what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 53 RSS Feed

Files Date: 2017-09-29

TempestSDR Remote Video Eavesdropping
Posted Sep 29, 2017
Authored by Martin Marinov | Site github.com

This project is a software toolkit for remotely eavesdropping video monitors using a Software Defined Radio (SDR) receiver. It exploits compromising emanations from cables carrying video signals. Raster video is usually transmitted one line of pixels at a time, encoded as a varying current. This generates an electromagnetic wave that can be picked up by an SDR receiver. The software maps the received field strength of a pixel to a gray-scale shade in real-time. This forms a false colour estimate of the original video signal. The toolkit uses unmodified off-the-shelf hardware which lowers the costs and increases mobility compared to existing solutions. It allows for additional post-processing which improves the signal-to-noise ratio. The attacker does not need to have prior knowledge about the target video display. All parameters such as resolution and refresh rate are estimated with the aid of the software. The software consists of a library written in C, a collection of plug-ins for various Software Define Radio (SDR) front-ends and a Java based Graphical User Interface (GUI). It is a multi-platform application, with all native libraries pre-compiled and packed into a single Java jar file.

tags | tool, java
SHA-256 | 41cb8e24234c62e33295b7654f432bb98ad782eac3f6980febd52fa63ed249b3
OpenText Document Sciences xPression 4.5SP1 Patch 13 XML Injection
Posted Sep 29, 2017
Authored by Mariusz Woloszyn

OpenText Document Sciences xPression version 4.5SP1 Patch 13 suffers from an XML external entity injection vulnerability.

tags | exploit, xxe
advisories | CVE-2017-14759
SHA-256 | cb063feea8c14d949fd64fa4cffed3d0e978d0cfdea136ab6e161807cb366f78
Vastal I-Tech Dating Zone 0.9.9 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Vastal I-Tech Dating Zone version 0.9.9 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15975
SHA-256 | 1ce4fc43c19d52689af5e6a6085309c588394824dfd9675d97e378aff0dea36f
tPanel 2009 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

tPanel 2009 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
advisories | CVE-2017-15974
SHA-256 | f9634bbe34657f6c1f266d74d92652320f25194b20e7c40f2b94620d13b2f468
Sokial Social Network Script 1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Sokial Social Network Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15973
SHA-256 | 47a5a4053ef695cefd9f74b558472663574f382c2730e46d04edf70d7c6c2cf7
SoftDatepro Dating Social Network 1.3 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

SoftDatepro Dating Social Network version 1.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15972
SHA-256 | c730cbfaccaf5b9e1001ee5f9d0eaefd1b856a2bb3dfe9b480b6197d1e74baa1
Same Sex Dating Software Pro 1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Same Sex Dating Software Pro version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15971
SHA-256 | 9d634aebe6b47ddb36e85d8a8b8b9d157e7ea84dcc4fc9872d52a05f095ba826
PHP CityPortal 2.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

PHP CityPortal version 2.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 187d04f1f72eeacb37d9191787637f5f276cf378ff5c8c0dd84659044bb5645f
PG All Share Video 1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

PG All Share Video version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15969
SHA-256 | ae1c6666a1796cca19b6438deb62f712f3a7ac16153fa291041e2989b3567f0a
MyBuilder Clone 1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

MyBuilder Clone version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15968
SHA-256 | b6158e31c38c834641ae7db0aa2c7b362ad4cbefb767dded3ad51aabe4c6fd4e
Mailing List Manager Pro 3.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Mailing List Manager Pro version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15967
SHA-256 | d7b836f34015874df01f4c73201cbce5455fefef4dc7736aa7c2e8b2e19f67f6
Joomla Zh YandexMap 6.1.1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Joomla Zh YandexMap extension version 6.1.10 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15966
SHA-256 | b58ee122850822fb21909fc9d10328b84b26580ae39b05fc82a01c9cb5c9cbd6
Joomla NS Download Shop 2.2.6 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Joomla NS Download Shop component version 2.2.6 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15965
SHA-256 | c0e9540440d9493dbe1dab57f9c6286bb0b2fd544fd0b6ecb45a76ae916d5554
iTech Gigs Script 1.21 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

iTech Gigs Script version 1.21 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15963
SHA-256 | 5abd13df53006d422c11e0f36f7cf984d26a005178087aaa327938ee9ff05e3b
iStock Management System 1.0 Arbitrary File Upload
Posted Sep 29, 2017
Authored by Ihsan Sencan

iStock Management System version 1.0 suffers from a remote file upload vulnerability.

