1225 matches found
Monsta FTP 1.6.2 - Multiple Vulnerabilities
Monsta FTP 1.6.2 - Multiple Vulnerabilities Exploit Title: CSRF XSS Monsta FTP Google Dork: intitle: Monsta FTP CSRF / XSS Date: 2015-09-11 Exploit Author: hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: www.monstaftp.com Software Link: www.monstaftp.com Version: monstaftpv1.6.2 Test...
WordPress Plugin ACF Frontend Display 2.0.5 - Arbitrary File Upload
+---------------------------------------------------------------------------+ + Author: TUNISIAN CYBER + Title: WP Plugin Free ACF Frontend Display File Upload Vulnerability + Date: 3-07-2015 + Type: WebAPP + Download Plugin: https://downloads.wordpress.org/plugin/acf-frontend-display.2.0.5.zip +...
elFinder 2 Remote Command Execution (Via File Creation) Vulnerability
Exploit for php platform in category web applications + Author: TUNISIAN CYBER + Title: elFinder 2 Remote Command Execution Via File Creation Vulnerability + Date: 06-05-2015 + Vendor: https://github.com/Studio-42/elFinder + Type: WebAPP + Tested on: KaliLinux Debian + Twitter: @TCYB3R + Time Lin...
elFinder 2 Remote Command Execution
Author: TUNISIAN CYBER + Title: elFinder 2 Remote Command Execution Via File Creation Vulnerability + Date: 06-05-2015 + Vendor: https://github.com/Studio-42/elFinder + Type: WebAPP + Tested on: KaliLinux Debian + Twitter: @TCYB3R + Time Line: 03-05-2015:Vulnerability Discovered...
elFinder 2 - Remote Command Execution (via File Creation)
elFinder 2 - Remote Command Execution via File Creation + Author: TUNISIAN CYBER + Title: elFinder 2 Remote Command Execution Via File Creation Vulnerability + Date: 06-05-2015 + Vendor: https://github.com/Studio-42/elFinder + Type: WebAPP + Tested on: KaliLinux Debian + Twitter: @TCYB3R + Time...
elFinder 2 - Remote Command Execution (via File Creation)
Author: TUNISIAN CYBER + Title: elFinder 2 Remote Command Execution Via File Creation Vulnerability + Date: 06-05-2015 + Vendor: https://github.com/Studio-42/elFinder + Type: WebAPP + Tested on: KaliLinux Debian + Twitter: @TCYB3R + Time Line: 03-05-2015:Vulnerability Discovered...
wig - WebApp Information Gatherer
wig is a web application information gathering tool, which can identify numerous Content Management Systems and other administrative applications. The application fingerprinting is based on checksums and string matching of known files for different versions of CMSes. This results in a score being...
Fedora 21 : zarafa-7.1.12-1.fc21 (2015-5823)
Zarafa Collaboration Platform 7.1.12 final 48726 ================================================== - ZCP-10149: Include Documentation hint for usage of NFS and -o nolock option - ZCP-10233: Zarafa-mr-accept script complains in certain cases about php timezone functions - ZCP-10578: missing...
Fedora 20 : zarafa-7.1.12-1.fc20 (2015-5864)
Zarafa Collaboration Platform 7.1.12 final 48726 ================================================== - ZCP-10149: Include Documentation hint for usage of NFS and -o nolock option - ZCP-10233: Zarafa-mr-accept script complains in certain cases about php timezone functions - ZCP-10578: missing...
ProjectSend r561 CSRF / XSS / Shell Upload
Author: TUNISIAN CYBER + Title: ProjectSend Multiple Vulnerabilities + Date: 25-04-2015 + Vendor: http://www.projectsend.org/ + Download:http://www.projectsend.org/download/67/ + Type: WebAPP + Tested on: KaliLinux Debian + Twitter: @TCYB3R It's a long one so let's start... I/ CSRF: Add Admin...
WebUI v1.5b6 Remote Code Execution Vulnerability
Exploit for php platform in category web applications + Author: TUNISIAN CYBER + Title: WebUI Remote Code Execution Vulnerability + Date: 21-04-2015 + Vendor: https://github.com/baram01/webui/ + Type: WebAPP + Tested on: KaliLinux Debian + Twitter: @TCYB3R + Proof of concept:...
