what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 120 RSS Feed

Files from CWH Underground

First Active2008-05-19
Last Active2018-02-19
Mobile Application Hacking Diary Episode 2
Posted Feb 19, 2018
Authored by CWH Underground, ZeQ3uL, diF

Whitepaper called Mobile Application Hacking Diary Episode 2.

tags | paper
SHA-256 | 84148946cba1f4a8c203b9d331ca95302a61cbb0ac567289bcf37ab3c2259cf6
Wolf CMS 0.8.2 Shell Upload
Posted Apr 18, 2015
Authored by CWH Underground, ZeQ3uL

Wolf CMS version 0.8.2 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 4990d8207294db847c52a10db69b2d36845054777429b586fc9dc3d039882413
Betster 1.0.4 SQL Injection / Authentication Bypass
Posted Mar 6, 2015
Authored by CWH Underground, ZeQ3uL

Betster version 1.0.4 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
advisories | CVE-2015-2237
SHA-256 | e161b508a74a09db14463cb1bb5efc6cbe154ca415e1e0a6118180c093f5f54d
Ultimate PHP Board (UPB) 2.2.7 Cross Site Scripting
Posted Mar 5, 2015
Authored by CWH Underground, ZeQ3uL

Ultimate PHP Board (UPB) version 2.2.7 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
advisories | CVE-2015-2217
SHA-256 | cb49bc015eedad265df4b05a3e04a6d40180f9d63f5ef9c69a3504e94a2f334d
WeBid 1.1.1 Unrestricted File Upload
Posted Feb 21, 2015
Authored by CWH Underground

WeBid version 1.1.1 suffers from an unrestricted file upload vulnerability.

tags | exploit, file upload
SHA-256 | 0a29501b52601df8e1a2c36d36023a6d23b42554cdc2393e27eeb09b58827dcd
Clipbucket 2.7.0.4.v2929-rc3 Blind SQL Injection
Posted Feb 20, 2015
Authored by CWH Underground

Clipbucket version 2.7.0.4.v2929-rc3 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2015-2102
SHA-256 | f9100e2bf9451bea1a2cc28324f069af76f121782cfc3f115453c63ed3703a94
Mobile Application Hacking Diary Part 1
Posted Jul 5, 2013
Authored by CWH Underground, ZeQ3uL, diF

Mobile Application Hacking Diary whitepaper part one.

tags | paper
SHA-256 | e4c6024f8478fdc045b8579a4c2724e32ec5a10026f2eff6c54bd0d3f6b96044
Elemata CMS RC3.0 SQL Injection
Posted Jun 23, 2013
Authored by CWH Underground

Elemata CMS version RC3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 443a7fa25dbcb64b6c45d3b60b8d94b3efa8d77348711bef3b594d0ec5f393ff
PodHawk 1.85 Shell Upload
Posted Jun 23, 2013
Authored by CWH Underground

PodHawk version 1.85 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 66127ace927c9b025512d07ab5c3b575ddacf360ed2d83034adf295a340d4e7e
LibrettoCMS File Manager Arbitrary File Upload
Posted Jun 22, 2013
Authored by CWH Underground, sinn3r | Site metasploit.com

This Metasploit module exploits a file upload vulnerability found in LibrettoCMS 1.1.7, and possibly prior. Attackers bypass the file extension check and abuse the upload feature in order to upload a malicious PHP file without authentication, which results in arbitrary remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload
advisories | OSVDB-94391
SHA-256 | 30ecd42376c5e4bb7dd7923719eb84398fa5da45f31326b369732ac687c9d496
Havalite CMS Arbitary File Upload
Posted Jun 20, 2013
Authored by CWH Underground, sinn3r | Site metasploit.com

This Metasploit module exploits a file upload vulnerability found in Havalite CMS version 1.1.7. Prior versions are possibly affected. Attackers can abuse the upload feature in order to upload a malicious PHP file without authentication, which results in arbitrary remote code execution.

tags | exploit, remote, arbitrary, php, code execution, file upload
advisories | OSVDB-94405
SHA-256 | caf2d6ad9662842ffd45e96d09bc069561d43e22364b1adc6736d0aee2a8406c
imacs CMS 0.3.0 Shell Upload
Posted Jun 18, 2013
Authored by CWH Underground

imacs CMS version 0.3.0 remote shell upload exploit.

