78 matches found
CVE-2018-5242
Norton App Lock prior to version 1.3.0.329 can be susceptible to a bypass exploit. In this type of circumstance, the exploit can allow the user to circumvent the app to prevent it from locking the device, thereby allowing the individual to gain device access...
CVE-2018-5242
Affected product: Norton App Lock. Version pre-1.3.0.329 is vulnerable to a bypass that can allow a user to bypass the app and prevent locking, potentially gaining device access. Remediation: update to version 1.3.0.329 or later. This summary reflects details available in connected sources; no fu...
Inout StickBoard 1.0 Script - Improper Access Restrictions Vulnerability
Exploit for php platform in category web applications Vulnerability: Security Bypass Date: 13.01.2017 Vendor Homepage: http://www.inoutscripts.com/ Script Name: Inout StickBoard Script Script Version: v1.0 Script Buy Now: http://www.inoutscripts.com/demo/inout-stickboard/demo/ Author: İhsan Şenca...
NetCommWireless HSPA 3G10WVE Authentication Bypass
No description provided by source...
Multiple Vendors (RomPager <= 4.34) - Misfortune Cookie Router Authentication Bypass
No description provided by source...
创梦网络信息管理系统 v2.2.5 登录绕过漏洞
No description provided by source...
ESPCMS最新版后台登入绕过DEMO测试
简要描述: 漏网之鱼,同样是加解密函数,但又与以前不同。 详细说明: 看看加解密函数 function eccode$string, $operation = 'DECODE', $key = '@LFK24s224%@safS3s%1f%', $mcrype = true $result = null; if $operation == 'ENCODE' if extensionloaded'mcrypt' && $mcrype $result = $this-encryptCookie$string, $key; else for $i = 0; $i...
ecshop csrf防御绕过后台敏感功能csrf getshell
简要描述: csrf防御绕过。 详细说明: 可以csrf执行后台各种敏感功能。这里分析的是利用空referer的方式绕过。参考http://zone.wooyun.org/content/744 利用这个绕过可以实现ecshop各个版本的csrf getshell,csrf dump数据库。测试了2.7.3一个版本和最新的2.7.4 本文可以看做该帖子的http://zone.wooyun.org/content/744的一个实例测试。感谢大神们分享技术. exp1,csrf getshell 利用执行sql的接口,结合报路径漏洞。 新建html文件内容为: '" 新建...
Digiappz Freekot 1.01 ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19768/info Digiappz Freekot is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit could allow an attacker to compromise the application, retrieve...
web calendar system <= 3.40 (xss/sql) Multiple Vulnerabilities
No description provided by source. 000000 00000 0000 0000 000 00 000000 0000000 0000 000000 00000 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00000 0 0 0 0 0 0 0 0 00000 0000 0 0 0 0 00000 0 0 0 0 0 0 0 0 0 0 000 0 0 0 ...
SonicWALL GMS/Viewpoint/Analyzer Authentication Bypass
No description provided by source...
WinComLPD Total 3.0.2.623 - Multiple Buffer Overflow Vulnerabilities and Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27614/info WinComLPD Total is prone to multiple vulnerabilities, including buffer-overflow vulnerabilities and an authentication-bypass vulnerability. Successfully exploiting these issues will allow an attacker to perform...
Kemana Directory 1.5.6 (qvc_init()) Cookie Poisoning CAPTCHA Bypass Exploit
No description provided by source. ?!C:\Perl64\bin\perl.exe Kemana Directory 1.5.6 qvcinit Cookie Poisoning CAPTCHA Bypass Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own...
Star Develop Live Help 2.0 Disclosure / Bypass
================================================ Star Develop Live Help v2.0 Mullti Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=0 0 . .--. .--. .---. . 1 1 .'| / | 0 0 | --: --: / .-.| .-. . . 1 1 | / | | | 0 0 '---' --' --'...
Free CD to MP3 Converter 3.1 - Universal DEP Bypass
Free CD to MP3 Converter 3.1 - Universal DEP Bypass !/usr/bin/perl +Exploit Title: Free CD to MP3 Converter 3.1 Universal DEP Bypass Exploit +Date: 07\08\2011 +Author: C4SS!0 G0M3S +Version: 3.1 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A Dep bypass method: LoadLibraryA"kernel32.dll" +...
Iconics GENESIS32 Integer Overflow
$Id: iconicsgenbroker.rb 13197 2011-07-17 15:01:46Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
PHPMyCart 1.3 Multi Vulnerabilities
No description provided by source. ======================================================================================== | Title : PHPMyCart 1.3 Multi Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 |...
php168 6.1 login.php 安全模式绕过漏洞
No description provided by source...
Microsoft IIS 6.0 Bypass
? printr' IIS 6 WEBDAV Exploit.By [email protected] && Securiteweb.org Usage: php '.$argv0.' source/path/put host path Example: php '.$argv0.' source www.tian6.com /blog/readme.asp Example2: php '.$argv0.' path www.tian6.com /secret/ Example3: php '.$argv0.' put www.tian6.com /secret/ test.txtevil...
Web Calendar System 3.40 - Cross-Site Scripting SQL Injection
Web Calendar System 3.40 - Cross-Site Scripting SQL Injection 000000 00000 0000 0000 000 00 000000 0000000 0000 000000 00000 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 00 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 00000 0 0 0 0 0 0 0 0 00000 0000 0 0 0 0 00000 0 0...