what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 15 of 15

Files from Jameel Nabbo

IceWarp 10.4.4 Local File Inclusion

Posted Jun 4, 2019

Authored by Jameel Nabbo

IceWarp versions 10.4.4 and below suffer from a local file inclusion vulnerability.

tags | exploit, local, file inclusion

advisories | CVE-2019-12593

SHA-256 | dae303ea612781f1383b6bcf7a6084d95619a0691cd54e27b228b6bd3f359a5e

Download | Favorite | View

Deltek Maconomy 2.2.5 Local File Inclusion

Posted May 27, 2019

Authored by Jameel Nabbo

Deltek Maconomy version 2.2.5 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion

advisories | CVE-2019-12314

SHA-256 | f2cecf22cbc31eab8ed4e6c44b59435d507f9fbc96f52b16c9d342cea5cf19d5

Download | Favorite | View

Nagios XI 5.6.1 SQL Injection

Posted May 23, 2019

Authored by Jameel Nabbo

Nagios XI version 5.6.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2019-12279

SHA-256 | 0418d537082bf935ad351ffdfcfdf6c33a613a01b22067a727425bd053ea4db5

Download | Favorite | View

Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 Remote Code Execution

Posted Mar 5, 2019

Authored by Jameel Nabbo

Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 remote code execution proof of concept exploit.

tags | exploit, remote, code execution, proof of concept

advisories | CVE-2019-7385

SHA-256 | 31c08ad51e70c858c747f8a3e114b52182812ad082a81b7165a6962c2efaac0c

Download | Favorite | View

Jinja2 2.10 Command Injection

Posted Feb 16, 2019

Authored by Jameel Nabbo

Jinja2 version 2.10 suffers from a command injection vulnerability.

tags | exploit

advisories | CVE-2019-8341

SHA-256 | 6dd45eb90ed48901cbcaab10d52937cb60f23104bcc82f69ffc637659118e4c9

Download | Favorite | View

Git Remote Code Execution

Posted Jun 1, 2018

Authored by Jameel Nabbo

Git versions prior to 2.17.1 suffer from a code execution vulnerability.

tags | exploit, code execution

advisories | CVE-2018-11235

SHA-256 | 8e196e2010e639c348e63cab733cd487161fca0cb304007e7c28a22785a24d3e

Download | Favorite | View

Pivotal Spring Java Framework 5.0.x Remote Code Execution

Posted May 29, 2018

Authored by Jameel Nabbo

Pivotal Spring Java Framework versions 5.0.x and below suffer from a remote code execution vulnerability.

tags | exploit, java, remote, code execution

advisories | CVE-2018-1270

SHA-256 | 087734b5669bd630cd35fdbf2949d5549fe449eabe22b9c19c3956d3e1cd2462

Download | Favorite | View

GNU glibc Local Buffer Overflow

Posted May 24, 2018

Authored by Jameel Nabbo

GNU glibc versions prior to 2.27 suffer from a buffer overflow vulnerability.

tags | exploit, overflow

advisories | CVE-2018-11237

SHA-256 | b343af88553f32eaebef15dc533583e14be83f18b64bb6bc38800f729025d2e4

Download | Favorite | View

OpenDaylight SQL Injection

Posted May 24, 2018

Authored by Jameel Nabbo

OpenDaylight suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2018-1132

SHA-256 | 43255904a087721be0857057b2ec5652bb0704796a76fd5486ba3a6e54e048c5

Download | Favorite | View

Code Review Steps And Methodologies

Posted May 23, 2018

Authored by Jameel Nabbo

Whitepaper called Code Review Steps and Methodologies.

tags | paper

SHA-256 | 5e1d8f22028b181e8a36ee97429b5af87f59d577fd8d9b4edd52d4b942811034

Download | Favorite | View

Siemens SIMATIC S7-1200 CPU Cross Site Scripting

Posted May 22, 2018

Authored by Jameel Nabbo, t4rkd3vilz

Siemens SIMATIC S7-1200 CPU suffers from a cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2014-2908

SHA-256 | 1702461e2f3509bc3cc061c3ff42fe5455c97f574a8755c76dd490aab176cbbf

Download | Favorite | View

Siemens SIMATIC S7-1200 CPU Cross Site Request Forgery

Posted May 22, 2018

Authored by Jameel Nabbo, t4rkd3vilz

Siemens SIMATIC S7-1200 suffers from a CPU functionality related cross site request forgery vulnerability.

tags | exploit, csrf

advisories | CVE-2015-5698

SHA-256 | 8c2e5fb98b7508c36b55a7b3e06dc592c881362ae41570c7b65c00ae8e74bb36

Download | Favorite | View

Monstra CMS 3.0.4 Remote Code Execution

Posted May 15, 2018

Authored by Jameel Nabbo

Monstra CMS version 3.0.4 suffers from a shell upload remote code execution vulnerability.

tags | exploit, remote, shell, code execution

advisories | CVE-2018-9037

SHA-256 | e317e4c185f5c6a9f9a57b3bbf13084ad7e1c42c0292bd95a43d6ba98ef8b3fd

Download | Favorite | View

Twig Server Side Template Injection

Posted Feb 16, 2018

Authored by Jameel Nabbo

Twig versions prior to 2.4.4 suffer from a server-side template injection vulnerability.

tags | exploit

SHA-256 | 41d9e8b976dcfef5e66dffbc35eb389cc32e03612fb95d4296ee3076d1589749

Download | Favorite | View

JBoss 4.2.x / 4.3.x Information Disclosure

Posted Feb 9, 2018

Authored by Jameel Nabbo

JBoss versions 4.2.x and 4.3.x suffer from an information disclosure vulnerability.

tags | exploit, info disclosure

advisories | CVE-2010-1429

SHA-256 | 0e2fd33b9f9bd5f397c52b4c3a3eccf448b390c0e0b66ee20c5f079cb3803bd6

Download | Favorite | View