exploit the possibilities
Showing 1 - 16 of 16 RSS Feed

Files from Matteo Beccati

Email addressphp at beccati.com
First Active2005-08-18
Last Active2017-01-31
Revive Adserver 4.0.0 XSS / Deserialization / Session Fixation
Posted Jan 31, 2017
Authored by Matteo Beccati

Revive Adserver versions 4.0.0 and below suffer from cross site scripting, session fixation, and deserialization of untrusted data vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 7851849891b07f255ee87bf675b8f570
Revive Adserver 3.2.4 XSS / File Download / Element Injection
Posted Sep 29, 2016
Authored by Matteo Beccati

Revive Adserver versions 3.2.4 and below suffers from reflected file download, cross site scripting, and special element injection.

tags | advisory, xss
MD5 | 440b8783a596b296a356c2c335307e10
Revive Adserver 3.2.2 Session Fixation / XSS / CSRF
Posted Mar 3, 2016
Authored by Matteo Beccati

Revive Adserver versions 3.2.2 and below suffer from cross site request forgery, lack of brute force controls, session fixation, information exposure, and multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, csrf
MD5 | 9da88618bfb5a6be4a1f847e7236b34d
Revive Adserver 3.2.1 CSRF / XSS / Local File Inclusion
Posted Oct 7, 2015
Authored by Matteo Beccati

Revive Adserver versions 3.2.1 and below suffer from improper access controls, cross site request forgery, cross site scripting, local file inclusion, and various other vulnerabilities.

tags | advisory, local, vulnerability, xss, file inclusion, csrf
advisories | CVE-2015-7364, CVE-2015-7365, CVE-2015-7366, CVE-2015-7367, CVE-2015-7368, CVE-2015-7369, CVE-2015-7370, CVE-2015-7371, CVE-2015-7372, CVE-2015-7373
MD5 | 2a60163ddac5f6416bc4056329560ba9
Revive Adserver 3.0.5 Cross Site Scripting / Denial Of Service
Posted Dec 17, 2014
Authored by Matteo Beccati

Revive Adserver versions 3.0.5 and below suffer from cross site scripting and denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability, xss
advisories | CVE-2014-8793, CVE-2014-8875
MD5 | a1728172039a83c24b917c0825f0236e
Revive Adserver 3.0.4 Cross Site Request Forgery
Posted May 16, 2014
Authored by Matteo Beccati

Revive Adserver version 3.0.4 and below suffer from multiple cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
advisories | CVE-2013-5954
MD5 | e8f16878eaa76717816a13b5a26163a4
Revive Adserver 3.0.1 SQL Injection
Posted Dec 20, 2013
Authored by Matteo Beccati

Revive Adserver versions 3.0.1 and below suffer from a remote SQL injection vulnerability. The XML-RPC delivery invocation script was failing to escape its input parameters in the same way the other delivery methods do, allowing attackers to inject arbitrary SQL code via the "what" parameter of the delivery XML-RPC methods. Also, the escaping technique used to handle such parameter in the delivery scripts was based on the addslashes PHP function and has now been upgraded to use the dedicated escaping functions for the database in use.

tags | advisory, remote, arbitrary, php, sql injection
advisories | CVE-2013-7149
MD5 | d48e78efcb0beaabb18b60baa130c7b2
OpenX SQL INjection / XSS
Posted Apr 2, 2009
Authored by Matteo Beccati | Site openx.org

OpenX suffers from SQL injection, cross site scripting, CRLF injection, and file deletion vulnerabilities. Versions equal to or below 2.4.10, 2.6.4, and 2.7.29-beta are affected.

tags | advisory, vulnerability, xss, sql injection
MD5 | f64ac328cb9fb2eeb5cb3ec9f9d55437
OpenX Security Advisory - XSS / SQL Injection / Directory Traversal
Posted Jan 30, 2009
Authored by Matteo Beccati | Site openx.org

