360e46f868a14e0dd9a259
swfintruder-0.9.tgz
Posted Dec 6, 2007
Authored by Stefano Di Paola | Site mindedsecurity.com

SWFIntruder (pronounced Swiff Intruder) is the first tool specifically developed for analyzing and testing security of Flash applications at runtime. Some features include predefined attack patterns, highly customizable attacks, semi-automated cross site scripting checks, and more.

tags | web, xss
MD5 | 24b530abb076f5682cf36581c94fd035
MSA01110707.txt
Posted Jul 13, 2007
Authored by Stefano Di Paola | Site mindedsecurity.com

By using a specially crafted "flv" video it is possible to trigger an integer overflow inside Adobe Flash interpreter which could lead to client/browser-plugin crash, arbitrary code execution or system denial of service.

tags | advisory, denial of service, overflow, arbitrary, code execution
MD5 | b746354064d05658a8ac2541f856ee2f
ieff-split.txt
Posted May 2, 2007
Authored by Stefano Di Paola | Site wisec.it

Firefox and Internet Explorer are prone to HTTP request splitting when Digest Authentication occurs.

tags | advisory, web
MD5 | 5426a639741037c2c3ecdb00815e92d0
Php Nuke POST Cross Site Scripting On Steroids
Posted Mar 13, 2007
Authored by Stefano Di Paola, Francesco Ongaro | Site ush.it

PHP Nuke version 8.0, and possibly lower versions, are susceptible to a POST cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 3f22e872fea3c471242fa8fac6024d02
PHP import_request_variables() Arbitrary Variable Overwrite
Posted Mar 9, 2007
Authored by Stefano Di Paola, Francesco Ongaro | Site wisec.it

PHP versions greater than or equal to 4.0.7 and less than or equal to 5.2.1 suffer from an arbitrary variable overwrite in import_request_variables().

tags | exploit, arbitrary, php
MD5 | 7caa19415b07b0f1e5e2e58ca201d09d
adobeplugin.txt
Posted Jan 4, 2007
Authored by Stefano Di Paola | Site wisec.it

The Adobe Acrobat Reader plugin is susceptible to session riding and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | cdcfb7f0fe7c3c08289067140c9c2be4
mysqlExec.txt
Posted May 5, 2006
Authored by Stefano Di Paola | Site wisec.it

MySQL server versions 5.0.20 and below suffer from information leakage and arbitrary command execution flaws.

tags | advisory, arbitrary
MD5 | df9ba731c0a755f8f7abb79febe6c1ee
my_com_table_dump_exploit.c
Posted May 5, 2006
Authored by Stefano Di Paola | Site wisec.it

Exploit for MySQL server versions 5.0.20 and below which suffer from information leakage and arbitrary command execution flaws.

tags | exploit, arbitrary
MD5 | a6953bc6c6683d8ef234ab7e954aadfe
mysqlLeak.txt
Posted May 5, 2006
Authored by Stefano Di Paola | Site wisec.it

MySQL server versions 4.1.18 and below and 5.0.20 and below suffer from an information leakage issue.

tags | advisory
MD5 | 7ed8c8bcfe58eadc5089a85b1fdf8d50
my_anon_db_leak.c
Posted May 5, 2006
Authored by Stefano Di Paola | Site wisec.it

Proof of concept exploit that demonstrates an information leakage vulnerability in MySQL server version 4.1.18 and below and 5.0.20 and below.

tags | exploit, proof of concept
MD5 | 13aefb173f330f70de42ba30561937f8
exp3.pl.txt
Posted Mar 15, 2005
Authored by Stefano Di Paola | Site wisec.it

Proof of concept exploit that makes use of functions in libc in order to gain MySQL user privileges. Version 4.1.10 and versions below and equal to 4.0.23 are affected.

tags | exploit, proof of concept
MD5 | 03d076773b4edd27cd71264b66a9ea04
mysqlCreatelibc.txt
Posted Mar 15, 2005
Authored by Stefano Di Paola | Site wisec.it

If an authenticated user has INSERT and DELETE privileges on an mysql administrative database, it is possible, by using the CREATE FUNCTION command, to take advantage of functions from libc in order to gain mysql user privileges. Version 4.1.10 and versions below and equal to 4.0.23 are affected.

tags | advisory
MD5 | 5cfad60ee180443cf9a873e46849dd96
exp2.php.txt
Posted Mar 15, 2005
Authored by Stefano Di Paola | Site wisec.it

Proof of concept exploit that makes use of a library injection flaw in MySQL via the CREATE function. Version 4.1.10 and versions below and equal to 4.0.23 are affected.

tags | exploit, proof of concept
MD5 | 0d778bbae9d865a9ba85379b9ed620fe
mysqlCreateinject.txt
Posted Mar 15, 2005
Authored by Stefano Di Paola | Site wisec.it

If an authenticated user has INSERT and DELETE privileges on a mysql administrative database, it is possible to use a library located in an arbitrary directory using the CREATE function. Version 4.1.10 and versions below and equal to 4.0.23 are affected.

tags | advisory, arbitrary
MD5 | 8a1165837393ec03c54a528723db2f41
php-shmop.txt
Posted Dec 30, 2004
Authored by Stefano Di Paola

PHP shmop shared memory module has a leak that can lead to Safe Mode bypass. PHP versions 5.0.2 and below and 4.3.9 and below are susceptible.

tags | advisory, php
MD5 | 99a70050f72c34784b76a9665223213f
phpPOC.txt
Posted Oct 1, 2004
Authored by Stefano Di Paola | Site wisec.it

PHP proof of concept exploit that makes use of an arbitrary file upload flaw in PHP versions below 4.3.9 and 5.0.2.

tags | exploit, arbitrary, php, proof of concept, file upload
MD5 | 82bbf54363bb3c8d4fb0c1e2add5924a
Page 1 of 2
Back12Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close