what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 8 of 8 RSS Feed

Files from Deniz Cevik

Email addressdeniz.cevik at intellect.com.tr
First Active2008-05-09
Last Active2014-04-29
WAF Bypass Methods
Posted Apr 29, 2014
Authored by Deniz Cevik

This whitepaper discusses various web application firewall bypass methodologies. Written in Turkish.

tags | paper, web, bypass
SHA-256 | d04d9dc9ed267c9142d78a1a35f38d8397df4345faa4d26a2221dd442c5ad695
BlogEngine.NET Unauthorized Access / Directory Traversal
Posted Jan 5, 2011
Authored by Deniz Cevik

BlogEngine.NET version 1.6.x suffers from path disclosure, unauthorized access, directory traversal, and file upload vulnerabilities.

tags | exploit, vulnerability, file inclusion, file upload
SHA-256 | 2218806e3d191f516f3002551168e102ee120af9f6953f1384c30b96f3413f98
Apache Tomcat Cross Site Scripting
Posted Mar 6, 2009
Authored by Deniz Cevik | Site tomcat.apache.org

The calendar application for Apache Tomcat contains invalid HTML which renders the cross site scripting protection for the time parameter ineffective. An attacker can therefore perform an cross site scripting attack using the time attribute. Version affected include Tomcat 6.0.0 to 6.0.18, Tomcat 5.5.0 to 5.5.27, and Tomcat 4.1.0 to 4.1.39.

tags | exploit, xss
advisories | CVE-2009-0781
SHA-256 | 2fd4d18e046935391c0b4eb23d19aed3bf6cd14d57e11ae2522468cf694b91a4
fujitsu-traverse.txt
Posted Aug 22, 2008
Authored by Deniz Cevik | Site intellectpro.com.tr

Fujitsu Web-Based Admin View version 2.1.2 suffers from a directory traversal vulnerability.

tags | exploit, web, file inclusion
SHA-256 | 9346267fb836e3abbe4ae26b5494f37f1a97d864da56456cc63bc045d54d3c34
ibmmromaximo-xss.txt
Posted Jul 11, 2008
Authored by Deniz Cevik | Site intellectpro.com.tr

IBM MRO MAXIMO versions 4.1 and 5.2 suffer from cross site scripting and information disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
SHA-256 | ca60b29f62d445c4b816c1b20f895b671b0878aff48c7c34b6b5dce290e3012c
oracleasp-bypass.txt
Posted May 9, 2008
Authored by Deniz Cevik | Site intellectpro.com.tr

The Oracle Application Server Portal 10G suffers from an authentication bypass vulnerability. Details are provided.

tags | exploit, bypass
SHA-256 | 0c2ed4b2c1e511b8299cfe9fcacff6058ce880614d068dd399bb8d9b4104f115
zyxel-xss.txt
Posted May 9, 2008
Authored by Deniz Cevik | Site intellectpro.com.tr

The Zyxel ZYWall 100 suffers from a cross site scripting vulnerability via the Referer: header.

tags | exploit, xss
SHA-256 | cc7041be52252b1ce26e0f38eb43a0dd6aeeb46b920bb6dfa9085716ca030fd5
sonicwall-xss.txt
Posted May 9, 2008
Authored by Deniz Cevik | Site intellectpro.com.tr

SonicWall E-mail Security version 6.1.1 suffers from a cross site scripting vulnerability via the Host: header.

tags | exploit, xss
SHA-256 | f7fcac283c39a39b7ba7514782f15b4fc283957bfc523140dbe2cbdef590cfd5
Page 1 of 1
Back1Next

File Archive:

September 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    23 Files
  • 2
    Sep 2nd
    12 Files
  • 3
    Sep 3rd
    0 Files
  • 4
    Sep 4th
    0 Files
  • 5
    Sep 5th
    10 Files
  • 6
    Sep 6th
    8 Files
  • 7
    Sep 7th
    30 Files
  • 8
    Sep 8th
    14 Files
  • 9
    Sep 9th
    26 Files
  • 10
    Sep 10th
    0 Files
  • 11
    Sep 11th
    0 Files
  • 12
    Sep 12th
    5 Files
  • 13
    Sep 13th
    28 Files
  • 14
    Sep 14th
    15 Files
  • 15
    Sep 15th
    17 Files
  • 16
    Sep 16th
    9 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    12 Files
  • 20
    Sep 20th
    15 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    13 Files
  • 23
    Sep 23rd
    12 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    30 Files
  • 27
    Sep 27th
    27 Files
  • 28
    Sep 28th
    8 Files
  • 29
    Sep 29th
    14 Files
  • 30
    Sep 30th
    19 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close