10 matches found
ZeroShell 3.9.0 - Remote Command Execution
Exploit Title: ZeroShell 3.9.0 - Remote Command Execution Date: 10/05/2021 Exploit Author: Fellipe Oliveira Vendor Homepage: https://zeroshell.org/ Software Link: https://zeroshell.org/download/ Version: 3.9.0 Tested on: ZeroShell 3.9.0 CVE : CVE-2019-12725 !/usr/bin/python3 import requests impor...
Phoenix Contact WebVisit 2985725 - Authentication Bypass
Phoenix Contact WebVisit 2985725 - Authentication Bypass Exploit Title: Phoenix Contact WebVisit 2985725 - Authentication Bypass Date: 2018-09-30 Exploit Author: Deneut Tijl Vendor Homepage: www.phoenixcontact.com Software Link:...
Cross site scripting
Cross-site scripting XSS vulnerability in the httpError method in sapphire/core/control/RequestHandler.php in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4, when custom error handling is not used, allows remote attackers to inject arbitrary web script or HTML via "missing URL actions."...
CVE-2010-4823
Cross-site scripting XSS vulnerability in the httpError method in sapphire/core/control/RequestHandler.php in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4, when custom error handling is not used, allows remote attackers to inject arbitrary web script or HTML via "missing URL actions."...
Peel E-Commerce / Shopping SQL Injection
!/usr/bin/python This was written for educational purpose and pentest only. Use it at your own risk. Author will be not responsible for any damage! !!! Special greetz for my friend sinner01 !!! Toolname : peelinject.py Coder : baltazar a.k.a b4ltazar Version : 0.1 greetz for d3hydr8, rsauron,...
PHP Hosting Directory 2.0 - Database Disclosure (Python)
PHP Hosting Directory 2.0 - Database Disclosure Python !/usr/bin/env python -- coding:cp1254 -- ''' Title : PHP Hosting Directory 2.0 Database Disclosure Exploit .py Author : ZoRLu / http://inj3ct0r.com/author/577 mail-msn : [email protected] Down. Script : - Proof :...
xWeblog 2.2 SQL Injection
!/usr/bin/env python -- coding:utf-8 -- ''' 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit Database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site :...
Bka Haber 1.0 (Tr) - File Disclosure
Bka Haber 1.0 Tr - File Disclosure !/usr/bin/env python -- coding:cp1254 -- ''' Title : Bka Haber v1.0 Tr File Disclosure Exploit .py Desc. : its not Database Down. Script : http://www.scriptci.com/modules.php?name=Downloads&dop=getit&lid=475 Proof :...
Esa V 2.0 (kategori.php Kategori_x) SQL Injection Exploit (.py)
Exploit for php platform in category web applications =============================================================== Esa V 2.0 kategori.php Kategorix SQL Injection Exploit .py =============================================================== !/usr/bin/env python -- coding:cp1254 -- Esa V 2.0...
WBB Plugin rGallery 1.09 (itemID) Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================= WBB Plugin rGallery 1.09 itemID Blind SQL Injection Exploit ============================================================= import sys, urllib2, re print "\n " print " \'/ " print...