Nextcloud: CSRF token validation is missing

Greetings, Hello Security Team, Summary I know this is a medium risk issue but i want you guys to be aware of it that the CSRF token validation is missing at the time of login on https://portal.nextcloud.com/login.php login page. PoC Code: Email Password Login Now Forgot Password? var tabs = '';...

Microsoft PowerShell - XML External Entity Injection Vulnerability

Exploit for windows platform in category local exploits + Credits: John Page aka hyp3rlinx Vendor: ================= www.microsoft.com Product: =========== PowerShell PowerShell including Windows PowerShell and PowerShell Core is a task automation and configuration management framework from...

Rumba FTP Client 4.x - Remote Stack Buffer Overflow (SEH)

Rumba FTP Client 4.x - Remote Stack Buffer Overflow SEH Exploit Title: Rumba FTP 4.x Client Stackoverflow SEH Date: 29-10-2016 Exploit Author: Umit Aksu Vendor Homepage: http://community.microfocus.com/microfocus/mainframesolutions/rumba/w/knowledgebase/28731.rumba-ftp-4-x-security-update.aspx...

Simple PHP Blog 0.8.4 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications that will add a new user as administrator. Once exploited, the attacker can login to the admin panel http://localhost/simple/login.php using the username and the password he posted in the form. CSRF PoC Code ============= -- input type="hidden...

Simple PHP Blog 0.8.4 Cross Site Request Forgery

that will add a new user as administrator. Once exploited, the attacker can login to the admin panel http://localhost/simple/login.php using the username and the password he posted in the form. CSRF PoC Code ============= -- inp...

Simple PHP Blog 0.8.4 - Cross-Site Request Forgery (Add Admin)

Simple PHP Blog 0.8.4 - Cross-Site Request Forgery Add Admin that will add a new user as administrator. Once exploited, the attacker can login to the admin panel http://localhost/simple/login.php using the username and the password he posted in the form. CSRF PoC Code ============= -- input t...

Zomato: CSRF in the "Add restaurant picture" function

Overview I found a CSRF vulnerability within the process responsible for adding photos for a restaurant which can lead to tricking victims into adding arbitrary photos to their restaurant's page. Details The CSRF vulnerability exists due to a misconfiguration on your part in which your X-CSRF-TOK...

Atutor 2.2.1 Path Traversal

Advisory ID: HTB23297 Product: Atutor Vendor: Atutor Vulnerable Versions: 2.2.1 and probably prior Tested Version: 2.2.1 Advisory Publication: February 24, 2016 without technical details Vendor Notification: February 24, 2016 Vendor Patch: July 1, 2016 Public Disclosure: August 2, 2016...

DMA Radius Manager 4.1.5 Cross Site Request Forgery

tanks: Dr Ms Jk - n1arash - Milad Hacking - malahsky...

Exploit for HTTP Response Splitting in Python

CVE-2016-5699-poc PoC code of CVE-2016-...

Yona CMS - Cross-Site Request Forgery

Yona CMS - Cross-Site Request Forgery document.forms0.submit;...

Adobe Flash - Type Confusion in Serialization with ObjectEncoder.dynamicPropertyWriter

Source: https://code.google.com/p/google-security-research/issues/detail?id=545 There is a type confusion issue during serialization if ObjectEncoder.dynamicPropertyWriter is overridden with a value that is not a function. In the following ActionScript:...

Adobe Flash - Type Confusion in Serialization with ObjectEncoder.dynamicPropertyWriter

Adobe Flash - Type Confusion in Serialization with ObjectEncoder.dynamicPropertyWriter Source: https://code.google.com/p/google-security-research/issues/detail?id=545 There is a type confusion issue during serialization if ObjectEncoder.dynamicPropertyWriter is overridden with a value that is not...

Path Traversal via CSRF in bitrix.xscan Bitrix Module

High-Tech Bridge Security Research Lab discovered vulnerability in bitrix.xscan Bitrix module, intended to discover and neutralize malware on the website. The vulnerability can be exploited to change extension of arbitrary PHP files on the target system and gain access to potentially sensitive...

FC2 / Rakuten Cross Site Scripting

FC2 & Rakuten Online Websites Multiple XSS Cross-site Scripting and Open Redirect Cyber Vulnerabilities FC2 and Rakuten are the first and second top ranking Japanese local online websites. This post introduces several XSS Cross-site Scripting and Open Redirect bugs of them. The Alexa rank of...

FiverrScript CSRF Vulnerability (Add New Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: FiverrScript CSRF Vulnerability add New admin Author: Mahmoud Gamal @Zombiehelp54 Google Dork: intext:Powered by FiverrScript Date: 10/06/2015 Exploit Author: Scriptolution Vendor Homepage: http://scriptolution.com Software Link...

Router drive Assembly NetUSB exposure remote overflow vulnerability affects D-Link, NETGEAR, TP-LINK, etc. millions of network-vulnerability warning-the black bar safety net

Well-known router D-Link, NETGEAR, TP-LINK on the important drive components of the NetUSB was traced to the presence of serious remote overflow vulnerability, affecting millions of routing and embedded devices. NetUSB technology by Taiwanese companies profit code, KCodes develop it. myhack58...

CSRF/XSS In Ultimate Profile Builder by CMSLive Wordpress Plugin

================================================================ CSRF/Stored XSS Vulnerability in Ultimate profile Builder Plugin ================================================================ . contents:: Table Of Content Overview ======== Title :CSRF and Stored XSS Vulnerability in Ultimate...

Concrete CMS: Stored XSS in Image Alt. Text

XSS payload can be executed and saved permanently in Image Alt. Text. Poc Code: "click me!"...

Concrete CMS: Stored XSS in Message to Display When No Pages Listed.

XSS payload can be executed and saved permanently in Message to Display When No Pages Listed. Poc code: "...