what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 6 of 6

Files Date: 2019-11-30 to 2019-11-30

Carlo Gavazzi SmartHouse 6.5.33 XSS / Cross Site Request Forgery

Posted Nov 30, 2019

Authored by LiquidWorm | Site zeroscience.mk

Carlo Gavazzi SmartHouse version 6.5.33 suffers from cross site request forgery along with both reflective and persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf

SHA-256 | 4853055373917d744c7670ff8d4660feef8574919a15a2e1d5777cca98ae1825

Download | Favorite | View

Microsoft Excel 2016 1901 Import Error XML Injection

Posted Nov 30, 2019

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Microsoft Excel 2016 version 1901 suffers from an XML external entity injection vulnerability.

tags | exploit

SHA-256 | e44c33d8e03b25f973e061cc13989210104717a2cc6f7198f78cc1802ddf7ede

Download | Favorite | View

Max Secure Anti Virus Plus 19.0.4.020 Insecure Permissions

Posted Nov 30, 2019

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Max Secure Anti Virus Plus version 19.0.4.020 suffers from an insecure permission vulnerability.

tags | exploit, virus

advisories | CVE-2019-19382

SHA-256 | 76f4e179622075025b7eb99563a43f43d4f74eb445470abbb8a207a9f416a093

Download | Favorite | View

Xinet Elegant 6 Asset Library Web Interface 6.1.655 SQL Injection

Posted Nov 30, 2019

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NAPC Xinet (interface) Elegant 6 Asset Library version 6.1.655 allows pre-authentication error-based SQL injection via the /elegant6/login LoginForm[username] field when double quotes are used.

tags | exploit, sql injection

advisories | CVE-2019-19245

SHA-256 | 861555c2816d3e8545ed29c5458dbc9afd6526714f4d2b3d853f8b78e2022d5d

Download | Favorite | View

Allied Telesis AT-GS950/8 Directory Traversal

Posted Nov 30, 2019

Authored by N. H. Sprenger, Dr. H. Benda

Allied Telesis AT-GS950/8 up until firmware AT-S107 version 1.1.3 [1.00.047] suffers from a directory traversal vulnerability.

tags | exploit, file inclusion

advisories | CVE-2019-18922

SHA-256 | 422b9c7ed7d41d2043906b03440133f19f70b9d3ce5345d8615b0e80edadfe03

Download | Favorite | View

Inateck BCST-60 Barcode Scanner Keystroke Injection

Posted Nov 30, 2019

Authored by Matthias Deeg | Site syss.de

Inateck BCST-60 Barcode Scanner suffers from a keystroke injection vulnerability.

tags | advisory

advisories | CVE-2019-12503

SHA-256 | c50880f8974ac7beaee4a55dd46fc351b8ac265c434798d48f41fea5ac5aea77

Download | Favorite | View