exploit the possibilities
Showing 1 - 25 of 669 RSS Feed

Files from LiquidWorm

Real NameGjoko Krstic
Email addressprivate
First Active2007-07-26
Last Active2020-01-28
View User Profile
Fifthplay S.A.M.I Cross Site Request Forgery / Cross Site Scripting
Posted Jan 28, 2020
Authored by LiquidWorm | Site zeroscience.mk

Fifthplay S.A.M.I suffers from cross site request forgery and persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | bebdd5f220b92068c205b2449bc5e81e
Thrive Smart Home 1.1 SQL Injection
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

Thrive Smart Home version 1.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 77fa2ff07fff998018a221ce9eca4313
Thrive Smart Home 1.1 Cross Site Scripting
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

Thrive Smart Home version 1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7bf380a8440ed49b889c303e67f82cc6
HomeAutomation 3.3.2 Open Redirect
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

HomeAutomation version 3.3.2 suffers from an open redirection vulnerability.

tags | exploit
MD5 | 630d0cbd683fd34193cbca469d7e85d9
HomeAutomation 3.3.2 CSRF / Code Execution
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

HomeAutomation version 3.3.2 suffers from a cross site request forgery vulnerability that allows for remote command execution.

tags | exploit, remote, csrf
MD5 | 7a30bd09a47e106df3ab7b988c8b1342
HomeAutomation 3.3.2 Cross Site Request Forgery
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

HomeAutomation version 3.3.2 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | f521d14fc5f05ace7e2a49937acea647
HomeAutomation 3.3.2 Authentication Bypass
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

HomeAutomation version 3.3.2 authentication bypass exploit.

tags | exploit
MD5 | 921241dc04c0b6e0180069cb9f3dbcda
MyDomoAtHome (MDAH) REST API Domoticz ISS Gateway 0.2.40 Information Disclosure
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

MyDomoAtHome REST API is affected by an information disclosure vulnerability due to improper access control enforcement. An unauthenticated remote attacker can exploit this, via a specially crafted request to gain access to sensitive information.

tags | exploit, remote, info disclosure
MD5 | a1b1c0aaf9c17fbc3d0e5a3f982a85d5
HomeAutomation 3.3.2 Cross Site Scripting
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

HomeAutomation version 3.3.2 suffers from persistent and reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 474a51866f9db5110eab6aaf47fedf9b
WEMS BEMS 21.3.1 Undocumented Backdoor Account
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

WEMS BEMS version 21.3.1 has an undocumented backdoor account that is Base64 encoded. These sets of credentials are never exposed to the end-user and cannot be changed through any normal operation of the controller thru the RMI.

tags | exploit
MD5 | 435b68cd5f2973394cdaaaa858de0877
WEMS Enterprise Manager 2.58 Cross Site Scripting
Posted Dec 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

WEMS Enterprise Manager version 2.58 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | fd26e913be2f2993ba411b392e5e811e
AVE DOMINAplus 1.10.x Credential Disclosure
Posted Dec 27, 2019
Authored by LiquidWorm | Site zeroscience.mk

AVE DOMINAplus versions 1.10.x and below suffer from a credential disclosure vulnerability.

tags | exploit
MD5 | 790cebd99238b5f56d27aae90d23bcca
AVE DOMINAplus 1.10.x Authentication Bypass
Posted Dec 27, 2019
Authored by LiquidWorm | Site zeroscience.mk

AVE DOMINAplus versions 1.10.x and below suffer from an authentication bypass vulnerability.

tags | exploit, bypass
MD5 | c5f612ad8d0f1f6fb79558c6059ce3cd
AVE DOMINAplus 1.10.x Unauthenticated Remote Reboot
Posted Dec 27, 2019
Authored by LiquidWorm | Site zeroscience.mk

AVE DOMINAplus versions 1.10.x and below suffer from an unauthenticated remote reboot vulnerability.

tags | exploit, remote
MD5 | 70f9df15a086d45c69183bd680a64058
AVE DOMINAplus 1.10.x Cross Site Request Forgery / Cross Site Scripting
Posted Dec 27, 2019
Authored by LiquidWorm | Site zeroscience.mk

AVE DOMINAplus versions 1.10.x and below suffer from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 32afcabd04560ba106459f344891b30f
Inim Electronics Smartliving SmartLAN/G/SI 6.x Hard-Coded Credentials
Posted Dec 10, 2019
Authored by LiquidWorm | Site zeroscience.mk

