Posnic 1.03 Unauthorized Password Recovery Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------- + Posnic 1.03 forgetpass.php Unauthorized Password Recovery ------------------------------------------------------------------------ Discovered by Juri Gianni -...

Airmail 3.0.2 - Cross-Site Scripting

Exploit for macOS platform in category web applications Airmail is a popular email client on iOS and OS X. I found a vulnerability in airmail of the latest version which could cause a file:// xss and arbitrary file read. Author: redrain, email protected Date: 2016-08-15 Version: 3.0.2 and earlier...

Prolink H5004NK Cross Site Request Forgery Vulnerability

PROLiNK H5004NK suffers from multiple cross site request forgery vulnerabilities. Exploit Title: PROLiNK H5004NK Multiple Vulnerabilities Date: 16-04-2015 Firmware: R76S Slt 4WNE1 6.1R Tested on: Windows 8 64-bit Exploit Author: Osanda Malith Jayathissa @OsandaMalith Disclaimer: Use this for...

Joomla! 1.6 Multiple SQL Injection Vulnerabilities

Exploit for php platform in category web applications Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

PHPGallery 1.1.0 CSRF Vulnerability

Exploit for php platform in category web applications =================================== PHPGallery 1.1.0 CSRF Vulnerability =================================== ------------------------------------------------------------------------- Software : phpgallery v 1.1.0 : Author : Or4nG.M4N Date : n/a...

WikiWebHelp v0.3.3 Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications =========================================================== WikiWebHelp v0.3.3 Cross-Site Request Forgery Vulnerability =========================================================== Blog: yoyahack.blogspot.com Site: foro.undersecurity.net Mail:...

AuroraGPT v4 RCE Vulnerability

Exploit for php platform in category web applications ============================== AuroraGPT v4 RCE Vulnerability ============================== Title : AuroraGPT V4 RCE Vulnerability Author: Amoo Arash Date : 2010-04-11 Version : 4 InformatioN Title : AuroraGPT V4 RCE Vulnerability Author : Am...

PozScripts Business Directory Script (cid) Remote SQL Injection Vuln

Exploit for unknown platform in category web applications ==================================================================== PozScripts Business Directory Script cid Remote SQL Injection Vuln ==================================================================== | | | Business Directory Script ci...

Apple Mac OS X xnu <= 1228.0 Local Kernel Denial of Service PoC

Exploit for macOS platform in category dos / poc =============================================================== Apple Mac OS X xnu Apple MACOS X xnu include include include include include include define MAXPATHLEN 128 define LCUNIXTHREAD 0x05 define x86THREADSTATE32 0x01 / osfmk/mach-o/loader.h...

DBImageGallery 1.2.2 (donsimg_base_path) RFI Vulnerabilities

Exploit for unknown platform in category web applications ============================================================ DBImageGallery 1.2.2 donsimgbasepath RFI Vulnerabilities ============================================================ DBImageGallery 1.2.2 Found by Denven ERROR:...

phpWebLog <= 0.5.3 Arbitrary File Inclusion

Exploit for unknown platform in category web applications =========================================== phpWebLog = 0.5.3 Arbitrary File Inclusion =========================================== Example: if registerglobals=on and allowurlfopen=on:...