Showing 101 - 125 of 290

Files from MustLive

Email address	private
Website	websecurity.com.ua
First Active	2007-07-07
Last Active	2019-07-08

View User Profile

DAVOSET 1.0.9: Posted Jul 6, 2013; Authored by MustLive; DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.; Changes: Added support for CSRF tokens.; tags | denial of service; SHA-256 | e30d379c9559e2b2ec39a485dbeea2d5d1c36017af9db0846f9bfa3021a52725; Download | Favorite | View

WordPress 3.5.1 Cross Site Scripting: Posted Jul 3, 2013; Authored by MustLive; WordPress versions 3.5.1 and below suffer from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 399aaad0a5a0c95b905a8449580b6486f0eff6989d9a49975f44518cc7308ae9; Download | Favorite | View

Moxieplayer Content Spoofing: Posted Jul 1, 2013; Authored by MustLive; TinyMCE versions 3.4b2 through 4.0b3 and WordPress versions up to 3.5.1 suffer from content spoofing issues with Moxieplayer. .; tags | exploit, spoof; SHA-256 | 598b87e6a2a44fe517b2304a10e934f9b7d17b3ffadc7e40f05eb037bfca680d; Download | Favorite | View

WordPress Slash Theme XSS / Spoofing / Disclosure: Posted Jun 21, 2013; Authored by MustLive; The Slash theme for WordPress suffers from cross site scripting, content spoofing, and path disclosure vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | a99cba04e795f7b79896872c6d6ff57f05ad21de70d7e533d95a3ebf48628267; Download | Favorite | View

aCMS 1.0 Shell Upload / Insufficient Authorization: Posted Jun 4, 2013; Authored by MustLive; aCMS version 1.0 suffers from authentication bypass and remote shell upload vulnerabilities.; tags | exploit, remote, shell, vulnerability; SHA-256 | 875ffc473c15baa5846810a8e8bb150911ceee8efcf610bea5bbed80667ad678; Download | Favorite | View

AntiVirus For WordPress 1.0 Path Disclosure / Bypass: Posted Jun 2, 2013; Authored by MustLive; AntiVirus for WordPress version 1.0 suffers from security bypass and path disclosure vulnerabilities.; tags | advisory, vulnerability, bypass; SHA-256 | 0271b9f61209e7bc28bc04692baa01327ddec0b5dac9ef1d98f84af5b58aa72f; Download | Favorite | View

aCMS 1.0 XSS / Content Spoofing / Information Leak: Posted May 27, 2013; Authored by MustLive; aCMS versions 1.0 and below suffer from cross site scripting, content spoofing, and information leakage vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | ae8043acb7b2da9c98837d31f51c47bde25e8182d74dffb82eb080368936bda9; Download | Favorite | View

Moxiecode Image Manager 3.1.5 Shell Upload: Posted May 19, 2013; Authored by MustLive; Moxiecode Image Manager (MCImageManager) versions 3.1.5 and below suffer from a remote shell upload vulnerability. Moxiecode is a commercial plugin for TinyMCE.; tags | exploit, remote, shell; SHA-256 | fd409e0d8cd4de78eff2f6ed557b4a1f24ec4438e3f2e3e0eb5a1b05640107ce; Download | Favorite | View

Moxiecode File Manager 3.1.5 Shell Upload: Posted May 17, 2013; Authored by MustLive; Moxiecode File Manager (MCFileManager) versions 3.1.5 and below suffer from a remote shell upload vulnerability. Moxiecode is a commercial plugin for TinyMCE.; tags | exploit, remote, shell; SHA-256 | d69aae839dcc779cfba73a5bfb9cc79a717869c8399e3bd4c4f76e7dab581afe; Download | Favorite | View

WordPress Video JS Cross Site Scripting: Posted May 14, 2013; Authored by MustLive; Various WordPress plugins that embed video-js.swf suffer from cross site scripting vulnerabilities. These include Video Embed and Thumbnail Generator, External "Video for Everybody", 1player, S3 Video and EasySqueezePage.; tags | exploit, vulnerability, xss; SHA-256 | 5353566b47099624d07091f78ba99de22b3590171921393a6150f67e5e76fda4; Download | Favorite | View

WordPress Search And Share 0.9.3 Cross Site Scripting: Posted May 12, 2013; Authored by MustLive; WordPress Search and Share plugin versions 0.9.3 and below suffer from cross site scripting and path disclosure vulnerabilities.; tags | exploit, vulnerability, xss, info disclosure; SHA-256 | d3f719826cc457e3ab50d980ad4af6a0ee7713b621aca27072a59e42c82c49ab; Download | Favorite | View

JW Player / JW Player Pro 5.x Cross Site Scripting: Posted May 6, 2013; Authored by MustLive; JW Player and JW Player Pro versions prior to 5.10.2393 suffer from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 3245ddea3643dcef93da43abf81563693bdd734be6dea6a9c28c227473275b39; Download | Favorite | View

