481 matches found
DA Mailing List System 2 - Multiple Vulnerabilities
No description provided by source. DA Mailing List System V2 Remote Admin Login Exploit Author : Phenom Dork: DA Mailing List System V2 Powered by DigitalArakan.Net Version : 2 Exploit : 1- http://server/path/admincp.asp 2- login with admin as user name and 'or' as pas...
Emek Portal 2.1 Uyegiris.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20378/info Emek Portal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
eFiction < 2.0.7 - Remote Admin Authentication Bypass Vulnerability
No description provided by source. eFiction vulnerability I am releasing this to the public. Vendor was notified. Someone is also illegally defacing these websites under MY name, which is a shame because they ripped it from a private discussion on g00ns.net. This proof of concept is not to be use...
N-13 News 3.4 - Remote Admin Add CSRF Exploit
No description provided by source. ======================================================== N-13 News 3.4 Remote Admin Add CSRF Exploit ======================================================== Title: N-13 News 3.4 Remote Admin Add CSRF Exploit Author : anT!-Tr0J4n Email : D3v-PoinTathotmaild0tcom...
Advanced Poll <= 2.0.5-dev Remote Admin Session Generator Exploit
No description provided by source. !/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou [email protected] PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...
NETGEAR Wireless Cable Modem Gateway Auth Bypass and CSRF
No description provided by source. Sense of Security - Security Advisory - SOS-11-011 Release Date. 20-Sep-2011 Last Update. - Vendor Notification Date. 22-Mar-2011 Product. NETGEAR Wireless Cable Modem Gateway CG814WG Affected versions. Hardware 1.03, Software V3.9.26 R14 verified, possibly othe...
DEBIAN-CVE-2014-1685
The Frontend in Zabbix before 1.8.20rc2, 2.0.x before 2.0.11rc2, and 2.2.x before 2.2.2rc1 allows remote "Zabbix Admin" users to modify the media of arbitrary users via unspecified vectors...
Satellite: Interface to create the initial administrator user remains open after installation
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts...
vBulletin 4.1.x - installupgrade.php Security Bypass
vBulletin 4.1.x - installupgrade.php Security Bypass source: https://www.securityfocus.com/bid/62909/info vBulletin is prone to a security-bypass vulnerability. Successful exploits can allow attackers to bypass certain security restrictions and perform unauthorized actions. !/usr/bin/perl Title:...
vBulletin 4.1.x - '/install/upgrade.php' Security Bypass
source: https://www.securityfocus.com/bid/62909/info vBulletin is prone to a security-bypass vulnerability. Successful exploits can allow attackers to bypass certain security restrictions and perform unauthorized actions. !/usr/bin/perl Title: vBulletin remote admin injection exploit Author: Simo...
Western Digital My Net Devices Information Disclosure Vulnerability
Western Digital My Net Router is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
HP LaserJet Pro printers remote admin password extraction
Some of the networked HP LaserJet printers have hidden URLs hardcoded in the firmware. The URLs are not authenticated and can be used to extract admin password in plaintext v among other information like WiFi settings including WPS PIN. Models affected: HP LaserJet Pro P1102w, HP LaserJet Pro...
WordPress bSuite 4.0.7 Cross Site Scripting
Original advisory: http://www.ihteam.net/advisory/bsuite-wordpress-permanent-xss/ WordPress bSuite Add Admin Download link: http://wordpress.org/extend/plugins/bsuite/ Author contact: 29/06/2011 POC published: 11/07/2011 Plugin is out-of-date, last update on 2009, so this is just a POC that show...
VietNext CMS Multiple Vulnerabilities
Exploit for php platform in category web applications + Exploit Title:Multiple Vulnerabilities + Date: 2011 + script:VietNext cms + Software: http://vietnextco.com & http://vietnext.vn + Author : pentesters.ir + Website : WwW.PenTesters.IR + dorks :"Developed & Design By VietNext" and "Design by...
"Simple PHP Newsletter" Remote Admin Password Change With install path
"Simple PHP Newsletter" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
"Simple PHP Newsletter" Remote Admin Password Change With install path
"Simple PHP Newsletter" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com downl...
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
Simple PHP Newsletter Administrator Password Change
"Simple PHP Newsletter" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
WESPA PHP Newsletter 3.0 Administrator Password Change
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...