Showing 1 - 8 of 8

Files from David Vaartjes

WordPress VaultPress 1.8.4 Remote Code Execution / Man-In-The-Middle: Posted Mar 3, 2017; Authored by David Vaartjes; WordPress VaultPress plugin version 1.8.4 suffers from a remote code execution via man-in-the-middle attack vulnerability.; tags | exploit, remote, code execution; SHA-256 | 4c056c1d1a19a56f28c822e0b04fb7a61c23f8d3512b2811ce4e0043e1f21294; Download | Favorite | View

WordPress File Manager 3.0.1 Cross Site Request Forgery: Posted Mar 3, 2017; Authored by David Vaartjes; WordPress File Manager plugin version 3.0.1 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 4044be73a6c46388f08a416c5ccba16c92ff6dd5a56f864eaa5665410b1df8e7; Download | Favorite | View

WordPress Adminer 1.4.4 Interface Exposure: Posted Mar 3, 2017; Authored by David Vaartjes; WordPress Adminer plugin version 1.4.4 suffers from an interface exposure issue.; tags | exploit; SHA-256 | 993435fbb5bf04ca5f37efa96c5065c70f217f56fe3575d24794b9eb711fc4d8; Download | Favorite | View

WordPress Video Player 1.5.16 SQL Injection: Posted Jul 19, 2016; Authored by David Vaartjes, Yorick Koster, Securify B.V.; WordPress Video Player plugin version 1.5.16 suffers from multiple remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; SHA-256 | e466846931ce435c89ed6a17e672eaf0b4818880fd543e1016bd3f3bc4de6f26; Download | Favorite | View

WordPress All In One SEO Pack 2.3.6.1 Cross Site Scripting: Posted Jul 11, 2016; Authored by David Vaartjes; WordPress All In One SEO Pack plugin version 2.3.6.1 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | a0532b8b84d3b391236eaaec772e4390119e418ddeb1bdb40bb92cad63c83984; Download | Favorite | View

applequick-overflow.txt: Posted Sep 5, 2007; Authored by David Vaartjes; Apple QuickTime versions below 7.2 suffer from an integer overflow vulnerability when parsing SMIL files.; tags | advisory, overflow; systems | apple; advisories | CVE-2007-2394; SHA-256 | e36c02a2c04082aa2c63f8d1c8a1df4fb25b780e0fa834ce70d526c5f5c15948; Download | Favorite | View

apple-overflow.txt: Posted Sep 5, 2007; Authored by David Vaartjes; Apple QuickTime versions below 7.2 SMIL integer overflow proof of concept exploit.; tags | exploit, overflow, proof of concept; systems | apple; advisories | CVE-2007-2394; SHA-256 | 2f3e5a11e54dc958cbf55cdda9222ff8b5d78230cbc5a236157ad32dc19465f7; Download | Favorite | View

iDEFENSE Security Advisory 2007-07-11.7: Posted Jul 12, 2007; Authored by iDefense Labs, David Vaartjes | Site idefense.com; iDefense Security Advisory 07.11.07 - Remote exploitation of an integer overflow vulnerability in Apple Computer Inc.'s QuickTime media player could allow attackers to execute arbitrary code in the context of the targeted user. The vulnerability specifically exists in QuickTime players handling of the title and author fields in an SMIL file. When parsing an SMIL file, arithmetic calculations can cause insufficient memory to be allocated. When copying in user-supplied data from the SMIL file, a heap-based buffer overflow occurs. This results in a potentially exploitable condition. iDefense Labs confirmed this vulnerability exists in version 7.1.3 and 7.1.5 of QuickTime on Windows and Mac OS X. Previous versions are suspected to be vulnerable.; tags | advisory, remote, overflow, arbitrary; systems | windows, apple, osx; advisories | CVE-2007-2394; SHA-256 | 47414f47b8bbf7fd2ae4454d3603f79eb1ec643f41903bb5279b43ecf83e4bc7; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days