exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 17 of 17 RSS Feed

Files Date: 2019-01-21

NUUO CMS Session Tokens / Traversal / SQL Injection
Posted Jan 21, 2019
Authored by Pedro Ribeiro

NUUO CMS suffers from directory traversal, predictable session token, unauthenticated remote code execution, and various other vulnerabilities. Multiple metasploit modules included and various versions are affected by the various vulnerabilities.

tags | exploit, remote, vulnerability, code execution
advisories | CVE-2018-17888, CVE-2018-17890, CVE-2018-17892, CVE-2018-17894, CVE-2018-17934, CVE-2018-17936, CVE-2018-18982
SHA-256 | 273126839ae6bdeeeeb0b494ac7067a5ea7b4bb5683ea0378c2a64b28c581aee
Comodo KORUGAN VM 1.9.3.1100 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

Comodo KORUGAN VM version 1.9.3.1100 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 4059938ac15f2eca55766806c261462f51e46febafedc6874fb69a35f071ac1d
Comodo KORUGAN LITE 1.6.5.1024 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

Comodo KORUGAN LITE version 1.6.5.1024 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 20fd6a3e24bd8a9edc23f93237d0666efa26d69931d53e08905f4a4b6ddbf8e5
SIDU 6.0 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

SIDU version 6.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 535d0c4a982aea18261fe5fd0a29740c91e6b956c6857417ef9ebcb4501894f5
CA Service Desk Manager 14.1 / 17 Authentication Bypass
Posted Jan 21, 2019
Authored by Kevin Kotas, Bui Duy Hiep | Site www3.ca.com

CA Technologies Support is alerting customers to multiple potential risks with CA Service Desk Manager. Multiple vulnerabilities exist that can allow a remote attacker to access sensitive information or possibly gain additional privileges. CA published solutions to address the vulnerabilities. The first vulnerability is due to how survey access is implemented. A malicious actor can access and submit survey information without authentication. The second vulnerability allows for a malicious actor to gain additional privileges. Versions affected include 14.1 and 17.

tags | advisory, remote, vulnerability
advisories | CVE-2018-19634, CVE-2018-19635
SHA-256 | 9ba0f3156ca4ef2fdaac0d90ab7af006a48e5ef4050d91ef8d697f03ef84ab2c
Joomla Akeeba Backup 6.3.3 Database Disclosure
Posted Jan 21, 2019
Authored by KingSkrupellos

Joomla Akeeba Backup component version 6.3.3 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 17c785af53f0493ded4860be2cd3ebdcb2f35406cf2f376b63c5dd291dc98fd8
PHP Dashboards NEW 5.8 Local File Inclusion
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Dashboards NEW version 5.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, php, file inclusion
SHA-256 | 3280d5c4d2f436e80da39c68f6eba1485c4297c57a489c5a6ae152f340bd0901
GattLib 0.2 Stack Buffer Overflow
Posted Jan 21, 2019
Authored by Dhiraj Mishra

GattLib version 0.2 suffers from a stack buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2019-6498
SHA-256 | abc54a3ecb91a2f0c11413922e317fa0853914846776f05005e2f5cdc2583758
Adianti Framework 5.5.0 SQL Injection
Posted Jan 21, 2019
Authored by Joner de Mello Assolin

Adianti Framework version 5.5.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 010e627d64f5f952567bf00e07672e5bb06c82afd6a39088a57ef7810825c56a
PHP Uber-style GeoTracking 1.1 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Uber-style GeoTracking version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 6ae8a208f48717a7abddda53b592943cd7e0f266d2e5b674878047df3433d805
Reservic 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

Reservic version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e7bf79dd6baeaf3ee48288a27d4325658ee164fe3ad3a230dc7ffedf26f62654
PHP Dashboards NEW 5.8 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Dashboards NEW version 5.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 5663b35e5355f0518c00fbe649c34ea605bdb172ce5420b7a86c31749551e8de
MoneyFlux 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

MoneyFlux version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e88bfcd1a3776079adc80c9af0cbc686aa7473fd4a313901b99328e37a4ebc1a
Echo Mirage 3.1 Buffer Overflow
Posted Jan 21, 2019
Authored by InitD Community

Echo Mirage version 3.1 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
SHA-256 | 9326d315ec003fa28a1758a635ac1c55c2d3831e4b84487fbc25b19dcc1c0531
Positive Hack Days 9 Call For Papers
Posted Jan 21, 2019
Site phdays.com

Call For Papers for Positive Hack Days 9 which will take place in Moscow, Russia.

tags | paper, conference
SHA-256 | 361bafb94ea84f9f4968269436de9cb71d056331a162bc3ec6cb2779d1994a43
Open-Xchange OX App Suite Cross Site Scripting / SSRF
Posted Jan 21, 2019
Authored by Martin Heiland, Secator, Zhihua Yao, stemcloud, Gamal negm eldin

Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions.

tags | exploit, vulnerability, xss
advisories | CVE-2018-13103, CVE-2018-13104
SHA-256 | 24e2155c543cabcd184eee8f58682b0f7854489ae93e4d51a85b793fe3464e40
Coman Company Management System 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

Coman Company Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | d8dbbd9b8a345a2d4926e69833a3afd4b8b264350c70b719784964f7a6f0484c
Page 1 of 1
Back1Next

File Archive:

January 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    0 Files
  • 2
    Jan 2nd
    13 Files
  • 3
    Jan 3rd
    5 Files
  • 4
    Jan 4th
    5 Files
  • 5
    Jan 5th
    9 Files
  • 6
    Jan 6th
    5 Files
  • 7
    Jan 7th
    0 Files
  • 8
    Jan 8th
    0 Files
  • 9
    Jan 9th
    18 Files
  • 10
    Jan 10th
    31 Files
  • 11
    Jan 11th
    30 Files
  • 12
    Jan 12th
    33 Files
  • 13
    Jan 13th
    25 Files
  • 14
    Jan 14th
    0 Files
  • 15
    Jan 15th
    0 Files
  • 16
    Jan 16th
    7 Files
  • 17
    Jan 17th
    25 Files
  • 18
    Jan 18th
    38 Files
  • 19
    Jan 19th
    6 Files
  • 20
    Jan 20th
    21 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    24 Files
  • 24
    Jan 24th
    68 Files
  • 25
    Jan 25th
    22 Files
  • 26
    Jan 26th
    20 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close