Lucene search
K

8692 matches found

n0where
n0where
added 2018/04/26 5:10 p.m.184 views

Wireless GUI Android Security Assessment: Hijacker

Hijacker is a Graphical User Interface for the penetration testing tools Aircrack-ng, Airodump-ng , MDK3 and Reaver . It offers a simple and easy UI to use these tools without typing commands in a console and copy&pasting MAC addresses. This application requires an ARM android device with an...

0.4AI score
Exploits0References2
OSV
OSV
added 2018/04/25 6:29 p.m.5 views

CVE-2018-10207

An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit Missing Authorization on the FlexPaperViewer SWF reader, and export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format...

5.3CVSS5.8AI score0.01055EPSS
Exploits0References2
NVD
NVD
added 2018/04/25 6:29 p.m.15 views

CVE-2018-10207

An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit Missing Authorization on the FlexPaperViewer SWF reader, and export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format...

5.3CVSS5.2AI score0.01055EPSS
Exploits0References2
Prion
Prion
added 2018/04/25 6:29 p.m.20 views

Authorization

An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit Missing Authorization on the FlexPaperViewer SWF reader, and export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format...

5CVSS5.2AI score0.01055EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2018/04/25 12:0 a.m.5 views

PT-2018-9753 · Flexpaper +1 · Flexpaperviewer +1

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered where an attacker can exploit missing authorization on the FlexPaperViewer SWF reader. This allows the attacker to export files that should have been...

5.3CVSS5.3AI score0.01055EPSS
Exploits0References4
0day.today
0day.today
added 2018/04/25 12:0 a.m.53 views

Shopy Point of Sale v1.0 - CSV Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Shopy Point of Sale v1.0 - CSV Injection Exploit Author: 8bitsec CVE: CVE-2018-10258 Vendor Homepage: https://codecanyon.net/ Software Link: https://codecanyon.net/item/shopy-point-of-sales/21730225 Version: 1.0 Tested on: Kali...

0.07553EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/04/25 12:0 a.m.77 views

Open-AudIT 2.1 CSV Macro Injection

Exploit Title: Open-AudIT 2.1 - CSV Macro Injection Vulnerability Google Dork: N/A Date: 21-04-2018 Exploit Author: Sureshbabu Narvaneni Author Blog : http://nullnews.in Vendor Homepage: https://opmantek.com Software Link: https://www.open-audit.org/downloads.php Affected Version: 2.1 Category:...

6.7AI score0.02839EPSS
Exploits5
0day.today
0day.today
added 2018/04/24 12:0 a.m.33 views

WordPress Woo Import Export 1.0 Plugin - Arbitrary File Deletion Vulnerability

Exploit for php platform in category web applications 0day.today 2018-04-26...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/04/24 12:0 a.m.10 views

WordPress Plugin Woo Import Export 1.0 - Arbitrary File Deletion

WordPress Plugin Woo Import Export 1.0 - Arbitrary File Deletion...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2018/04/24 12:0 a.m.38 views

Open-AudIT 2.1 - CSV Macro Injection

Open-AudIT 2.1 - CSV Macro Injection Hi Guys, Exploit Title: Open-AudIT 2.1 - CSV Macro Injection Vulnerability Google Dork: N/A Date: 21-04-2018 Exploit Author: Sureshbabu Narvaneni Author Blog : http://nullnews.in Vendor Homepage: https://opmantek.com Software Link:...

3.5CVSS6.9AI score0.02839EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/04/24 12:0 a.m.32 views

WordPress Woo Import Export 1.0 Arbitrary File Deletion

...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/04/24 12:0 a.m.25 views

WordPress Plugin Woo Import Export 1.0 - Arbitrary File Deletion

...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/04/24 12:0 a.m.37 views

Open-AudIT 2.1 - CSV Macro Injection

Hi Guys, Exploit Title: Open-AudIT 2.1 - CSV Macro Injection Vulnerability Google Dork: N/A Date: 21-04-2018 Exploit Author: Sureshbabu Narvaneni Author Blog : http://nullnews.in Vendor Homepage: https://opmantek.com Software Link: https://www.open-audit.org/downloads.php Affected Version: 2.1...

6.8CVSS6.7AI score0.02839EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2018/04/23 12:0 a.m.28 views

openSUSE Security Update : chromium (openSUSE-2018-381)

This update for Chromium to version 66.0.3359.117 fixes the following issues : Security issues fixed boo1090000 : - CVE-2018-6085: Use after free in Disk Cache - CVE-2018-6086: Use after free in Disk Cache - CVE-2018-6087: Use after free in WebAssembly - CVE-2018-6088: Use after free in PDFium -...

8.8CVSS6.9AI score0.09186EPSS
Exploits3References35
CNVD
CNVD
added 2018/04/19 12:0 a.m.2 views

Open-AudIT CSV Injection Vulnerability

Open-AudIT is a network discovery and auditing program. The program intelligently scans networks and network devices and provides status reports. A security vulnerability exists in the export function in versions prior to Open-AudIT 2.2. An attacker can exploit the vulnerability to inject Windows...

6.8CVSS6.8AI score0.02839EPSS
Exploits5References1
Drupal
Drupal
added 2018/04/18 12:0 a.m.19 views

Menu Import and Export - Critical - Access bypass - SA-CONTRIB-2018-018

This module helps in exporting and importing Menu Items via the administrative interface. The module does not properly restrict access to administrative pages, allowing anonymous users to export and import menu links. There is no mitigation for this vulnerability...

6.6AI score
Exploits0References6
Kitploit
Kitploit
added 2018/04/16 8:23 p.m.22 views

Hashtopolis - A Hashcat Wrapper For Distributed Hashcracking

Hashtopolis is a multi-platform client-server tool for distributing hashcat tasks to multiple computers. The main goals for Hashtopolis's development are portability, robustness, multi-user support, and multiple groups management. The application has two parts: Agent Multiple clients C, Python,...

7.2AI score
Exploits0References2
OSV
OSV
added 2018/04/16 7:29 p.m.3 views

CVE-2016-9094

Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. Prior to 14.0 MP1 and 12.1 RU6 MP7, the potential exists for file...

7.8CVSS5.8AI score0.01324EPSS
Exploits0References3
CNVD
CNVD
added 2018/04/16 12:0 a.m.5 views

Convert Forms CSV Injection Vulnerability in Joomla!

Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS. A CSV injection vulnerability exists in Joomla! Convert Forms 2.0.3 and earlier versions. When a user with elevated privileges exports form data in CSV format, an attacker can explo...

7.8CVSS7.3AI score0.09568EPSS
Exploits5References1
OSV
OSV
added 2018/04/12 7:29 p.m.4 views

CVE-2018-10063

The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file...

7.8CVSS5.8AI score0.09568EPSS
Exploits5References3
Rows per page
Query Builder