Inim Electronics Smartliving SmartLAN/G/SI versions 6.x and below suffer from a hard-coded credential vulnerability.

tags | exploit
MD5 | 04f17bebbbf0986a1f927de3cebd3ef5
Inim Electronics Smartliving SmartLAN/G/SI 6.x SSRF
Posted Dec 10, 2019
Authored by LiquidWorm | Site zeroscience.mk

Inim Electronics Smartliving SmartLAN/G/SI versions 6.x and below suffer from an unauthenticated server-side request forgery vulnerability.

tags | exploit
MD5 | f21751ca54479762c2e2bdb3358bab9d
Inim Electronics SmartLiving SmartLAN/G/SI 6.x Remote Root
Posted Dec 10, 2019
Authored by LiquidWorm | Site zeroscience.mk

Inim Electronics SmartLiving SmartLAN/G/SI versions 6.x and below suffer from a remote root command execution vulnerability.

tags | exploit, remote, root
MD5 | fa5b04b87f4f1fdd3b909cfc78a8b51d
Carlo Gavazzi SmartHouse 6.5.33 XSS / Cross Site Request Forgery
Posted Nov 30, 2019
Authored by LiquidWorm | Site zeroscience.mk

Carlo Gavazzi SmartHouse version 6.5.33 suffers from cross site request forgery along with both reflective and persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | f5aa80c5cb2cadfa9ee5b17f1d2b275f
Siemens Desigo PX 6.00 Denial Of Service
Posted Nov 13, 2019
Authored by LiquidWorm | Site zeroscience.mk

Siemens Desigo PX version 6.00 remote denial of service exploit.

tags | exploit, remote, denial of service
advisories | CVE-2019-13927
MD5 | ff3cb29a406be177d92d8d565fbd8510
Prima Access Control 2.3.35 Cross Site Scripting
Posted Nov 12, 2019
Authored by LiquidWorm | Site applied-risk.com

Prima Access Control version 2.3.35 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-7671
MD5 | ebbe11b64bcf2c75a9fda017ed7cf988
Prima Access Control 2.3.35 Script Upload Remote Code Execution
Posted Nov 12, 2019
Authored by LiquidWorm | Site applied-risk.com

Prima Access Control version 2.3.35 authenticated python script upload remote root code execution exploit.

tags | exploit, remote, root, code execution, python
advisories | CVE-2019-9189
MD5 | 117f749e7f2c75221ff5de44fb05a88a
Linear eMerge E3 Access Controller Command Injection
Posted Nov 12, 2019
Authored by LiquidWorm | Site metasploit.com

This Metasploit module exploits a command injection vulnerability in the Linear eMerge E3 Access Controller.

tags | exploit
advisories | CVE-2019-7256
MD5 | 10ce46aa8da29e972a327cb675669d8e
FlexAir Access Control 2.3.38 Remote Root
Posted Nov 12, 2019
Authored by LiquidWorm | Site applied-risk.com

FlexAir Access Control version 2.3.38 authenticated remote root exploit that leverages command injection via a SetNTPServer request.

tags | exploit, remote, root
advisories | CVE-2019-7670
MD5 | cf54608f4937667e47f6bc6cb218dd77
Optergy 2.3.0a Remote Root
Posted Nov 12, 2019
Authored by LiquidWorm | Site applied-risk.com

Optergy versions 2.3.0a and below authenticated file upload remote root code execution exploit.

tags | exploit, remote, root, code execution, file upload
advisories | CVE-2019-7274
MD5 | f65d6a3bb4f0613c29b924c18b98dc3d
Page 1 of 27
Back12345Next

File Archive:

February 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    1 Files
  • 2
    Feb 2nd
    2 Files
  • 3
    Feb 3rd
    17 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    16 Files
  • 7
    Feb 7th
    19 Files
  • 8
    Feb 8th
    1 Files
  • 9
    Feb 9th
    2 Files
  • 10
    Feb 10th
    15 Files
  • 11
    Feb 11th
    20 Files
  • 12
    Feb 12th
    12 Files
  • 13
    Feb 13th
    18 Files
  • 14
    Feb 14th
    17 Files
  • 15
    Feb 15th
    4 Files
  • 16
    Feb 16th
    4 Files
  • 17
    Feb 17th
    34 Files
  • 18
    Feb 18th
    15 Files
  • 19
    Feb 19th
    19 Files
  • 20
    Feb 20th
    20 Files
  • 21
    Feb 21st
    11 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close