3100 matches found
Joomla! Component AYS Quiz 1.0 - 'id' SQL Injection
Exploit Title: Joomla! Component AYS Quiz v1.0 - SQL Injection Google Dork: inurl:index.php?option=comaysquiz Date: 04.03.2017 Vendor Homepage: http://ays-pro.com/ Software Buy: https://extensions.joomla.org/extensions/extension/living/education-a-culture/ays-quiz/ Demo:...
Google Chrome - layout Out-of-Bounds Read Vulnerability
Exploit for multiple platform in category dos / poc content contain: size layout; function leak document.execCommand"selectAll"; opt.text = ""; aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa 0day.today 2018-03-20...
xercms \XerCMS\Services\admin\member.php the background file contains any SQL statement execution vulnerability
In the D:\phpStudy\WWW\xercms\XerCMS\Services\admin\forms. in php updateTemplate()function function updateTemplate $sname = g'sname';$data = stripslashesp'content'; fileputcontentsINC.' Data/forms/template/'.$ sname.'. htm',$data; $this-tips'finish',dreferer; You can see fileputcontentsINC.'...
Viavi Movie Review - 'id' SQL Injection
Exploit Title: Viavi Movie Review - SQL Injection Google Dork: N/A Date: 12.02.2017 Vendor Homepage: http://viavilab.com/ Software Buy: https://codecanyon.net/item/movie-review/12729570 Demo: http://viavilab.com/codecanyon/moviereviewdemo/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Exploit...
Gram Post 1.0 - SQL Injection
Gram Post 1.0 - SQL Injection Exploit Title: Gram Post - Instagram Auto Post Multi Accounts with Paypal integration v1.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy:...
POSNIC 1.03 Shell Upload Exploit
POSNIC version 1.03 suffers from a remote shell upload vulnerability. 0 echo "Return Code: " . $FILES"file""error" . ""; else $upload = $FILES"file""name"; $type = $FILES"file""type"; if fileexists"upload/" . $FILES"file""name" unlink$upload; $name = $FILES"file""name";...
Funny Image And Video Script 2.0.0 SQL Injection
Exploit Title: Flippy ChillOut a Funny Image and Video Script v2.0.0 - SQL Injection Google Dork: N/A Date: 06.02.2017 Vendor Homepage: https://www.flippyscripts.com/ Software Buy: https://www.flippyscripts.com/flippy-chillout-funny-image-and-video-script/ Demo: http://chillout.flippydemos.com/...
ThisIsWhyImBroke Clone Script 4.0 - id SQL Injection
ThisIsWhyImBroke Clone Script 4.0 - id SQL Injection Exploit Title: Flippy AffilatePlatform – ThisIsWhyImBroke Clone Script v4.0 - SQL Injection Google Dork: N/A Date: 06.02.2017 Vendor Homepage: https://www.flippyscripts.com/ Software Buy:...
iScripts EasyCreate 3.2 - 'siteid' SQL Injection
Exploit Title: iScripts EasyCreate v3.2 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/easycreate/ Demo: http://www.demo.iscripts.com/easycreate/demo// Version: 3.2 Tested on: Win7 x64, Kali Linux x64 Exploi...
Alstrasoft Flippa Clone MarketPlace Script 4.10 - Cross-Site Request Forgery (Add Admin)
Alstrasoft Flippa Clone MarketPlace Script 4.10 - Cross-Site Request Forgery Add Admin Exploit Title: AlstraSoft Flippa Clone MarketPlace v4.10 Script - Cross-Site Request Forgery Add Admin Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.alstrasoft.com/ Software Buy:...
WordPress 4.7.04.7.1 - Content Injection (Python)
WordPress 4.7.04.7.1 - Content Injection Python 2017 - @leonjza Wordpress 4.7.0/4.7.1 Unauthenticated Content Injection PoC Full bug description: https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html Usage example: List available posts: $ python inject.py...
Netman 204 - Backdoor Account Password Reset
Netman 204 - Backdoor Account Password Reset Exploit Title: Netman 204 Backdoor and weak password recovery function Google Dork: intitle:"Netman 204 login" Date: 31st Jan 2017 Exploit Author: Simon Gurney Vendor Homepage: blog.synack.co.uk Software Link:...
Malware exploit: Cythosia
Type: Stored XSS and iFrame redirect Click add task Command: IFRAME SRC="whateverekorlemonpartyorwhatnot.com" /IFRAME Then Click Create Task Finally click Tasks. VOILA! Credits to asterea for finding this botnet panel...
Itech Movie Portal Script 7.35 - SQL Injection
Vulnerability: Movie Portal Script v7.35 - SQL Injection Web Vulnerability Google Dork: Movie Portal Script Date:11.01.2017 Vendor Homepage: http://itechscripts.com/movie-portal-script/ Script Name: Movie Portal Script Script Version: v7.35 Script Buy Now:...
Freepbx 2.11.1.5 - Remote Code Execution
Freepbx 2.11.1.5 - Remote Code Execution Exploit Title: Freepbx coockie recordings injection Google Dork: Ask Santa Date: 23/12/2016 Exploit Author: inj3ctor3 Vendor Homepage: https://www.freepbx.org/ Software Link: ISO LINKS IN SITE https://www.freepbx.org/ Version: ALL && unpatched/...
ConQuest DICOM Server 1.4.17d - Stack Buffer Overflow Exploit
Exploit for windows platform in category dos / poc !/usr/bin/env python -- coding: utf8 -- ConQuest DICOM Server 1.4.17d Remote Stack Buffer Overflow RCE Vendor: University of Manchester. Developed by Marcel van Herk, Lambert Zijp and Jan Meinders. The Netherlands Cancer Institute Product web pag...
ZX_CSV Upload 1 – Authenticated SQL Injection
Type user access: admin user. $GET‘id’ is not escaped. URL is accessible for every registered user. 1 – Login with admin user. 2 - Send request post:...
WP Support Plus Responsive Ticket System < 8.0.0 – Authenticated SQL Injection
Type user access: any user. $POST‘catid’ is not escaped. Is accessible for any user...
Exploit for Improper Input Validation in Openbsd Openssh
OpenSSH remote DOS !Docker Pullshttps://img.shields.io/doc...
Google Android - Inter-Process munmap with User-Controlled Size in android.graphics.Bitmap
Google Android - Inter-Process munmap with User-Controlled Size in android.graphics.Bitmap Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=928 Bitmap objects can be passed between processes by flattening them to a Parcel in one process and un-flattening them in another. In order...