Facebook - Instagram Business Access Token Demo PoC

Document Title: =============== Facebook - Instagram Business Access Token Demo PoC References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2153 View: https://www.youtube.com/watch?v=4Obsd1Qw7uU News & Press:...

MediaTek Wireless Utility rt2870 Denial Of Service

Exploit Title: MediaTek Wirless Utility rt2870 - Denial of Service PoC Autor: Lawrence Amer Date: 2018-09-13 Vendor: MediaTek Software url: https://click.pstmrk.it/2ts/d86o2zu8ugzlg.cloudfront.net%2Fmediatek-craft%2Fdrivers%2FRT27702870RT307x.zip/K94pHAI/oTs1/oC6CdN114w Tested on OS: Windows 7...

MediaTek Wirless Utility rt2870 - Denial of Service (PoC)

Exploit Title: MediaTek Wirless Utility rt2870 - Denial of Service PoC Autor: Lawrence Amer Date: 2018-09-13 Vendor: MediaTek Software url: https://click.pstmrk.it/2ts/d86o2zu8ugzlg.cloudfront.net%2Fmediatek-craft%2Fdrivers%2FRT27702870RT307x.zip/K94pHAI/oTs1/oC6CdN114w Tested on OS: Windows 7...

Ebay Inc - CSRF Exploitation PoC of User Data Delete

Document Title: =============== Ebay Inc - CSRF Exploitation PoC of User Data Delete References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2053 Video: https://www.youtube.com/watch?v=KUenuqImsBs Release Date: ============= 2018-07-06 Vulnerability Laboratory ID VL-ID:...

Microsoft MSDN - Cross Site Request Forgery Vulnerability

Document Title: =============== Microsoft MSDN - Cross Site Request Forgery Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2125 View Video: https://www.youtube.com/watch?v=xgKYZ4u-6lc Release Date: ============= 2018-06-11 Vulnerability Laboratory ID...

Microsoft MSDN - Cross Site Request Forgery Vulnerability

Document Title: =============== Microsoft MSDN - Cross Site Request Forgery Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2125 View Video: https://www.youtube.com/watch?v=xgKYZ4u-6lc Release Date: ============= 2018-06-10 Vulnerability Laboratory ID...

ExpressionEngine: XML Member Proccessing - Local File inclusion Vulnerability

@lawrenceamer discovered a local file inclusion vulnerability that logged in users with access to the control panel and permission to access developer utilities may be able to exploit. @lawrenceamer gave a detailed report with step-by-step instructions for replicating and screen captures of a the...

netek 0.8.2 - Denial of Service

Exploit Title : netek 0.8.2 FTP Denial of Service Test on : windowsXPs3 + windows 7 software Link :https://sourceforge.net/projects/netek.berlios/ version : 0.8.2 author : Lawrence Amer site : lawrenceamer.me affected product uses default port 30817 , it can be chnaged also !/bin/python import...

Play TV 1.25.1 Build r123776 DLL Hijacking

Document Title: =============== Play TV v1.25.1Build r123776 - DLL Hijack Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2085 Release Date: ============= 2017-09-04 Vulnerability Laboratory ID VL-ID: ====================================...

Play TV v1.25.1(Build r123776) - DLL Hijack Vulnerability

Document Title: =============== Play TV v1.25.1Build r123776 - DLL Hijack Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2085 Release Date: ============= 2017-09-03 Vulnerability Laboratory ID VL-ID: ====================================...

ProjectSend r754 - Insecure Direct Object Reference

Document Title: =============== ProjectSend r754 - IDOR & Authentication Bypass Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2031 Release Date: ============= 2017-02-21 Vulnerability Laboratory ID VL-ID:...

Trend Micro DirectPass - Bypass & Persistent Vulnerability

Document Title: =============== Trend Micro DirectPass - Bypass & Persistent Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=1986 Video: https://www.youtube.com/watch?v=NImym71f3Bc Release Date: ============= 2016-10-17 Vulnerability Laboratory ID VL-ID:...

Kaspersky - File Manager Cross Site Scripting Vulnerability

Document Title: =============== Kaspersky - File Manager Cross Site Scripting Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id= Video: https://www.youtube.com/watch?v=vFQRHTBrx0 Advisory: https://www.vulnerability-lab.com/getcontent.php?id=1924 Release Dat...

Kaspersky - Response Subject Persistent XSS Vulnerability

Document Title: =============== Kaspersky - Response Subject Persistent XSS Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=1977 Video: https://www.youtube.com/watch?v=TDsZUEDYvks Advisory: https://www.vulnerability-lab.com/getcontent.php?id=1934 Release...

tinyshell - Python Client with PHP Shell

python Client with php shell , allows to connect and send commands over current protocol using POST and GET Requests Features 1. connect with direct session with no need for reverse connection . 2. support password protection . 3. can be binded to any file with no damage . 4. using GET/POST reque...

CareMonkey - Reset Password Token Remote Vulnerability

Document Title: =============== CareMonkey - Reset Password Token Remote Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1926 Video: https://www.youtube.com/watch?v=cnwmQAUI7ik Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1873 Release Date:...