what you don't know can hurt you
Showing 1 - 25 of 4,098 RSS Feed

File Inclusion Files

Exploiting PHP_SESSION_UPLOAD_PROGRESS
Posted Jul 27, 2021
Authored by Faisal Alhadlaq

This whitepaper discusses chain session upload progress to remote code execution when taking advantage of local file inclusion.

tags | paper, remote, local, code execution, file inclusion
MD5 | 30b82ecd437ab784ec81665a82576757
Novus Management System Directory Traversal / Cross Site Scripting
Posted Jul 10, 2021
Authored by Dariusz Gonda

Novus Management System versions prior to 1.51.2 suffer from cross site scripting and directory traversal vulnerabilities.

tags | advisory, vulnerability, xss, file inclusion
advisories | CVE-2021-34820, CVE-2021-38421
MD5 | c64a7fc8b08135ed2c5f6feadfc07ead
Wyomind Help Desk 1.3.6 XSS / Traversal / Shell Upload
Posted Jul 8, 2021
Authored by Patrik Lantz

Wyomind Help Desk version 1.3.6 suffers from remote shell upload, cross site scripting, and directory traversal vulnerabilities.

tags | exploit, remote, shell, vulnerability, xss, file inclusion
MD5 | 59218439c3ab4fb34a4f3a6427121b87
WordPress Anti-Malware Security And Bruteforce Firewall 4.20.59 Directory Traversal
Posted Jul 6, 2021
Authored by TheSmuggler

WordPress Anti-Malware Security and Bruteforce Firewall plugin version 4.20.59 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 6f9edaf13c8046960529a3c19bdf3c96
Black Box Kvm Extender 3.4.31307 Local File Inclusion
Posted Jul 6, 2021
Authored by Ferhat Cil

Black Box Kvm Extender version 3.4.31307 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 6fe8c1691d468a9bf6c2ebd9e15d6aff
OpenEMR 5.0.1.7 Path Traversal
Posted Jul 5, 2021
Authored by Alexandre Zanni

OpenEMR version 5.0.17 path traversal exploit.

tags | exploit, file inclusion
advisories | CVE-2019-14530
MD5 | a7622ae19ddf3cafa635248b9528fd2c
OpenEMR 5.0.1.7 Path Traversal
Posted Jun 18, 2021
Authored by Ron Jost

OpenEMR version 5.0.1.7 suffers from a path traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2019-14530
MD5 | 9b189b539433dd288cb8f97ef2d49d86
Postbird 0.8.4 XSS / LFI / Insecure Data Storage
Posted Jun 1, 2021
Authored by Tridentsec | Site tridentsec.io

Postbird version 0.8.4 suffers from cross site scripting, local file inclusion, and insecure data storage vulnerabilities. Included in this archive is a whitepaper and proof of concept exploit.

tags | exploit, local, vulnerability, xss, proof of concept, file inclusion
advisories | CVE-2021-33570
MD5 | f60c4ad77076831e6c6210dffcd07d54
Trixbox 2.8.0.4 Path Traversal
Posted May 28, 2021
Authored by Ron Jost

Trixbox version 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php.

tags | exploit, php, file inclusion
advisories | CVE-2017-14537
MD5 | ebe53272a318e753d01ffa4b44a12413
Postbird 0.8.4 Cross Site Scripting / Local File Inclusion
Posted May 27, 2021
Authored by Debshubra Chakraborty

Postbird version 0.8.4 suffers from a javascript injection vulnerability that allows for cross site scripting and local file inclusion.

tags | exploit, local, javascript, xss, file inclusion
advisories | CVE-2021-33570
MD5 | f2d171b04734775d46bcc4f5dc3a2213
Schlix CMS 2.2.6-6 Shell Upload / Directory Traversal
Posted May 24, 2021
Authored by Emir Polat

Schlix CMS version 2.2.6-6 suffers from an arbitrary file upload and a directory traversal that together can lead to remote command execution.

tags | exploit, remote, arbitrary, file inclusion, file upload
MD5 | f2f6e3d92179511f87fa66f851387309
Mini Mouse 9.3.0 Local File Inclusion / Path Traversal
Posted Apr 6, 2021
Authored by gosh

Mini Mouse version 9.3.0 suffers from local file inclusion and path traversal vulnerabilities.

tags | exploit, local, vulnerability, file inclusion
MD5 | 5f48132206c39831f6956e4b977d8857
Mini Mouse 9.2.0 Path Traversal
Posted Apr 5, 2021
Authored by gosh

Mini Mouse version 9.2.0 suffers from a path traversal vulnerability.

tags | exploit, file inclusion
MD5 | bf7068dcc9ec6cf759296e42c7397713
WordPress Delightful Downloads Jquery File Tree 1.6.6 Path Traversal
Posted Mar 22, 2021
Authored by Nicholas Ferreira

WordPress Delightful Downloads Jquery File Tree plugin versions 1.6.6 and below path traversal exploit.

