Concrete CMS: Stored XSS in Bio/Quote

XSS payload can be executed and saved permanently in testimonial Bio/Quote. Poc code: "...

Concrete CMS: Stored XSS in testimonial Company

XSS payload can be executed and saved permanently in testimonial Company. Poc code: "...

Concrete CMS: Stored XSS in Testimonial Position

XSS payload can be executed and saved permanently in Testimonial Position. Poc code: "...

Concrete CMS: Stored XSS in Testimonial name

XSS payload can be executed and saved permanently in Testimonial name. Poc code: "...

Concrete CMS: Stored XSS in Feature tile

XSS payload can be executed and saved permanently in Feature tile . Poc code: "...

Concrete CMS: Stored XSS in title of date navigation

XSS payload can be executed and saved permanently in title of date navigation. Poc code: "...

MikroTik RouterOS Cross Site Request Forgery

MikroTik RouterOS v5.0 Admin Password Change CSRF Vulnerability by @SymbianSyMoh What is MikroTik RouterOS?! MikroTik RouterOS is an operating system based on the Linux kernel, known as the MikroTik RouterOS. Installed on the company's proprietary hardware RouterBOARD series, or on standard...

Two Reflected XSS Vulnerabilities in Easing Slider WordPress Plugin

Advisory ID: HTB23249 Product: Easing Slider WordPress Plugin Vendor: Easing Slider Vulnerable Versions: 2.2.0.6 and probably prior Tested Version: 2.2.0.6 Advisory Publication: January 21, 2015 without technical details Vendor Notification: January 21, 2015 Vendor Patch: January 22, 2015 Public...

ManageEngine Desktop Central 9 Build 90087 - Cross-Site Request Forgery

:8020/STATEID/1417736606982/roleMgmt.do?actionToCall=addUser&SUBREQUEST=XMLHTTP" method="POST" input type="hidden"...

ManageEngine Desktop Central 9 Build 90087 - CSRF Vulnerability

Exploit for jsp platform in category web applications :8020/STATEID/1417736606982/roleMgmt.do?actionToCall=addUser&SUBREQUEST=XMLHTTP" method="POST" input type="hidden" name="newDCAu...

X360 VideoPlayer ActiveX Control 2.6 - Full ASLR & DEP Bypass Exploit

Exploit for windows platform in category remote exploits !-- Exploit Title: X360 VideoPlayer ActiveX Control RCE Full ASLR & DEP Bypass Author: Rh0 Date: Jan 30 2015 Affected Software: X360 VideoPlayer ActiveX Control 2.6 VideoPlayer.ocx Vulnerability: Buffer Overflow in Data Section Tested on:...

IP. Board 3.4.5 SQL injection vulnerability in the use and analysis-vulnerability warning-the black bar safety net

I. background information First I want to introduce this web App of background information, as well as on the vulnerability of some of the basic overview: IPB Forum known as Invision Power Board（abbreviated IPB or IP. Board, is the world's most famous Forum app by PHP+MySQL architecture, 1. The X...

OpenBSD <= 5.5 Local Kernel Panic

OpenBSD = 5.5 All architectures is prone to a local DoS condition by triggering a kernel panic through a malformed ELF executable. A patch has been released to address this issue. See "013 Reliability Fix" at: http://www.openbsd.org/errata55.html013kernexec More details and PoC code:...

TP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Command Execution

Exploit for hardware platform in category web applications Vulnerability description: The domain name parameters of the "Parental Control" and "Access Control" features of the TP-Link TL-WR740N v4 FW-Ver. 3.16.6 Build 130529 Rel.47286n router are prone to arbitrary shell command execution as root...

D-Link DWR-113 Cross Site Request Forgery

Exploit Title: Dlink DWR-113 Rev. Ax - CSRF causing Denial of Service Google dork : N/A Exploit Author: Blessen Thomas Date : 29/07/14 Vendor Homepage : http://www.dlink.com/ Software Link : N/A Firmware version: v2.02 2013-03-13 Tested on : Windows 7 CVE : CVE-2014-3136 Type of Application : Web...

SQL Injection Vulnerability in ArticleFR

High-Tech Bridge Security Research Lab discovered SQL injection vulnerability in ArticleFR, which can be exploited to perform SQL Injection attacks and gain complete control over vulnerable website. 1 SQL Injection in ArticleFR: CVE-2014-5097 The vulnerability exists due to insufficient...

Cisco Security Monitoring Analysis and Response System JBoss Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19075/info Cisco Security Monitoring, Analysis and Response System CS-MARS is prone to a vulnerability that could permit the execution of arbitrary commands. An attacker could exploit this issue to execute arbitrary...

kon2 Local Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/7790/info A buffer overflow vulnerability has been reported for the kon2 utility shipped with various Linux distributions. Exploitation of this vulnerability may result in a local attacker obtaining elevated privileges on...

MS Visual Studio RAD Support Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow a user to execute arbitrary...

Cisco/Protego CS-MARS < 4.2.1 (JBoss) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl Cisco/Protego CS-MARS 4.2.1 remote command execution, system compromise via insecure JBoss installation. Fully functional POC code by Jon Hart [email protected] Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by...