what you don't know can hurt you
Showing 1 - 14 of 14 RSS Feed

Files Date: 2010-12-22

Calibre 0.7.34 Cross Site Scripting/ Directory Traversal
Posted Dec 22, 2010
Authored by Janek Vind aka waraxe | Site waraxe.us

Calibre version 0.7.34 suffers from cross site scripting and directory traversal vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 7926a5b17d1dd206306ceab81a44590d
WordPress Viva Thumbs Directory Traversal
Posted Dec 22, 2010
Authored by ProCheckUp, Richard Brain | Site procheckup.com

The WordPress Viva Thumbs add-on suffers from a directory traversal vulnerability.

tags | exploit
MD5 | 2f982f457bab87386f67816d32a21b72
Microsoft WMI Administration Tools ActiveX Buffer Overflow
Posted Dec 22, 2010
Authored by MC, jduck, WooYun | Site metasploit.com

This Metasploit module exploits a memory trust issue in the Microsoft WMI Administration tools ActiveX control. When processing a specially crafted HTML page, the WEBSingleView.ocx ActiveX Control (1.50.1131.0) will treat the 'lCtxHandle' parameter to the 'AddContextRef' and 'ReleaseContext' methods as a trusted pointer. It makes an indirect call via this pointer which leads to arbitrary code execution. This exploit utilizes a combination of heap spraying and the .NET 2.0 'mscorie.dll' module to bypass DEP and ASLR. This Metasploit module does not opt-in to ASLR. As such, this module should be reliable on all Windows versions.

tags | exploit, arbitrary, code execution, activex
systems | windows
advisories | OSVDB-69942
MD5 | 00b95a388e803290f5b2475e02b2e673
Social Share 2010-06-05 HTTP Response Splitting
Posted Dec 22, 2010
Authored by Aliaksandr Hartsuyeu | Site evuln.com

Social Share version 2010-06-05 suffers from a HTTP response splitting vulnerability.

tags | exploit, web
MD5 | 8a10d018a3c5bdd3e1b5592d15c30516
Apple iPhone Safari JS Crash Exploit
Posted Dec 22, 2010
Authored by Pr0T3cT10n

Apple iPhone Safari JS remote crash denial of service proof of concept exploit.

tags | exploit, remote, denial of service, proof of concept
systems | apple, iphone
MD5 | 5dc7b6d95297a5d0cac5b9e75d788ebc
Injader CMS 2.4.4 Cross Site Scripting / SQL Injection
Posted Dec 22, 2010
Authored by High-Tech Bridge SA | Site htbridge.com

Injader CMS version 2.4.4 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 5a649e90e15b324c011a1925156cf1a8
WordPress Accept Signups 0.1 Cross Site Scripting
Posted Dec 22, 2010
Authored by clshack

WordPress Accept Signups version 0.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 71e93d3744673c3eede7c5868880ade2
Farsicom CMS Cross Site Scripting
Posted Dec 22, 2010
Authored by d3c0der

Farsicom CMS suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 49c0f553a752ebc14fb4baec6dc51845
PHP Art Info SQL Injection
Posted Dec 22, 2010
Authored by jos_ali_joe

PHP Art Info suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 9a42bceec8065e1881e1594e96e96263
WMITools Active-X Remote Command Execution
Posted Dec 22, 2010
Authored by WooYun

WMITools active-x remote command execution exploit.

tags | exploit, remote, activex
MD5 | 009ddddb99da0339091932d073ff1395
Hycus CMS 1.0.3 SQL Injection
Posted Dec 22, 2010
Authored by High-Tech Bridge SA | Site htbridge.com

Hycus CMS version 1.0.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 19987c96d1a67eea225efe96a61c3fc8
HyperStrike Integration With Snap Fitness SSO Bypass
Posted Dec 22, 2010
Authored by Mark Stanislav

HyperStrike Integration with Snap Fitness suffers from a SSO bypass vulnerability.

tags | exploit, bypass
MD5 | 188b6c21fc267aef8870b90654e50958
Iran Design Group SQL Injection
Posted Dec 22, 2010
Authored by d3c0der

Iran Design Group suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b7af5644ee09ea6bff09c7bfa45b10df
Wikia.com Cross Site Scripting
Posted Dec 22, 2010
Authored by dave b

Wikia.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1b4d91814d504cfe24339d4716cb65ac
Page 1 of 1
Back1Next

File Archive:

July 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    13 Files
  • 2
    Jul 2nd
    12 Files
  • 3
    Jul 3rd
    1 Files
  • 4
    Jul 4th
    2 Files
  • 5
    Jul 5th
    34 Files
  • 6
    Jul 6th
    21 Files
  • 7
    Jul 7th
    21 Files
  • 8
    Jul 8th
    13 Files
  • 9
    Jul 9th
    6 Files
  • 10
    Jul 10th
    1 Files
  • 11
    Jul 11th
    3 Files
  • 12
    Jul 12th
    15 Files
  • 13
    Jul 13th
    19 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    15 Files
  • 16
    Jul 16th
    9 Files
  • 17
    Jul 17th
    2 Files
  • 18
    Jul 18th
    2 Files
  • 19
    Jul 19th
    19 Files
  • 20
    Jul 20th
    21 Files
  • 21
    Jul 21st
    53 Files
  • 22
    Jul 22nd
    14 Files
  • 23
    Jul 23rd
    14 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close