tags | exploit, file inclusion
advisories | CVE-2017-1000170
MD5 | 486a3c691b8eb36346d834cb5c332a48
rConfig 3.9.6 Local File Inclusion
Posted Mar 15, 2021
Authored by 5a65726f

rConfig version 3.9.6 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 98b4a60e9662ee6e4e1ed50a97c5a0bc
Fluig 1.7.0 Path Traversal
Posted Mar 5, 2021
Authored by Lucas Souza

Fluig versions 1.7.0-210217 and below suffer from a path traversal vulnerability.

tags | exploit, file inclusion
MD5 | 360e2f6a2b7d7edb421a3de50030196a
Yeastar TG400 GSM Gateway 91.3.0.3 Path Traversal
Posted Feb 26, 2021
Authored by SQSamir | Site github.com

Yeastar TG400 GSM Gateway version 91.3.0.3 suffers from a path traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2021-27328
MD5 | a467c9ff54325292a1cc919f562ee67f
SolarWinds Serv-U FTP Server 15.2.1 Path Traversal
Posted Feb 12, 2021
Authored by Jack Misiura

SolarWinds Serv-U File Server versions through 15.2.1 do not correctly validate path information, allowing the disclosure of files and directories outside of the user's home directory via a specially crafted GET request.

tags | exploit, file inclusion
advisories | CVE-2020-27994
MD5 | bcff8e686a6d68a1e71f68016c03b076
WordPress Supsystic Backup 2.3.9 Local File Inclusion
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Backup plugin version 2.3.9 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | aa7db6fb704f48b330319ce9f9b505e6
WordPress Supsystic Digital Publications 1.6.9 XSS / DoS / Traversal
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Digital Publications plugin version 1.6.9 suffers from cross site scripting, denial of service, and traversal vulnerabilities.

tags | exploit, denial of service, vulnerability, xss, file inclusion
MD5 | 20cf753fe2b0be4cf71a7b33d728cf4f
WordPress 5.0.0 Remote Code Execution
Posted Feb 1, 2021
Authored by OUSSAMA Rahali | Site blog.ripstech.com

WordPress versions 5.0.0 and 4.9.8 and below remote code execution exploit that leverages path traversal and file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
advisories | CVE-2019-8943
MD5 | 87ecab4766942bdc35c24a3b4d93d1dd
Home Assistant Community Store 1.10.0 Path Traversal
Posted Jan 29, 2021
Authored by Lyghtnox

Home Assistant Community Store (HACS) version 1.10.0 suffers from a path traversal vulnerability that allows for account takeover.

tags | exploit, file inclusion
MD5 | 2e4344a9f1aa53aed3bf84cb9d2bc67d
EyesOfNetwork 5.3 Local File Inclusion
Posted Jan 11, 2021
Authored by Audencia Business School Red Team

EyesOfNetwork version 5.3 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 88fd5acc1e0c31de7e01d0c3cfd29bc1
Responsive FileManager 9.13.4 Path Traversal
Posted Jan 5, 2021
Authored by SunCSR

Responsive FileManager version 9.13.4 path traversal exploit. Original discovery of this finding is attributed to farisv in December of 2018.

tags | exploit, file inclusion
MD5 | 576b9b1598c826767542e7d40705bbc2
Gotenberg 6.2.0 Traversal / Code Execution / Insecure Permissions
Posted Jan 4, 2021
Authored by Blazej Adamczyk

Gotenberg versions 6.2.0 and below suffer from directory traversal, code execution, and insecure permission vulnerabilities.

tags | exploit, vulnerability, code execution, file inclusion
advisories | CVE-2020-13449, CVE-2020-13450, CVE-2020-13451, CVE-2020-13452
MD5 | a91eed6c85bc9e21292b509d9c121d3a
Page 1 of 164
Back12345Next

File Archive:

July 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    13 Files
  • 2
    Jul 2nd
    12 Files
  • 3
    Jul 3rd
    1 Files
  • 4
    Jul 4th
    2 Files
  • 5
    Jul 5th
    34 Files
  • 6
    Jul 6th
    21 Files
  • 7
    Jul 7th
    21 Files
  • 8
    Jul 8th
    13 Files
  • 9
    Jul 9th
    6 Files
  • 10
    Jul 10th
    1 Files
  • 11
    Jul 11th
    3 Files
  • 12
    Jul 12th
    15 Files
  • 13
    Jul 13th
    19 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    15 Files
  • 16
    Jul 16th
    9 Files
  • 17
    Jul 17th
    2 Files
  • 18
    Jul 18th
    2 Files
  • 19
    Jul 19th
    19 Files
  • 20
    Jul 20th
    21 Files
  • 21
    Jul 21st
    53 Files
  • 22
    Jul 22nd
    14 Files
  • 23
    Jul 23rd
    14 Files
  • 24
    Jul 24th
    1 Files
  • 25
    Jul 25th
    1 Files
  • 26
    Jul 26th
    21 Files
  • 27
    Jul 27th
    8 Files
  • 28
    Jul 28th
    9 Files
  • 29
    Jul 29th
    12 Files
  • 30
    Jul 30th
    9 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close