tags | exploit, remote, file upload
advisories | CVE-2017-15962
SHA-256 | 24e4cc0d5814faeee9b60033ac797f6cd3a5ee12e51780aad05590224e7eb253
iProject Management System 1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

iProject Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15961
SHA-256 | cec42be6a84c359aaac645b63b95bc950156a9793858281b6b40e7c2c37e529b
Ingenious School Management System 2.3.0 Arbitrary File Upload
Posted Sep 29, 2017
Authored by Ihsan Sencan

Ingenious School Management System version 2.3.0 suffers from a remote file upload vulnerability.

tags | exploit, remote, file upload
advisories | CVE-2017-15957
SHA-256 | ce3537b1e13a976c8d430b6184f3c84091f50a3732dd25af7f2c2e1844baf925
D-Park Pro Domain Parking Script 1.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

D-Park Pro Domain Parking Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15958
SHA-256 | 41eb49ef4d34e0632b3dd470d667f4123e54df0416b6fa8e0afcb3f9ee1196e1
Article Directory Script 3.0 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Article Directory Script version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15960
SHA-256 | c8ea51cad2ae9859387547dcd8adfb2b8257dc4f2631beb0311ffeec722a7b4a
Adult Script Pro 2.2.4 SQL Injection
Posted Sep 29, 2017
Authored by Ihsan Sencan

Adult Script Pro version 2.2.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15959
SHA-256 | 4bd7a7f46f0114c573bff251df220dc92670d533b8491b926325af985f7a2435
Easy Blog PHP Script 1.3a SQL Injection
Posted Sep 29, 2017
Authored by 8bitsec

Easy Blog PHP Script version 1.3a suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 0f456f52d2a6a620dadd0705f5a5f4f13e526198b5bc13eb8dc8cff02fc6b4de
Qmail SMTP Bash Environment Variable Injection (Shellshock)
Posted Sep 29, 2017
Authored by Kyle George, Gabriel Follon, Mario Ledo | Site metasploit.com

This Metasploit module exploits a shellshock vulnerability on Qmail, a public domain MTA written in C that runs on Unix systems. Due to the lack of validation on the MAIL FROM field, it is possible to execute shell code on a system with a vulnerable BASH (Shellshock). This flaw works on the latest Qmail versions (qmail-1.03 and netqmail-1.06). However, in order to execute code, /bin/sh has to be linked to bash (usually default configuration) and a valid recipient must be set on the RCPT TO field (usually admin@exampledomain.com). The exploit does not work on the "qmailrocks" community version as it ensures the MAILFROM field is well-formed.

tags | exploit, shell, bash
systems | unix
advisories | CVE-2014-6271
SHA-256 | 312980cfe01d6ece2e6c4f8b4625555a7173a1cdd391e9346ac2f685ab5d2b6a
PhpCollab 2.5.1 Shell Upload
Posted Sep 29, 2017
Authored by Nicolas Serra

PhpCollab versions 2.5.1 and below suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2017-6090
SHA-256 | 670755081d09065664b50020c6d1e6af8b9b8ec5ee8c63676b22f52ea43bb862
PhpCollab 2.5.1 SQL Injection
Posted Sep 29, 2017
Authored by Nicolas Serra

PhpCollab versions 2.5.1 and below suffer from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
advisories | CVE-2017-6089
SHA-256 | 60393ffbba4cf77640d0495ff1ac04b03ec23c7c5d69c624bbad0ff95a134795
UCOPIA Wireless Appliance Privilege Escalation
Posted Sep 29, 2017
Authored by Nicolas Chatelain

UCOPIA Wireless Appliance version prior to 5.1.8 suffer from a chroot escape privilege escalation vulnerability.

tags | exploit
advisories | CVE-2017-11322
SHA-256 | 4f7e58adbfdd9de93ccaebd67d649ffa90a374c7320277dc04695c119db02908
Page 1 of 3
Back123Next

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    5 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    0 Files
  • 7
    Feb 7th
    0 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close