exploit the possibilities
Showing 1 - 25 of 96 RSS Feed

Files

Chamilo LMS 1.11.8 firstname Cross Site Scripting
Posted Oct 8, 2018
Authored by Cakes

Chamilo LMS version 1.11.8 suffers from a cross site scripting vulnerability in the firstname variable.

tags | exploit, xss
MD5 | 02b3da9e6fdc383ab9250e6469f7fa48

Related Files

WordPress Good LMS 2.1.4 SQL Injection
Posted Nov 12, 2020
Authored by Abdulazeez Alaseeri

WordPress Good LMS plugin versions 2.1.4 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9bbed742fa8c8c3131f171c267ebfd1e
Neon LMS Shell Upload
Posted Jun 16, 2020
Authored by th3d1gger | Site metasploit.com

This Metasploit module exploits a shell upload vulnerability in Neon LMS versions prior to 4.9.1.

tags | exploit, shell
MD5 | 26aa3aff8f77bd3458a0a09ac6e239c5
NeonLMS 4.6 Shell Upload
Posted Jun 6, 2020
Authored by th3d1gger

NeonLMS version 3.6 suffers from an authenticated remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 2c01c097ed4377f370cef2cfdd6872fb
NeonLMS Learning Management System PHP Laravel Script 4.6 XSS
Posted Jun 4, 2020
Authored by th3d1gger

NeonLMS Learning Management System PHP Laravel Script version 4.6 suffers from a persistent cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 2e508022471e1a49271d4745b0b3e811
NeonLMS Learning Management System PHP Laravel Script 4.6 File Download
Posted Jun 4, 2020
Authored by th3d1gger

NeonLMS Learning Management System PHP Laravel Script version 4.6 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, php, info disclosure
MD5 | e762859b96e7391cb7c4d0f1d5bc1371
Forma.LMS 5.6.40 Cross Site Request Forgery
Posted May 21, 2020
Authored by Daniel Ortiz

Forma.LMS version 5.6.40 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | a8f9d8914f351df98bfca9858bb28623
Forma.LMS The E-Learning Suite 2.3.0.2 Cross Site Scripting
Posted May 18, 2020
Authored by Daniel Ortiz

Forma.LMS The E-Learning Suite version 2.3.0.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4b7a101d4543ed9ab869159a0c1cce95
ATutor LMS 2.2.4 Weak Password Reset Hash
Posted May 5, 2020
Authored by Hodorsec

ATutor LMS version 2.2.4 suffers from having a weak password reset hash.

tags | exploit
MD5 | 63f346a37c58f06e15e7f77022dc02bf
WordPress Tutor LMS 1.5.3 Cross Site Request Forgery
Posted Mar 2, 2020
Authored by Jinson Varghese Behanan

WordPress Tutor LMS plugin version 1.5.3 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2020-8615
MD5 | a3195f351910c4acd40c82f3afff25c6
LearnDash WordPress LMS 3.1.2 Cross Site Scripting
Posted Feb 10, 2020
Authored by Jinson Varghese Behanan

LearnDash WordPress LMS plugin version 3.1.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-7108
MD5 | 495724cb6e0958f08049f583facc3647
Chamilo LMS 1.11.8 Shell Upload
Posted Sep 25, 2019
Authored by Sohel Yousef

Chamilo LMS version 1.11.8 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | cd0f46654104ad90b791bf2c1eeaf810
EstudioNeoFilms / Grupo LosGrobo / IdeaSeven SQL Injection
Posted Jan 9, 2019
Authored by KingSkrupellos

Various web design firms such as EstudioNeoFilms, Grupo LosGrobo, IdeaSeven, Informatica Icarus Diteh, and Netical24 all have produced sites that are susceptible to SQL injection vulnerabilities.

tags | exploit, web, vulnerability, sql injection
MD5 | f924892391cf79940be495a27d89509b
DoceboLMS 1.2 Shell Upload / SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

DoceboLMS version 1.2 suffers from remote shell upload and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection
MD5 | a55f2d35d29cb2b7921c5303409f47a9
Chamilo LMS 1.11.8 Cross Site Scripting
Posted Oct 5, 2018
Authored by Cakes

Chamilo LMS version 1.11.8 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 34337fc4361af47aecbca2e1795141fc
WordPress Good LMS SQL Injection
Posted Jan 26, 2018
Authored by Esecurity.ir

WordPress Good LMS Learning Management System plugin suffers from a remote SQL Injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4b544c61613e2cdcaef2eb945ad88037
BlackBoard LMS 9.1.140152.0 XSS / File Upload
Posted Aug 24, 2017
Authored by Ismail Doe

BlackBoard LMS version 9.1.140152.0 suffers from a cross site scripting vulnerability that can be leveraged through an arbitrary file upload.

tags | exploit, arbitrary, xss, file upload
MD5 | 47c8d7b954b0a809a7d3aef677b80ea4
Ubuntu Security Notice USN-3388-1
Posted Aug 10, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3388-1 - Joern Schneeweisz discovered that Subversion did not properly handle host names in 'svn+ssh://' URLs. A remote attacker could use this to construct a subversion repository that when accessed could run arbitrary code with the privileges of the user. Daniel Shahaf and James McCoy discovered that Subversion did not properly verify realms when using Cyrus SASL authentication. A remote attacker could use this to possibly bypass intended access restrictions. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2016-2167, CVE-2016-8734, CVE-2017-9800
MD5 | de59b2b48a1a241b14a57ec717c3e2cf
Joomla LMS King Professional 3.2.40 SQL Injection
Posted Aug 3, 2017
Authored by Ihsan Sencan

