Showing 76 - 100 of 290

Files from MustLive

Email address	private
Website	websecurity.com.ua
First Active	2007-07-07
Last Active	2019-07-08

View User Profile

flv-player 3.5 Cross Site Scripting / Content Spoofing: Posted Oct 9, 2013; Authored by MustLive; flv-player versions 3.5 and below suffer from cross site scripting and content spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | 94fb74e35910da2fab16b7f9e805bd7b138ff19e20118c8c37830e0c8c1d9485; Download | Favorite | View

WordPress RokMicroNews 1.5 XSS / DoS / Shell Upload: Posted Sep 19, 2013; Authored by MustLive; WordPress RokMicroNews plugin versions 1.5 and below suffer from cross site scripting, denial of service, path disclosure, abuse of functionality, and remote shell upload vulnerabilities.; tags | exploit, remote, denial of service, shell, vulnerability, xss; SHA-256 | ea1a5a7a7041572f9f1666622d7a30d7aaf1299bc892596fc238dd0d0c44d675; Download | Favorite | View

WordPress RokIntroScroller 1.8 XSS / DoS / Disclosure / Upload: Posted Sep 19, 2013; Authored by MustLive; WordPress RokIntroScroller plugin versions 1.8 and below suffer from cross site scripting, denial of service, path disclosure, abuse of functionality, and remote shell upload vulnerabilities.; tags | exploit, remote, denial of service, shell, vulnerability, xss; SHA-256 | 51756b3d26e947a4e3e7bee9dc5b4b36ee6fcc6a1dfe1823c1e33467cf47748e; Download | Favorite | View

InstantCMS 1.10.2 Cross Site Scripting: Posted Sep 18, 2013; Authored by MustLive; InstantCMS version 1.10.2 suffers from a cross site scripting vulnerability via the REFERER header.; tags | exploit, xss; SHA-256 | 50e944f02d693a35f1cdad99e4fdd57772e1f3072510b21174aef2ff55dbdeb1; Download | Favorite | View

WordPress RokNewsPager 1.17 Disclosure / Shell Upload / XSS / DoS: Posted Sep 17, 2013; Authored by MustLive; WordPress RokNewsPager plugin version 1.17 suffers from cross site scripting, denial of service, path disclosure, abuse of functionality, and remote shell upload vulnerabilities.; tags | exploit, remote, denial of service, shell, vulnerability, xss, info disclosure; SHA-256 | 9478525d347154fcda7328dbe60c6bfeb918b3150874fd1c635d27e94addacfd; Download | Favorite | View

WordPress RokStories 1.25 Disclosure / Shell Upload / XSS / DoS: Posted Sep 17, 2013; Authored by MustLive; WordPress RokStories plugin version 1.25 suffers from cross site scripting, denial of service, path disclosure, abuse of functionality, and remote shell upload vulnerabilities.; tags | exploit, remote, denial of service, shell, vulnerability, xss, info disclosure; SHA-256 | 0863ac73a48a29232f7f2d7ff9dc54aba5a9f353c60aa43ba69632c79ba9f148; Download | Favorite | View

Uploadify 2.1.4 File Upload / XSS / File Deletion: Posted Sep 13, 2013; Authored by MustLive; Uploadify version 2.1.4 suffers from cross site scripting, arbitrary file deletion, and arbitrary file upload vulnerabilities.; tags | exploit, arbitrary, vulnerability, xss, file upload; SHA-256 | 918baa1c8fe8fe39eaf0e9e6e7cb98daa4c7e1731d544f54af20ff4dd8536e5d; Download | Favorite | View

DAVOSET 1.1.3: Posted Sep 4, 2013; Authored by MustLive; DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.; Changes: Cookie support added. Various other updates.; tags | denial of service; SHA-256 | 10d41aad71b7f29eaadbb288245f66fdd4a7a1d2f851b7485693f878deb86361; Download | Favorite | View

Act Insufficient Authorization: Posted Sep 1, 2013; Authored by MustLive; Act conference software suffers from having insufficient authorization checks in place.; tags | advisory; SHA-256 | 34e9685a7a305ec6123443bfa385f5a6a6393521cf135c27c8ec1f47f86ed338; Download | Favorite | View

Soltech.CMS 0.4 Cross Site Scripting / Content Spoofing: Posted Aug 30, 2013; Authored by MustLive; Soltech.CMS version 0.4 suffers from cross site scripting and content-spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | 3a2128ffc8465d8e9ab1437eee66ccd0120c1ab286e6b4e9656695dcdae0c80b; Download | Favorite | View

GDD FLVPlayer 3.635 Cross Site Scripting / Content Spoofing: Posted Aug 23, 2013; Authored by MustLive; GDD FLVPlayer version 3.635 suffers from cross site scripting and content spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | 44f7dd1212681cf231fd4da478749b23c764aaaf54bf4e11341f3f140cfc4311; Download | Favorite | View

Avaya IP Office Customer Call Reporter 8.0.9.13 XSS: Posted Aug 22, 2013; Authored by MustLive; Avaya IP Office Customer Call Reporter version 8.0.9.13 allows for third party html injection that can lead to cross site scripting.; tags | exploit, xss, file inclusion; SHA-256 | 941dfcae32d82622541f93757b28d47d3dbfcc316809e02f533d9590492b6f78; Download | Favorite | View

