exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 14 of 14 RSS Feed

Files Date: 2018-03-31

VideoFlow Digital Video Protection DVP 10 Authenticated Root Remote Code Execution
Posted Mar 31, 2018
Authored by LiquidWorm | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from authenticated remote code execution vulnerability. Including a cross site request forgery vulnerability, a remote attacker can exploit this issue and execute arbitrary system commands granting her system access with root privileges.

tags | exploit, remote, arbitrary, root, code execution, csrf
SHA-256 | f1cf92d74150abb39ece448b2e879132cdeec1dad40e941838baff6d6ac1147d
VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal
Posted Mar 31, 2018
Authored by LiquidWorm | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from an authenticated arbitrary file disclosure vulnerability including no session expiration. Input passed via the 'ID' parameter in several Perl scripts is not properly verified before being used to download system files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.

tags | exploit, arbitrary, perl
SHA-256 | 9fdb71614470b3895e28afe235e28c5784709277cd64d29608144c5fc0584e48
DotNetNuke DNNarticle Directory Traversal
Posted Mar 31, 2018
Authored by Esmaeil Rahimian

The DNNarticle module in DotNetNuke version 11 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2018-9126
SHA-256 | a41413f4c748f4fcf065a3f2c5c4e0ab8f4515a8fb6dafd0bde8c679cd929bf0
Homematic CCU2 2.29.23 Arbitrary File Write
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from an arbitrary file write vulnerability.

tags | exploit, arbitrary
advisories | CVE-2018-7300
SHA-256 | dd409c7f1b228ba72e9d1b5031af8e53c65f1eacf0f69e50abd6527af29fc5a5
Frog CMS 0.9.5 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by Samrat Das

Frog CMS version 0.9.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-8908
SHA-256 | de887657ffddfe13ff2711bcdfd0a752e08c6fc7fb4d7096eb0a29acc662fcc2
WordPress Contact Form 7 To Database Extension 2.10.32 CSV Injection
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Contact Form 7 to Database Extension plugin version 2.10.32 suffers from a CSV injection vulnerability.

tags | exploit
advisories | CVE-2018-9035
SHA-256 | a1e2f6ff5db573c57f2014f08ae3e5c445da423f0442bc5bf91d63f4b6974da0
Joomla Acymailing Starter 5.9.5 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla Acymailing Starter component version 5.9.5 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9107
SHA-256 | 79b6c5b7c330a02114e00055a2436ba7e3e992b66ce38f41a047b764a31482cc
osCommerce 2.3.4.1 Remote Code Execution
Posted Mar 31, 2018
Authored by Simon Scannell

osCommerce version 2.3.4.1 suffers from a code execution vulnerability.

tags | exploit, code execution
SHA-256 | 3a9c8b3b77bdf3e503378fb0902da7dfcb3e2c29c42deb289a62f986ab00800f
MiniCMS 1.10 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by zixian

MiniCMS version 1.10 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-9092
SHA-256 | 721a51e53d1998c15ee3fada2f7e9dc176be6d95e57db860592ccfbc8755bf96
Systematic SitAware NVG Denial Of Service
Posted Mar 31, 2018
Authored by 2u53

Systematic SitAware suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-9115
SHA-256 | 4bb760f13fc71196edd91cdf71a8c42c83fa772fbb0a0e2ad4ba3a813ee7e121
Homematic CCU2 2.29.23 Remote Command Execution
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2018-7297
SHA-256 | 557b93e2321a67871d7ee634a72bf196e8730d6ff7724ac372a8b095eff95cbb
Joomla AcySMS 3.5.0 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla AcySMS component version 3.5.0 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9106
SHA-256 | f34e0a09b18099dba0c7b06e0efc752e601eb227dd42dd32490f76f20726f914
WampServer 3.1.1 Cross Site Request Forgery / Cross Site Scripting
Posted Mar 31, 2018
Authored by Vipin Chaudhary

WampServer version 3.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | 905c4d7fd4fc2cf1c89222a0cb7e2346073185b02ec25bb49977dd24875f524c
WordPress Relevanssi 4.0.4 Cross Site Scripting
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Relevanssi plugin version 4.0.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-9034
SHA-256 | de2e9805aecef79b31fdcc4da3b54e9c98e5470b3d3467d95ff56e951dec4a73
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close