what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 11 of 11

Files Date: 2014-03-09

Herpes Net 3.0 SQL Injection

Posted Mar 9, 2014

Authored by bwall

Proof of concept exploit that extracts a database from a Herpes Net version 3.0 bot panel.

tags | exploit, proof of concept

SHA-256 | cc5282d37d5f2246d390d44424efdff5947d038323bb02b1e1e686ccb66512ab

Download | Favorite | View

GetGo Download Manager 4.9.0.1982 Buffer Overflow

Posted Mar 9, 2014

Authored by Julien Ahrens | Site rcesecurity.com

GetGo Download Manager version 4.9.0.1982 HTTP response header buffer overflow remote code execution exploit.

tags | exploit, remote, web, overflow, code execution

advisories | CVE-2014-2206

SHA-256 | b71f7cfd63c6e6d52aa0cd84b8e6587aad6d03dad7f571d24247fbf0842affa4

Download | Favorite | View

KMPlayer 3.8.0.117 Buffer Overflow

Posted Mar 9, 2014

Authored by metacom

KMPlayer version 3.8.0.117 buffer overflow exploit that leverages new album functionality.

tags | exploit, overflow

SHA-256 | c3c1365c61d1b23d33348ea4ebe93270338ea843679f6003a4897a3a33390ba2

Download | Favorite | View

Exploiting Cisco EPC3925 In The Netherlands

Posted Mar 9, 2014

Authored by s3rgio

This is a brief write up discussing exploitation of the cross site request forgery vulnerability discovered in the Cisco EPC3925 router.

tags | paper, csrf

systems | cisco

SHA-256 | e0e9eb1360b28fa8b096368773821f3b01656d4faedb41fc2062ac1a7094eaff

Download | Favorite | View

Yahoo ads.yahoo.com Cross Site Scripting

Posted Mar 9, 2014

Authored by Stefan Schurtz

ads.yahoo.com suffered from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 0f33736218eefb4fae1b4f1af47d1766ea967a7ee4793d3a1eff2e9221740285

Download | Favorite | View

Yahoo intl Cross Site Scripting

Posted Mar 9, 2014

Authored by Stefan Schurtz

The cookie intl parameter on de-mg42.mail.yahoo.com suffered from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 8bc6ea197fed8679d548461f2f3ddbf74dcf43a82a7cb8a447d4c145debd8a70

Download | Favorite | View

iCAM Workstation Control 4.8.0.0 Authentication Bypass

Posted Mar 9, 2014

Authored by StealthHydra

iCAM Workstation Control version 4.8.0.0 suffers from an authentication bypass vulnerability.

tags | exploit, bypass

SHA-256 | de33784bd31576c2ae65f56510a89067987e47cb48e8c632ba1fab627eb16167

Download | Favorite | View

Et-Chat 3.0.7 Password Reset

Posted Mar 9, 2014

Authored by IRH

Et-Chat version 3.0.7 suffers from a remote administrative password reset vulnerability.

tags | exploit, remote

SHA-256 | 76dca7e1805be0ca571a06dc54b5e9c36374f2114419b11b8702b45ff68ca15f

Download | Favorite | View

b2evolution CMS 5.0.6 Information Disclosure

Posted Mar 9, 2014

Authored by indoushka

b2evolution CMS version 5.0.6 suffers from multiple information disclosure vulnerabilities.

tags | exploit, vulnerability, info disclosure

SHA-256 | 7671cd7d70a7d6875ef9dc53132191e7feff0dbb8dcb14f306a4b3193d78641c

Download | Favorite | View

Kentico CMS 7.0.75 User Enumeration

Posted Mar 9, 2014

Authored by Charlie Campbell, Lyndon Mendoza

Kentico CMS version 7.0.75 suffers from a user enumeration vulnerability.

tags | exploit

SHA-256 | 86b1dc59a5008851a7115451db7de3898d5811ac75e57bc2010363e783a2f1e2

Download | Favorite | View

PicsEngine 2 Beta Cross Site Scripting / SQL Injection

Posted Mar 9, 2014

Authored by indoushka

PicsEngine version 2 Beta suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection

SHA-256 | 1e714132046d251548c187f0b1692c34a5726c1200cfcf10827a33f1010ac66f

Download | Favorite | View