Joomla LMS King Professional component version 3.2.4.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a7328a694b64249ca16d5b02ff922cc2
Blackboard LMS 9.1 SP14 Cross Site Scripting
Posted Jan 12, 2017
Authored by Lawrence Amer | Site vulnerability-lab.com

Blackboard LMS version 9.1 SP14 suffers from a persistent cross site scripting vulnerability in the title functionality.

tags | exploit, xss
MD5 | 69b7d4ed7e0d0feba443cda421a021d0
Blackboard LMS 9.1 SP14 Cross Site Scripting
Posted Jan 12, 2017
Authored by Lawrence Amer | Site vulnerability-lab.com

Blackboard LMS version 9.1 SP14 suffers from a persistent cross site scripting vulnerability in the profile functionality.

tags | exploit, xss
MD5 | d20a2be6720f7e94c4e4f640697e77d7
Intel Management And Security LMS.exe 7.1.13.1088 Privilege Escalation
Posted Nov 11, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Intel Management and Security Application Local Management Service LMS.exe version 7.1.13.1088 suffers from a privilege escalation vulnerability.

tags | exploit, local
MD5 | d46f61842607d6c2120b543439b683c6
Docebo LMS 6.9 Remote Code Execution
Posted Aug 2, 2016
Authored by Lawrence Amer | Site vulnerability-lab.com

Docebo LMS version 6.9 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 3ff3cc890318608aa3c5e204bfca43a9
Ubuntu Security Notice USN-2950-5
Posted May 25, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2950-5 - USN-2950-1 fixed vulnerabilities in Samba. USN-2950-3 updated Samba to version 4.3.9, which introduced a regression when using the ntlm_auth tool. This update fixes the problem. Jouni Knuutinen discovered that Samba contained multiple flaws in the DCE/RPC implementation. A remote attacker could use this issue to perform a denial of service, downgrade secure connections by performing a man in the middle attack, or possibly execute arbitrary code. Stefan Metzmacher discovered that Samba contained multiple flaws in the NTLMSSP authentication implementation. A remote attacker could use this issue to downgrade connections to plain text by performing a man in the middle attack. Alberto Solino discovered that a Samba domain controller would establish a secure connection to a server with a spoofed computer name. A remote attacker could use this issue to obtain sensitive information. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, spoof, vulnerability
systems | linux, ubuntu
advisories | CVE-2015-5370, CVE-2016-2110, CVE-2016-2111, CVE-2016-2112, CVE-2016-2113, CVE-2016-2114, CVE-2016-2115, CVE-2016-2118
MD5 | 7f2849110fcafc453c4992ae1b5c5912
Ubuntu Security Notice USN-2950-2
Posted Apr 28, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2950-2 - USN-2950-1 fixed vulnerabilities in Samba. The updated Samba packages introduced a compatibility issue with NTLM authentication in libsoup. This update fixes the problem. Jouni Knuutinen discovered that Samba contained multiple flaws in the DCE/RPC implementation. A remote attacker could use this issue to perform a denial of service, downgrade secure connections by performing a man in the middle attack, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, spoof, vulnerability, protocol
systems | linux, ubuntu
advisories | CVE-2015-5370, CVE-2016-2110, CVE-2016-2111, CVE-2016-2112, CVE-2016-2113, CVE-2016-2114, CVE-2016-2115, CVE-2016-2118
MD5 | 4378a3e1b91e771dd7893d559ac783d4
Ubuntu Security Notice USN-2950-1
Posted Apr 18, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2950-1 - Jouni Knuutinen discovered that Samba contained multiple flaws in the DCE/RPC implementation. A remote attacker could use this issue to perform a denial of service, downgrade secure connections by performing a man in the middle attack, or possibly execute arbitrary code. Stefan Metzmacher discovered that Samba contained multiple flaws in the NTLMSSP authentication implementation. A remote attacker could use this issue to downgrade connections to plain text by performing a man in the middle attack. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2015-5370, CVE-2016-2110, CVE-2016-2111, CVE-2016-2112, CVE-2016-2113, CVE-2016-2114, CVE-2016-2115, CVE-2016-2118
MD5 | dc1e4865a1a9a527e20eef823d98ed45
Page 1 of 4
Back1234Next

File Archive:

November 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    2 Files
  • 2
    Nov 2nd
    9 Files
  • 3
    Nov 3rd
    15 Files
  • 4
    Nov 4th
    90 Files
  • 5
    Nov 5th
    22 Files
  • 6
    Nov 6th
    16 Files
  • 7
    Nov 7th
    1 Files
  • 8
    Nov 8th
    1 Files
  • 9
    Nov 9th
    40 Files
  • 10
    Nov 10th
    27 Files
  • 11
    Nov 11th
    28 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    18 Files
  • 14
    Nov 14th
    2 Files
  • 15
    Nov 15th
    2 Files
  • 16
    Nov 16th
    29 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    15 Files
  • 19
    Nov 19th
    21 Files
  • 20
    Nov 20th
    16 Files
  • 21
    Nov 21st
    1 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    19 Files
  • 24
    Nov 24th
    32 Files
  • 25
    Nov 25th
    7 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close