OpenX versions 2.4.9 and below and versions 2.6.3 and below suffer from cross site scripting, SQL injection, and directory traversal vulnerabilities.

tags | advisory, vulnerability, xss, sql injection
advisories | CVE-2009-0291
MD5 | 37ebfa658364aa9192a949f7bac1cbcd
OPENX-SA-2008-002.txt
Posted Oct 8, 2008
Authored by Matteo Beccati

OpenX versions 2.6.1 and below and versions 2.4.8 and below suffer from a blind remote SQL injection vulnerability in ac.php.

tags | advisory, remote, php, sql injection
MD5 | 6f13f7bb5547834ad9a269e36edb1412
OPENADS-SA-2008-001.txt
Posted Feb 4, 2008
Authored by Matteo Beccati | Site openads.org

Openads versions prior to 2.4.3 suffer from a PHP code injection and execution vulnerability.

tags | advisory, php
MD5 | becc113ebbe465552df6e7930e4e50ea
OPENADS-SA-2007-004.txt
Posted Apr 17, 2007
Authored by Matteo Beccati | Site openads.org

Max Media Manager versions 0.1.29-rc and below and 0.3.31-alpha-pr2 and below suffer from HTTP response splitting vulnerabilities.

tags | advisory, web, vulnerability
MD5 | b5d4c2b5e4f2a2c8ad332cbac55e96e1
OPENADS-SA-2007-003.txt
Posted Apr 17, 2007
Authored by Matteo Beccati | Site openads.org

Openads versions 2.0.11 and below suffers from HTTP response splitting attacks.

tags | advisory, web
MD5 | e6337fd236bc5c999afb95c04c9a8de4
PHPADSNEW-SA-2006-001.txt
Posted Apr 1, 2006
Authored by Matteo Beccati | Site phpadsnew.com

phpAdsNew and phpPgAds versions 2.0.7 and below suffer from multiple html injection and cross site scripting flaws.

tags | advisory, xss
MD5 | 5998f02c4c8ce7823491642ca8e3ebcf
PHPADSNEW-SA-2005-002.txt
Posted Nov 20, 2005
Authored by Matteo Beccati | Site phpadsnew.com

phpAdsNew and phpPgAds versions 2.0.6 and below suffer from SQL injection, HTTP response splitting, and path disclosure flaws.

tags | advisory, web, sql injection
MD5 | 6d3e16848a242e3bffa8260eb5b22b60
PHPADSNEW-SA-2005-001.txt
Posted Aug 18, 2005
Authored by Matteo Beccati | Site phpadsnew.com

phpAdsNew and phpPgAds versions 2.0.5 and below suffer from arbitrary command execution, SQL injection, and various other flaws.

tags | advisory, arbitrary, sql injection
MD5 | 31ea1aaf2105a35b3992c26c066b35aa
Page 1 of 1
Back1Next

File Archive:

April 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    21 Files
  • 2
    Apr 2nd
    35 Files
  • 3
    Apr 3rd
    21 Files
  • 4
    Apr 4th
    16 Files
  • 5
    Apr 5th
    15 Files
  • 6
    Apr 6th
    1 Files
  • 7
    Apr 7th
    2 Files
  • 8
    Apr 8th
    23 Files
  • 9
    Apr 9th
    19 Files
  • 10
    Apr 10th
    15 Files
  • 11
    Apr 11th
    14 Files
  • 12
    Apr 12th
    11 Files
  • 13
    Apr 13th
    2 Files
  • 14
    Apr 14th
    5 Files
  • 15
    Apr 15th
    14 Files
  • 16
    Apr 16th
    19 Files
  • 17
    Apr 17th
    19 Files
  • 18
    Apr 18th
    8 Files
  • 19
    Apr 19th
    4 Files
  • 20
    Apr 20th
    5 Files
  • 21
    Apr 21st
    1 Files
  • 22
    Apr 22nd
    10 Files
  • 23
    Apr 23rd
    22 Files
  • 24
    Apr 24th
    7 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close