exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 45 of 45 RSS Feed

Files from Rafay Baloch

Email addressrhainfosec at gmail.com
First Active2012-12-24
Last Active2023-03-27
Mental JS Sandbox Bypass
Posted Sep 20, 2013
Authored by Rafay Baloch, Giuseppe Trotta

Mental JS suffers from a sandbox bypass due to the ability to still execute javascript via document.inner.HTML.

tags | exploit, javascript, bypass
SHA-256 | d3c1668d510834211878dda3ef864e35ccdb1c64178a379e9c6c843e14ba7119
Modsecurity Cross Site Scripting Bypass
Posted Aug 31, 2013
Authored by Rafay Baloch

Modsecurity suffers from a cross site scripting bypass vulnerability.

tags | exploit, xss, bypass
SHA-256 | a733a0dbcebbe9fedb06363ea004ad94e998d20f23675d7a928b41d20331a6aa
Link Farm Evolution 1.8.7 Cross Site Scripting
Posted Jul 1, 2013
Authored by Prakhar Prasad, Rafay Baloch

Link Farm Evolution version 1.8.7 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 5020d8f67969c4f8c291fe0640c5434a7e1e0adb0ad16d4a011077f64d73a5d4
Xorbin Analog Flash Clock 1.0 For Joomla XSS
Posted Jun 30, 2013
Authored by Prakhar Prasad, Rafay Baloch

Xorbin Analog Flash Clock plugin version 1.0 for Joomla suffers from a flash-based cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-4692
SHA-256 | db191d2a15c32b3a82e6a57b0ed829bbbb56a36958154f8a7150bc0dc3f1d59f
Xorbin Digital Flash Clock 1.0 For WordPress XSS
Posted Jun 30, 2013
Authored by Prakhar Prasad, Rafay Baloch

Xorbin Digital Flash Clock plugin version 1.0 for WordPress suffers from a flash-based cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-4693
SHA-256 | 52281822ff4a323761052080687530ded283d887d7b6d4c7707929f84c1ef54d
Xorbin Analog Flash Clock 1.0 For WordPress XSS
Posted Jun 30, 2013
Authored by Prakhar Prasad, Rafay Baloch

Xorbin Analog Flash Clock plugin version 1.0 for WordPress suffers from a flash-based cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-4692
SHA-256 | 4095a10cc00eeeb24a4ebbf0d3b8293fa9afb1e65add0ab3198f35283253d6ca
CyberKendra Search Bar Cross Site Scripting
Posted Jun 23, 2013
Authored by Prakhar Prasad, Rafay Baloch

The CyberKendra Search Bar script suffered from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 4a5361a17f69d745e0fb5aa52190ed508bceb7f198b3fd490a70d9e77ed8a4eb
Mod_Security Cross Site Scripting Bypass
Posted Jun 19, 2013
Authored by Rafay Baloch

Mod_security suffered from a cross site scripting filter bypass vulnerability.

tags | exploit, xss, bypass
SHA-256 | f2125bb4ab7692426d1789ea62aa804f599421f07fed6bc8474c3e45d715a2d3
HtmlCommentBox Cross Site Scripting
Posted Jun 1, 2013
Authored by Rafay Baloch, Deepankar Arora

HtmlCommentBox suffers from both persistent and reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 375426a6f2826be5d50be267fdfbee93f0dffc165828a877adfb5a14bb22fb0b
Joomla Jnews 8.0.1 Cross Site Scripting
Posted May 14, 2013
Authored by Rafay Baloch, Deepankar Arora

Joomla Jnews version 8.0.1 suffers from an Open Flash-Chart cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 058c3d8323c683caf66eb576a0868269c46b8dbf04990cb5ef9bf2500850783c
Joomla Phocagallery 3.0.0 / 4.0.0 Cross Site Scripting
Posted May 13, 2013
Authored by Rafay Baloch, Deepankar Arora

Joomla Phocagallery component versions 3.0.0 through 4.0.0 suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 7ac32fc5334a6c47399759bb86d3ae214d11b769a06e56788ca9a188b94cbb3b
Fork CMS Local File Inclusion
Posted Apr 18, 2013
Authored by Rafay Baloch

Fork CMS suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | dc9c3676bed4b6dd47b65dcd79362c247ada9470a4af9cb6c2e29524e8645942
Fork CMS Cross Site Request Forgery
Posted Apr 18, 2013
Authored by Rafay Baloch

Fork CMS suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | b1f5869ab5f633d45b74847ab258441ea7cf30e564f771344d4b1c00f8ba8c27
Fork CMS Cross Site Scripting
Posted Apr 18, 2013
Authored by Rafay Baloch

Fork CMS suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8c5fae34f52db9b2663429d8f941353d9efee87ca897544f51278843d7e9d2b8
Your Own Classifieds Cross Site Scripting
Posted Mar 8, 2013
Authored by Rafay Baloch

Your Own Classifieds suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.

tags | exploit, xss
SHA-256 | e786093e3303c069a9fedd85ac436abf93cbe3ccc5bf77ce4365711adb19c1e0
WordPress Caulk Path Disclosure
Posted Mar 4, 2013
Authored by Rafay Baloch

WordPress Caulk theme suffers from a path disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 5bb291bc52e07e39d0bf262920b79fe90169e0ccde330097ce186083296ab508
ProActive CMS XSS / CSRF / Open Redirect
Posted Jan 15, 2013
Authored by Rafay Baloch

ProActive CMS suffers from cross site request forgery, cross site scripting, and open redirect vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | 568536e08fe1d3043e92533be68c6b3916ff57e51f21738f12f3c95a131c5879
WHM editfilter.html Stored Cross Site Scripting
Posted Dec 27, 2012
Authored by Rafay Baloch

WHM suffers from a persistent cross site scripting vulnerability in editfilter.html.

tags | exploit, xss
SHA-256 | 498c8c6dadd5adfb705f89ba68b3ada04597df8845b2cbf34b67a9eec9df6b9d
C-Panel dir.html Cross Site Scripting
Posted Dec 26, 2012
Authored by Rafay Baloch

C-Panel suffers from a reflective cross site scripting vulnerability in dir.html.

tags | exploit, xss
SHA-256 | ebfda62ea7ba421bad621e4c285d4c38e464d5d1a5faa994c8009e413af2f391
C-Panel Cross Site Scripting
Posted Dec 24, 2012
Authored by Rafay Baloch

C-Panel suffers from a reflective cross site scripting vulnerability in manage.html.

tags | exploit, xss
SHA-256 | d82a4bc494fbe2f073497ffcfd9405e156889169ee06e1d1c9ea615a5598b3c9
Page 2 of 2
Back12Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close