what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Cartel

ManageEngine MSPCentral 9 Cross Site Request Forgery / Cross Site Scripting

Posted Dec 4, 2012

Authored by Cartel

ManageEngine MSPCentral version 9 suffers from cross site request forgery, insecure session cookies, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf

SHA-256 | b983739d5c9e6e3348d2323d71a796d500798b6a460b49fa2b179cee9582484f

Download | Favorite | View

Kaseya 6.2 Cross Site Scripting

Posted Dec 1, 2012

Authored by Cartel

Kaseya version 6.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | e0cdd10a64a9373d573938c78e9a4472f9e23fee2043c7bb3d84006bf7352188

Download | Favorite | View

Ncentral 8.x Insecure Access / Unsalted Passwords / CSRF

Posted Dec 1, 2012

Authored by Cartel

Ncentral versions 8.0.x through 8.2.0-1152 suffer from insecure SOAP access that leads to an unprivileged SSH session, poor trust based authentication leading to database compromise, plain text password storage, cross site request forgery, and other vulnerabilities.

tags | exploit, vulnerability, csrf

SHA-256 | 464cc00f87dcb32257b52f9b06621fa1f83992f57282764ad08163ff151e2f5f

Download | Favorite | View