Twenty Year Anniversary
Showing 1 - 25 of 77 RSS Feed

Files from Sammy FORGIT

Email addresssam at opensyscom.fr
First Active2012-06-05
Last Active2015-03-24
WordPress Foxypress uploadify.php Arbitrary Code Execution
Posted Mar 24, 2015
Authored by patrick, Sammy FORGIT | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code execution flaw in the WordPress blogging software plugin known as Foxypress. The vulnerability allows for arbitrary file upload and remote code execution via the uploadify.php script. The Foxypress plugin versions 0.4.1.1 to 0.4.2.1 are vulnerable.

tags | exploit, remote, arbitrary, php, code execution, file upload
MD5 | 3a487527cd2c26d67722a8add1279d90
WordPress Xerte Online 0.32 Shell Upload
Posted Jan 3, 2013
Authored by Sammy FORGIT

WordPress Xerte Online plugin version 0.32 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | fd101c534c46cd870f749ee96683105c
WordPress Uploader 1.0.4 Shell Upload
Posted Jan 3, 2013
Authored by Sammy FORGIT

WordPress Uploader plugin version 1.0.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 65ba2386879719112c7ebb164ef919bd
WordPress ReFlex Gallery 1.3 Shell Upload
Posted Jan 3, 2013
Authored by Sammy FORGIT

WordPress ReFlex Gallery plugin version 1.3 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 454b36474bb5640208c29ba15e38cdf9
WordPress Shopping Cart 8.1.14 Shell Upload / SQL Injection
Posted Jan 3, 2013
Authored by Sammy FORGIT

WordPress Shopping Cart version 8.1.14 from Level Four Store Front suffers from remote SQL injection and shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection
MD5 | 6a7331517f75d9ddda3261b9e513ef83
WordPress Asset-Manager PHP File Upload
Posted Dec 28, 2012
Authored by Sammy FORGIT | Site metasploit.com

This Metasploit module exploits a vulnerability found in WordPress plugin Asset-Manager versions 2.0 and below. By abusing the upload.php file, a malicious user can upload a file to a temp directory without authentication, which results in arbitrary code execution.

tags | exploit, arbitrary, php, code execution
advisories | OSVDB-82653
MD5 | c748e130ebc6a192d7a66d7a977f9243
WordPress WP-Property PHP File Upload
Posted Dec 24, 2012
Authored by Sammy FORGIT | Site metasploit.com

This Metasploit module exploits a vulnerability found in WP-Property <= 1.35.0 WordPress plugin. By abusing the uploadify.php file, a malicious user can upload a file to a temp directory without authentication, which results in arbitrary code execution.

tags | exploit, arbitrary, php, code execution
advisories | OSVDB-82656
MD5 | 6ecacadf5f4f0c4ec0b51d8a7024ea00
EGallery PHP File Upload Vulnerability
Posted Jul 23, 2012
Authored by Sammy FORGIT, juan | Site metasploit.com

This Metasploit module exploits a vulnerability found in EGallery 1.2 By abusing the uploadify.php file, a malicious user can upload a file to the egallery/ directory without any authentication, which results in arbitrary code execution. The module has been tested successfully on Ubuntu 10.04.

tags | exploit, arbitrary, php, code execution
systems | linux, ubuntu
advisories | OSVDB-83891
MD5 | 95885aafd89fb4191f4ba1c513063adf
Advanced MP3 Player Infusion 2.01 Shell Upload
Posted Jun 29, 2012
Authored by Sammy FORGIT

Advanced MP3 Player Infusion version 2.01 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 0c3acb88bd9551d03ba8fd4d82c8f5a6
JAKCMS 2.2.6 Shell Upload
Posted Jun 29, 2012
Authored by Sammy FORGIT

JAKCMS version 2.2.6 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 537ddf2f2d9b6fbbd7da2d4839e2ac41
Drupal Drag And Drop 6.x-1.5 Shell Upload
Posted Jun 25, 2012
Authored by Sammy FORGIT

Drupal Drag and Drop third party module version 6.x-1.5 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | d231d5209233b10f581920ad6e54c2cc
Autopagina CMS 2.8 SQL Injection
Posted Jun 25, 2012
Authored by Sammy FORGIT

Autopagina CMS version 2.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a8b341071924160ea47bd8aa7ed81d2d
Umapresence 2.6.0 Shell Upload / File Deletion
Posted Jun 25, 2012
Authored by Sammy FORGIT

Umapresence version 2.6.0 suffers from remote shell upload and file deletion vulnerabilities.

tags | exploit, remote, shell, vulnerability
MD5 | 938b6ee03d3db9422bacc1892c2b964c
Uploadify-amazon-s3 1.01 Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

Uploadify-amazon-s3 version 1.01 suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | b3c8ab14d86b03e5f146ec8a6c8984e8
WordPress Fancy Gallery 1.2.4 Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

WordPress Fancy Gallery third party module version 1.2.4 suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 66f8b65377d7fd4874b2c38cb1f5f5c1
Silverstripe Pixlr Image Editor 1.0.4 Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

Silverstripe Pixlr Image Editor third party module version 1.0.4 suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 183cdba6a88f1378f62e4596f2c29f3c
WordPress Flip Book 1.0 Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

WordPress Flip Book third party module version 1.0 suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | aff354633467c33276bfc37585c009c3
Wolf CMS / Frog CMS BD uploadR Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

Wolf CMS / Frog CMS BD uploadR third party module suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | d968ee9ee08fed9f682fc57d590c00a6
e107 Articulate 1.1.1 Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

e107 Articulate third party module version 1.1.1 suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | e5a90b7d2c959d4fbc8f8a610a5334b8
WordPress Ajax Multi Upload 1.1 Shell Upload
Posted Jun 23, 2012
Authored by Sammy FORGIT

WordPress Ajax Multi Upload third party module version 1.1 suffers from an unauthenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | f4020a27ac86f8171a4293a6fa7dbb4c
e107 Tap 2.0 Shell Upload
Posted Jun 19, 2012
Authored by Sammy FORGIT

e107 Tap plugin version 2.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 4e4a8208bdf07659d5896ab5cb16c596
e107 Radio Plan 2.06 Shell Upload
Posted Jun 19, 2012
Authored by Sammy FORGIT

e107 Radio Plan plugin version 2.06 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 0cc346fc2ea847c99274a9964816e24a
e107 Hupsi Share 1.00 Shell Upload
Posted Jun 19, 2012
Authored by Sammy FORGIT

e107 Hupsi Share plugin version 1.00 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 46b2038c0c82d9d78b413553f6cc4595
e107 Image Gallery 0.9.7.1 File Disclosure
Posted Jun 19, 2012
Authored by Sammy FORGIT

e107 Image Gallery plugin version 0.9.7.1 suffers from a remote file disclosure vulnerability.

tags | exploit, remote, info disclosure
MD5 | 572c7e3364cccdfaaa1d05481b919f5b
e107 Hupsi Media Gallery 1.0 Shell Upload
Posted Jun 19, 2012
Authored by Sammy FORGIT

e107 Hupsi Media Gallery plugin version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 15d6dfb88d5ee410b46450015582782c
Page 1 of 4
Back1234Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close