Showing 101 - 125 of 26,737

Remote Files

WordPress Village 5.0 CSRF / Backdoor / SQL Injection: Posted Feb 21, 2019; Authored by KingSkrupellos; WordPress Village theme version 5.0 suffers from cross site request forgery, backdoor access, and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection, csrf; MD5 | 61b6dad4e62244a4d5b8f34bc2aebc83; Download | Favorite | Comments (0)

Typo3 CMS Modern Guestbook tx_veguestbook_pi1 3.3.0 SQL Injection: Posted Feb 21, 2019; Authored by KingSkrupellos; Typo3 CMS Modern Guestbook tx_veguestbook_pi1 version 3.3.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | 0f4aaa768e92715e59f43bee0bdd030f; Download | Favorite | Comments (0)

Joomla AdsManager 3.2.0 CSRF / Database Disclosure / SQL Injection: Posted Feb 21, 2019; Authored by KingSkrupellos; Joomla AdsManager component version 3.2.0 suffers from cross site request forgery, database disclosure, remote file inclusion, and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, code execution, sql injection, file inclusion, csrf; MD5 | 5564752e65defdfd7b0020bd14875166; Download | Favorite | Comments (2)

EI-Tube 3 SQL Injection: Posted Feb 21, 2019; Authored by Meisam Monsef; EI-Tube version 3.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | db63c4d59c23a361f3496205475a4c87; Download | Favorite | Comments (0)

Kanboard 1.2.7 Code Execution / Cross Site Request Forgery: Posted Feb 20, 2019; Authored by Will Boucher | Site pulsesecurity.co.nz; Kanboard version 1.2.7 contains multiple vulnerabilities. The vulnerabilities include CSV account import cross site request forgery which allows an unauthenticated attacker to create a new administrative user. Cross site request forgery 2FA deactivation, allowing an unauthenticated attacker to disable an account's 2FA configuration. A lack of integrity checking or transport layer encryption enforced on plugins enables remote code execution by a malicious admin. Other vulnerabilities include: session privilege retention, 2FA bypass, database user_id and pre-2FA information disclosure.; tags | exploit, remote, vulnerability, code execution, info disclosure, csrf; MD5 | df69e7e6f136931b8bc524474d232e12; Download | Favorite | Comments (0)

Typo3 CMS Shop System tt_products 2.9.4 SQL Injection: Posted Feb 19, 2019; Authored by KingSkrupellos; Typo3 CMS Shop System tt_products version 2.9.4 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | dcff9349e5d5853e531c69651ce56879; Download | Favorite | Comments (0)

Jenkins Remote Code Execution: Posted Feb 19, 2019; Authored by Orange; This write up contains details on how to perform remote code execution within Jenkins.; tags | exploit, remote, code execution; MD5 | a1de96ad7b2f1fda7798c577ff0504f4; Download | Favorite | Comments (0)

Typo3 CMS T3 EasyEvent tx_easyevent_pi1 0.37.3 SQL Injection: Posted Feb 19, 2019; Authored by KingSkrupellos; Typo3 CMS T3 EasyEvent tx_easyevent_pi1 version 0.37.3 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | dd0c463ea1856014c4e8e2262fb8a0dc; Download | Favorite | Comments (0)

Typo3 CMS Realty Manager tx_realty_pi1 2.0.0 Database Disclosure / SQL Injection: Posted Feb 19, 2019; Authored by KingSkrupellos; Typo3 CMS Realty Manager tx_realty_pi1 version 2.0.0 suffers from database disclosure and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection, info disclosure; MD5 | 5d7dec2aefebceae6a65631a827f8e8b; Download | Favorite | Comments (2)

Typo3 CMS Commerce DAM connector tx_commerce_pi1 0.1.0 SQL Injection: Posted Feb 19, 2019; Authored by KingSkrupellos; Typo3 CMS Commerce DAM connector tx_commerce_pi1 version 0.1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | c7797c3be2350bcf2bd734284b88c8a2; Download | Favorite | Comments (0)

XAMPP 5.6.8 Cross Site Scripting / SQL Injection: Posted Feb 19, 2019; Authored by Rafael Pedrero; XAMPP version 5.6.8 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; advisories | CVE-2019-8923, CVE-2019-8924; MD5 | d3b4abd8b214a98581afd33afc0e6e00; Download | Favorite | Comments (0)

Typo3 Calendar Base tx_pxkalender_pi1 2.0.0 Database Disclosure / SQL Injection: Posted Feb 19, 2019; Authored by KingSkrupellos; Typo3 Calendar Base tx_pxkalender_pi1 version 2.0.0 suffers from database disclosure and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; MD5 | 808d418ea3800957d61bb00160dd00e9; Download | Favorite | Comments (0)

Typo3 CMS BrowserMaps Leaflet Tutorial tx_browser_pi1 8.0.39 SQL Injection: Posted Feb 19, 2019; Authored by KingSkrupellos; Typo3 CMS BrowserMaps Leaflet Tutorial tx_browser_pi1 version 8.0.39 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | 0db55ad6b88b39f2723fd2a17b10bf8f; Download | Favorite | Comments (0)

