what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 100 RSS Feed

Files

waraxe-2004-SA022.txt
Posted Apr 22, 2004
Authored by Janek Vind aka waraxe | Site waraxe.us

PostNuke 0.726 Phoenix is susceptible to multiple path disclosure and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 2421cfda93e82828c31ba0e759ac8a875641a6177c67906a0428a997b7c95c75
Download | Favorite | View

Related Files

WordPress Wordfence 7.1.12 XSS / Username Disclosure
Posted Oct 18, 2018
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Wordfence plugin version 7.1.12 suffers from bypass, cross site scripting, and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 7bd9c300ee5c12f903f4a443c03eeac48af0e1085041a04c331ee74dccfda5db
Download | Favorite | View
WordPress Breadcrumb NavXT 6.1.0 Username Disclosure
Posted Sep 27, 2018
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Breadcrumb NavXT plugin version 6.1.0 suffers from a username disclosure vulnerability.

tags | exploit
SHA-256 | a7d331bc7a3c3c5f71c497eb152d46ea8fb5956444bfa1d2462d1d680b57b936
Download | Favorite | View
WordPress FV Flowplayer 7.2.0.727 Cross Site Scripting
Posted Sep 21, 2018
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress FV Flowplayer plugin version 7.2.0.727 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | fe238bd67c74b6ab772c15bb15bc015aa19431e59fe64ef72c699cbe463baa5f
Download | Favorite | View
Saurus CMS 4.7.1 4.7.1 LFI / RFI / XSS / SQL Injection / Traversal / CSRF
Posted Jul 15, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

Saurus CMS version 4.7.1 suffers from cross site scripting, remote file inclusion, local file inclusion, information disclosure, remote SQL injection, HTTP response splitting, cross site request forgery, and directory traversal vulnerabilities.

tags | exploit, remote, web, local, vulnerability, xss, sql injection, file inclusion, info disclosure, csrf
SHA-256 | b52a1c3cfedd7ec254223b0a31cf381969950ec828d4cd8eca7bea868182a7f5
Download | Favorite | View
phpMyAdmin 3.5.8 / 4.0.0-RC2 Code Execution / LFI / Overwrite
Posted Apr 25, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

phpMyAdmin versions 3.5.8 and 4.0.0-RC2 suffer from multiple remote code execution, local file inclusion, and array overwrite vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
advisories | CVE-2013-3238, CVE-2013-3239, CVE-2013-3240, CVE-2013-3241
SHA-256 | 5f5b20d982ae97824512b1c23808b9c17b328dae83d316eee98cdebbab52a1c6
Download | Favorite | View
phpMyAdmin 3.5.7 Cross Site Scripting
Posted Apr 10, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

phpMyAdmin version 3.5.7 suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 373323d449040d80cf19a424efb57660421ebce6af076a5b804b8d44f7724af3
Download | Favorite | View
mRemote 1.50 Update Spoofing
Posted Mar 29, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

mRemote version 1.50 suffers from an update spoofing vulnerability.

tags | exploit, spoof
SHA-256 | c1de31f6f8728351a15b518d67f8c93d6869670704738ea370459b1e5c0cd954
Download | Favorite | View
Royal TS 2.1.5 Update Spoofing
Posted Mar 29, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

Royal TS version 2.1.5 suffers from an update spoofing vulnerability.

tags | exploit, spoof
SHA-256 | bbdbe2cbd87607168248afc01ef7c42de353e86ceb6dd83377794643f9bbeb09
Download | Favorite | View
LibreOffice 4.0.1.2 Update Spoofing
Posted Mar 22, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

LibreOffice version 4.0.1.2 suffers from an update spoofing vulnerability due to not using a secure channel nor digital signatures.

tags | exploit, spoof
SHA-256 | 0fd0fd152553fcde204b860ae9af883db4511e308c44f058a80c84db259f2843
Download | Favorite | View
OpenCart 1.5.5.1 Directory Traversal
Posted Mar 20, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

OpenCart version 1.5.5.1 suffers from a directory traversal vulnerability.

tags | exploit
SHA-256 | d4fb0138400954a2ffd3deaf9aa1b199b065826234b68bb121e49aa9e20d7686
Download | Favorite | View
PHP-Fusion 7.02.05 XSS / LFI / SQL Injection
Posted Mar 1, 2013
Authored by Janek Vind aka waraxe | Site waraxe.us

PHP-Fusion version 7.02.05 suffers from insecure backup handling, cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.

