what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Ben Sheppard

Ninja 0.1.3 Race Condition

Posted Apr 29, 2015

Authored by Ben Sheppard

Ninja privilege escalation detection and prevention system version 0.1.3 suffers from a race condition vulnerability.

tags | exploit

SHA-256 | 0c04f125429ae3d5bf78e45cae4f47cf93b72213a6ec0a6ae100e2ab1807e2e3

Download | Favorite | View

Jira Scriptrunner 2.0.7 CSRF / Code Execution

Posted Nov 13, 2012

Authored by Ben Sheppard

This is a metasploit exploit for Jira Scriptrunner version 2.0.7. This Jira plugin does not use the built in Jira protections (websudo or CSRF tokens) to protect the page from CSRF. This page is supposed to be used by admins to automate tasks, it will accept java code and by default in a windows environment Jira will be run as system.

tags | exploit, java, csrf

systems | windows

SHA-256 | f7e10861901a1d9665e685842d12a026c5ffc0c56dbc38b827eb7b239eef52e1

Download | Favorite | View