874 matches found
Collabo TeamBusiness Collaboration Network Arbitrary File Download
Exploit Title: Collabo - TeamBusiness Collaboration Network - Arbitrary File Download Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://321-internet.com/ Software Buy: https://codecanyon.net/item/collabo-teambusiness-collaboration-network/15242543 Demo:...
Collabo - Arbitrary File Download
Collabo - Arbitrary File Download Exploit Title: Collabo - TeamBusiness Collaboration Network - Arbitrary File Download Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://321-internet.com/ Software Buy: https://codecanyon.net/item/collabo-teambusiness-collaboration-network/15242543 Demo:...
Gram Post 1.0 - SQL Injection
Exploit Title: Gram Post - Instagram Auto Post Multi Accounts with Paypal integration v1.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy:...
Muviko Video CMS - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Muviko Video CMS Script - SQL Injection Google Dork: N/A Date: 08.02.2017 Vendor Homepage: https://muvikoscript.com/ Software Buy: https://codecanyon.net/item/muviko-movie-video-cms/19402086 Demo: https://demo.muvikoscript.com/...
NewsBee CMS - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: NewsBee CMS – SQL Injection Date: 06.02.2017 Software Link: https://codecanyon.net/item/newsbee-fully-featured-news-cms-with-bootstrasp-php-mysql/19404937?srank=2 Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website:...
Alstrasoft ProTaxi Enterprise 3.5 - Arbitrary File Upload
Exploit Title: Alstrasoft ProTaxi Enterprise v3.5 Script - Arbitrary File Upload Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.alstrasoft.com/ Software Buy: http://www.alstrasoft.com/protaxi-uber-clone.htm Demo: http://propertycarrots.com/taxi/public/user/signin Version: 3.5 Teste...
CUPS 2.0.3 - Remote Command Execution
CUPS 2.0.3 - Remote Command Execution !/usr/bin/python Exploit Title: CUPS Reference Count Over Decrement Remote Code Execution Google Dork: n/a Date: 2/2/17 Exploit Author: @0x00string Vendor Homepage: cups.org Software Link: https://github.com/apple/cups/releases/tag/release-2.0.2 Version: 2.0....
Itech Multi Vendor Script 6.49 - SQL Injection
Exploit Title : Itech Multi Vendor Script - Multiple SQL Injections Author : Yunus YILDIRIM Th3GundY Team : CT-Zer0 @CRYPTTECH - https://www.crypttech.com Website : http://www.yunus.ninja Contact : [email protected] Vendor Homepage : http://itechscripts.com/ Software Link :...
Property Listing Script - propid Blind SQL Injection
Property Listing Script - propid Blind SQL Injection Exploit Title: Property Listing Script – Time-Based Blind Injection Date: 02.02.2017 Vendor Homepage: http://phprealestatescript.org/ Software Link: http://phprealestatescript.org/property-listing-script.html Exploit Author: Kaan KAMIS Contact:...
Itech Freelancer Script 5.13 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Itech Freelancer Script v5.13 – SQL Injection Date: 30.01.2017 Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/freelancer-script/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website:...
Video Sharing Script 4.94 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Video Sharing Script 4.94 – SQL Injection Date: 30.01.2017 Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/video-sharing-script/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website:...
HelpDeskZ 1.0.2 - (Authenticated) SQL Injection Unauthorized File Download
HelpDeskZ 1.0.2 - Authenticated SQL Injection Unauthorized File Download ''' Exploit Title: HelpDeskZ fetchRow"SELECT , COUNTid AS total FROM ".TABLEPREFIX."attachments WHERE id=".$db-realescapestring$params2." AND ticketid=".$params0." AND msgid=".$params3; third argument AND msgid=".$params3;...
Adapt CMS 3.0.3 File Upload
!usr/bin/python """ | Exploit Title: Adapt Cms Arbitrary File Upload | | Exploit Author: Ashiyane Digital Security Team | | Vendor Homepage: http://www.adaptcms.com/ | | Download Link : http://www.adaptcms.com/downloads/latestadaptcms.zip | | Tested Version : AdaptCMS 3.0.3 | | Tested on: Windows...
My Photo Gallery 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Introduction Exploit Title: My Photo Gallery – SQL Injection Date: 27.01.2017 Vendor Homepage: http://software.friendsinwar.com/ Software Link: http://software.friendsinwar.com/news.php?readmore=40 Exploit Author: Kaan KAMIS Contact:...
PHPBack 1.3.1 - SQL Injection Cross-Site Scripting
PHPBack 1.3.1 - SQL Injection Cross-Site Scripting Exploit Title :PHPback alertdocument.cookie; in title parameter title="alertdocument.location; SQLI Screenshot https://cloud.githubusercontent.com/assets/10351062/14776703/c9440524-0ae5-11e6-9240-a37a685a72b1.png XSS screenshot...
Movie Portal Script 7.36 - Multiple Vulnerabilities
Movie Portal Script 7.36 - Multiple Vulnerabilities Exploit Title : Movie Portal Script v7.36 - Multiple Vulnerability Google Dork : - Date : 20/01/2017 Exploit Author : Marc Castejon Vendor Homepage : http://itechscripts.com/movie-portal-script/ Software Link: http://movie-portal.itechscripts.co...
Domains Marketplace Script 1.1 - Authentication Bypass
Exploit Title: ICDomains-Domains Marketplace Script - Authentication Bypass Google Dork: N/A Date: 20.01.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Buy: http://www.icloudcenter.com/domains-marketplace-script.htm Demo: http://icloudcenter.net/demos/icdomains/ Version: 1.1 Tested o...
FreePBX Remote Code Execution
Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/ Trixbox/freepbx/elastix/pbxinflash/ Tested on: Cento...
SapLPD 7.40 - Denial of Service
SapLPD 7.40 - Denial of Service Exploit Title: SAPlpd 7.40 Denial of Service Date: 2016-12-28 Exploit Author: Peter Baris Exploit code: http://saptech-erp.com.au/resources/saplpddos.zip Version: 7.40 all patch levels as a part of SAPGui 7.40 Tested on: Windows Server 2008 R2 x64, Windows 7 Pro x6...
Nidesoft MP3 Converter 2.6.18 - Local Buffer Overflow (SEH)
Nidesoft MP3 Converter 2.6.18 - Local Buffer Overflow SEH !python Exploit title: MP3 converter v 2.6.18 License code SEH exploit Date: 2016-12-15 Vendor homepage: http://www.nidesoft.com/mp3-converter.html Download: http://www.nidesoft.com/downloads/mp3-converter.exe Tested on: Win7 SP1 Author:...