Showing 1 - 10 of 10

Files Date: 2014-02-09

Android Next Browser 1.16 Information Leakage: Posted Feb 9, 2014; Authored by Keith Makan; Next Browser version 1.16 for Android suffers from a browser history information leakage vulnerability.; tags | advisory, info disclosure; SHA-256 | d7650167265578b146d40c5bf9d94c0b6dd6674d7f1566ebf5b31bc16ace2dd5; Download | Favorite | View

ZTE ZXV10 W300 Hardcoded Credentials: Posted Feb 9, 2014; Authored by Cesar Neira; The ZTE ZXV10 W300 router contains hard-coded credentials that are useable for the telnet service on the device. The username is "admin" and the password is "XXXXairocon" where "XXXX" is the last four characters of the device's MAC address. The MAC address is obtainable over SNMP with community string public.; tags | exploit; SHA-256 | f4ed8e390aaf0ec726b015355351d5726098fe77192fb55fc5a05886a6f225ce; Download | Favorite | View

ASUS Authentication Bypass / File Disclosure: Posted Feb 9, 2014; Authored by Kyle Lovett; ASUS routers are vulnerable to authetnnication bypass and sensitive file disclosure vulnerabilities.; tags | advisory, vulnerability, bypass, info disclosure; SHA-256 | 1821f52b283817610673596a7d3b56a3508d4306d82118292130a704086d8da1; Download | Favorite | View

gpEasy 4.3.x XSS / File Inclusion / Shell Upload: Posted Feb 9, 2014; Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com; gpEasy CMS version 4.3 suffers from cross site scripting, local file inclusion, and remote shell upload vulnerabilities.; tags | exploit, remote, shell, local, vulnerability, xss, file inclusion; SHA-256 | 36879523569e2d0d0729317bc59815a6aec7096726345939b08064e6a50f0702; Download | Favorite | View

WordPress Kidoo Shell Upload: Posted Feb 9, 2014; Authored by TUNISIAN CYBER; WordPress Kidoo theme suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | 6771aaba630fab4ccb442fa05071c0b7b7da1eb2727d602aa333c04d02665afb; Download | Favorite | View

CDKWeb SQL Injection: Posted Feb 9, 2014; Authored by th3rockst3r; Sites designed by CDKWeb suffer from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 18e6679a40b929c337a8620d40a8fc120dcaacca43578f814bb7f43e08244f16; Download | Favorite | View

MantisBT 1.1.0a4 / 1.2.15 SQL Injection: Posted Feb 9, 2014; Authored by Andrea Barisani, Open Source CERT; MantisBT versions greater than and equal to 1.1.0a4 and versions equal to and below 1.2.5 suffer from a remote SQL injection vulnerability.; tags | advisory, remote, sql injection; advisories | CVE-2014-1609, CVE-2014-1608; SHA-256 | fd0d34a47dad6a11159e7c09179b8f9eed808970bfe477a1e8a3cee8b3f5c973; Download | Favorite | View

PHP Live Streaming Cross Site Scripting: Posted Feb 9, 2014; Authored by TUNISIAN CYBER; PHP Live Streaming suffers from a cross site scripting vulnerability.; tags | exploit, php, xss; SHA-256 | b853be0e5da101c4a528a51b00590da0e2c1b772e7632fc9923c5c8e0803ee6e; Download | Favorite | View

FGscanner Directory / Page Scanner 1.1: Posted Feb 9, 2014; Authored by FantaGhost | Site fantaghost.com; FantaGhost is a perl script that assists with penetration testing by scanning for hidden directories and pages.; Changes: This is a new release with User Agent randomization for better evasion.; tags | tool, scanner, perl; systems | unix; SHA-256 | d371bb05da37e66d3eaf99b61f1c5b87c7c22a1ec2a2da466d32ec49b6648899; Download | Favorite | View

Facebook Stories Script Insertion: Posted Feb 9, 2014; Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com; Facebook Stories suffered from an exception handling vulnerability that allowed for script insertion.; tags | exploit; SHA-256 | 2fb2451fd817f38477f72158d244854ed4420f985d8973a68a394b503629040a; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days