exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

CVE-2016-4010

Status Candidate

Overview

Magento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks and execute arbitrary PHP code via crafted serialized shopping cart data.

Related Files

Magento 2.0.6 Unserialize Remote Code Execution: Posted Jun 3, 2016; Authored by agix, Netanel Rubin | Site metasploit.com; This Metasploit module exploits a PHP object injection vulnerability in Magento 2.0.6 or prior.; tags | exploit, php; advisories | CVE-2016-4010; SHA-256 | 0f4a54fd7327964f36b2aa61027c88bb06c66470231cb05fee46900549f0def5; Download | Favorite | View

Magento Unauthenticated Arbitrary File Write: Posted May 18, 2016; Authored by agix; Magento versions prior to 2.0.6 suffer from an unauthenticated arbitrary unserialize to arbitrary write file vulnerability.; tags | exploit, arbitrary; advisories | CVE-2016-4010; SHA-256 | aabdfe5b303d6f19ce1fc498c50679f141c6beebfcd6c15c192c8f28b94a86a8; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 394 files
Ubuntu 83 files
Debian 30 files
Gentoo 21 files
tmrswrr 9 files
R0ckE7 5 files
Ph0s 5 files
Google Security Research 4 files
Rahad Chowdhury 4 files
Chizuru Toyama 3 files

File Tags

File Archives

Systems

AIX (429)
Apple (2,037)
BSD (375)
CentOS (57)
Cisco (1,926)
Debian (6,910)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,379)
HPUX (880)
iOS (363)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (47,809)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (486)
RedHat (14,602)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,122)
UNIX (9,339)
UnixWare (187)
Windows (6,606)
Other

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec