Twenty Year Anniversary
Showing 1 - 14 of 14 RSS Feed

Files Date: 2018-03-31

VideoFlow Digital Video Protection DVP 10 Authenticated Root Remote Code Execution
Posted Mar 31, 2018
Authored by Gjoko Krstic | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from authenticated remote code execution vulnerability. Including a cross site request forgery vulnerability, a remote attacker can exploit this issue and execute arbitrary system commands granting her system access with root privileges.

tags | exploit, remote, arbitrary, root, code execution, csrf
MD5 | 96e1a3c362090e4832e802711f4bbb2a
VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal
Posted Mar 31, 2018
Authored by Gjoko Krstic | Site zeroscience.mk

VideoFlow Digital Video Protection DVP 10 version 2.10 suffers from an authenticated arbitrary file disclosure vulnerability including no session expiration. Input passed via the 'ID' parameter in several Perl scripts is not properly verified before being used to download system files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.

tags | exploit, arbitrary, perl
MD5 | 6259e5b72171a19735bbd988982e2638
DotNetNuke DNNarticle Directory Traversal
Posted Mar 31, 2018
Authored by Esmaeil Rahimian

The DNNarticle module in DotNetNuke version 11 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2018-9126
MD5 | f2257e5d010096de5399fbe05af13b4f
Homematic CCU2 2.29.23 Arbitrary File Write
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from an arbitrary file write vulnerability.

tags | exploit, arbitrary
advisories | CVE-2018-7300
MD5 | 009117d41ee7e2bc477a58b95a3c2182
Frog CMS 0.9.5 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by Samrat Das

Frog CMS version 0.9.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-8908
MD5 | 3ce17661ab9805b355896a7666068e2d
WordPress Contact Form 7 To Database Extension 2.10.32 CSV Injection
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Contact Form 7 to Database Extension plugin version 2.10.32 suffers from a CSV injection vulnerability.

tags | exploit
advisories | CVE-2018-9035
MD5 | d056556b41893a0bc49c21fed4a47543
Joomla Acymailing Starter 5.9.5 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla Acymailing Starter component version 5.9.5 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9107
MD5 | 7380103268de41373ddb632cdbae3bcd
osCommerce 2.3.4.1 Remote Code Execution
Posted Mar 31, 2018
Authored by Simon Scannell

osCommerce version 2.3.4.1 suffers from a code execution vulnerability.

tags | exploit, code execution
MD5 | 6f7265771c718c685efc486888ad79f0
MiniCMS 1.10 Cross Site Request Forgery
Posted Mar 31, 2018
Authored by zixian

MiniCMS version 1.10 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-9092
MD5 | 97c6dc6f6b82be0fcab7b002954881fe
Systematic SitAware NVG Denial Of Service
Posted Mar 31, 2018
Authored by 2u53

Systematic SitAware suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-9115
MD5 | a9be74c74bea3734035f59949ebe4c09
Homematic CCU2 2.29.23 Remote Command Execution
Posted Mar 31, 2018
Authored by Patrick Muench, Gregor Kopf

Homematic CCU2 version 2.29.23 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2018-7297
MD5 | 32264b41155689b424272d703d620b2a
Joomla AcySMS 3.5.0 CSV Macro Injection
Posted Mar 31, 2018
Authored by Sureshbabu Narvaneni

Joomla AcySMS component version 3.5.0 suffers from a CSV macro injection vulnerability.

tags | exploit
advisories | CVE-2018-9106
MD5 | d009e307c702b2cfb15a5336b4c202e0
WampServer 3.1.1 Cross Site Request Forgery / Cross Site Scripting
Posted Mar 31, 2018
Authored by Vipin Chaudhary

WampServer version 3.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 51e2ee50a4a2fbdd0cc9ad6e13737cc7
WordPress Relevanssi 4.0.4 Cross Site Scripting
Posted Mar 31, 2018
Authored by Stefan Broeder

WordPress Relevanssi plugin version 4.0.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-9034
MD5 | e36f5503e0b3ca1d915e411126f48a84
Page 1 of 1
Back1Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    45 Files
  • 16
    Nov 16th
    11 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close