12 matches found
WordPress Thumbnail carousel slider plugin <= 1.0 - Authenticated Shell Upload and Cross-Site Request Forgery (CSRF) vulnerabilities
Authenticated Shell Upload and Cross-Site Request Forgery CSRF vulnerabilities found by Arash Khazaei in WordPress Thumbnail carousel slider plugin versions = 1.0. Solution Update the WordPress Thumbnail carousel slider plugin to the latest available version at least 1.0.1...
Zapya Desktop 1.803 - 'ZapyaService.exe' Local Privilege Escalation
Exploit Title: Zapya Desktop Version 'ZapyaService.exe' Privilege Escalation Date: 2016/9/12 Exploit Author: Arash Khazaei Vendor Homepage: http://www.izapya.com/ Software Link: http://binaries.izapya.com/Izapya/WindowsPC/ZapyaSetup1803en.exe Version: 1.803 Latest Tested on: Windows 7 Professiona...
WordPress Gallery Master 1.0.22 Cross Site Scripting
Exploit : For Exploiting This Vulnerability Install Testimonial Slider Plugin Then Create New SGallery In Gallery Title Input And Gallery Description Place Your JavaScript Code After Creating Gallery JavaScript Code Will Be Executed . Plugin Is Accessable By Authors , Administartors , Editors...
WordPress Easy Media Gallery 1.3.47 Cross Site Scripting
Exploit : For Exploiting This Vulnerability Install Easy Media Gallery Plugin Then Create New Media In Media Title Input : "/alert'Exploit' Then In Media Subtitle Like Media Title Input : "/alert'Exploit1' After Creating New JavaScript Code Will Be Executed . Video Poc : http://youtu.be/5nMQUgP6n...
WordPress Testimonial Slider 1.2.1 Cross Site Scripting
GhostMail Exploit : For Exploiting This Vulnerability Install Testimonial Slider Plugin Then Create New Slider In Slider Name Input Place Your JavaScript Code After Creating Slider JavaScript Code Will Be Executed . Image POC : Vulnerable Code : Slider ID = For Patching : Slider ID = This...
WordPress Responsive Thumbnail Slider 1.0 Shell Upload
POC : For Exploiting This Vulnerability : Go To Add Image Section And Upload File By Self Plugin Uploader Then Upload File With Double Extension Image And By Using A BurpSuite Or Tamper Data Change The File Name From Shell.php.jpg To Shell.php And Shell Is Uploaded . :...
WordPress Plugin Responsive Thumbnail Slider 1.0 - Arbitrary File Upload
Exploit Title: Wordpress Responsive Thumbnail Slider Arbitrary File Upload Date: 2015/8/29 Exploit Author: Arash Khazaei Vendor Homepage: https://wordpress.org/plugins/wp-responsive-thumbnail-slider/ Software Link: https://downloads.wordpress.org/plugin/wp-responsive-thumbnail-slider.zip Version:...
Pligg CMS 2.0.2 Cross Site Request Forgery
Admin input name="password" type="text" class="form-control" id="password" value="hacker123" onchange="ch...
Wolf CMS 0.8.2 Open Redirect
Exploit Title: Wolf CMS Open Redirect Vulnerability + Google Dork: N/A + Date: 10/8/2015 + Exploit Author: Arash Khazaei + Vendor Homepage: https://www.wolfcms.org/ + Software Link: https://bitbucket.org/wolfcms/wolf-cms-downloads/downloads/wolfcms-0.8.2.zip + Version: 0.8.2Last Version + Tested...
Tendoo CMS 1.3 - XSS Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Tendoo CMS Stored And Reflected Xss Vulnerability Google Dork: N/A Date: 28/7/2015 Exploit Author: Arash Khazaei Vendor Homepage: http://tendoo.org/ Software Link: http://sourceforge.net/projects/tendoo-cms/ Version: 1.3 Tested...
Tendoo CMS 1.3 - Cross-Site Scripting
Exploit Title: Tendoo CMS Stored And Reflected Xss Vulnerability Google Dork: N/A Date: 28/7/2015 Exploit Author: Arash Khazaei Vendor Homepage: http://tendoo.org/ Software Link: http://sourceforge.net/projects/tendoo-cms/ Version: 1.3 Tested on: Kali , Windows CVE : N/A Contact : [email protected]...
Seditio CMS 1.7.1 Open Redirect
Exploit Title: Seditio CMS Open Redirect + Google Dork: intext:"Powered by Seditio CMS" + Date: 27/7/2015 + Exploit Author: Arash Khazaei + Vendor Homepage: http://www.seditiocms.com/ + Software Link: http://www.seditiocms.com/page.php?id=20&a=dl + Version: 1.7.1Last Version + Tested on: Kali ,...