EuroTel ETL3100 - Transmitter Authorization Bypass (IDOR) Vulnerability

Exploit Title: EuroTel ETL3100 - Transmitter Authorization Bypass IDOR Exploit Author: LiquidWorm Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page: https://www.eurotel.it | https://www.siel.fm Affected version: v01c01 Microprocessor: socs0t10/ats01s01, Model: ETL3100...

EuroTel ETL3100 Transmitter Information Disclosure

EuroTel ETL3100 Transmitter Unauthenticated Config/Log Download Vulnerability Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page: https://www.eurotel.it | https://www.siel.fm Affected version: v01c01 Microprocessor: socs0t10/ats01s01, Model: ETL3100 Exciter v01x37...

EuroTel ETL3100 Transmitter Default Credentials Vulnerability

EuroTel ETL3100 transmitters use a weak set of default administrative credentials that can be guessed in remote password attacks and gain full control of the system. EuroTel ETL3100 Transmitter Default Credentials Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page:...

WSN Links Script 2.3.4 - SQL Injection Vulnerabilitiy

No description provided by source. Exploit Title: WSN Links Script SQL Injection Vulnerabilitiy Google Dork: Powered by WSN Links Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://scripts.webmastersite.net/wsnlinks Version: All...

CVE-2013-2162

Race condition in the post-installation script mysql-server-5.5.postinst for MySQL Server 5.5 for Debian GNU/Linux and Ubuntu Linux creates a configuration file with world-readable permissions before restricting the permissions, which allows local users to read the file and obtain sensitive...

MyBB Games Cross Site Scripting

Exploit Title :Mybb Games xss Vul Author : DarkSnipper ,Dream.Killer & Soulinj3ctor Discovered By : [email protected] Home : http://cybercoders.org Link : http://mods.mybb.com/view/game-section Security Risk : High Version : All Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork :...

WordPress Gallery 3.8.3 Arbitrary File Read

​ Exploit Title : Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Author : IrIsT.Ir Discovered By : BeniVanda Home : http://IrIsT.Ir/forum/ Software Link : http://wordpress.org/extend/plugins/gallery-plugin/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu ...

Phuse Web / Element C2 / Cox Web Design SQL Injection

Exploit Title : Phuse Web Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.phusewebdesign.co.uk/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:"Site by Phuse W...

Wordpress 3.4 Cross-Site Scripting Vulnerability

a bug in Wordpress 3.4 that allows to us to occur a Cross-Site Scripting on a Remote machin. Exploit Title : Wordpress 3.4 Cross-Site Scripting Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum/ Software Link : http://wordpress.org Security Risk : High Version : Al...

Vbulletin (blog_plugin_useradmin) v4.1.12 Sql Injection Vulnerability

a bug in Vbulletin blogpluginuseradmin v4.1.12 that allows to us to occur a Sql Injection on a Remote machin. Exploit Title : Vbulletin blogpluginuseradmin v4.1.12 Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link :...

Whereincity Cross Site Scripting

Exploit Title : Whereincity Cms Cross-Site Scripting Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum/ Software Link : http://Whereincity.com Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:"India Guide...

EasyWebTime – SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title : EasyWebTime – SQL Injection Vulnerability Author : IrIsT.Ir Discovered By : BestC0d3r Email : BestC0d3ratYahoodotcom Home : http://IrIsT.Ir Software Link : http://www.easywebtime.com Security Risk : High Version : All Version...

vBulletin 4.1.12 SQL Injection

?? Exploit Title : Vbulletin blogpluginuseradmin v4.1.12 Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.Vbulletin.com/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork :...

Avcmedia CMS SQL Injection

Exploit Title : avcmedia Cms Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.avcmedia.com Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:" Developed and hosted...

Mh1WebDesign CMS SQL Injection

Exploit Title : mh1webdesign Cms Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.mh1webdesign.com/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:"Site by MH1...

NewWard CMS SQL Injection

Exploit Title : NewWard Cms Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.newward.com/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:"Web Site Design by...

Keralainfotech CMS SQL Injection

Exploit Title: Keralainfotech CMS sql injection Google Dork: "Powered by Keralainfotech.com" Date: 9/7/2012 Author: Ajax Security Team Discovered By: Crim3R Home: WwW.AjaxTm.CoM Vendor Software: http://keralainfotech.com/ Version: All Version Category:: webapps Tested on: GNU/Linux Ubuntu - Windo...

EasyWebTime V.2007 CMS SQL Injection

Exploit Title: EasyWebTime V.2007 CMS sql injection Google Dork: "Powered by EasyWebTime V.2007" Date: 9/7/2012 Author: Ajax Security Team Discovered By: Crim3R Home: WwW.AjaxTm.CoM Vendor Software: http://www.bizpotential.com/main.php?filename=easywebtime Version: All Version Category:: webapps...

Globi CMS SQL Injection

Exploit Title: globi CMS SQL Injection Vulnerability Google Dork: "Powered by globi" Date: 9/7/2012 Author: Ajax Security Team Discovered By: Crim3R Home: WwW.AjaxTm.CoM Vendor Software: http://www.globi.ca/ Version: All Version Category:: webapps Tested on: GNU/Linux Ubuntu - Windows Server - wi...

Essential Website Design CMS SQL Injection

Exploit Title : essentialwebsitedesign Cms Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.essentialwebsitedesign.net Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork :...