855 matches found
WordPress Persuasion Theme File Download / Deletion
Exploit Title: Persuasion Wordpress Theme - Arbitrary File Download and File Deletion Exploit Date: 19 December 2013 Exploit Author: Interference Security Vendor Homepage: http://mysitemyway.com/ Software Link: http://mysitemyway.com/theme/persuasion-wordpress-theme/ Version: Tested on 2.0 and 2....
PotPlayer 1.5.40688 - '.avi' File Handling Memory Corruption
!/usr/bin/python Exploit Title: PotPlayer Version 1.5.40688 .avi File Handling Memory Corruption Vulnerability Date: 2013/12/20 Exploit Author: ariarat Software Link: http://www.videohelp.com/download/PotPlayer1.5.40688.EXE Version: 1.5.40688 Probably old version of PotPlayer too Vendor Homepage:...
CGILua 3.0 - SQL Injection
Exploit Title: CGILua SQL Injection Google Dork: inurl:/cgilua.exe/sys/ Vendor Homepage: https://web.tecgraf.puc-rio.br/cgilua/ Version: = 3.0 Date: 09/12/2013 Exploit Author: aceeeeeeeer Contact: http://www.twitter.com/aceeeeeeeer Tested on: Windows greetz: CrazyDuck - Synchr0N1ze - No\one -...
Steinberg MyMp3PRO 5.0 Buffer Overflow
!/usr/bin/ruby Vendor: http://cjcity.ru/soft/35-8.html Software link: http://cjcity.ru/2/downloader.php?id=00000000559 print ''' Steinberg MyMp3PRO v5.0 Buffer Overflow Version: 5.0 Build 5.1.0.21 Date found: 04.12.2013 Exploit Author: metacom Tested on:XP-Sp3-EN ''' sleep3 junk="\x41" 1044...
Steinberg MyMp3PRO v5.0 DEP Bypass with ROP
Exploit for windows platform in category local exploits !/usr/bin/ruby Vendor: http://cjcity.ru/soft/35-8.html Software link: http://cjcity.ru/2/downloader.php?id=00000000559 print ''' Steinberg MyMp3PRO v5.0 DEP Bypass with ROP Version: 5.0 Build 5.1.0.21 Date found: 04.12.2013 Exploit Author:...
Steinberg MyMp3PRO v5.0 Buffer Overflow
Exploit for windows platform in category local exploits !/usr/bin/ruby Vendor: http://cjcity.ru/soft/35-8.html Software link: http://cjcity.ru/2/downloader.php?id=00000000559 print ''' Steinberg MyMp3PRO v5.0 Buffer Overflow Version: 5.0 Build 5.1.0.21 Date found: 04.12.2013 Exploit Author: metac...
Steinberg MyMp3PRO 5.0 - Local Buffer Overflow (SEH) (DEP Bypass + ROP)
Steinberg MyMp3PRO 5.0 - Local Buffer Overflow SEH DEP Bypass + ROP !/usr/bin/ruby print ''' Steinberg MyMp3PRO v5.0 Buffer Overflow Version: 5.0 Build 5.1.0.21 Date found: 04.12.2013 Exploit Author: metacom Tested on:XP-Sp3-EN ''' sleep3 junk="\x41" 1044 eip=0x7C86467B.pack'V'7C86467B FFE4 JMP E...
TVT TD-2308SS-B DVR - Directory Traversal Vulnerability
TVT TD-2308SS-B DVR and possibly other models running firmware version 3.2.0.P-3520A-00 contain a directory traversal vulnerability. An attacker can use directory traversal to download critical files such as the config.dat file for the device which contains the credentials for the web interface...
Total Video Player 1.3.1 - Settings.ini Local Buffer Overflow (SEH)
Total Video Player 1.3.1 - Settings.ini Local Buffer Overflow SEH !/usr/bin/perl Exploit Title: Total Video Player 1.3.1 Settings.ini - SEH Buffer Overflow Date: 11-24-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: Total Video Player 1.3.1...
ALLPlayer 5.7 - '.m3u' UNICODE Buffer Overflow (SEH)
!/usr/bin/perl Exploit Title: ALLPlayer 5.7 .m3u - SEH Buffer Overflow Unicode Date: 11-23-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: ALLPlayer 5.7 Software Link: http://www.allplayer.org/download/allplayer Version: 5.7 Tested On: Windows XP SP3 and Windows 7 P...
