what you don't know can hurt you
Showing 1 - 25 of 100 RSS Feed

Files

Simple PHP Blog 0.4.0 Cross Site Scripting
Posted Nov 7, 2016
Authored by Boumediene Kaddour

Simple PHP Blog version 0.4.0 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | d5b13a2e62b7bba15473a402f488a2b6

Related Files

Blogspot Cross Site Scripting
Posted Aug 13, 2012
Authored by Ryuzaki Lawlet

Blogspot suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | a5d48831a640465e569db74458a66c11
PolarisCMS Cross Site Scripting
Posted Aug 6, 2012
Authored by LiquidWorm | Site zeroscience.mk

PolarisCMS suffers from a cross site scripting issue when input passed to the function 'WebForm_OnSubmit()' via the URL to blog.aspx is not properly sanitized before being returned to the user.

tags | exploit, xss
MD5 | 443876595a11f84cd9dcb1db80796c53
Secunia Security Advisory 50075
Posted Jul 30, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability with an unknown impact has been reported in VStar Blog Engine.

tags | advisory
MD5 | 4e613adda58c87e8ba29573371b12880
WordPress Generic Plugin Shell Upload
Posted Jul 13, 2012
Authored by KedAns-Dz

This Metasploit module exploits an arbitrary PHP File Upload and Code Execution flaw in some WordPress blog software plugins. The vulnerability allows for arbitrary file upload and remote code execution POST Data to Vulnerable Script/File in the plugin.

tags | exploit, remote, arbitrary, php, code execution, file upload
MD5 | 6e5db5ab504788fb9b8796603515439f
Secunia Security Advisory 49821
Posted Jul 6, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Contus Vblog plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 3d1403e10bb196df31f56b1613b2e242
Heinisblog SQL Injection
Posted Jun 23, 2012
Authored by Taurus Omar

Heinisblog suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e3efef222dea53e9098a9b9c8559aba0
BlogX Database Disclosure
Posted Jun 19, 2012
Authored by indoushka

BlogX suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | b0edc4acc53666594003892d11d0569d
Secunia Security Advisory 49527
Posted Jun 15, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been discovered in Cells Blog CMS, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | e324cf596f16ae264bb8eb7e809d85d8
Cells Blog CMS 1.1 SQL Injection / Cross Site Scripting
Posted Jun 14, 2012
Authored by snup | Site vulnerability-lab.com

Cells Blog CMS version 1.1 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | f050b4e05a58f7749a8f73d6668e849d
QuickBlog CMS 0.8 SQL Injection / Cross Site Scripting
Posted Jun 14, 2012
Authored by snup | Site vulnerability-lab.com

QuickBlog CMS version 0.8 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 4d721548e3e39f069d7f70598d5168cc
WordPress plugin Foxypress uploadify.php Arbitrary Code Execution
Posted Jun 12, 2012
Authored by patrick, Sammy FORGIT | Site metasploit.com

This Metasploit module exploits an arbitrary PHP code execution flaw in the WordPress blogging software plugin known as Foxypress. The vulnerability allows for arbitrary file upload and remote code execution via the uploadify.php script. The Foxypress plug-in versions 0.4.2.1 and below are vulnerable.

tags | exploit, remote, arbitrary, php, code execution, file upload
advisories | OSVDB-82652
MD5 | 8c50f2bfa40aad8ebf46982e05fc4018
TheBlog 2.0 SQL Injection / Cross Site Scripting
Posted Jun 10, 2012
Authored by WhiteCollarGroup

TheBlog version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | a9006aa45843b5bad94215637fc63350
Dblog 1.4.1 Insecure Session / Access Bypass
Posted Jun 4, 2012
Authored by L3b-r1'z

Dblog version 1.4.1 suffers from an access bypass vulnerability.

tags | exploit, bypass
MD5 | 08bbdc11d93a242b4b2cb0b5da8cca0e
F2blog Shell Upload
Posted Jun 3, 2012
Authored by Mr.XpR

