what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 15 of 15 RSS Feed

Files Date: 2016-08-04 to 2016-08-05

NASdeluxe NDL-2400r 2.01.10 Command Injection
Posted Aug 4, 2016
Authored by Klaus Eisentraut | Site syss.de

NASdeluxe NDL-2400r version 2.01.10 suffers from an OS command injection vulnerability.

tags | exploit
SHA-256 | df902fffe771a83318d68fb4a1dac2c82339e67536200c100f67b3f129f20ef4
NUUO NVRmini2 / NVRsolo / Crystal And NETGEAR ReadyNAS Code Execution
Posted Aug 4, 2016
Authored by Pedro Ribeiro

NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS suffer from multiple security issues that result in remote code execution, backdoor access, buffer overflow, and various other vulnerabilities.

tags | exploit, remote, overflow, vulnerability, code execution
advisories | CVE-2016-5674, CVE-2016-5675, CVE-2016-5676, CVE-2016-5677, CVE-2016-5678, CVE-2016-5679, CVE-2016-5680
SHA-256 | bf5b9b9d392b13530fe4985e7374bba1178cae9346921dade84d3c31ba0891fc
D-Link NAS / DNS Cross Site Scripting
Posted Aug 4, 2016
Authored by Benjamin Daniel Mussler

D-Link NAS and DNS series devices suffer from a stored cross site scripting vulnerability leveraged via unauthenticated smb.

tags | exploit, xss
SHA-256 | 9bea630d3d38c702848bb36c64938bc6d9f67aa4a832a9ec706a406f0d228f6d
WordPress Count Per Day 3.5.4 Cross Site Scripting
Posted Aug 4, 2016
Authored by Yorick Koster, Securify B.V.

WordPress Count Per Day plugin version 3.5.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | d69f6409f9285b4b341d81988998df80a9629b3685c4fee05a3057a084dfc9e1
WordPress FormBuilder 1.05 Cross Site Scripting
Posted Aug 4, 2016
Authored by Securify B.V., Peter Ganzevles

WordPress FormBuilder version 1.05 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | c56303663ea7a2852d8c3f6613f639585b306b1f1729381fbaf87f633594ba74
K2 Joomla! Extension Cross Site Scripting
Posted Aug 4, 2016
Authored by Manuel Mancera

K2 Joomla! extension versions prior to 2.7.1 suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | a3fc93581f4ead8a4b1dbb2062c9656ac81bf9a53d8937c89a7c7a7b4db0204f
WordPress Events Made Easy Cross Site Scripting
Posted Aug 4, 2016
Authored by Securify B.V., Job Diesveld

WordPress Events Made Easy plugin versions prior to 1.6.21 suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 5421ba9cbaadc593ea64e1f541c99998a2a70b41120f28aa53dc662db5b65743
net2ftp 1.0 Cross Site Scripting
Posted Aug 4, 2016
Authored by Jacobo Avariento

net2ftp version 1.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 217f09c68e480e79756201d7d52f3bf0df2ca5e947fe9abbdefc398dfb61a8c5
FortiManager Malicious Script Insertion
Posted Aug 4, 2016
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

FortiManager (Series) suffers from a bookmark script insertion vulnerability.

tags | exploit
SHA-256 | 6f79162c8a16b34e1b280e48a562fec2fac95f521e43bdc4694bb114f40bfd26
WordPress Count Per Day 3.5.4 Persistent Cross Site Scripting
Posted Aug 4, 2016
Authored by Securify B.V., Julien Rentrop

WordPress Count Per Day plugin version 3.5.4 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | f182cd2f3622d02f747476d7f6598b53372149526fcffc8e5ff1ae604c1a4923
Samsung Mobile Phone Telecom Denial Of Service
Posted Aug 4, 2016
Authored by 0xr0ot

Vulnerabilities in the SpamCall Activity components of the Samsung Telecom application can crash and reboot a device when a malformed serializable object is passed.

tags | advisory, denial of service, vulnerability
advisories | CVE-2016-6526, CVE-2016-6527
SHA-256 | dcc3ab9deaf946489cdf85bad7d76e17c8fdcff1277255be9ef82e1c4a60972c
FortiAnalyzer / FortiManager Cross Site Scripting
Posted Aug 4, 2016
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

FortiAnalyzer and FortiManager suffer from a client-side cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 3523161c4af4faddd6893f95b277bde86a92f3df5a0cf403c9955a581c507ce1
WordPress Yoast SEO Cross Site Scripting
Posted Aug 4, 2016
Authored by Hammad Shamsi

WordPress Yoast SEO plugin versions prior to 3.4.1 suffer from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | b80f18dd61454008092f18d2cf58a5d038b3d8cc61191ec776c2072d67e86c08
NetNeedle Network-Based Steganography Tool
Posted Aug 4, 2016
Authored by John Ventura

NetNeedle provides for encrypted control channels and chat sessions that are disguised to look like other common network activity. It only transmits "decoy" data in the "payload" section of any packet, so forensic analysts will only see packets that look identical to ordinary ping or HTTP GET requests. The actual data is encoded in IP headers in fields that typically contain random values. In addition to evasion features, penetration testers can use this tool to maintain control over servers in environments with highly restrictive access lists. Because NetNeedle subverts expectations surrounding network traffic, it enables users to set up back doors that use simple ICMP packets or TCP ports that are already in use. Administrators who believe that they are safe due to "principle of least privilege" access control lists or who believe that ICMP ping is harmless will find themselves sadly mistaken.

tags | tool, web, tcp
systems | unix
SHA-256 | 56da4a7d0137517d311b0345a3bd36bb779ed022129f6019d8d167245c947157
Joomla Video Flow 1.1.5 SQL Injection
Posted Aug 4, 2016
Authored by xBADGIRL21

Joomla Video Flow component versions 1.1.3 through 1.1.5 suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c6933ed1622fde52df5cb8ec589f674635f3f68310d7cffb2bf313ed22398e5a
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close