Exploit the possiblities
Showing 1 - 15 of 15 RSS Feed

Files Date: 2015-09-16

.NET MVC Denial Of Service
Posted Sep 16, 2015
Authored by Roberto Suggi Liverani | Site blog.malerisch.net

Microsoft released a security bulletin (MS15-101) describing a .NET MVC denial of service vulnerability. This post analyzes the vulnerability in detail, starting from the theory and then providing a PoC exploit against a MVC web application developed with Visual Studio 2013.

tags | exploit, web, denial of service
advisories | CVE-2015-2526
MD5 | 62cd760d034e86ed45a4d125f54e7308
Zen Cart 1.5.4 Code Execution / Information Disclosure
Posted Sep 16, 2015
Authored by Tim Coen | Site curesec.com

Zen Cart version 1.5.4 suffers from code execution and information leakage vulnerabilities.

tags | exploit, vulnerability, code execution
MD5 | 9b1ec92d12772c5b4149aea1a54ecb0d
Kirby CMS 2.1.0 Authentication Bypass / Traversal
Posted Sep 16, 2015
Authored by Dawid Golunski

Kirby CMS versions 2.1.0 and below suffer from an authentication bypass vulnerability via path traversal.

tags | exploit, bypass, file inclusion
MD5 | 4b991191cde534ee5758ed7daf6adab3
ZeusCart 4.0 Code Execution
Posted Sep 16, 2015
Authored by Tim Coen | Site curesec.com

ZeusCart version 4.0 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 84bdb90379b919ebdc988a38cef44af4
Kirby CMS 2.1.0 CSRF / Shell Upload
Posted Sep 16, 2015
Authored by Dawid Golunski

Kirby CMS versions 2.1.0 and below suffer from cross site request forgery and remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, csrf
MD5 | bfe28867df691d61190df36a1715d257
Anchor CMS 0.9.2 Cross Site Scripting / Open Redirect
Posted Sep 16, 2015
Authored by Tim Coen | Site curesec.com

Anchor CMS version 0.9.2 suffers from cross site scripting and open redirect vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | bb52dbab3d9fb74fd55cc90a9ee66946
ZeusCart 4.0 Cross Site Request Forgery
Posted Sep 16, 2015
Authored by Tim Coen | Site curesec.com

ZeusCart version 4.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 9cfaff5206e5728f0f78c54bfd4b192b
ManageEngine EventLog Analyzer 10.6 Build 10060 SQL Query Execution
Posted Sep 16, 2015
Authored by xistence

ManageEngine EventLog Analyzer version 10.6 build 10060 suffers from a SQL query execution vulnerability.

tags | exploit, sql injection
MD5 | c616c5721bf47eec5844de1c6059886b
ManageEngine OpManager 11.5 Hardcoded Credential / SQL Bypass
Posted Sep 16, 2015
Authored by xistence

ManageEngine OpManager versions 11.5 and below suffer from SQL query protection bypass and has hard-coded credentials.

tags | exploit
MD5 | 588a76a8c2bf1619c2305abf7d437cd4
WordPress WP-Shop 3.4.3.18 Cross Site Scripting
Posted Sep 16, 2015
Authored by Amir.ght

WordPress WP-Shop plugin version 3.4.3.18 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d61e7aa6b5ae18f3167867dbfb7d0154
ZeusCart 4.0 SQL Injection
Posted Sep 16, 2015
Authored by Tim Coen | Site curesec.com

ZeusCart version 4.0 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | e79bded6610baaf1259723d7cebbde03
ZeusCart 4.0 Cross Site Scripting
Posted Sep 16, 2015
Authored by Tim Coen | Site curesec.com

ZeusCart version 4.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | cf26566a672411d01bf60cd65c99814e
WordPress xPinner Lite 2.2 Cross Site Request Forgery / Cross Site Scripting
Posted Sep 16, 2015
Authored by Amir.ght

WordPress xPinner plugin version 2.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 922ba6a05c7d1d4a7dae975551047e08
WordPress ALO EasyMail Newsletter 2.6 CSRF / Cross Site Scripting
Posted Sep 16, 2015
Authored by Amir.ght

WordPress ALO EasyMail Newsletter plugin version 2.6 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 8230d257f1d696cdb7f0c0fa3a6ea7cf
Weeman Phishing HTTP Server
Posted Sep 16, 2015
Authored by Hypsurus

Weeman is a simple HTTP server using python that creates a phishing pages, takes data from the user, and will try to login as the user to the original website.

tags | tool, web, python
systems | unix
MD5 | eeb61c849f1f0f8eb4119794bef2be17
Page 1 of 1
Back1Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    33 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close