Twenty Year Anniversary
Showing 1 - 21 of 21 RSS Feed

Files

ClipBucket 2.8.3 Remote Code Execution
Posted Oct 4, 2017
Authored by Meisam Monsef

ClipBucket version 2.8.3 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | f13ec94b270861446ac3f3edfb30d15a

Related Files

ClipBucket beats_uploader Unauthenticated Arbitrary File Upload
Posted Mar 26, 2018
Authored by Touhid M.Shaikh | Site metasploit.com

This Metasploit module exploits a vulnerability found in ClipBucket versions before 4.0.0 (Release 4902). A malicious file can be uploaded using an unauthenticated arbitrary file upload vulnerability. It is possible for an attacker to upload a malicious script to issue operating system commands. This issue is caused by improper session handling in /action/beats_uploader.php file. This Metasploit module was tested on ClipBucket before 4.0.0 - Release 4902 on Windows 7 and Kali Linux.

tags | exploit, arbitrary, php, file upload
systems | linux, windows, 7
MD5 | d2275d600b73e806af00c2c4d704c496
ClipBucket SQL Injection / Command Injection / File Upload
Posted Feb 27, 2018
Authored by Fikri Fadzil, Wan Ikram, Jasveer Singh, Ahmad Ramadhan Amizudin | Site sec-consult.com

ClipBucket versions prior to 4.0.0 Release 4902 suffer from OS command injection, arbitrary file upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, sql injection, file upload
MD5 | 5f01efc19d73b84eb391886d4efcadc7
ClipBucket 2.8.3 SQL Injection / Arbitrary File Read / Write
Posted Aug 15, 2017
Authored by bRpsd

ClipBucket version2.8.3 suffers from remote SQL injection, arbitrary file read/write, and default credential vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, sql injection, file inclusion
MD5 | ad009dbfbe414a249ac5f206ca71f955
ClipBucket 2.8.2 Cross Site Scripting
Posted Mar 20, 2017
Authored by NoGe

ClipBucket versions 2.8.2 and below suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | e64a69795fa346ca0541b6bf8e9c283f
Clipbucket 2.8 Blind SQL Injection
Posted Oct 26, 2015
Authored by ayadi

Clipbucket version 2.8 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6fa298a81ffe3ab7964a831d639be9d8
Clipbucket 2.7.0.4.v2929-rc3 Blind SQL Injection
Posted Feb 20, 2015
Authored by CWH Underground

Clipbucket version 2.7.0.4.v2929-rc3 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2015-2102
MD5 | 6b240f808b67fc620a9be7f1c3b24a73
ClipBucket CMS Cross Site Scripting
Posted Jun 14, 2014
Authored by IeDb

Sites running ClipBucket CMS suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.

tags | exploit, xss
MD5 | 889fa595bc1171c5226f92ca91371ccb
ClipBucket Remote Code Execution
Posted Oct 7, 2013
Authored by Gabby | Site metasploit.com

This Metasploit module exploits a vulnerability found in ClipBucket version 2.6 and lower. The script "/admin_area/charts/ofc-library/ofc_upload_image.php" can be used to upload arbitrary code without any authentication. This Metasploit module has been tested on version 2.6 on CentOS 5.9 32-bit.

tags | exploit, arbitrary, php
systems | linux, centos
MD5 | c62007c943c9b015fa58412ec3a8a406
ClipBucket Remote Code Execution
Posted Oct 2, 2013
Authored by Gabby

ClipBucket suffers from a remote code execution vulnerability that allows for a shell upload.

tags | exploit, remote, shell, code execution
MD5 | c9c7067c011ad00385d327bc7699a3bd
Secunia Security Advisory 51460
Posted Dec 10, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge has discovered multiple vulnerabilities in ClipBucket, which can be exploited by malicious users and malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 72f5a7f6e5b298a5497d335bd618294a
ClipBucket 2.6 Revision 738 SQL Injection
Posted Dec 7, 2012
Authored by High-Tech Bridge SA | Site htbridge.com

ClipBucket version 2.6 revision 738 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2012-5849
MD5 | 2d3db166e1d694dc1077647c957000a7
ClipBucket 2.6 Cross Site Scripting
Posted Oct 20, 2012
Authored by Canberk BOLAT

ClipBucket version 2.6 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 12ef3118b03f5c38a2455c850c83f3f2
Clipbucket 2.5 Directory Traversal
Posted Aug 22, 2012
Authored by loneferret

Clipbucket version 2.5 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 825e209863f75100ef961402e8f324b5
Clipbucket 2.5 Blind SQL Injection
Posted Aug 22, 2012
Authored by loneferret

Clipbucket version 2.5 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c56d0ff4f25346defe873461e6a1c86a
ClipBucket 2.5 Cross Site Request Forgery
Posted Aug 18, 2012
Authored by DaOne

ClipBucket version 2.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 84311a1294090cfc25ff4c40a3cc20ac
ClipBucket 2 Blind SQL Injection
Posted Jul 18, 2012
Authored by Akastep

ClipBucket version 2 suffers from a remote blind SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
MD5 | 60a3f436063e9c6d2f2425c6f51674af
Clip Bucket 2.6 Cross Site Scripting / SQL Injection
Posted Jan 9, 2012
Authored by YaDoY666

Clip Bucket version 2.6 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 2113afe612b8b9e1f6343cf293914d73
Secunia Security Advisory 47474
Posted Jan 9, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been discovered in ClipBucket, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | bce42a570ac979937b3ee9736c1010b1
Clipbucket 2.4 RC2 645 SQL Injection
Posted May 25, 2011
Authored by AutoSec Tools | Site autosectools.com

A SQL injection vulnerability in Clipbucket version 2.4 RC2 645 can be exploited to extract arbitrary data. In some environments it may be possible to create a PHP shell.

tags | exploit, arbitrary, shell, php, sql injection
MD5 | b1b0439bb9441c5ac22b49cc43e394f4
Secunia Security Advisory 44691
Posted May 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - AutoSec Tools has discovered a vulnerability in ClipBucket, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | a412058c65f251790c94d5264629bf69
Clip Bucket 1.7.1 Insecure Cookie
Posted Jul 24, 2009
Authored by Qabandi

Clip Bucket versions 1.7.1 and below suffer from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling
MD5 | bae0eb6da3e791213a5c8b4ebab11b5e
Page 1 of 1
Back1Next

File Archive:

September 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    3 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    18 Files
  • 6
    Sep 6th
    18 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    2 Files
  • 9
    Sep 9th
    2 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    17 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    29 Files
  • 14
    Sep 14th
    21 Files
  • 15
    Sep 15th
    3 Files
  • 16
    Sep 16th
    1 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    16 Files
  • 19
    Sep 19th
    29 Files
  • 20
    Sep 20th
    18 Files
  • 21
    Sep 21st
    5 Files
  • 22
    Sep 22nd
    2 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close