what you don't know can hurt you
Showing 1 - 25 of 100 RSS Feed

Files

TorrentTrader 2.08 XSS / Directory Traversal / Bypass
Posted Sep 17, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

TorrentTrader version 2.08 suffers from authorization bypass, cross site scripting, path disclosure, and directory traversal vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 80f944bda396bc57c5a55368cbeda7aa

Related Files

WordPress GRAND Flash Album Gallery SQL Injection / Disclosure / File Overwrite
Posted Oct 25, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress GRAND Flash Album Gallery plugin versions 1.9.0 and 2.0.0 suffer from file disclosure, file overwrite, directory traversal, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 1798752200454dd6f75de4aecc6a5bd0
Wordpress Social Discussions 6.1.1 File Inclusion / Path Disclosure
Posted Oct 18, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Social Discussions plugin version 6.1.1 suffers from local file inclusion, path disclosure, and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, file inclusion
MD5 | b890a9a3e2212a99dfe4390948d22fb1
WordPress Slideshow 2.1.12 Cross Site Scripting / Path Disclosure
Posted Oct 18, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Slideshow plugin versions 2.1.12 and below suffer from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 798c584e637f9368f7d174b90f1c2fb4
phpMyBitTorrent 2.04 SQL Injection / Local File Inclusion
Posted Oct 3, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

phpMyBitTorrent version 2.04 suffers from insecure cache handling, remote file disclosure, local file inclusion, and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, sql injection, file inclusion
MD5 | e645edbaa7854fb3332c60b8de127efa
Thomson SpeedTouch ST780 Insecure SSL Connection
Posted Sep 25, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Thomson SpeedTouch ST780, by design, has mixed content in the DOM during an SSL encapsulated session.

tags | advisory
MD5 | fb05f515c38819c36c89573aa5785d84
Secunia Security Advisory 50657
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Janek Vind has discovered a weakness and two vulnerabilities in TorrentTrader, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to enumerate user names and bypass certain security restrictions.

tags | advisory, vulnerability
MD5 | 6eec046caf86bb54471071019a1b9d13
Joomla 2.5.4 Cross Site Scripting
Posted May 3, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Joomla version 2.5.4 suffers from a cross site scripting vulnerability in the administrative sysinfo page.

tags | exploit, xss
advisories | CVE-2012-2412
MD5 | 17a3b6890babbd1c67d14005a7cd4e11
Joomla 1.5.26 ja_purity Cross Site Scripting
Posted May 3, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Joomla version 1.5.26 suffers from a cross site scripting vulnerability in the ja_purity template.

tags | exploit, xss
advisories | CVE-2012-2413
MD5 | 27da82ecd8ff206a83c29d3f06faeb11
Invision Power Board 3.3.0 Local File Inclusion
Posted Apr 13, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Invision Power Board version 3.3.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2012-2226
MD5 | ecfaab8d4fd92acdcb7480a6b094094f
Uploadify Integration 0.9.6 Cross Site Scripting
Posted Apr 10, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Uploadify Integration version 0.9.6 suffers from multiple reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 9d269013c32f852cb91e889e51185a9c
OpenCart 1.5.2.1 LFI / Shell Upload / Response Splitting
Posted Apr 9, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

OpenCart version 1.5.2.1 suffers from arbitrary file upload, HTTP response splitting, local file inclusion, path disclosure, and failed randomness vulnerabilities.

tags | exploit, web, arbitrary, local, vulnerability, file inclusion, file upload
MD5 | 647b793cca6ece470eaafd5c3a73746c
Uploadify 2.1.4 Cross Site Scripting / Shell Upload
Posted Apr 6, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Uploadify version 2.1.4 suffers from cross site scripting, arbitrary file upload, and file existence disclosure vulnerabilities.

tags | exploit, arbitrary, vulnerability, xss, file upload
MD5 | 52753f2c1a8feb0b100c32e1f44b5044
Uploadify 3.0.0 File Existence Disclosure
Posted Apr 6, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Uploadify version 3.0.0 suffers from a file existence disclosure vulnerability.

tags | exploit
MD5 | e762e5677c9ca258706fc6c1a6bcfdf4
Coppermine 1.5.18 Cross Site Scripting / Path Disclosure
Posted Mar 30, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Coppermine version 1.5.18 suffers from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 0320d265901972aa7e65f57f598dd88f
NextBBS 0.6.0 Authentication Bypass / SQL Injection / XSS
Posted Mar 28, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

