Bolt CMS 3.6.10 - Cross-Site Request Forgery

Bolt CMS 3.6.10 - Cross-Site Request Forgery Exploit Title: Bolt CMS 3.6.10 - Cross-Site Request Forgery Date: 2019-10-15 Exploit Author: r3m0t3nu11Zero-Way Vendor Homepage: https://bolt.cm/ Software Link: https://bolt.cm/ Version: up to date and 6.5 Tested on: Linux CVE : CVE-2019-1759 last...

Free MP3 CD Ripper 2.6 2.8 - '.wav' File Buffer Overflow (SEH)

!/usr/bin/env perl original p0c https://www.exploit-db.com/exploits/36465/ credit to TUNISIAN CYBER however he was attemping to vanilla buffer overflow in fact it is SEH based exploit using the address 0x7C9D30D7 is limit the targets which I assume belongs to OS file didn't work on win7 yes he di...

Tenda A5s Router 3.02.05_CN - Authentication Bypass

Tenda A5s Router 3.02.05CN - Authentication Bypass ----------------------------------------------------------------------- Tenda A5s Router Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : zixian Mail : [email protected] Date : Aug,...

Tenda A5s Router Authentication Bypass

----------------------------------------------------------------------- Tenda A5s Router Authentication Bypass Vulnerability ----------------------------------------------------------------------- Author : zixian Mail : [email protected] Date : Aug, 17-2014 Vendor : http://tenda.com.cn/ Link :...

CubeCart 3.0.6 - CSRF Vulnerability (Add Admin)

No description provided by source. Title : CubeCart 3.0.4 = CSRF Add Admin Script : CubeCart 3.0.4 Language : Php Download : http://www.cubecart.com/ Date : 2010/12/24 Version : 3.0.4 Dork : Powered by CubeCart 3.0.4 Found : by P0C T34M tnt-r00t Homepage : www.p0c.cc form name=p0c...

yogurt 0.3 (xss/SQL Injection) Multiple Vulnerabilities

No description provided by source. -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Name : Yogurt Site :...

Joomla Component (com_elite_experts) SQL Injection Vulnerability

No description provided by source. +Title Joomla Component comeliteexperts SQL Injection Vulnerability +Author RoAdKiLlEr +Contact RoAdKiLlEratKhg-CrewdotWs +Tested on Win Xp Sp 2/3 --------------------------------------------------------------------------- Founded by RoAdKiLlEr Team: Albanian...

PHP Gamepage SQL Injection Vulnerability

No description provided by source. , | ,---. , . |---. ,---. ,---. ,---. ,---. ,---. , . , | --- | | | | | |---' | | | |---' | | | | ---' ---| ---' ---' ---' ---' ------ ---' V PHP Gamepage SQL Injection Vulnerability --== Author ==-- + Author : v4lc0m87 + Contact : valcom87atgmaildotcom + Group ...

justVisual 2.0 (index.php) <= LFI Vulnerability

No description provided by source. justVisual 2.0 index.php = LFI Vulnerability +Title: justVisual 2.0 index.php Local File Vulnerability +Version: 2.0 +License: http://www.gnu.org/copyleft/gpl.html +Download: http://fh54.de/justVisual/packages/justVisual2.zip +Risk: Medium +Local: Yes -Remote: N...

Doodle4Gift - Multiple Vulnerabilities

No description provided by source. Exploit Title : Doodle4Gift = Multiple Vulnerabilities Author : Dr.NaNo Date : H-1435/3/18 - 2014/1/19 Software Link : http://www.hotscripts.com/listing/doodle4gift/ Software Link2: https://sites.google.com/site/doodle4gift/ 1 Cross Site Scripting XSS:...

Member ID The Fish Index PHP SQL Injection Vulnerability

No description provided by source. , | ,---. , . |---. ,---. ,---. ,---. ,---. ,---. , . , | --- | | | | | |---' | | | |---' | | | | ---' ---| ---' ---' ---' ---' ------ ---' V Member ID The Fish Index PHP SQL Injection Vulnerability --== Author ==-- + Author : v4lc0m87 + Contact :...

kesako script SQL Injection Vulnerability

Exploit for php platform in category web applications kesako script SQL Injection =================================================================== .:. Exploit Title : kesako Script Sql Injection .:. Author : Microsoft-dz .:. Contact : email protected .:. Dork : intext:powered by kesako...

Wordpress EEMP plugin SQL Injection Vulnerability

Exploit for php platform in category web applications ================================================================================ +++++++++++++++++ ++ C L O U D X ++ +++++++++++++++++ ================================================================================ Exploit Title : Wordpress...

phpShop 2.0 - SQL Injection

phpShop 2.0 - SQL Injection Exploit Title : phpshop 2.0 SQL Injection Vulnerability Author : By onestree Software Link : http://code.google.com/p/phpshop/downloads/list tested : windows 7 / ubuntu Dork : inurl:"tanyakan pada rumput yang bergoyang" SQLi p0c: ==================...

Tinymcpuk 0.3 Cross Site Scripting Vulnerability

Tinymcpuk version 0.3 suffers from a cross site scripting vulnerability. Exploit Title: tinymcpuk xss vulnerability Google Dork: n/a Date: 1/12/2012 GMT+7 Exploit Author: eidelweiss @randyarios Vendor Homepage: http://sourceforge.net/projects/p4a/files/tinymcpuk/ Software Link:...

XM Forum - search.asp SQL Injection

XM Forum - search.asp SQL Injection source: https://www.securityfocus.com/bid/55299/info XM Forum is prone to an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Joomla Joomgalaxy 1.2.0.4 Shell Upload / SQL Injection

Exploit Title: Joomla joomgalaxy 1.2.0.4 Multiple Vulnerabilites dork: inurl:comjoomgalaxy Date: 01-08-2012 Author: Daniel Barragan "D4NB4R" Twitter: @D4NB4R site: http://poisonsecurity.wordpress.com/ Vendor: http://www.joomgalaxy.com/ Version: 1.2.0.4 last update on Jul 27, 2012 License:...

Booklight SQL Injection

Exploit Title: Booklight SQL Injection Vulnerabilities Google Dork: "by Booklight Inc" Date: 2012/04/29 Category : Web Application Author: BHG Security Center Discovered by : Nitrojen90 WebSite : black-hg.org Software Link: http://booklightinc.com/ Version: Last Version Security Risk::High Tested...

Joomla! Component com_bearleague - SQL Injection

Exploit Title: joomla component combearleague SQL injection Vulnerability Date: 10/04/2012 Author: xDarkSton3x E-mail : [email protected] Category:: webapps Google dork: inurl:combearleague Vendor: http://beardev.com/component/joobb/topic/220-BearLeagueforSnookerorindividualSports.html Tested o...

Joomla component (com_lqm) SQL injection Vulnerability

Exploit for php platform in category web applications Exploit Title: joomla component comlqm SQL injection Vulnerability Developer: Not Registered Date: 10/04/2012 Author: xDarkSton3x E-mail : email protected Category: webapps Google dork: inurl:"index.php?option=comlqm" Example Sites :...