Twenty Year Anniversary
Showing 1 - 15 of 15 RSS Feed

Files Date: 2018-03-31

VideoFlow Digital Video Protection DVP 10 Authenticated Root Remote Code Execution
Posted Mar 31, 2018
Authored by Gjoko Krstic | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from authenticated remote code execution vulnerability. Including a cross site request forgery vulnerability, a remote attacker can exploit this issue and execute arbitrary system commands granting her system access with root privileges.

tags | exploit, remote, arbitrary, root, code execution, csrf
MD5 | 96e1a3c362090e4832e802711f4bbb2a
VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal
Posted Mar 31, 2018
Authored by Gjoko Krstic | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from an authenticated arbitrary file disclosure vulnerability including no session expiration. Input passed via the 'ID' parameter in several Perl scripts is not properly verified before being used to download system files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.

tags | exploit, arbitrary, perl
MD5 | 6259e5b72171a19735bbd988982e2638
DotNetNuke DNNarticle Directory Traversal
Posted Mar 31, 2018
Authored by Esmaeil Rahimian

The DNNarticle module in DotNetNuke version 11 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2018-9126
MD5 | f2257e5d010096de5399fbe05af13b4f
Homematic CCU2 2.29.23 Arbitrary File Write
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from an arbitrary file write vulnerability.

tags | exploit, arbitrary
advisories | CVE-2018-7300
MD5 | 009117d41ee7e2bc477a58b95a3c2182
Frog CMS 0.9.5 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by Samrat Das

Frog CMS version 0.9.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-8908
MD5 | 3ce17661ab9805b355896a7666068e2d
Nginx 1.13.10 Accept-Encoding Line Feed Injection
Posted Mar 31, 2018
Authored by Keiliikoa Kirland

Nginx version 1.3.10 may suffer from a line feed injection issue in its Accept-Encoding header.

tags | exploit
MD5 | e34c40aec4ccadf96254f66606e9bfae
WordPress Contact Form 7 To Database Extension 2.10.32 CSV Injection
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Contact Form 7 to Database Extension plugin version 2.10.32 suffers from a CSV injection vulnerability.

tags | exploit
advisories | CVE-2018-9035
MD5 | d056556b41893a0bc49c21fed4a47543
Joomla Acymailing Starter 5.9.5 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla Acymailing Starter component version 5.9.5 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9107
MD5 | 7380103268de41373ddb632cdbae3bcd
osCommerce 2.3.4.1 Remote Code Execution
Posted Mar 31, 2018
Authored by Simon Scannell

osCommerce version 2.3.4.1 suffers from a code execution vulnerability.

tags | exploit, code execution
MD5 | 6f7265771c718c685efc486888ad79f0
MiniCMS 1.10 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by zixian

MiniCMS version 1.10 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-9092
MD5 | 97c6dc6f6b82be0fcab7b002954881fe
Systematic SitAware NVG Denial Of Service
Posted Mar 31, 2018
Authored by 2u53

Systematic SitAware suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-9115
MD5 | a9be74c74bea3734035f59949ebe4c09
Homematic CCU2 2.29.23 Remote Command Execution
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2018-7297
MD5 | 32264b41155689b424272d703d620b2a
Joomla AcySMS 3.5.0 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla AcySMS component version 3.5.0 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9106
MD5 | d009e307c702b2cfb15a5336b4c202e0
WampServer 3.1.1 Cross Site Request Forgery / Cross Site Scripting
Posted Mar 31, 2018
Authored by Vipin Chaudhary

WampServer version 3.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 51e2ee50a4a2fbdd0cc9ad6e13737cc7
WordPress Relevanssi 4.0.4 Cross Site Scripting
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Relevanssi plugin version 4.0.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-9034
MD5 | e36f5503e0b3ca1d915e411126f48a84
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

April 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    5 Files
  • 2
    Apr 2nd
    17 Files
  • 3
    Apr 3rd
    11 Files
  • 4
    Apr 4th
    21 Files
  • 5
    Apr 5th
    17 Files
  • 6
    Apr 6th
    12 Files
  • 7
    Apr 7th
    1 Files
  • 8
    Apr 8th
    6 Files
  • 9
    Apr 9th
    21 Files
  • 10
    Apr 10th
    18 Files
  • 11
    Apr 11th
    42 Files
  • 12
    Apr 12th
    7 Files
  • 13
    Apr 13th
    14 Files
  • 14
    Apr 14th
    1 Files
  • 15
    Apr 15th
    1 Files
  • 16
    Apr 16th
    15 Files
  • 17
    Apr 17th
    20 Files
  • 18
    Apr 18th
    24 Files
  • 19
    Apr 19th
    20 Files
  • 20
    Apr 20th
    7 Files
  • 21
    Apr 21st
    10 Files
  • 22
    Apr 22nd
    2 Files
  • 23
    Apr 23rd
    17 Files
  • 24
    Apr 24th
    24 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close