Light Alloy 4.7.3 - '.m3u' Local Buffer Overflow (SEH Unicode)
!/usr/bin/perl Exploit Title: Light Alloy 4.7.3 .m3u - SEH Buffer Overflow Unicode Date: 11-18-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: Light Alloy v4.7.3 Vendor Site: http://www.light-alloy.ru/ Vulnerable Software Link:...
Light Alloy 4.7.3 - .m3u Local Buffer Overflow (SEH Unicode)
Light Alloy 4.7.3 - .m3u Local Buffer Overflow SEH Unicode !/usr/bin/perl Exploit Title: Light Alloy 4.7.3 .m3u - SEH Buffer Overflow Unicode Date: 11-18-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: Light Alloy v4.7.3 Vendor Site: http://www.light-alloy.ru/...
Testa Online Test Management SQL Injection
Exploit Title : Testa Online Test Management Sql Injection / Login page Bypass Exploit Author : Ashiyane Digital Security Team Vendor Homepage : http://testa.cc/ Software Link Download : http://download.aftab.cc/products/testa/Testawos2.0.0.2.zip Google Dork : intitle:Testa Online Test Management...
VideoSpirit Pro 1.90 Seh Buffer Overflow Vulnerability
Exploit for windows platform in category local exploits !/usr/bin/ruby Vendor: http://www.verytools.com/ Software link: http://www.verytools.com/videospirit/download.html print ''' VideoSpirit Pro Seh Buffer Overflow Version: Pro 1.90 Date found: 11.11.2013 Exploit Author: metacom Tested on:...
VideoSpirit Lite 1.77 Seh Buffer Overflow Vulnerability
Exploit for windows platform in category local exploits !/usr/bin/ruby Vendor: http://www.verytools.com/ Software link: http://www.verytools.com/videospirit/download.html print ''' VideoSpirit Lite 1.77 Seh Buffer Overflow Version: Lite 1.77 Date found: 11.11.2013 Exploit Author: metacom Tested o...
VideoSpirit Lite 1.77 - Local Buffer Overflow (SEH)
!/usr/bin/ruby Vendor: http://www.verytools.com/ Software link: http://www.verytools.com/videospirit/download.html print ''' VideoSpirit Lite 1.77 Seh Buffer Overflow Version: Lite 1.77 Date found: 11.11.2013 Exploit Author: metacom Tested on: Win7-Win8-EN ''' sleep3...
Wordpress WP Realty Plugin - eMail Sender Vulnerability
Exploit Title: Wordpress - wp-realty - eMail Sender Google Dork: inurl:"/wp-content/plugins/wp-realty/" Vendor: http://wprealty.org/ Date: 10/08/2013 Exploit Author: Napsterakos Link: http://localhost/wp-content/plugins/wp-realty/ Exploit:...
FiberHome Modem Router HG-110 Authentication Bypass
Exploit Title: Directory Path Traversal FiberHome Modem Router HG-110 / Remote Change DNS Servers Date: 22/09/2013 Exploit Author: Javier Perez - [email protected] - @thes41nt Vendor Homepage: http://hk.fiberhomegroup.com/ Version: HG110BHV1.6 PoC: Remote Change DNS Servers Example file...
WordPress WP Realty Blind SQL Injection
$$$$$$\ $$\ $$\ $$$$$$\ $$ $$\ $$ | $$ | $$ $$\ $$ / | $$ | $$ | $$ / | $$ |$$$$\ $$$$$$$$ | $$$$$$\ $$ |$$ | $$ $$ | $$\ $$ | $$ | $$ | $$ | $$\ $$ | $$$$$$ |$$\ $$ | $$ |$$\$$$$$$ | / || ||/ Exploit Title: Wordpress - wp-realty - MySQL Time Based Injection Google Dork:...
WordPress Finalist Cross Site Scripting
Exploit Title : Wordpress finalist Plugin Cross site scripting Exploit Author : Ashiyane Digital Security Team Google Dork : inurl:wp-content/plugins/finalist Software Link : www.wordpress.org Tested on: Windows , Linux Date: 2013/10/14 Exploit : Cross site scripting Location1:...