F2blog suffers from a shell upload vulnerability.

tags | exploit, shell
MD5 | 9ee6bef4f7eca5cd4b6b58258422d8d6
Oracle Weblogic Apache Connector POST Request Buffer Overflow
Posted May 18, 2012
Site metasploit.com

This Metasploit module exploits a stack based buffer overflow in the BEA Weblogic Apache plugin. The connector fails to properly handle specially crafted HTTP POST requests, resulting a buffer overflow due to the insecure usage of sprintf. Currently, this module works over Windows systems without DEP, and has been tested with Windows 2000 / XP. In addition, the Weblogic Apache plugin version is fingerprinted with a POST request containing a specially crafted Transfer-Encoding header.

tags | exploit, web, overflow
systems | windows, 2k
advisories | CVE-2008-3257, OSVDB-47096
MD5 | 906cfff187bbb0026697ce9e23a575f1
Secunia Security Advisory 49088
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in the CataBlog plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 507df5132aedf2d1d1edcf2d8936f4ff
WordPress CataBlog 1.6 Cross Site Scripting
Posted May 15, 2012
Authored by Heine Pedersen, Torben Jensen

WordPress CataBlog plugin version 1.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 59b4de2d16ed3adb65180ae013775c83
Debian Security Advisory 2670-1
Posted May 11, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2670-1 - Several vulnerabilities were identified in Wordpress, a web blogging tool. As the CVEs were allocated from release announcements and specific fixes are usually not identified, it has been decided to upgrade the Wordpress package to the latest upstream version instead of backporting the patches.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2011-3122, CVE-2011-3125, CVE-2011-3126, CVE-2011-3127, CVE-2011-3128, CVE-2011-3129, CVE-2011-3130, CVE-2011-4956, CVE-2011-4957, CVE-2012-2399, CVE-2012-2400, CVE-2012-2401, CVE-2012-2402, CVE-2012-2403, CVE-2012-2404
MD5 | 05a792cd9219f8a8c8f7b06ee4bad19d
Debian Security Advisory 2467-1
Posted May 10, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2467-1 - It was discovered that Mahara, the portfolio, weblog, and resume builder, had an insecure default with regards to SAML-based authentication used with more than one SAML identity provider. Someone with control over one IdP could impersonate users from other IdP's.

tags | advisory
systems | linux, debian
MD5 | 145be9e50bee83494706c563f82a3256
idev-Blog 1.0 Cross Site Request Forgery
Posted Apr 5, 2012
Authored by Jonturk75

idev-Blog version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 28d20deb49092f872765fbcbe74cc9ac
Secunia Security Advisory 48573
Posted Mar 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - demonalex has discovered some vulnerabilities in Matthew1471's ASP BlogX, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss, asp
MD5 | e1333098826e6fab5e9c93e8ac40cbab
Matthew1471s ASP BlogX Cross Site Scripting
Posted Mar 28, 2012
Authored by demonalex

Matthew1471s ASP BlogX suffers from a cross site scripting vulnerability.

tags | exploit, xss, asp
MD5 | 7a48064467650d2e09e193cc4f679e48
WikyBlog 1.7.3RC2 Cross Site Scripting
Posted Mar 16, 2012
Authored by Stefan Schurtz

WikyBlog version 1.7.3RC2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 32f8d3c9e31ae4c861a8769ee0edc9c3
Debian Security Advisory 2423-1
Posted Mar 2, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2423-1 - Several vulnerabilities were discovered in Movable Type, a blogging system.

tags | advisory, vulnerability
systems | linux, debian
MD5 | ff30cb36b25932f245d8115b00acea6c
BrewBlogger 2.3.2 CSRF / SQL Injection / Shell Upload
Posted Feb 29, 2012
Authored by KedAns-Dz

BrewBlogger version 2.3.2 suffers from cross site request forgery, shell upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection, csrf
MD5 | 24481cc19b1eeff4a7f132784f17fc27
Page 1 of 4
Back1234Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close