Moxiecode Image Manager 3.1.5 XSS / Content Spoofing / Disclosure: Posted Aug 18, 2013; Authored by MustLive; Moxiecode Image Manager version 3.1.5 suffers from cross site scripting, content spoofing, and path disclosure vulnerabilities.; tags | exploit, spoof, vulnerability, xss, info disclosure; SHA-256 | a9e54499e68755d73ba75172dca267dc5981d84e3d9c9cd53376f9acc8ad28fb; Download | Favorite | View

Soltech CMS 0.4 SQL Injection: Posted Aug 14, 2013; Authored by MustLive; Soltech CMS version 0.4 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | c456e6512195b6a7b73173fbd126978ba516f9a26da09e2b8db06a723582941d; Download | Favorite | View

Sybase EAServer XXE Injection: Posted Aug 11, 2013; Authored by MustLive; This is a supplement to the SA-20130719-0 SEC Consult advisory that notes an additional attack vector for an XXE injection vulnerability in Sybase EAServer.; tags | exploit, xxe; SHA-256 | 3cbd8730ac23a8caf0246048e716bcb96d05f72f025815f74e98ae2ed65f3b29; Download | Favorite | View

WPtouch / WPtouch Pro XSS / Path Disclosure: Posted Aug 4, 2013; Authored by MustLive; WPtouch and WPtouch Pro suffer from cross site scripting and path disclosure vulnerabilities.; tags | exploit, vulnerability, xss, info disclosure; SHA-256 | 2a5e82f7f7cd341b3baea6152863318137ec435431e8e23abe78edf1be2a1d1d; Download | Favorite | View

DAVOSET 1.1.2: Posted Jul 31, 2013; Authored by MustLive; DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.; Changes: Various updates.; tags | denial of service; SHA-256 | a1614a6f14bb9e9c5ef22b488b156cfbb4b88c0698998d71453118c95f46e904; Download | Favorite | View

Joomla Googlemaps 3.2 Cross Site Scripting / Denial Of Service: Posted Jul 26, 2013; Authored by MustLive; Joomla Googlemaps plugin version 3.2 suffers from cross site scripting and denial of service vulnerabilities.; tags | exploit, denial of service, vulnerability, xss; SHA-256 | d2ba9c614111d4d02b0e070dcc14bca5220f56187e1021e317c465c625078204; Download | Favorite | View

DAVOSET 1.1.1: Posted Jul 20, 2013; Authored by MustLive; DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.; Changes: Various updates.; tags | denial of service; SHA-256 | 87730ed90b89d93ac706e6dca7ffb508b64659fbefaf41acab470380cc9e5987; Download | Favorite | View

TinyMCE Image Manager 1.1 XSS / File Upload: Posted Jul 19, 2013; Authored by MustLive; TinyMCE Image Manager versions 1.1 and below suffer cross site scripting and remote shell upload vulnerabilities.; tags | exploit, remote, shell, vulnerability, xss, file upload; SHA-256 | c4c3c25bb2e20196080641e3f82f29017c3102e1dca37abdab1c4328a6da5895; Download | Favorite | View

Joomla Googlemaps XSS / XML Injection / Path Disclosure / DoS: Posted Jul 17, 2013; Authored by MustLive; The Joomla Googlemaps plugin suffers from cross site scripting, path disclosure, denial of service, and XML injection vulnerabilities.; tags | exploit, denial of service, vulnerability, xss, xxe; SHA-256 | 165dc70f4d8846397f4d21ce1f9794a33e98cb8d13ea08baf7996288d00ca669; Download | Favorite | View

TinyMCE Image Manager 1.1 Cross Site Scripting: Posted Jul 15, 2013; Authored by MustLive; TinyMCE Image Manager versions 1.1 and below suffer from a cross site scripting and content spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | e55aa3aa8b2c3f02ed3a4e8d382c5d7f6b8a8782e1f5c69b053233d74a800737; Download | Favorite | View

DAVOSET 1.1: Posted Jul 15, 2013; Authored by MustLive; DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.; Changes: Various updates.; tags | tool, denial of service; SHA-256 | 5afe9bc74e4908a316df00183a39a9d6eb436d2a53e45c241750e2cbdc3b77ee; Download | Favorite | View

WordPress I Love It XSS / Content Spoofing / Path Disclosure: Posted Jul 13, 2013; Authored by MustLive; The WordPress I Love It theme suffers from cross site scripting, content spoofing, and path disclosure vulnerabilities.; tags | exploit, spoof, vulnerability, xss, info disclosure; SHA-256 | 781da1e7aeb3a72439cf3b06e380d6b86f400e90a518a7210062bb2d8bee4e9b; Download | Favorite | View

WordPress Search N Save XSS / Path Disclosure: Posted Jul 7, 2013; Authored by MustLive; The WordPress Search N Save plugin suffers from cross site scripting and path disclosure vulnerabilities.; tags | exploit, vulnerability, xss, info disclosure; SHA-256 | 27be47f29fed9d58e63bf72528e3a02636bdb8d109dc731254eb8126a836e678; Download | Favorite | View

Page 4 of 12 Back 2 3 4 5 6 Next

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,318)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,567)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,456)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Files from MustLive

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems