exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 44

Files

Biesta Billing 4.0 Beta Cross Site Request Forgery / Traversal

Posted Nov 29, 2016

Authored by Taurus Omar

Biesta Billing version 4.0 Beta suffers from cross site request forgery and directory traversal vulnerabilities.

tags | exploit, vulnerability, file inclusion, csrf

SHA-256 | 1dbc8d21c6556545a544de74ed9e813e4cb5d2098b52219b9c607c83be2a4e40

Download | Favorite | View

Related Files

BoxBilling 4.22.1.5 Remote Code Execution

Posted Mar 28, 2023

Authored by zetc0de

BoxBilling versions 4.22.1.55 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution

advisories | CVE-2022-3552

SHA-256 | 6e59fbe468fead5a4191e76bf74361a19de1ba2b8e6b5604dcfb35095342aea9

Download | Favorite | View

Billing System Project 1.0 Shell Upload

Posted Jul 6, 2021

Authored by Talha Demirsoy

Billing System Project version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell

SHA-256 | e94c56a7fafc4a099efd8662b58fe076775c9b56f0490facd6cbadf266936e7c

Download | Favorite | View

Billing Management System 2.0 SQL Injection

Posted May 17, 2021

Authored by Mohammad Koochaki

Billing Management System version 2.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to Pintu Solanki in February of 2021.

tags | exploit, remote, vulnerability, sql injection

SHA-256 | 25b099897c38e0ddaff2308cfd1337fd34b11049beb099e604bd657696024b66

Download | Favorite | View

Billing Management System 2.0 SQL Injection

Posted Feb 17, 2021

Authored by Pintu Solanki

Billing Management System version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection

SHA-256 | 71ffd66c09e6b0d4438a03d01a3389ed91c8a27fc42a3d07c73dccbccbe16f11

Download | Favorite | View

Advanced Webhost Billing System 3.7.0 Cross Site Request Forgery

Posted Jan 6, 2021

Authored by Rahul Ramakant Singh

Advanced Webhost Billing System version 3.7.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | bc3eb51d27d3ddf82da984c0a0e9b5fcfaa7e62708458fba473d13c34d055205

Download | Favorite | View

Water Billing System 1.0 SQL Injection

Posted Nov 16, 2020

Authored by Mehmet Kelepce

Water Billing System version 1.0 suffers from a remote SQL injection vulnerability. This version was already found to be susceptible to SQL injection by Sarang Tumne in November of 2020.

tags | exploit, remote, sql injection

SHA-256 | f0f6069ec9c64c3cfabb29159fe32ae5d1d26753c3377fb06573faee908f7854

Download | Favorite | View

Water Billing System 1.0 SQL Injection

Posted Nov 12, 2020

Authored by Sarang Tumne

Water Billing System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | da4935484a736dd28bb1bd7434dbaa49972e285c27f5ee9f6dcebc0854b673b1

Download | Favorite | View

ASTPP 4.0.1 Database Disclosure

Posted Jan 10, 2020

Authored by Fabien Aunay

ASTPP version 4.0.1 VoIP billing suffers from a database backup disclosure vulnerability.

tags | exploit, info disclosure

SHA-256 | a2174d3dba9ae9ae0510d2c1aa2607002f40276b2fd998186e770707831fcc82

Download | Favorite | View

Neo Billing 3.5 Cross Site Scripting

Posted Aug 19, 2019

Authored by n1x_

Neo Billing version 3.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 962e3dd6f61149f627bcad16099db88da89289a4c5cc7ff5743fc5ef8c25644d

Download | Favorite | View

EasyService Billing 1.0 CSRF / XSS / SQL Injection

Posted May 26, 2018

Authored by Divya Jain

EasyService Billing version 1.0 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf

advisories | CVE-2018-11442, CVE-2018-11443, CVE-2018-11444, CVE-2018-11445

SHA-256 | a2a4de4eb18f28d5c18f12db019b54a2f3656bdfb574a24eefe0aa0628fb25e6

Download | Favorite | View

EasyService Billing 1.0 SQL Injection / Cross Site Scripting

Posted May 22, 2018

Authored by Ozkan Mustafa Akkus

EasyService Billing version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection

SHA-256 | 5e0c599cdc7c6893419a5b4dbfa859bdc71d855ca1c7b03b2de1125a87f17fdc

Download | Favorite | View

A2billing 2.x Backup Disclosure / Code Execution / SQL Injection

Posted Sep 5, 2017

Authored by Ahmed Sultan

A2billing version 2.x suffers from backup disclosure, remote code execution, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, code execution, sql injection, info disclosure

