exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2014-03-02

Packet Storm New Exploits For February, 2014
Posted Mar 2, 2014
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 194 exploits added to Packet Storm in February, 2014.

tags | exploit
systems | linux
SHA-256 | a8fd62e9bf38ed32f4e068b84772b5b803b9c1c52828d122b550562b241a3495
Download | Favorite | View
SpagoBI 4.0 Cross Site Scripting / Shell Upload
Posted Mar 2, 2014
Authored by Christian Catalano

SpagoBI version 4.0 suffers from cross site scripting and arbitrary file upload vulnerabilities. The file upload issue could possibly lead to code execution.

tags | exploit, arbitrary, vulnerability, code execution, xss, file upload
advisories | CVE-2013-6234
SHA-256 | a473d04492ed0ca46728806a232c7a6ee98f70e5940464e4217b27d3d8c8a651
Download | Favorite | View
SpagoBI 4.0 HTML Injection
Posted Mar 2, 2014
Authored by Christian Catalano

SpagoBI version 4.0 suffers from an HTML injection vulnerability.

tags | exploit
advisories | CVE-2013-6233
SHA-256 | b8ca2e456b6ec5e643124527c4b74faae73a8dcad1893f8c1471c09a33533b6f
Download | Favorite | View
SpagoBI 4.0 Stored Cross Site Scripting
Posted Mar 2, 2014
Authored by Christian Catalano

SpagoBI version 4.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6232
SHA-256 | 8d2851f9ad8e9898fb04e583d9b3ed25ef61555335668592cc857b8a3fb00edd
Download | Favorite | View
Kloxo Remote Root Exploit
Posted Mar 2, 2014
Authored by Simo Ben Youssef | Site morxploit.com

Kloxo remote root exploit that leverages a blind SQL injection and injects a perl connect back shell (/bin/sh) with root privilege.

tags | exploit, remote, shell, root, perl, sql injection
SHA-256 | 213c3c585b47a14933b6124a7f1920fbb8c4e5c0810f0b6ed489b24fed1bacf7
Download | Favorite | View
MantisBT 1.2.16 SQL Injection
Posted Mar 2, 2014
Authored by HauntIT

MantisBT version 1.2.16 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 920455a7475eaa40b79d5ec69566d82d5c1e669a641ca3c45e1041ff75adafed
Download | Favorite | View
Apache Camel Critical Disclosure
Posted Mar 2, 2014
Authored by David Jorm | Site camel.apache.org

The Apache Camel XSLT component allows XSL stylesheets to perform calls to external Java methods. A remote attacker able to submit messages to an xslt Camel route could use this flaw to perform arbitrary remote code execution in the context of the Camel server process.

tags | advisory, java, remote, arbitrary, code execution
advisories | CVE-2014-0003
SHA-256 | 16d61125bccfc6affa82e15c5c566204232ffce7c6669084cb73248d471b2e3e
Download | Favorite | View
Apache Camel Resolve Entities Information Disclosure
Posted Mar 2, 2014
Authored by David Jorm | Site camel.apache.org

The Apache Camel XSLT component will resolve entities in XML messages when transforming them using an xslt route. A remote attacker able to submit messages to an xslt route could use this flaw to read files accessible to the running application server and potentially perform other more advanced XXE attacks. Versions affected include Camel 2.11.0 to 2.11.3 and Camel 2.12.0 to 2.12.2.

tags | advisory, remote, xxe
advisories | CVE-2014-0002
SHA-256 | fdf7091172d1b40b3ec4395b99eb19719f939f7a365eba05f6877cc447aea1a5
Download | Favorite | View
Oracle Demantra 12.2.1 SQL Injection
Posted Mar 2, 2014
Authored by Oliver Gruskovnjak | Site portcullis-security.com

Oracle Demantra version 12.2.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2014-0372
SHA-256 | e6d434efc38aab175c902c37183ad49117756b960474270a07fd737915c97885
Download | Favorite | View
Oracle Demantra 12.2.1 Stored Cross Site Scripting
Posted Mar 2, 2014
Authored by Oliver Gruskovnjak | Site portcullis-security.com

Oracle Demantra version 12.2.1 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2014-0379
SHA-256 | 89044605cbc525d513b4e2c2d308ae8b79dc792e462e488af746f24809fa0679
Download | Favorite | View
Oracle Demantra 12.2.1 Reflective Cross Site Scripting
Posted Mar 2, 2014
Authored by Oliver Gruskovnjak | Site portcullis-security.com

Oracle Demantra version 12.2.1 suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2014-0371
SHA-256 | df44f22e1d16f43794d1900fcb17cdf17017f5457dba27a612e857a93198d972
Download | Favorite | View
Oracle Demantra 12.2.1 Database Credential Leak
Posted Mar 2, 2014
Authored by Oliver Gruskovnjak | Site portcullis-security.com

Oracle Demantra version 12.2.1 suffers from a data credential leak vulnerability.

tags | exploit
advisories | CVE-2013-5795
SHA-256 | b9b01b43131f69b5a4c244a19b93d2285defe22fa61712c617f9ae8004931499
Download | Favorite | View
Oracle Demantra 12.2.1 Authentication Bypass
Posted Mar 2, 2014
Authored by Oliver Gruskovnjak | Site portcullis-security.com

Oracle Demantra version 12.2.1 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2013-5880
SHA-256 | 5d25d830d7b645fdd2a97ca4d9b22da401329b136dbcad127f05ff38630c4e51
Download | Favorite | View
Fitnesse Wiki 20131110 Remote Command Execution
Posted Mar 2, 2014
Authored by Jerzy Kramarz | Site portcullis-security.com

Fitnesse Wiki 20131110 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2014-1216
SHA-256 | 58b73d366674c4ba0e1a06038fec04685f8447b00fbd9cd496acfc30640d35a4
Download | Favorite | View
CoryApp Cory Support SQL Injection
Posted Mar 2, 2014
Authored by Slotleet

CoryApp Cory Support suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 658e821835139ccb78601a7ff35365dc9bd8763a2c386ad070ffbdff9b4c1867
Download | Favorite | View
OpenSupports Remote Shell Upload
Posted Mar 2, 2014
Authored by Slotleet

Sites powered by OpenSupports suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 0fd8f1d2a0476eaed3739af60883789c38157005a6d862c5996e4dce62d10c19
Download | Favorite | View
Page 1 of 1
Back1Next

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    22 Files
  • 18
    Apr 18th
    45 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close