VideoJS Cross Site Scripting: Posted May 6, 2013; Authored by MustLive; VideoJS suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 139174ef78c5cd7005b493eea97a84315c36e8d0deb9be083d494629a3bc8d5d; Download | Favorite | View

jPlayer 2.2.22 XSS / Content Spoofing: Posted Apr 21, 2013; Authored by MustLive; jPlayer versions prior to 2.2.23 suffers from cross site scripting and content spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss; SHA-256 | f94ef8fdaa3dc74661bbc1b8766b3b3b4a20d05453c794dd0c73d914c5ee1c5e; Download | Favorite | View

WordPress Colormix XSS / Content Spoofing / Path Disclosure: Posted Apr 21, 2013; Authored by MustLive; WordPress Colormix theme suffers from cross site scripting, path disclosure, and content spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss, file inclusion, info disclosure; SHA-256 | 1a6d8b2caf5b79f12115a437ecd623f9858b32df35626257b4cff71c1392af40; Download | Favorite | View

AI-Bolit Brute Force / Information Leakage: Posted Apr 15, 2013; Authored by MustLive; AI-Bolit suffers from brute force and information leakage vulnerabilities.; tags | advisory, vulnerability, info disclosure; SHA-256 | cd659b08454a502774ca7e794c443e308ef7ac01e2ca247b422c8b380af6fd68; Download | Favorite | View

Dotclear 2.4.4 Cross Site Scripting / Content Spoofing: Posted Apr 13, 2013; Authored by MustLive; CMS Dotclear version 2.4.4 suffers from cross site scripting and content spoofing vulnerabilities.; tags | exploit, spoof, vulnerability, xss; advisories | CVE-2012-3414; SHA-256 | 625cc001772f2b42ce6045d05996c1d2b54a79d66309e300357424fc1b5ada2f; Download | Favorite | View

ZeroClipbord.swf Cross Site Scripting / Path Disclosure: Posted Apr 9, 2013; Authored by MustLive; ZeroClipboard.swf as included with multiple themes in WordPress suffers from cross site scripting and path disclosure vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2013-1808; SHA-256 | ccfe1281dfc6e4e26e5a0d6d1b3b97070667132a8dc4e5c06f901a7d32b12f8c; Download | Favorite | View

Lotus Domino 8.5.4 Cross Site Scripting: Posted Mar 27, 2013; Authored by MustLive; Lotus Domino versions 8.5.4 and below suffer from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 341d00e048b74b02c865cf233315d109c732984dccad4ca99ee5119609246fa4; Download | Favorite | View

SWFUpload Content Spoofing / Cross Site Scripting: Posted Mar 10, 2013; Authored by MustLive; SWFUpload suffers from cross site scripting and content spoofing vulnerabilities.; tags | advisory, spoof, vulnerability, xss; SHA-256 | 867eb7440d9bd9d939fee46d88b71c63491809a696ba27253555d88f0a1d94e1; Download | Favorite | View

D-Link DAP 1150 Cross Site Request Forgery: Posted Mar 9, 2013; Authored by MustLive; This file contains multiple cross site request forgery proof of concepts for old issues associated with the D-Link DAP 1150.; tags | exploit, proof of concept, csrf; SHA-256 | 1ce4b9cbe4f534fbae4789b1f32592413776835b37addb31f2b0d689d734ecd4; Download | Favorite | View

Question2Answer Cross Site Request Forgery: Posted Mar 8, 2013; Authored by MustLive; This is a demonstration cross site request forgery exploit for Question2Answer that also takes advantage of an insufficient anti-automation issue.; tags | exploit, csrf; SHA-256 | e8a626660486f464fd58c9ab8052bbb89a6150a1f60768dade0cfcad6e8669e4; Download | Favorite | View

Question2Answer 1.5.3 CSRF / Brute Force: Posted Mar 2, 2013; Authored by MustLive; Question2Answer version 1.5.2 suffers from cross site request forgery, anti-automation, and brute force vulnerabilities.; tags | exploit, vulnerability, csrf; SHA-256 | 0d285a8516708b72c2d0587d8018386c2f041ad61b1c7ef403600b7cc65fc295; Download | Favorite | View

Various Applications Include ZeroClipboard XSS: Posted Feb 20, 2013; Authored by MustLive; YAML, MultiProject extension for Trac, UserCollections extension for Piwigo, TAO and TableTools plugin for DataTables plugin for jQuery are all affected by the cross site scripting issues discovered in ZeroClipboard as they include the swf.; tags | exploit, xss; SHA-256 | d81a83c614cfc84ec66ca68b939dab7074dc98d401693f0c5c6943182dcd0229; Download | Favorite | View

ZeroClipboard 1.0.7 Cross Site Scripting: Posted Feb 18, 2013; Authored by MustLive; ZeroClipboard version 1.0.7 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | af0fb722151319ca3401d5bdc35794d73db7ab87076d7f0e2c5f17677005d202; Download | Favorite | View

Page 5 of 12 Back 3 4 5 6 7 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

Files from MustLive

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems