exploit the possibilities
Showing 1 - 25 of 100 RSS Feed

Files

CentOS Control Web Panel 0.9.8.836 Authentication Bypass
Posted Jul 16, 2019
Authored by Pongtorn Angsuchotmetee

CentOS Control Web Panel version 0.9.8.836 suffers from an authentication bypass vulnerability.

tags | exploit, web, bypass
systems | linux, centos
advisories | CVE-2019-13360, CVE-2019-13605
MD5 | 010e4c768075759ac870b22afd37ce05

Related Files

Nike+ Panel / Mobile App Cross Site Scripting
Posted Aug 17, 2012
Authored by Benjamin Kunz Mejri, Dhillon Kannabhiran | Site vulnerability-lab.com

Nike+ Panel and Mobile App suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | cc6c0bce41540c26e7a7acfa73482c26
Joomla Admin Panel Bruteforcer
Posted Jul 28, 2012
Authored by miyachung

This is a php script that takes a list of sites and password possibilities and runs as a cracker against Joomla administrative panels.

tags | cracker, php
MD5 | 2f7e9330e3523ca691d3cf21901a61ce
Atmail WebAdmin / Webmail Control Panel SQL Root Password Disclosure
Posted Jul 23, 2012
Authored by Ciph3r

Atmail WebAdmin and Webmail Control Panel suffers from a SQL root password disclosure vulnerability.

tags | exploit, root, info disclosure
MD5 | 5c9ac782df027f25b54222574b6cff14
Secunia Security Advisory 49813
Posted Jul 9, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A weakness has been reported in WebsitePanel, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
MD5 | b74c54b27e49857a602cf55a8fdf54aa
WebsitePanel CMS Open Redirect
Posted Jul 8, 2012
Authored by Anastasios Monachos

WebsitePanel CMS versions prior to 1.2.2.1 suffer from an open redirection vulnerability.

tags | exploit
MD5 | 0d2d1d9da9a60de24ae029a01130d07d
SPIP Core 3.0.1 / 2.1.14 / 2.0.19 Cross Site Scripting
Posted Jun 14, 2012
Authored by ASafety

SPIP Core versions below and equal to 3.0.1, 2,1.14, and 2.0.19 suffer from a cross site scripting vulnerability in the administrative panel.

tags | exploit, xss
MD5 | 8139b941592f84b08c94a208b1d131be
Secunia Security Advisory 49363
Posted Jun 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities with unknown impacts have been reported in cPanel.

tags | advisory, vulnerability
MD5 | f42726917735e348886254bc044c3135
Private Cpanel Cracker
Posted May 23, 2012
Authored by miyachung

This is a php script called Private Cpanel Cracker. It takes in a site list and a word list.

tags | cracker, php
MD5 | aa74ed58f8739816bef57faece954e6a
LiteSpeed 4.1.11 Cross Site Scripting
Posted Mar 19, 2012
Authored by K1P0D

LiteSpeed versions 4.1.11 and below suffer from a cross site scripting vulnerability in the admin panel.

tags | exploit, xss
MD5 | cb262a31c03a7f7f3d46981dc687af77
Secunia Security Advisory 48262
Posted Mar 5, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Parallels Plesk Panel, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 8b775b5d2ff2866e95d880884a71ce6f
4Images 1.7.10 Cross Site Scripting
Posted Jan 31, 2012
Authored by d3v1l, RandomStorm

4Images version 1.7.10 suffers from a cross site scripting vulnerability in the administrative panel.

tags | exploit, xss
MD5 | e550253f92cd260f211e8370a98631cf
Secunia Security Advisory 47649
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Panels module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | 66f2cc2ecbb5aa49a1cace00ea9fbf9b
WordPress Blog Cross Site Scripting
Posted Jan 12, 2012
Authored by d3v1l, RandomStorm

The administrative panel for WordPress Blog on WordPress.com suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
MD5 | bf3bff0b9495ed30e7835698c32af388
Mandriva Linux Security Advisory 2011-198
Posted Jan 1, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-198 - Multiple vulnerabilities has been found and corrected in phpmyadmin. Importing a specially-crafted XML file which contains an XML entity injection permits to retrieve a local file (limited by the privileges of the user running the web server). Using crafted database names, it was possible to produce XSS in the Database Synchronize and Database rename panels. Using an invalid and crafted SQL query, it was possible to produce XSS when editing a query on a table overview panel or when using the view creation dialog. Using a crafted column type, it was possible to produce XSS in the table search and create index dialogs. Crafted values entered in the setup interface can produce XSS; also, if the config directory exists and is writeable, the XSS payload can be saved to this directory. Using crafted url parameters, it was possible to produce XSS on the export panels in the server, database and table sections. This upgrade provides the latest phpmyadmin version to address these vulnerabilities.