tags | exploit, remote, shell
SHA-256 | 34c09e05c941242d343fb28e2f634ca4846414d6d7e2985667dc792bc4b4ee87
Bloofox CMS 0.5.0 Shell Upload
Posted Jun 17, 2013
Authored by CWH Underground

Bloofox CMS version 0.5.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 7d5c61ab1aa7ffbbf9fe697d07f1ef149b201aaeb6241852bafde647d79890a4
Havalite CMS 1.1.7 Shell Upload
Posted Jun 17, 2013
Authored by CWH Underground

Havalite CMS version 1.1.7 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 3bfd1949b6240b29766e07c024d6e056daea82b6d1ae3e403725c28bc153e69a
Fly-High CMS 2012-07-08 Shell Upload
Posted Jun 17, 2013
Authored by CWH Underground

Fly-High CMS version 2012-07-08 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 82b2a9f27a9c028ca4a7d4c77abb62633e96833d6738836ba15ee85e4379dc40
Libretto CMS 2.2.2 Shell Upload
Posted Jun 14, 2013
Authored by CWH Underground

Libretto CMS version 2.2.2 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 91eefe177f39b398e5c19181a6fcec682bb28fc4da2b7d6c1ed0924158344bfa
230 CMS 1.1.2012 PHP Code Injection
Posted Jun 12, 2013
Authored by CWH Underground

230 CMS version 1.1.2012 suffers from a remote PHP code injection vulnerability.

tags | exploit, remote, php
SHA-256 | f7997f1b21b5cccdfda0c6e183d786c03dfe34dec04e28c420e044c913f2003a
mkCMS 3.6 PHP Code Injection
Posted Jun 11, 2013
Authored by CWH Underground

mkCMS version 3.6 suffers from a remote PHP code injection vulnerability.

tags | exploit, remote, php
SHA-256 | b5a49fec1931ad3ae774efe120b62e22cf911136f7154322a7d3ff1e572659f2
Fobuc Guestbook 0.9 SQL Injection
Posted Jun 11, 2013
Authored by CWH Underground

Fobuc Guestbook version 0.9 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e9d441b015327d860d5ceb7e4d2dfdb88ad5e89146155f01bcf60ab38bb9639f
NanoBB 0.7 Cross Site Scripting / SQL Injection
Posted Jun 10, 2013
Authored by CWH Underground

NanoBB version 0.7 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 83e3693f866591301cbb5f6157865c114f517dbdea2d30608ef6a6dd724b3655
Lokboard 1.1 PHP Code Injection
Posted Jun 10, 2013
Authored by CWH Underground

Lokboard version 1.1 suffers from a remote PHP code injection vulnerability.

tags | exploit, remote, php
SHA-256 | d657c10dae83eb0c200a7f8f29e9521a0a4b076a65a941d86d5b104b56ffda5e
MaxForum 2.0.0 Code Injection / LFI / Disclosure
Posted Jun 10, 2013
Authored by CWH Underground

MaxForum version 2.0.0 suffers from PHP code injection, local file inclusion, and credential disclosure vulnerabilities.

tags | exploit, local, php, vulnerability, file inclusion
SHA-256 | e86565b1040c9480a896fd183b64a35b3657cb31227e853becd6ffe5cdc1c01b
Napata CMS 1.5.2013 PHP Code Injection
Posted Jun 5, 2013
Authored by CWH Underground

Napata CMS version 1.5.2013 suffers from a remote command execution vulnerability.

tags | exploit, remote
SHA-256 | ebcf583596fbf219f2bb9ee1f35d37975af3f02ec258ec4464dc9a0ed5490f6f
gpEasy CMS 4.0 Shell Upload
Posted Jun 4, 2013
Authored by CWH Underground

gpEasy CMS version 4.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | e6a962ae8b8f243dd6d721a24a57df334654b638a0b15f05c7375f21e7d1860b
Cuppa CMS Remote / Local File Inclusion
Posted Jun 4, 2013
Authored by CWH Underground

Cuppa CMS suffers from remote and local file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
SHA-256 | 1a69a262547b1fde2db132b721a60013a5cd8b3c578bd74d70a96f541610f65b
Page 1 of 5
Back12345Next

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    34 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close