SHA-256 | 8d2bbaa0926ceb30a7440d40f355fe312c328ef5393093dc1eea4fc8bef1da29

Download | Favorite | View

A2billing 2.1.1 SQL Injection

Posted Sep 5, 2017

Authored by Ahmed Sultan

A2billing versions 2.1.1 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | fa58d2fa74434d882588706eabcad575be12498aed58f946dec844055a68ab1a

Download | Favorite | View

Trashbilling.com / Trashflow 3.0 XSS / SQL Injection

Posted May 12, 2017

Authored by g00se

Trashbilling.com suffered from account enumeration, cross site scripting, denial of service, and remote SQL injection vulnerabilities. Trashflow 3.0 suffers from denial of service and hard-coded credential vulnerabilities.

tags | exploit, remote, denial of service, vulnerability, xss, sql injection

SHA-256 | 470b4eb23083c6d35beb60491c350e8d089794af3047da9432eb27938a471df2

Download | Favorite | View

Complete Client Management And Billing 1.0.1 SQL Injection

Posted Feb 9, 2017

Authored by Ihsan Sencan

Complete Client Management and Billing script version 1.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 81828d960033854d8be40ae6aaf8b6e90387b6315ab6ce7832ebf979e63a6073

Download | Favorite | View

BoxBilling 4.20 Cross Site Scripting

Posted Oct 4, 2016

Authored by indoushka

BoxBilling version 4.20 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 4de3724305dd0eaa1fd24b71397703b9e82643aa5955217ddc7ddbde85f6588d

Download | Favorite | View

CodeCanyon iBilling 2.4 Cross Site Scripting

Posted Sep 19, 2016

Authored by indoushka

CodeCanyon iBilling version 2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | d41d9e15c4377e6843aa40aa225587fee960487ca541dcbc3aa1522e730879d7

Download | Favorite | View

iBilling 3.7.0 Cross Site Scripting

Posted Jun 27, 2016

Authored by Bikramaditya Guha | Site zeroscience.mk

iBilling version 3.7.0 suffers from multiple stored and reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss

SHA-256 | 90c8a074050732437227d5b545e662c2703b13765c44c9ecfda872f7e4a5d9d0

Download | Favorite | View

HotExBilling Manager 73 Cross Site Scripting

Posted Apr 6, 2015

Authored by Bhadresh Patel

HotExBilling Manager version 73 suffers from a cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2015-2781

SHA-256 | f89a76503b13c1babdd6ef06c3833e86ce72585726e830aa66ce9afa10898690

Download | Favorite | View

BoxBilling 3.6.11 Cross Site Scripting

Posted Dec 7, 2013

Authored by LiquidWorm | Site zeroscience.mk

BoxBilling suffers from a stored cross site scripting vulnerability. Input passed to the 'message' POST parameter thru the 'Notification Center' extension/module is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Version 3.6.11 is affected.

tags | exploit, arbitrary, xss

SHA-256 | 79655606b0994b8eb520f94b90ad44a33cf34d99fec9a3b40c90c49f32d15daf

Download | Favorite | View

Google Play Billing Bypass

Posted Oct 29, 2013

Authored by Dominik Schurmann

All Google Play Billing Library 3 versions before Oct, 8 distributed via Android SDK and marketbilling on Googlecode are susceptible to impersonation and signature verification vulnerabilities.

tags | advisory, vulnerability, bypass

SHA-256 | f68f31523fe048d0a532378407c09820e34245d3b9aac37fc00b428562210019

Download | Favorite | View

Paypal Persistent Cross Site Scripting

Posted Jun 9, 2013

Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Paypal suffers from a persistent cross site scripting vulnerability in the billing area.

tags | exploit, xss

SHA-256 | 5538c742c9422e011dd25d70e2fa186803a4e5cb078106934cbd7ca927cf4305

Download | Favorite | View

FreeSWITCH vBilling SQL Injection

Posted Apr 22, 2013

Authored by Michal Blaszczak

vBilling for FreeSWITCH suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection

SHA-256 | 994b7109cb3e6f3b6c77edff6f1e8d54a0117e5090c812694dab17f3c64c0b94

Download | Favorite | View

Secunia Security Advisory 51341

Posted Nov 26, 2012

Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ingress Security has discovered a vulnerability in jBilling, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf

SHA-256 | dc243ca9371074e2d2e4ec396a8c616c2dbe8a77e54384eca9ab28cfe113fafa

Download | Favorite | View

jBilling 3.0.2 Cross Site Scripting

Posted Nov 24, 2012

Authored by Ingress Security, Woody Hughes

jBilling versions 3.0.2 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 4ceac8d0fc1f1afec1cf3dcadedca25fa1795ffaf93a687d404a447d3f2a5c35

Download | Favorite | View