Rough Auditing Tool for Security (RATS) 2.3 - Array Out of Block Crash

Exploit Title: RATS 2.3 Array Out of Block Crash Date: 29th April 2016 Exploit Author: David Silveiro Author Contact: twitter.com/davidsilveiro Website: Xino.co.uk Software Link: https://code.google.com/archive/p/rough-auditing-tool-for-security/downloads Version: RATS 2.3 Tested on: Ubuntu 14.04...

pdfium IsFlagSet (v8 memory management) - SIGSEGV

Source: https://code.google.com/p/google-security-research/issues/detail?id=622 The following crash was encountered in pdfium the Chrome PDF renderer during PDF fuzzing: --- cut --- ==31710==ERROR: AddressSanitizer: SEGV on unknown address 0x7f53cc100009 pc 0x0000016fafe2 bp 0x7ffee170d730 sp...

DBKiss 1.16 Cross Site Scripting

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : http://0day.today 0 1 + Support e-mail :...

DaFun Spirit 2.2.5 - Multiple Remote File Include Vulnerability

No description provided by source. \|/// \ - - // @ @ ----oOOo---oOOo-------------------------------------------------- DaFun Spirit 2.2.5 Multiple Remote File Include Vulnerability Script: http://code.google.com/p/dafunspirit/downloads/list Author: mat Mail: [email protected]...

Pollen CMS 0.6 File Disclosure

Title: Pollen CMS = 0.6 - Local File Disclosure Google Dork: intext:"Powered by Pollen CMS" Date: 25 Mars 2013 Exploit Author: MizoZ Vendor Homepage: pollencms.com BROKEN Software Link: https://code.google.com/p/pollencms/ Version: 0.6 Tested on: Ubuntu Desktop 12.04 -- File...

KindEditor 4.1.5 Shell Upload

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

[Patator] Brute-Force Attack And Dns Reverse And Forward Lookup

Patator is developed by Sebastien Macke. In this video I will show you how to use Patator for a Brute-Force Attack and DNS Forward and reverse lookup. Patator is a multi-purpose brute-force, with a modular design and a flexible usage. http://code.google.com/p/patator...

Two High-Risk Flaws Fixed in Google Chrome 23

Google has fixed two bugs in its Chrome browser, including a high-severity vulnerability in its media handler that a researcher named Pinkie Pie discovered. The bug, which is different from another use-after-free vulnerability the researcher used in the Pwnium contest at Hack in the Box in Octobe...

Arora 0.10.0 Windows Qt 4.5.3 DLL Hijack

/ Exploit Title: Arora 0.10.0 Windows Qt 4.5.3 DLL Hijacking Exploit wintab32.dll Date: 27/10/2012 Author: Metropolis Url: http://metropolis.fr.cr Software Link: http://code.google.com/p/arora/downloads/detail?name=Arora%200.10.0-1%20Installer.exe&can=2&q= Version: 0.10.0 Tested on: Windows 7...

Traidnt UP CSRF upload shell Vulnerability

Exploit for php platform in category web applications ---------------------------------------------------------------------- Exploit Title: Traidnt UP 0day.today 2018-01-04...

KaiBB 2.0.1 - SQL Injection

Advisory: KaiBB 2.0.1 XSS and SQL Injection vulnerabilities Advisory ID: SSCHADV2011-027 Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: - ========================== Vulnerability Description:...

Simple HTTPd 1.42 PUT Request Remote Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits !/usr/bin/env python part of femtocell research by TU-Berlin only for educational purposes Exploit Title: remote root on sfr/ubiquisys femtocell webserver wsal/shttpd/mongoose Author: nion Software: http://code.google.com/p/mongoose/...

SWFUpload v2.5.0 Beta 3 File Arbitrary Upload

Exploit for php platform in category web applications Exploit Title: SWFUpload v2.5.0 Beta 3 File Arbitrary Upload Date: 07/02/2011 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web: www.delincuentedigital.com.ar Software: SWFUpload v2.5.0 Beta 3 Software Link:...

Mongoose 2.11 Denial Of Service

------------------------------------------------------------------------ Software................Mongoose 2.11 Vulnerability...........Denial Of Service Download................http://code.google.com/p/mongoose/ Release Date............12/27/2010 Tested On...............Windows XP...

Collaborative Passwords Manager 1.07 - Multiple Local File Inclusions

Collaborative Passwords Manager 1.07 Multiple Local Include Exploit Found by sh00t0ut Expl: Vendor: http://code.google.com/p/cpassman/downloads/list http://victim/?SESSIONuserlanguage=etc/passwd%00 http://victim/sources/admin.queries.php?SESSIONuserlanguage=etc/passwd%00...

PotatoNews 1.0.2 Multiple Local File Include Vulnerability

Exploit for php platform in category web applications ========================================================== PotatoNews 1.0.2 Multiple Local File Include Vulnerability ========================================================== view source print? \|/// \ - - // @ @...

DaFun Spirit 2.2.5 - Multiple Remote File Inclusions

DaFun Spirit 2.2.5 - Multiple Remote File Inclusions \|/// \ - - // @ @ ----oOOo---oOOo-------------------------------------------------- DaFun Spirit 2.2.5 Multiple Remote File Include Vulnerability Script: http://code.google.com/p/dafunspirit/downloads/list Author: mat Mail:...

FestOS 2.2.1 Remote File Inclusion

Exploit Title: FestOs $reports header"Location:index.php"; include "includes/reportheader.php"; ? 3xplo!t : festospath/admin/reportsplacement.php?ABSOLUTEFILEPATH=Shell Code : FestOS.php requireonce$config'ABSOLUTEFILEPATH'."core/sessions.php"; 3xplo!t :...

Windows/x86 - Download File (http://skypher.com/dll) + LoadLibrary + Null-Free Shellcode (164 bytes)

Windows/x86 - Download File http://skypher.com/dll + LoadLibrary + Null-Free Shellcode 164 bytes. Shellcode exploit for Windowsx86 platform. Tags: Metas... ; Copyright c 2009-2010, Berend-Jan "SkyLined" Wever ; Project homepage: http://code.google.com/p/w32-dl-loadlib-shellcode/ ; All rights...