14 matches found
Acunetix WVS Reporter 10.0 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Acunetix WVS Reporter 10.0 - Denial of Service PoC Exploit Author: Ali Alipour Vendor Homepage : https://www.acunetix.com/ Tested on : Windows 10 - 64-bit Steps to Reproduce Run the python exploit script, it will create a new file...
Acunetix WVS Reporter 10.0 Denial Of Service
Exploit Title: Acunetix WVS Reporter 10.0 - Denial of Service PoC Exploit Author: Ali Alipour Date: 2018-08-22 Vendor Homepage : https://www.acunetix.com/ Tested on : Windows 10 - 64-bit Steps to Reproduce Run the python exploit script, it will create a new file with the name "exploit.txt" just...
Acunetix WVS 10 - Remote Command Execution
Acunetix WVS 10 - Remote Command Execution ''' Acunetix WVS 10 - Remote command execution SYSTEM privilege - Author: Daniele Linguaglossa Overview ========= Acunetix WVS 10 1 is an enterprise web vulnerability scanner developer by Acunetix Inc. Two major flaws exists in the last version of...
Acunetix WVS 10 Remote Command Execution
''' Acunetix WVS 10 - Remote command execution SYSTEM privilege - Author: Daniele Linguaglossa Overview ========= Acunetix WVS 10 1 is an enterprise web vulnerability scanner developer by Acunetix Inc. Two major flaws exists in the last version of Acunetix, these bug allow a remote attacker, to...
Acunetix WVS Local Elevation of Privilege Vulnerability
Acunetix Web Vulnerability Scanner Consultant Edition is a web vulnerability scanning tool. A security vulnerability exists in the default installation of Acunetix WVS 10, due to the program's failure to manage the scanning schedule with interactive user intervention. Allows a local attacker to...
Acunetix WVS 10 - Local Privilege Escalation Exploit
Exploit for windows platform in category local exploits ''' ======================================================================== Acunetix WVS 10 - from guest to Sytem Local privilege escalation CVE: CVE-2015-4027 Author: me Daniele Linguaglossa Affected Product: Acunetix WVS 10 Exploit: Local...
Acunetix WVS 10 - Local Privilege Escalation
''' ======================================================================== Acunetix WVS 10 - from guest to Sytem Local privilege escalation CVE: CVE-2015-4027 Author: me Daniele Linguaglossa Affected Product: Acunetix WVS 10 Exploit: Local privilege escalation Vendor: Acunetix ltd Remote: No...
Acunetix WVS 10 Local Privilege Escalation
''' ======================================================================== Acunetix WVS 10 - from guest to Sytem Local privilege escalation CVE: CVE-2015-4027 Author: me Daniele Linguaglossa Affected Product: Acunetix WVS 10 Exploit: Local privilege escalation Vendor: Acunetix ltd Remote: No...
Acunetix WVS 10 - Local Privilege Escalation
Acunetix WVS 10 - Local Privilege Escalation ''' ======================================================================== Acunetix WVS 10 - from guest to Sytem Local privilege escalation CVE: CVE-2015-4027 Author: me Daniele Linguaglossa Affected Product: Acunetix WVS 10 Exploit: Local privilege...
Gazelle SQL Injection / TBDEV.NET Code Execution Vulnerability
Gazelle suffers from bypass and remote SQL injection vulnerabilities. TBDEV.NET suffers from a remote PHP code execution vulnerability. Gazelle and TBDEV.NET are the most popular web applications used as BitTorrent trackers. A BitTorrent tracker is an application that assists in the communication...
SQL Injection and XSS vulnerabilities in CubeCart version 4.3.3
We are continuing with the list of security vulnerabilities found in a number of web applications while testing our latest version of Acunetix WVS v7 . In this blog post, we will look into the details of a number of security problems discovered by Acunetix WVS in CubeCart. "CubeCart is a fully...
CubeCart 4.3.3 SQL Injection / Cross Site Scripting
We are continuing with the list of security vulnerabilities found in a number of web applications while testing our latest version of Acunetix WVS v7 . In this blog post, we will look into the details of a number of security problems discovered by Acunetix WVS in CubeCart. "CubeCart is a fully...
Pligg 1.0.4 SQL Injection
While beta testing the latest version of Acunetix WVS v7, we found a large number of security vulnerabilities in various web applications. In the following days we will publish some of these vulnerabilities. Note that we will not publish vulnerabilities found in applications that are not commonly...
Drupal Local File Inclusion
Hi guys, I was testing Acunetix WVS with AcuSensor enabled on Drupal http://www.drupal.org and the scanner found a possible File Inclusion vulnerability. The vulnerability is located in the file "includes\theme.inc" on line 1011. Vulnerable code: function themerendertemplate$templatefile,...