Joomla JWallPapers 2.0.1 Cross Site Request Forgery / Shell Upload: Posted Feb 19, 2019; Authored by KingSkrupellos; Joomla JWallPapers component version 2.0.1 suffers from cross site request forgery and remote shell upload vulnerabilities.; tags | exploit, remote, shell, vulnerability, csrf; MD5 | 9aab6fcc8810d60727be6c9cea7da1d0; Download | Favorite | Comments (0)

eDirectory SQL Injection / File Disclosure: Posted Feb 19, 2019; Authored by Efren Diaz; eDirectory suffers from file disclosure and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection, info disclosure; MD5 | 547830901be6ad48fca825663b4859f0; Download | Favorite | Comments (0)

Joomla Attachments 3.2.6 Shell Upload: Posted Feb 19, 2019; Authored by KingSkrupellos; Joomla Attachments component version 3.2.6 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; MD5 | 1b32b2a5e7b7c598712e5dccee53aaf3; Download | Favorite | Comments (0)

Ask Expert Script 3.0.5 Cross Site Scripting / SQL Injection: Posted Feb 19, 2019; Authored by Mr Winst0n; Ask Expert Script version 3.0.5 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; MD5 | bdf465097feefbb3eb5ca2c3ba334370; Download | Favorite | Comments (0)

Master IP CAM 01 3.3.4.2103 Remote Command Execution: Posted Feb 18, 2019; Authored by Raffaele Sabato; Master IP CAM 01 version 3.3.4.2103 suffers from a remote command execution vulnerability.; tags | exploit, remote; advisories | CVE-2019-8387; MD5 | c52d6d75b01caff68b1bc84a984583ba; Download | Favorite | Comments (0)

CMSsite 1.0 post.php SQL Injection: Posted Feb 18, 2019; Authored by Mr Winst0n; CMSsite version 1.0 suffers from a remote SQL injection vulnerability in post.php. This version of the software has been known to have SQL injection vulnerabilities since 2010.; tags | exploit, remote, php, vulnerability, sql injection; MD5 | 280cf3156e94b30f315f4f61a76a6531; Download | Favorite | Comments (0)

mIRC Remote Command Execution: Posted Feb 18, 2019; Authored by Baptiste Devigne, Benjamin Chetioui; mIRC versions prior to 7.55 suffer from a remote command execution using argument injection through custom URI protocol handlers.; tags | exploit, remote, protocol; advisories | CVE-2019-6453; MD5 | 6b03c17a140390183e555131c0c6565b; Download | Favorite | Comments (0)

DASAN H665 Backdoor Account: Posted Feb 17, 2019; Authored by Krzysztof Burghardt; DASAN H665 has a vendor backdoor built into BusyBox /bin/login that provides remote root access with no password.; tags | exploit, remote, root; MD5 | 8fd617ceb423687bb1cff222714c6ebc; Download | Favorite | Comments (0)

Listing Hub CMS 1.0 SQL Injection: Posted Feb 16, 2019; Authored by Deyaa Muhammad; Listing Hub CMS version 1.0 suffers from a remote SQL injection vulnerability in pages.php.; tags | exploit, remote, php, sql injection; MD5 | a7da6c2e2bea589569ff55259567e47b; Download | Favorite | Comments (0)

Find A Place CMS Directory 1.5 SQL Injection: Posted Feb 16, 2019; Authored by Deyaa Muhammad; Find a Place CMS Directory version 1.5 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | ac0cf064523b3a833efc27f4db1a02bb; Download | Favorite | Comments (0)

WordPress Booking Calendar 8.4.3 SQL Injection: Posted Feb 15, 2019; Authored by B0UG; WordPress Booking Calendar version 8.4.3 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2018-20556; MD5 | 7a2386ca2d65fab4e86ccdc39fdbb109; Download | Favorite | Comments (0)

WordPress Jssor-Slider 3.1.24 Cross Site Request Forgery / File Upload: Posted Feb 14, 2019; Authored by KingSkrupellos; WordPress Jssor-Slider plugin version 3.1.24 suffers from cross site request forgery and remote file upload vulnerabilities.; tags | exploit, remote, vulnerability, file upload, csrf; MD5 | f7eac41409534851aa3d5cda1ce85010; Download | Favorite | Comments (0)

Page 5 of 1,070 Back 3 4 5 6 7 Next

Top Authors In Last 30 Days

Red Hat 53 files
KingSkrupellos 51 files
Ubuntu 36 files
Debian 20 files
Google Security Research 20 files
Ahmet Umit Bayram 17 files
Gentoo 16 files
Mohammed Abdul Raheem 9 files
Mr Winst0n 9 files
Mehmet Emiroglu 8 files

File Archives

Systems

AIX (413)
Apple (1,620)
BSD (344)
Cisco (1,841)
Debian (5,721)
Fedora (1,684)
FreeBSD (1,207)
Gentoo (3,655)
HPUX (868)
iOS (205)
iPhone (104)
IRIX (219)
Juniper (67)
Linux (34,898)
Mac OS X (656)
Mandriva (3,105)
NetBSD (255)
OpenBSD (459)
RedHat (7,101)
Slackware (887)
Solaris (1,579)
SUSE (1,444)
Ubuntu (6,036)
UNIX (8,423)
UnixWare (175)
Windows (5,449)
Other

Remote Files

File Archive:

March 2019

Top Authors In Last 30 Days

File Tags

File Archives

Systems