what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 7 of 7 RSS Feed

Files

OctoberCMS Insecure Dependencies
Posted Mar 15, 2020
Authored by John Martinelli from ISRD.com

OctoberCMS is a CMS similar to WordPress, but with much less "fluff". The SECURELI.com team identified the latest version of OctoberCMS relying on Bootstrap 3.3.7, jQuery 1.11.1, and jQuery 3.3.1. All of these dependencies are vulnerable.

tags | advisory
advisories | CVE-2015-9251, CVE-2018-14040, CVE-2018-14041, CVE-2018-14042, CVE-2019-11358, CVE-2019-8331
SHA-256 | f681fa16535fadc7191cd66f822dffa7d216f8af2a34f5deedc5787f586eef6a

Related Files

October CMS 3.4.4 Cross Site Scripting
Posted Jul 31, 2023
Authored by Okan Kurtulus

October CMS version 3.4.4 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 2a6cf254ba269a88aeaf0ea65b1a5330b5a6a87f4df89efa2421d3ebf8f202a0
October CMS Build 465 XSS / File Read / File Deletion / CSV Injection
Posted Aug 3, 2020
Authored by Sivanesh Ashok

October CMS builds 465 and below suffer from arbitrary file read, arbitrary file deletion, file uploading to arbitrary locations, persistent and reflective cross site scripting, and CSV injection vulnerabilities.

tags | exploit, arbitrary, vulnerability, xss, file upload
advisories | CVE-2020-11083, CVE-2020-5295, CVE-2020-5296, CVE-2020-5297, CVE-2020-5298, CVE-2020-5299
SHA-256 | db161c36ea18421b21654c361479e95224d40c18622344eb445b051377246742
October CMS User 1.4.5 Cross Site Scripting
Posted Apr 26, 2018
Authored by 0xB9

October CMS User plugin version 1.4.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-10366
SHA-256 | 2542351c0db2686c16ac211c741d58a6096bc2da3e0f49b94409072994f16c19
October CMS Cross Site Scripting
Posted Feb 19, 2018
Authored by Samrat Das

October CMS versions prior to 1.0.431 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-7198
SHA-256 | 1c24c99210f1e4aae61e494bd1776271475f0fa22bd94c356ae4fecbe8cc6793
OctoberCMS 1.0.426 (Build 426) Cross Site Request Forgery
Posted Nov 2, 2017
Authored by Zain Sabahat

OctoberCMS version 1.0.426 (Build 426) suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2017-16244
SHA-256 | ccff89bd09fbd52d37f55db26fc77ecdbafe040098e2fd831759890dff129ae2
OctoberCMS 1.0.425 Cross Site Scripting
Posted Oct 12, 2017
Authored by Ishaq Mohammed

OctoberCMS version 1.0.425 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-15284
SHA-256 | 3df000b7a5627cbc2f13686698775fb84026d7281fc3bd4fb07cb5597369b8c1
October CMS 1.0.412 Code Execution / Shell Upload
Posted Apr 20, 2017
Authored by Anti Rais

October CMS version 1.0.412 suffers from access bypass, cross site scripting, code execution, and remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, code execution, xss
SHA-256 | f133ae1a00c61dc5828a8d5a4a01eaa1cff8d008fd292fc06836a939242285de
Page 1 of 1
Back1Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close