what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 101 - 125 of 338

Files from hyp3rlinx

Easy Hosting Control Panel 0.37.12.b Cross Site Scripting Add FTP Account

Posted May 9, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Easy Hosting Control Panel version 0.37.12.b suffers from a cross site scripting vulnerability that allows you to add a backdoor FTP account.

tags | exploit, xss

advisories | CVE-2018-6361

SHA-256 | efa2eac7432c41578c130f45589ae285362ea92d776fd1be1470c47380d3c2e7

Download | Favorite | View

DeviceLock Plug And Play Auditor 5.72 Buffer Overflow

Posted May 7, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

DeviceLock Plug and Play Auditor version 5.72 suffers from a unicode buffer overflow vulnerability.

tags | exploit, overflow

advisories | CVE-2018-10655

SHA-256 | a04b03f127039281244ae032ebdea9fd8c13669ff1f696e985585752c5e8d1d1

Download | Favorite | View

Microsoft Internet Explorer 11.371.16299.0 Denial Of Service

Posted Apr 20, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Microsoft Internet Explorer version 11.371.16299.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service

SHA-256 | aa89751f41c7ac981bc2efac8958af3bcef9d8eab8371f01149940d332da7df8

Download | Favorite | View

Sophos Endpoint Protection 10.7 Insecure Cryptography

Posted Apr 4, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Sophos Endpoint Protection version 10.7 control panel authentication uses a weak unsalted unicoded cryptographic hash (SHA1) function. Not using a salt allows attackers that gain access to hash ability to conduct faster cracking attacks using pre-computed dictionaries, e.g. rainbow tables. This can potentially result in unauthorized access that could allow for changing of settings, whitelist or unquarantine files.

tags | exploit

advisories | CVE-2018-9233

SHA-256 | df0aaf3aee69bce369bbcbdaa1ba7ad4bd24c37e8ba5a6d601b2e884488a5983

Download | Favorite | View

Sophos Endpoint Protection 10.7 Tamper Protection Bypass

Posted Apr 4, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Sophos Endpoint Protection version 10.7 suffers from a tamper protection bypass vulnerability.

tags | exploit, bypass

advisories | CVE-2018-4863

SHA-256 | 5b7ef605d212dfe1f2d4f88c42cdc7b9c393dc17670bc503ed2c1ca962498bab

Download | Favorite | View

Microsoft Exchange Open Redirect

Posted Mar 28, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Microsoft Exchange suffers from an open redirect vulnerability.

tags | exploit

advisories | CVE-2016-3378

SHA-256 | 984f3e5bf9a46dde0835b0d4970d3406f20883bb6d60759b4da0a53b6e0ee2ab

Download | Favorite | View

DEWESoft X3 Remote Internal Command Access

Posted Mar 9, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

DEWESoft X3 suffers from a remote internal command access vulnerability.

tags | exploit, remote

advisories | CVE-2018-7756

SHA-256 | 3e5bdc34490f4b043a0fceeb8da6af08844e67c5a8eb620b1b51ac0732f493b7

Download | Favorite | View

WebLog Expert Web Server Enterprise 9.4 Weak Permissions

Posted Mar 7, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

WebLog Expert Web Server Enterprise version 9.4 has a weak permission vulnerability that allows for authentication bypass.

tags | exploit, web

advisories | CVE-2018-7581

SHA-256 | 010f662a1fb9f24fb14101b08d365be5f1e955df8decc78b3146e1e9264ac012

Download | Favorite | View

WebLog Expert Web Server Enterprise 9.4 Denial Of Service

Posted Mar 7, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

WebLog Expert Web Server Enterprise version 9.4 suffers from a denial of service vulnerability.

tags | exploit, web, denial of service

advisories | CVE-2018-7582

SHA-256 | 9ae53b1cbdbd167fb4453c85800d361a81ad3b64645eba62d855cf49a385ca8b

Download | Favorite | View

Chrome V8 JIT JSBuiltinReducer::ReduceObjectCreate NULL Check Fail

Posted Mar 5, 2018

Authored by Google Security Research, hyp3rlinx, lokihardt

Chrome V8 JIT JSBuiltinReducer::ReduceObjectCreate fails to ensure that the prototype is "null".

tags | exploit

SHA-256 | 1dab39822e88deb84dbd34344ce1eae38572e48ff784b7a073deec1bb63b7b1d

Download | Favorite | View

Softros Network Time System Server 2.3.4 Denial Of Service

Posted Mar 5, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Softros Network Time System Server version 2.3.4 suffers from a denial of service vulnerability.

tags | exploit, denial of service

advisories | CVE-2018-7658

SHA-256 | 7c9dc9be67ccec4b75f3731f09dc82bef2d6203d922a38198acc04027d1abda6

Download | Favorite | View

DualDesk 20 Denial Of Service

Posted Mar 2, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

DualDesk version 20 suffers from a denial of service vulnerability.

