Twenty Year Anniversary
Showing 1 - 25 of 42,305 RSS Feed

Exploit Files

Synaccess netBooter NP-0801DU 7.4 Cross Site Request Forgery
Posted Nov 19, 2018
Authored by LiquidWorm | Site zeroscience.mk

Synaccess netBooter NP-0801DU version 7.4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | c58aeb7ef6b68b80d63bcfe2db7d1b15
Synaccess netBooter NP-02x / NP-08x 6.8 Authentication Bypass
Posted Nov 19, 2018
Authored by LiquidWorm | Site zeroscience.mk

Synaccess netBooter NP-02x and NP-08x version 6.8 suffer from an authentication bypass vulnerability due to a missing control check when calling the webNewAcct.cgi script while creating users. This allows an unauthenticated attacker to create an admin user account and bypass authentication giving her the power to turn off a power supply to a resource.

tags | exploit, cgi, bypass
MD5 | b35aa71589ba337fad0f50e2db1dd972
Microsoft Edge Chakra OP_Memset Type Confusion
Posted Nov 19, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge suffers from a Chakra OP_Memset type confusion vulnerability.

tags | exploit
MD5 | 7b04b630ed5e30e643f82ceeb6a803d3
XMPlay 3.8.3 Denial Of Service
Posted Nov 18, 2018
Authored by s7acktrac3

XMPlay version 3.8.3 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 9c717bb9f7999e7940fc1b2648402f53
HTML Video Player 1.2.5 Buffer Overflow
Posted Nov 17, 2018
Authored by Kagan Capar

HTML Video Player version 1.2.5 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | ab18abd61ba3a76adf1d443b98ca02f5
Intel Rapid Storage Technology User Interface And Driver 15.9.0.1015 DLL Hijacking
Posted Nov 16, 2018
Authored by Stefan Kanthak

Intel Rapid Storage Technology User Interface and Driver version 15.9.0.1015 suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 588da88e53e05773cd51de3eafe1fcb5
Budabot 4.0 Denial Of Service
Posted Nov 16, 2018
Authored by Ryan Delaney

Budabot versions 0.6 through 4.0 suffer from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-19290
MD5 | 84ba35e2fe35edb9c0652c9736039b25
Easy Outlook Express Recovery 2.0 Denial Of Service
Posted Nov 16, 2018
Authored by Ihsan Sencan

Easy Outlook Express Recovery version 2.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | d2d30131fbbad9a751ea1250ea90b324
Mumsoft Easy Software 2.0 Denial Of Service
Posted Nov 16, 2018
Authored by Ihsan Sencan

Mumsoft Easy Software version 2.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 729855523fec92176326b56ceafac944
DomainMOD 4.11.01 Cross Site Scripting
Posted Nov 16, 2018
Authored by Dawood Ansar

DomainMOD versions 4.09.03 through 4.11.01 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-19136
MD5 | 1f70ddfa1f1105f5475de8a37ba17c86
Helpdezk 1.1.1 Shell Upload
Posted Nov 16, 2018
Authored by Ihsan Sencan

Helpdezk version 1.1.1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | cbacc0533908cb511a19e2bd2c3b95b4
Warranty Tracking System 11.06.3 SQL Injection
Posted Nov 16, 2018
Authored by Ihsan Sencan

Warranty Tracking System version 11.06.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 38b937df50beb67adf464aa65f5d5b5c
Everus.org 1.0.9 Second Factor Redirection
Posted Nov 16, 2018
Authored by Muhammad Shahbaz

The Everus.org Android application version 1.0.9 has a fundamental design flaw where the client can send a random phone number during the second factor flow with an arbitrary existing user id and the server send the attacker the one time password for the other user.

tags | exploit, arbitrary
MD5 | 81b34424d2fb4ef2f76dd3982050a8b1
Linux Broken UID/GID Mapping
Posted Nov 16, 2018
Authored by Jann Horn, Google Security Research

Linux has a broken uid/gid mapping for nested user namespaces with greater than 5 ranges.

tags | exploit
systems | linux
advisories | CVE-2018-18955
MD5 | 5a4e9282df80bcac13075f0181391a8b
PHP-Proxy 5.1.0 Local File Inclusion
Posted Nov 15, 2018
Authored by Ameer Pornillos

PHP-Proxy version 5.1.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, php, file inclusion
advisories | CVE-2018-19246
MD5 | 96c23b5c4ac90b08c6b144a53cf3862d
WordPress Ninja Forms 3.3.17 Cross Site Scripting
Posted Nov 15, 2018
Authored by MTK

WordPress Ninja Forms version 3.3.17 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-19287
MD5 | a90814e7187521ea474ee2c55e40aca8
WordPress Custom Frontend Login Registration Form 1.01 Cross Site Scripting
Posted Nov 15, 2018
Authored by Socket_0x03

WordPress Custom Frontend Login Registration Form plugin version 1.01 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 237d47a46ea03648e298b2b496c1d36c
PHP Mass Mail 1.0 Shell Upload
Posted Nov 15, 2018
Authored by Ihsan Sencan

PHP Mass Mail version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, php
MD5 | 0cb5d71edeb4a2b0e094423306caac00
2-Plan Team 1.0.4 Shell Upload
Posted Nov 15, 2018
Authored by Ihsan Sencan

2-Plan Team version 1.0.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | f032a820048d7947081bbeda6a354d98
Simple E-Document 1.31 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

Simple E-Document version 1.31 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1ede165ba98398e93a63ea4b310b41db
Kordil EDMS 2.2.60rc3 Shell Upload
Posted Nov 15, 2018
Authored by Ihsan Sencan

Kordil EDMS version 2.2.60rc3 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, sql injection
MD5 | f3deb8055528a28140da5feca3b41892
Meneame English Pligg 5.8 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

Meneame English Pligg version 5.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 5c7b5029323f7af90547ba9b891733df
EverSync 0.5 Arbitrary File Download
Posted Nov 15, 2018
Authored by Ihsan Sencan

EverSync version 0.5 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
MD5 | e81ef06ed6a2875941484f78b91802da
Galaxy Forces MMORPG 0.5.8 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

Galaxy Forces MMORPG version 0.5.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 14a0c7a02a34735d824a66d044a989a7
Net-Billetterie 2.9 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

Net-Billetterie version 2.9 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 775c0f6b6c482e0277e3b482fdb3c25f
Page 1 of 1,693
Back12345Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    45 Files
  • 16
    Nov 16th
    11 Files
  • 17
    Nov 17th
    1 Files
  • 18
    Nov 18th
    1 Files
  • 19
    Nov 19th
    3 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close