Twenty Year Anniversary
Showing 1 - 14 of 14 RSS Feed

Files Date: 2018-03-31

VideoFlow Digital Video Protection DVP 10 Authenticated Root Remote Code Execution
Posted Mar 31, 2018
Authored by Gjoko Krstic | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from authenticated remote code execution vulnerability. Including a cross site request forgery vulnerability, a remote attacker can exploit this issue and execute arbitrary system commands granting her system access with root privileges.

tags | exploit, remote, arbitrary, root, code execution, csrf
MD5 | 96e1a3c362090e4832e802711f4bbb2a
VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal
Posted Mar 31, 2018
Authored by Gjoko Krstic | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from an authenticated arbitrary file disclosure vulnerability including no session expiration. Input passed via the 'ID' parameter in several Perl scripts is not properly verified before being used to download system files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.

tags | exploit, arbitrary, perl
MD5 | 6259e5b72171a19735bbd988982e2638
DotNetNuke DNNarticle Directory Traversal
Posted Mar 31, 2018
Authored by Esmaeil Rahimian

The DNNarticle module in DotNetNuke version 11 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2018-9126
MD5 | f2257e5d010096de5399fbe05af13b4f
Homematic CCU2 2.29.23 Arbitrary File Write
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from an arbitrary file write vulnerability.

tags | exploit, arbitrary
advisories | CVE-2018-7300
MD5 | 009117d41ee7e2bc477a58b95a3c2182
Frog CMS 0.9.5 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by Samrat Das

Frog CMS version 0.9.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-8908
MD5 | 3ce17661ab9805b355896a7666068e2d
WordPress Contact Form 7 To Database Extension 2.10.32 CSV Injection
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Contact Form 7 to Database Extension plugin version 2.10.32 suffers from a CSV injection vulnerability.

tags | exploit
advisories | CVE-2018-9035
MD5 | d056556b41893a0bc49c21fed4a47543
Joomla Acymailing Starter 5.9.5 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla Acymailing Starter component version 5.9.5 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9107
MD5 | 7380103268de41373ddb632cdbae3bcd
osCommerce 2.3.4.1 Remote Code Execution
Posted Mar 31, 2018
Authored by Simon Scannell

osCommerce version 2.3.4.1 suffers from a code execution vulnerability.

tags | exploit, code execution
MD5 | 6f7265771c718c685efc486888ad79f0
MiniCMS 1.10 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by zixian

MiniCMS version 1.10 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-9092
MD5 | 97c6dc6f6b82be0fcab7b002954881fe
Systematic SitAware NVG Denial Of Service
Posted Mar 31, 2018
Authored by 2u53

Systematic SitAware suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-9115
MD5 | a9be74c74bea3734035f59949ebe4c09
Homematic CCU2 2.29.23 Remote Command Execution
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2018-7297
MD5 | 32264b41155689b424272d703d620b2a
Joomla AcySMS 3.5.0 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla AcySMS component version 3.5.0 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9106
MD5 | d009e307c702b2cfb15a5336b4c202e0
WampServer 3.1.1 Cross Site Request Forgery / Cross Site Scripting
Posted Mar 31, 2018
Authored by Vipin Chaudhary

WampServer version 3.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 51e2ee50a4a2fbdd0cc9ad6e13737cc7
WordPress Relevanssi 4.0.4 Cross Site Scripting
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Relevanssi plugin version 4.0.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-9034
MD5 | e36f5503e0b3ca1d915e411126f48a84
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

July 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    1 Files
  • 2
    Jul 2nd
    26 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    13 Files
  • 6
    Jul 6th
    4 Files
  • 7
    Jul 7th
    4 Files
  • 8
    Jul 8th
    1 Files
  • 9
    Jul 9th
    16 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    32 Files
  • 12
    Jul 12th
    22 Files
  • 13
    Jul 13th
    15 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    1 Files
  • 16
    Jul 16th
    21 Files
  • 17
    Jul 17th
    10 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close