tags | exploit, denial of service

advisories | CVE-2018-7583

SHA-256 | cdca6032b4db02f49ca7a6a1ad527a827f3b06c2df4d1a8bf19d5899bd84fecd

Download | Favorite | View

Segger embOS/IP FTP Server 3.22 Denial Of Service

Posted Mar 1, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Segger embOS/IP FTP Server version 3.22 suffers from a denial of service vulnerability.

tags | exploit, denial of service

advisories | CVE-2018-7449

SHA-256 | b027785b60fbd97516e739077063042e3b4f213e867aa0406a078da7f3c49ca0

Download | Favorite | View

CloudMe Sync 1.10.9 Buffer Overflow

Posted Feb 23, 2018

Authored by Daniel Teixeira, hyp3rlinx | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow vulnerability in the CloudMe Sync version 1.10.9 client application. This Metasploit module has been tested successfully on Windows 7 SP1 x86.

tags | exploit, overflow, x86

systems | windows

advisories | CVE-2018-6892

SHA-256 | e772df2bb9bc2559a8e1ce1faef1106d0f6d2691866412f3c6f64ad143790589

Download | Favorite | View

NTCrackPipe 1.0 Local Windows Account Cracker

Posted Feb 23, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NTCrackPipe is a basic local Windows account cracking tool.

tags | local, cracker

systems | windows

SHA-256 | a741c49971df18dea0349f47a6b35981ee7662566883c2a7af13e7c8cbd581f6

Download | Favorite | View

NAT32 Build 22284 Remote Command Execution / CSRF

Posted Feb 14, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NAT32 build 22284 suffers from code execution and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, code execution, csrf

advisories | CVE-2018-6941

SHA-256 | d8265d767cc9b963f07372c12f459b0825a9f700142f218191ee36f7a87b1710

Download | Favorite | View

NAT32 Build 22284 Remote Command Execution

Posted Feb 14, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NAT32 Build 22284 suffers from a remote command execution vulnerability.

tags | exploit, remote

advisories | CVE-2018-6940

SHA-256 | 5e9d5778308626f253822fbf37640788d7ed14246ade5b5d62dbca929e95d132

Download | Favorite | View

CloudMe Sync 1.10.9 Remote Buffer Overflow

Posted Feb 12, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

CloudMe Sync versions 1.10.9 and below suffer from an unauthenticated remote buffer overflow vulnerability.

tags | exploit, remote, overflow

advisories | CVE-2018-6892

SHA-256 | 307a174d4e2ca11e05d03cb3342637326e0256f73524c109407bcf4616f06332

Download | Favorite | View

WINCVS 2009R2 DLL Hijacking

Posted Feb 6, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

WINCVS 2009R2 suffers from a dll hijacking vulnerability.

tags | exploit

advisories | CVE-2018-6461

SHA-256 | 8f24b2af32b71ac5cad26d01ac20c481556848daf3e3aafa9f3ff1d2ac88d55a

Download | Favorite | View

Oracle JDeveloper IDE Directory Traversal

Posted Jan 18, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Oracle JDeveloper IDE suffers from a directory traversal vulnerability.

tags | exploit

advisories | CVE-2017-10273

SHA-256 | 1d176bdbee49ba892cf19cf1e3798bd83c3a891b6a5e40b040c9740c38088530

Download | Favorite | View

Adminer 4.3.1 Server-Side Request Forgery

Posted Jan 15, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Adminer versions 4.3.1 and below suffer from a server-side request forgery vulnerability.

tags | exploit

SHA-256 | 6f1cda8a60924a150f5dd1df915daa581c384cf22f8e66349e29e7b00deb3434

Download | Favorite | View

BarcodeWiz ActiveX Control Buffer Overflow

Posted Jan 6, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

BarcodeWiz ActiveX Control versions prior to 6.7 suffers from a buffer overflow vulnerability.

tags | exploit, overflow, activex

advisories | CVE-2018-5221

SHA-256 | 6101e91a84aee00fafb0cebb5718a2df43f7b5c55b823edf4cf69caa14768177

Download | Favorite | View

Froxlor 0.9.37 HTML Injection

Posted Jan 3, 2018

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Froxlor version 0.9.37 suffers from an html injection vulnerability.

tags | exploit

SHA-256 | 69b8200d1ea5724f13eef7c2da720d54ad8cb24a0f3f6270f5c6728715473215

Download | Favorite | View

Abyss Web Server Memory Heap Corruption

Posted Dec 1, 2017

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Abyss Web Server versions prior to 2.11.6 suffer from a memory heap corruption vulnerability.

tags | exploit, web

SHA-256 | dae523bbc55ad0bfb91d5589960ec218c652ecff3a14d287dccc019acec802b4

Download | Favorite | View

Artica Web Proxy 3.06.112216 Remote Code Execution

Posted Dec 1, 2017

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Artica Web Proxy version 3.06.112216 suffers from a remote code execution vulnerability.

tags | exploit, remote, web, code execution

advisories | CVE-2017-17055

SHA-256 | 999d53685927c8185bb6eec7715c6063c4efdb9165c561921a3cf9e21da22aa8

Download | Favorite | View