Open-Letters Remote PHP Code Injection Exploit
Exploit for php platform in category web applications / errorreporting0; settimelimit0; iniset"defaultsockettimeout", 5; function httpsend$host, $packet if !$sock = fsockopen$host, 80 die "\n- No response from $host:80\n"; fwrite$sock, $packet; return streamgetcontents$sock; print "+ Author:...
phpSFP Schedule Facebook Posts 1.5.6 - SQL Injection
| | / | \ | |/ |/ | / | | | | | | | | | | | | | / \ | | | || || | |\ | || | | / | | |/|| ||// \| phpSFP - Schedule Facebook Posts 1.5.6 SQL Injection 0-day Website : http://codecanyon.net/item/phpsfp-schedule-facebook-posts/5177393 Exploit Author : @u0x Pichaya Morimoto Release dates :...
Joomla! Component Contact Form Maker 1.0.1 - SQL Injection
+Title: Joomla Contact Form Maker v1.0.1 Component - SQL injection vulnerability +Author: TUNISIAN CYBER +Date: 29/03/2015 +Vendor: http://extensions.joomla.org/extensions/extension/contacts-and-feedback/contact-forms/contact-form-maker +Type:WebApp +Risk:High +Overview: Contact Form Maker v1.0.1...
Joomla! Component Contact Form Maker 1.0.1 - SQL Injection
Joomla! Component Contact Form Maker 1.0.1 - SQL Injection +Title: Joomla Contact Form Maker v1.0.1 Component - SQL injection vulnerability +Author: TUNISIAN CYBER +Date: 29/03/2015 +Vendor: http://extensions.joomla.org/extensions/extension/contacts-and-feedback/contact-forms/contact-form-maker...
WordPress Plugin InBoundio Marketing 1.0 - Shell Upload Vulnerability
Exploit for php platform in category web applications Dx . Made In Algeria . xZ Title : WordPress plugin InBoundio Marketing Shell Upload Vulnerability Author : KedAns-Dz + E-mail : ked-h @hotmail.com + FaCeb0ok : fb.me/K3d.Dz + TwiTter : @kedans Platform : PHP / WebApp + Cat/Tag : File Upload /...
WordPress Plugin InBoundio Marketing 1.0 - Arbitrary File Upload
Dx . Made In Algeria . xZ Title : WordPress plugin InBoundio Marketing Shell Upload Vulnerability Author : KedAns-Dz + E-mail : ked-h @hotmail.com + FaCeb0ok : fb.me/K3d.Dz + TwiTter : @kedans Platform : PHP / WebApp + Cat/Tag : File Upload / Code Exec 3 3 Greetings t0 Palestine 3 3 ! Vendor :...
WordPress InBoundio Marketing Shell Upload
Dx . Made In Algeria . xZ Title : WordPress plugin InBoundio Marketing Shell Upload Vulnerability Author : KedAns-Dz + E-mail : ked-h @hotmail.com + FaCeb0ok : fb.me/K3d.Dz + TwiTter : @kedans Platform : PHP / WebApp + Cat/Tag : File Upload / Code Exec 3 3 Greetings t0 Palestine 3 3 ! Vendor :...
Codiad 2.5.3 - LFI Vulnerability
Exploit for php platform in category web applications +Title: Codiad v2.5.3 - LFI Vulnerability +Author: TUNISIAN CYBER +Date: 12/03/2015 +Type:WebApp +Risk:High +Overview: Pie Register 2.x suffers, from a Local File Disclosure vulnerability. +Proof Of Concept: PHP...
Codiad 2.5.3 Local File Inclusion
+Title: Codiad v2.5.3 - LFI Vulnerability +Author: TUNISIAN CYBER +Date: 12/03/2015 +Type:WebApp +Risk:High +Overview: Pie Register 2.x suffers, from a Local File Disclosure vulnerability. +Proof Of Concept: PHP ////////////////////////////////////////////////////////////////// // Run Download...