NextBBS version 0.6.0 suffers from authentication bypass, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 2b6db3358fe63a2c2af1e213af8c7c17
Secunia Security Advisory 42774
Posted Dec 30, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been discovered in TorrentTrader, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | 40298e845eeed18a938c7360939dda9a
Discovery TorrentTrader 2.6 Cross Site Scripting / SQL Injection / Local File Inclusion
Posted Dec 29, 2010
Authored by EsS4ndre

Discovery TorrentTrader version 2.6 suffers from cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, xss, sql injection, file inclusion
MD5 | a465f8ce2a1edb4082ff882521aa0cd0
Coppermine 1.5.10 Cross Site Scripting
Posted Dec 29, 2010
Authored by Janek Vind aka waraxe | Site waraxe.us

Coppermine version 1.5.10 suffers from reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | cb548f417d9e5ffd78c67e4192a52145
CruxCMS 3.0.0 Bypass / Shell Upload / SQL Injection / XSS / LFI
Posted Dec 27, 2010
Authored by Janek Vind aka waraxe | Site waraxe.us

CruxCMS version 3.0.0 suffers from cross site scripting, local file inclusion, authentication bypass, shell upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, local, vulnerability, xss, sql injection, file inclusion
MD5 | 7e126bae40ea6b6b76f7bab2e6ecc16d
Calibre 0.7.34 Cross Site Scripting/ Directory Traversal
Posted Dec 22, 2010
Authored by Janek Vind aka waraxe | Site waraxe.us

Calibre version 0.7.34 suffers from cross site scripting and directory traversal vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 7926a5b17d1dd206306ceab81a44590d
SugarCRM SQL Injection / Access / Code Execution
Posted Dec 1, 2009
Authored by Janek Vind aka waraxe | Site waraxe.us

Sugar CRM versions 5.5.0.RC2 and 5.2.0j suffer from remote SQL injection, unauthorized access, remote file inclusion, and code execution vulnerabilities.

tags | exploit, remote, vulnerability, code execution, sql injection, file inclusion
MD5 | 62d57fc4c68a29e58d623580a2ce9159
Vivvo CMS 4.1.5.1 File Disclosure
Posted Oct 22, 2009
Authored by Janek Vind aka waraxe | Site waraxe.us

Vivvo CMS version 4.1.5.1 suffers from a remote file disclosure vulnerability.

tags | exploit, remote
MD5 | 360b4a9d73951843936418fba3ef120b
Secunia Security Advisory 35456
Posted Jun 17, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some weaknesses and vulnerabilities have been discovered in TorrentTrader Classic, which can be exploited by malicious users to conduct script-insertion and SQL injection attacks, and by malicious people to disclose potentially sensitive information, bypass certain security restrictions, and conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | 81bebc9522952c1b0882d2457059c286
TorrentTrader Classic 1.09 SQL Injection
Posted Jun 15, 2009
Authored by Janek Vind aka waraxe | Site waraxe.us

TorrentTrader Classic version 1.09 suffers from information leakage, forced database backup, and multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 3efb1d3b6eb1efe55bc19a375db2cc85
VirtueMart 1.1.2 SQL Injection / RFI / LFI / XSS
Posted Apr 1, 2009
Authored by Janek Vind aka waraxe | Site waraxe.us

VirtueMart versions 1.1.2 and below suffer from cross site scripting, SQL injection, remote/local file inclusion, and code execution vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, xss, sql injection, file inclusion
MD5 | 31d21aedd427529e58a1c1ab3047baf9
Page 1 of 4
Back1234Next

File Archive:

February 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    1 Files
  • 2
    Feb 2nd
    2 Files
  • 3
    Feb 3rd
    17 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    16 Files
  • 7
    Feb 7th
    19 Files
  • 8
    Feb 8th
    2 Files
  • 9
    Feb 9th
    2 Files
  • 10
    Feb 10th
    15 Files
  • 11
    Feb 11th
    20 Files
  • 12
    Feb 12th
    16 Files
  • 13
    Feb 13th
    19 Files
  • 14
    Feb 14th
    17 Files
  • 15
    Feb 15th
    4 Files
  • 16
    Feb 16th
    4 Files
  • 17
    Feb 17th
    34 Files
  • 18
    Feb 18th
    15 Files
  • 19
    Feb 19th
    20 Files
  • 20
    Feb 20th
    33 Files
  • 21
    Feb 21st
    11 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close