tags | advisory, web, local, vulnerability
systems | linux, mandriva
advisories | CVE-2011-4107, CVE-2011-4634, CVE-2011-4782, CVE-2011-4780
MD5 | f2266e29703f046dca3c61f62868ac08
Debian Security Advisory 2365-1
Posted Dec 18, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2365-1 - Ansgar Burchardt, Mike O'Connor and Philipp Kern discovered multiple vulnerabilities in DTC, a web control panel for admin and accounting hosting services.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2011-3195, CVE-2011-3196, CVE-2011-3197, CVE-2011-3198, CVE-2011-3199
MD5 | 13efce9efdc5a9a22374e7834895c342
Secunia Security Advisory 47068
Posted Dec 1, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Parallels has acknowledged two vulnerabilities in Parallels Plesk Panel, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
MD5 | 083cf79c67adf6bc0f8a7e029dbf1a3d
Secunia Security Advisory 46158
Posted Oct 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - David Hoyt has reported multiple vulnerabilities in Parallels Plesk Panel, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | dd00dbdb2fef466166bd7ab823ba53b9
Secunia Security Advisory 46211
Posted Oct 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - David Hoyt has reported multiple vulnerabilities in Plesk and Parallels Plesk Panel, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 3b0d5699949f428d18a797a057fd84c0
Easy Hosting Control Panel Authentication Bypass
Posted Oct 4, 2011
Authored by Jasman

Easy Hosting Control Panel suffers from an administrative authentication bypass vulnerability. Versions 0.29.10 through 0.29.13 are affected.

tags | exploit, bypass
MD5 | 1dbfa4a6c3611d6d39b84b46512b665c
Plesk Parallels Panel Cross Site Scripting / SQL Injection
Posted Sep 24, 2011
Site xss.cx

Plesk Parallels Panel version psa 10.2.0_build1011110331.18 suffers from cross site scripting, denial of service, and remote SQL injection vulnerabilities.

tags | advisory, remote, denial of service, vulnerability, xss, sql injection
MD5 | 4de8a34fc5e7f37fc5ae093df98251c1
WordPress Clickjacking
Posted Sep 23, 2011
Authored by Andrew Horton (urbanadventurer) | Site security-assessment.com

This advisory is the result of research into how clickjacking can be leveraged and is the first published clickjacking exploit against a popular web application to gain OS command execution. WordPress is a web application used to create a website or blog. The WordPress Admin panel can be clickjacked to install an arbitrary plugin from the WordPress plugin archive which leads to arbitrary PHP code installation and subsequently OS command execution. Versions of WordPress prior to 3.1.3 are vulnerable to clickjacking. WordPress has had clickjacking protection since May, 2011 with the release of version 3.1.3, however no specific threat or exploit has been published.

tags | advisory, web, arbitrary, php
MD5 | e2abac98d6f8c708eef84b5e166ca4e1
Plesk Control Panel 10.2 Cross Site Scripting
Posted Sep 23, 2011
Site xss.cx

Plesk Control Panel version 102 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 2eb876c40da0d9da7c27b3f3ec4926b6
cPanel Cross Site Request Forgery
Posted Aug 28, 2011
Authored by Net.Edit0r

cPanel versions prior to 11.30.2 suffer from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | a54b2314c970856f2aac93da15bcac02
SeoPanel 3.0.0-Released Cross Site Request Forgery
Posted Aug 8, 2011
Authored by KedAns-Dz

SeoPanel version 3.0.0-Released suffers from cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | be5197e09257e3b1cc2bdfd8a5b1c15a
Byethost Cpanel Cross Site Request Forgery
Posted Aug 2, 2011
Authored by Izam

Byethost Cpanel suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 34c048d86a0fd6b130c27286dd862a6a
Page 1 of 4
Back1234Next

File Archive:

September 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    38 Files
  • 3
    Sep 3rd
    30 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    12 Files
  • 6
    Sep 6th
    17 Files
  • 7
    Sep 7th
    3 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    24 Files
  • 10
    Sep 10th
    22 Files
  • 11
    Sep 11th
    22 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    5 Files
  • 14
    Sep 14th
    2 Files
  • 15
    Sep 15th
    1 Files
  • 16
    Sep 16th
    11 Files
  • 17
    Sep 17th
    16 Files
  • 18
    Sep 18th
    8 Files
  • 19
    Sep 19th
    14 Files
  • 20
    Sep 20th
    20 Files
  • 21
    Sep 21st
    3 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close