DMXReady Blog Manager <= 1.1 - Remote File Delete Vulnerability

No description provided by source. Title : DMXReady Blog Manager = 1.1 Remote Files Delete Vulnerability Author : ajann from Turkey Contact : : S.Page : http://www.dmxready.com $$ : 199.97 $ Dork : inurl:incwebblogmanager.asp DorkEx :...

webERP 4.11.3 (SalesInquiry.php, SortBy param) - SQL Injection Vulnerability

No description provided by source. ============================================================== Title ...| SQL Injection in webERP Version .| 4.11.3 Date ....| 28.02.2014 Found ...| HauntIT Blog Home ....| http://www.weberp.org ==============================================================...

Simple PHP Blog 0.5.1 - Local File Inclusion Vulnerability

No description provided by source. Simple PHP Blog is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in the context ...

PEStudio 3.69 - Denial of Service

No description provided by source. Title: PEStudio Version 3.69 Denial of Service Date: 5th June 2013 Author: Debasish Mandal https://twitter.com/debasishm89 Blog : http://www.debasish.in/ Software Homepage: http://www.winitor.com/ Version: PEStudio Version 3.69 Tested on: Windows XP SP2 / Window...

Maran PHP Blog 'comments.php' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30309/info Maran PHP Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

gr blog 1.1.4 (upload/bypass) Multiple Vulnerabilities

No description provided by source. GR Blog v1.1.4 Upload/Bypass Multiple Remote Vulnerabilities Author: Jose Luis Gongora Fernandez a.k.a JosS sys-projectathotmail.com Web: http://hack0wn.com/ // TEST ON VERSION GR Blog v1.1.4, in my localhost Download :...

AR-Blog 5.2 Print.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17522/info The ar-blog application is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in...

AR-Blog 5.2 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18120/info AR-Blog is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

Simple PHP Blog 0.5.x 'search.php' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37752/info Simple PHP Blog is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in t...

Spidey Blog Script <= 1.5 (tr) Remote SQL Injection Vulnerability

No description provided by source. Spidey Blog Script == 1.5 tr SQL Injection Vulnerability Author : ASIANEAGLE Site : www.asianeagle.org Contact: [email protected] Risk : High Download Link Of Spidey Blog : http://www.aspindir.com/Kategoriler/ASP/bloglar Exploit; Admin Nick; http://SITE/Spide...

MS Windows XP - WmiTraceMessageVa Integer Truncation Vulnerability PoC (MS11-011)

No description provided by source. / Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: Win XP SP3 CVE : CVE-2011-0045 Status :...

Orca Blog 1.3 Blog.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15638/info Orca Blog is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

Blog System 1.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/39406/info Blog System is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, SQL-injection, and...

Wordpress 3.9.1 - CSRF Vulnerability

Exploit for php platform in category web applications EXPLOIT TITLE:Wordpress 3.9.1-CSRF vulnerability DATE:21st June,2014 Author:Avinash Kumar Thapa URL: localhost/wordpress/ PATCH/FIX:Not fixed yet. Technical Details: This is the new version released by Wordpress. version is 3.9.1Latest Cross...

Google Releases Security Updates for Chrome and Chrome OS

Google has released security updates to address multiple vulnerabilities in Chrome and Chrome OS. Some of these vulnerabilities could potentially allow an attacker to take control of the affected system or cause a denial of service. Updates available include: Chrome 35.0.1916.153 for Windows, Mac...

Google Releases Security Update for Chrome

Google has released Chrome 34.0.1847.137 for Windows, Mac, and Linux to address multiple vulnerabilities. Some of these vulnerabilities could potentially allow an attacker to take control of the affected system. US-CERT encourages users and administrators to review the Google Chrome Blog post and...

Crime24 Stealer Panel 1.0 - Multiple Vulnerabilities

Crime24 Stealer Panel 1.0 - Multiple Vulnerabilities =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= | \ | | | \ | | | |/ | / | | | | |/ / \ | | | |/ | ' \ | || | | | \ \ || | Twitter @TheHackersBay Pentester / Underground hacker Exploit Title: Crime24 Stealer Panel...

Apache Struts - ClassLoader Manipulation Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Apache Struts ClassLoader Manipulation Remote Code Execution', 'Description' = %q This module exploits a remote command execution...

Cells Blog 3.4 Cross Site Scripting

----------------------------------------------------------- foun by :kurd-team , Exploiter group : kurdish hackers team contact : [email protected] site : facebook.com/kurdteam ----------------------------------------------------------- ------------------------script-----------------------------...

Google Releases Security Updates for Chrome

Google has released security updates to address multiple vulnerabilities in Chrome. Some of these vulnerabilities may lead to memory corruption or arbitrary code execution. Updates available include: Chrome 34.0.1847.131 for Windows and Mac. Chrome 34.0.1847.132 for Linux. Chrome 34.0.1847.134 fo...