tags | exploit, remote, local, php, vulnerability, xss, sql injection, file inclusion
SHA-256 | fa7b586afe0a410a0efe0520e47423439ff8a65220c5db6358b160d972751277
Download | Favorite | View
Zenphoto 1.4.3.3 SQL Injection / Interface Exposure / XSS
Posted Nov 5, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Zenphoto version 1.4.3.3 suffers from multiple vulnerabilities including an administrative interface exposure, cross site scripting, file restriction bypass, path disclosure, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 9f53c22a8ac57740fc1010024ab439c0b07a1d45e41292904b2e8ec52af6e23d
Download | Favorite | View
WordPress FoxyPress 0.4.2.5 XSS / CSRF / SQL Injection
Posted Oct 30, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress FoxyPress plugin version 0.4.2.5 suffers from cross site request forgery, cross site scripting, path disclosure, remote shell upload, open redirect, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, xss, sql injection, csrf
SHA-256 | de830eed195cbfc1599a0dbca00d8fe76804c6bb2f451f88dcf2319725caba6a
Download | Favorite | View
WordPress GRAND Flash Album Gallery SQL Injection / Disclosure / File Overwrite
Posted Oct 25, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress GRAND Flash Album Gallery plugin versions 1.9.0 and 2.0.0 suffer from file disclosure, file overwrite, directory traversal, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 8eac246e079c2e20610ea5b3fb4b19023d217d4774055a243a7bbe5f34191b0c
Download | Favorite | View
Wordpress Social Discussions 6.1.1 File Inclusion / Path Disclosure
Posted Oct 18, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Social Discussions plugin version 6.1.1 suffers from local file inclusion, path disclosure, and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, file inclusion
SHA-256 | 6933e3b623f1553697b15b2ffeb7d2791b92487442eb60c7da616d9ff9df1f71
Download | Favorite | View
WordPress Slideshow 2.1.12 Cross Site Scripting / Path Disclosure
Posted Oct 18, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Slideshow plugin versions 2.1.12 and below suffer from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | da1af48b7e10782660bd99d291eaed392728e957f960e5ad28cedbd89efdf24e
Download | Favorite | View
phpMyBitTorrent 2.04 SQL Injection / Local File Inclusion
Posted Oct 3, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

phpMyBitTorrent version 2.04 suffers from insecure cache handling, remote file disclosure, local file inclusion, and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, sql injection, file inclusion
SHA-256 | 25fb87d1faed33e02e6892952db60e041cb9171205e8aec0e9f52fbac8d97fb7
Download | Favorite | View
Thomson SpeedTouch ST780 Insecure SSL Connection
Posted Sep 25, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Thomson SpeedTouch ST780, by design, has mixed content in the DOM during an SSL encapsulated session.

tags | advisory
SHA-256 | 9f6490ea623fbe7b601d57d1e4cd0577e84849f09b056198d080aee040e37ad6
Download | Favorite | View
TorrentTrader 2.08 XSS / Directory Traversal / Bypass
Posted Sep 17, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

TorrentTrader version 2.08 suffers from authorization bypass, cross site scripting, path disclosure, and directory traversal vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 7185dd5b6ed5a821ecd9a5ec901d5d961227f2ab65af5e4ed90e84f1cd946946
Download | Favorite | View
Joomla 2.5.4 Cross Site Scripting
Posted May 3, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Joomla version 2.5.4 suffers from a cross site scripting vulnerability in the administrative sysinfo page.

tags | exploit, xss
advisories | CVE-2012-2412
SHA-256 | d3e0916a3d65dc13f3285d97784500de31ef52e38715fbb01563ab87c0892607
Download | Favorite | View
Joomla 1.5.26 ja_purity Cross Site Scripting
Posted May 3, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Joomla version 1.5.26 suffers from a cross site scripting vulnerability in the ja_purity template.

tags | exploit, xss
advisories | CVE-2012-2413
SHA-256 | 829e40f497b4b9a912618e7d916c1875a88063054d2b245603c57bfe9e1f36a6
Download | Favorite | View
Invision Power Board 3.3.0 Local File Inclusion
Posted Apr 13, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Invision Power Board version 3.3.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2012-2226
SHA-256 | f60495dc85f064342f7246563e66ad86955a8f7a941db582ed6b51ec5253b559
Download | Favorite | View
Uploadify Integration 0.9.6 Cross Site Scripting
Posted Apr 10, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Uploadify Integration version 0.9.6 suffers from multiple reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 2cec663ed8f499e02e5821c830115810999de117f9fed461880943ad28c12e39
Download | Favorite | View
OpenCart 1.5.2.1 LFI / Shell Upload / Response Splitting
Posted Apr 9, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

OpenCart version 1.5.2.1 suffers from arbitrary file upload, HTTP response splitting, local file inclusion, path disclosure, and failed randomness vulnerabilities.

tags | exploit, web, arbitrary, local, vulnerability, file inclusion, file upload
SHA-256 | 25944ffdc2a7a3db202a1db3e98135989ccf06c08ac03ec68f53ed95c4abb836
Download | Favorite | View
Uploadify 2.1.4 Cross Site Scripting / Shell Upload
Posted Apr 6, 2012
Authored by Janek Vind aka waraxe | Site waraxe.us

Uploadify version 2.1.4 suffers from cross site scripting, arbitrary file upload, and file existence disclosure vulnerabilities.

tags | exploit, arbitrary, vulnerability, xss, file upload
SHA-256 | 3f38c74b43ba1c025dd465775f3d1dc92c03a7e41854abae55a3586edd31ee50
Download | Favorite | View
Page 1 of 4
Back1234Next

File Archive:

November 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    1 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    0 Files
  • 5
    Nov 5th
    0 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    0 Files
  • 8
    Nov 8th
    0 Files
  • 9
    Nov 9th
    0 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    0 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    219 Files
  • 14
    Nov 14th
    19 Files
  • 15
    Nov 15th
    66 Files
  • 16
    Nov 16th
    38 Files
  • 17
    Nov 17th
    9 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    11 Files
  • 22
    Nov 22nd
    56 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    36 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    14 Files
  • 28
    Nov 28th
    30 Files
  • 29
    Nov 29th
    35 Files
  • 30
    Nov 30th
    25 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close