EUVD-2015-9310

Malware in sbrugna...

CVE-2015-9470

The history-collection plugin through 1.1.1 for WordPress has directory traversal via the download.php var parameter...

huntsvillehistorycollection.org Cross Site Scripting vulnerability OBB-3895098

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WordPress history-collection plugin path traversal vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. history-collection is a history plugin used in it. A path traversal vulnerability exists in the WordPress history-collection plugi...

CVE-2015-9470

The history-collection plugin through 1.1.1 for WordPress has directory traversal via the download.php var parameter...

CVE-2015-9470

The history-collection plugin through 1.1.1 for WordPress has directory traversal via the download.php var parameter...

CVE-2015-9470

CVE-2015-9470 concerns the WordPress history-collection plugin (

WordPress History Collection Plugin 1.1.1 download.php 任意文件下载

eLouai's Download ScriptERROR: download file NOT SPECIFIED. USE force-download.php?file=filepath"; exit; elseif ! fileexists $filename echo "eLouai's Download ScriptERROR: File not found. USE force-download.php?file=filepath"; exit; ; switch $fileextension case "pdf": $ctype="application/pdf";...

WordPress History Collection Plugin Arbitrary File Download Vulnerability

WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. An arbitrary file download vulnerability in the WordPress History Collectio plugin allows remote attackers to exploit the vulnerability by submitting a special...

WordPress History Collection 1.1.1 Arbitrary File Download

Exploit Title: Wordpress History Collection =1.1.1 Arbitraty File Download Google Dork: inurl:plugins/history-collection Date: 10/06/2015 Exploit Author: Kuroi'SH Software Link: https://wordpress.org/plugins/history-collection/ Version: =1.1.1 Tested on: Linux I-Description: Wordpress history...

WordPress History Collection <=1.1.1 Arbitrary File Download Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress History Collection =1.1.1 Arbitraty File Download Google Dork: inurl:plugins/history-collection Date: 10/06/2015 Exploit Author: Kuroi'SH Software Link: https://wordpress.org/plugins/history-collection/ Version: =1.1.1...

WordPress History Collection Plugin <= 1.1.1 - Arbitrary File Download

History Collection plugin is prone to an arbitrary file download vulnerability. "download.php" is not filtering the "get" input and the file can be downloaded because of this "get" input value. Solution Update the plugin...

WordPress Plugin History Collection 1.1.1 - Arbitrary File Download

WordPress Plugin History Collection 1.1.1 - Arbitrary File Download Exploit Title: Wordpress History Collection =1.1.1 Arbitraty File Download Google Dork: inurl:plugins/history-collection Date: 10/06/2015 Exploit Author: Kuroi'SH Software Link: https://wordpress.org/plugins/history-collection/...

WordPress Plugin History Collection 1.1.1 - Arbitrary File Download

Exploit Title: Wordpress History Collection =1.1.1 Arbitraty File Download Google Dork: inurl:plugins/history-collection Date: 10/06/2015 Exploit Author: Kuroi'SH Software Link: https://wordpress.org/plugins/history-collection/ Version: =1.1.1 Tested on: Linux I-Description: Wordpress history...

Firefox Gather History from Privileged Javascript Shell

This module allows collection of the entire browser history from a Firefox Privileged Javascript Shell. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'json' class MetasploitModule 'Firefox Gather History fro...