exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News Services About Contact Add New

Showing 1 - 11 of 11

Files from Yuri Goltsev

ICS / SCADA / PLC Google / Shodanhq Cheat Sheet

Posted Jan 21, 2013

Authored by Yuri Goltsev, Gleb Gritsai, Alexander Timorin, Roman Ilin | Site ptsecurity.com

This document illustrates multiple ways to identify multiple SCADA systems.

tags | paper

MD5 | 2da13b842c046b950c68fc86f91afa28

Download | Favorite | Comments (0)

Kayako Support Suite 3.70.02-stable Cross Site Scripting

Posted Jan 12, 2012

Authored by Yuri Goltsev | Site ptsecurity.com

Kayako Support Suite versions 3.70.02-stable and below suffer from a cross site scripting vulnerability.

tags | advisory, xss

MD5 | d6f580105a26cea49610ef058838c4c8

Download | Favorite | Comments (0)

Kayako Fusion Information Disclosure

Posted Dec 3, 2011

Authored by Yuri Goltsev, Alexander Zaitsev | Site ptsecurity.com

Kayako Fusion suffers from an authenticated database information disclosure vulnerability.

tags | advisory, info disclosure

MD5 | b031211fc49b99c16bf56c2f14a6beda

Download | Favorite | Comments (0)

OneOrZero AIMS 2.7.0 SQL Injection

Posted Oct 28, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

OneOrZero AIMS versions 2.7.0 and below suffer from a remote SQL injection vulnerability.

tags | advisory, remote, sql injection

MD5 | 8f108d2af5258b8da7684468caf5d1c7

Download | Favorite | Comments (0)

OneOrZero AIMS Authorization Bypass

Posted Oct 28, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

OneOrZero AIMS versions 2.7.0 and below suffer from an authorization bypass via cookie manipulation.

tags | advisory

MD5 | ac659616e1fca57a3ead6538b10e88e4

Download | Favorite | Comments (0)

BoonEx Dolphin 6.1 SQL Injection

Posted Oct 18, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

Positive Research Center has discovered an SQL injection vulnerability in Dolphin version 6.1 due to a lack of input validation.

tags | advisory, sql injection

MD5 | 636687f3905f70ccf405816629109c6d

Download | Favorite | Comments (0)

Help Request System 1.1a SQL Injection

Posted Sep 2, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

Help Request System versions 1.1a and below suffer from a remote SQL injection vulnerability.

tags | advisory, remote, sql injection

MD5 | 0fcc3e998c0eb857121f3a6099b50cae

Download | Favorite | Comments (0)

GLPI 0.80.1 Database Information Disclosure

Posted Aug 25, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

GLPI versions 0.80.1 and below suffer from a database information disclosure vulnerability.

tags | advisory, info disclosure

MD5 | 42ad78391a5403fccf10bf0f6f697936

Download | Favorite | Comments (0)

Support Incident Tracker 3.63p1 SQL Injection

Posted Jul 26, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

Support Incident Tracker versions 3.63p1 and below suffer from remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, sql injection

MD5 | a94910cce1fd2e80143ef21f2711c1d7

Download | Favorite | Comments (0)

Dlink DPH 150SE/E/F1 Access Bypass Issues

Posted Jul 26, 2011

Authored by Yuri Goltsev, Gleb Gritsai, Alexander Zaitsev | Site ptsecurity.com

The Dlink DPH 150SE/E/F1 IP phone suffers from denial of service and various unauthenticated access and modification vulnerabilities.

tags | advisory, denial of service, vulnerability

MD5 | 969d6299b5b134dc7df720eb370be9e2

Download | Favorite | Comments (0)

Koha Library Software 3.2.9 / 3.4.1 Cross Site Scripting

Posted Jul 26, 2011

Authored by Yuri Goltsev | Site ptsecurity.com

Koha Library Software versions 3.2.9 and below and 3.4.1 and below suffer from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss

MD5 | 948cf36191bb6bc72e0449e00ba50734

Download | Favorite | Comments (0)