what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 5 of 5

Files from Marcio Almeida

JBOSS EAP/AS 6.x Remote Code Execution

Posted Jul 12, 2022

Authored by Heyder Andrade, Marcio Almeida, Joao Matos | Site metasploit.com

An unauthenticated attacker with network access to the JBOSS EAP/AS versions 6.x and below Remoting Unified Invoker interface can send a serialized object to the interface to execute code on vulnerable hosts.

tags | exploit

SHA-256 | 4bfb5f55643ee08ae8c9999d9fa55d6d1af99c180f30e402f0089770ca5d6712

Download | Favorite | View

MyAuth3 Blind SQL Injection

Posted Oct 6, 2012

Authored by Marcio Almeida

MyAuth3 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 20fadbb2046474a1cd41ed731732fd403043fbffc82e2b5468d421ad6babefb0

Download | Favorite | View

Splunk 4.3.3 Arbitrary File Disclosure

Posted Sep 4, 2012

Authored by Marcio Almeida

Splunk versions 4.3.3 and below suffer from a remote file content disclosure vulnerability.

tags | exploit, remote, info disclosure

SHA-256 | 737362e29764e6020d443a9b8f693009443a75bfc883660904f7cc7717a2b66d

Download | Favorite | View

Zabbix 1.8.4 SQL Injection

Posted Nov 24, 2011

Authored by Marcio Almeida

Zabbix versions 1.8.4 and below suffer from a remote SQL injection vulnerability in popup.php.

tags | exploit, remote, php, sql injection

SHA-256 | b56256dc6e49aa84426a464efcebce6a3ac34661337e511965f33cf77a058512

Download | Favorite | View

MyAuth 3 Blind SQL Injection

Posted Sep 9, 2011

Authored by Marcio Almeida

MyAuth version 3 remote blind SQL injection exploit that allows for access to a root shell.

tags | exploit, remote, shell, root, sql injection

SHA-256 | b8e7f5d20629287f5a705b87cdbabad2746378222327dc62a83ec133d1fba24f

Download | Favorite | View