CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm•added 2015/06/12 12:0 a.m.•37 views

D-Link DSP-W110 Command Execution / SQL Injection / File Upload

D-Link DSP-W110 - multiple vulnerabilities ---- Discovered by: ---- Peter Adkins ---- Access: ---- Local network; unauthenticated access. ---- Tracking and identifiers: ---- CVE - None allocated. ---- Platforms / Firmware confirmed affected: ---- D-Link DSP-W110 Rev A - v1.05b01 ---- Notes: ----...

7.4AI score

Kitploit•added 2015/01/12 5:37 p.m.•31 views

Hyperfox - HTTP and HTTPs Traffic Interceptor

Hyperfox is a security tool for proxying and recording HTTP and HTTPs communications on a LAN. Hyperfox is capable of forging SSL certificates on the fly using a root CA certificate and its corresponding key both provided by the user. If the target machine recognizes the root CA as trusted, then...

7.3AI score

Kitploit•added 2014/01/14 4:39 a.m.•23 views

[Xplico 1.1.0] Open Source Network Forensic Analysis Tool (NFAT)

The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email POP, IMAP, and SMTP protocols, all HTTP contents, each VoIP call SIP, FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is ...

Kitploit•added 2013/12/31 10:8 p.m.•237 views

[Ghost Phisher v1.5] GUI suite for phishing and penetration attacks

Ghost Phisher is an application of security which comes built-in with a fake DNS server ,DHCP server fake, fake HTTP Server and also has a space for the automatic capture and recording credentials HTTP method of the form to a database. The program could be used for on-demand service of DHCP, DNS,...

7.5AI score

Kitploit•added 2013/11/25 4:59 p.m.•16 views

[Cansina] Web Content Discovery Application

It takes general available lists of common path and files used by web applications and make URL requests looking back to the server response code. Cansina stores the information in a sqlite database omitting 404 responses. One for every new url think this as a kind of projects feature and the sam...

Kitploit•added 2013/08/21 12:41 a.m.•11 views

[Introspy] Monitor app in your iDevice

The Problem In 2013, assessing the security of iOS applications still involves a lot of manual, time-consuming tasks - especially when performing a black-box assessment. Without access to source code, a comprehensive review of these application currently requires in-depth knowledge of various API...

Exploit DB•added 2013/07/15 12:0 a.m.•28 views

Exploits0References3

ReadyMedia - Remote Heap Buffer Overflow

source: https://www.securityfocus.com/bid/61282/info ReadyMedia is prone to a remote heap-based buffer-overflow vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service...

7.4AI score

Kitploit•added 2013/05/07 4:29 a.m.•26 views

[SpiderFoot v2.0] The Open Source Footprinting tool

SpiderFoot is a free, open-source footprinting tool, enabling you to perform various scans against a given domain name in order to obtain information such as sub-domains, e-mail addresses, owned netblocks, web server versions and so on. The main objective of SpiderFoot is to automate the...

6.8AI score

Kitploit•added 2013/04/06 1:37 p.m.•319 views

[Ghost Phisher] GUI suite for phishing and penetration attacks

Ghost Phisher is a Wireless and Ethernet security auditing and attack software program written using the Python Programming Language and the Python Qt GUI library, the program is able to emulate access points and deploy various internal networking servers for networking, penetration testing and...

7.5AI score

Exploit DB•added 2013/01/11 12:0 a.m.•575 views

PHPLiteAdmin 1.9.3 - Remote PHP Code Injection

Exploit Title: phpliteadmin phpliteadmin.php1785: 'When you create a new database, the name you entered will be appended with the appropriate file extension .db, .db3, .sqlite, etc. if you do not include it yourself. The database will be created in the directory you specified as the $directory...

Packet Storm•added 2013/01/11 12:0 a.m.•42 views

PHP Lite Admin 1.9.3 Code Injection

exploitpack•added 2013/01/11 12:0 a.m.•87 views

PHPLiteAdmin 1.9.3 - Remote PHP Code Injection

PHPLiteAdmin 1.9.3 - Remote PHP Code Injection Exploit Title: phpliteadmin phpliteadmin.php1785: 'When you create a new database, the name you entered will be appended with the appropriate file extension .db, .db3, .sqlite, etc. if you do not include it yourself. The database will be created in t...

0.1AI score

Vulnerability Lab•added 2012/06/04 12:0 a.m.•19 views

Cells Blog CMS v1.1 - Multiple Web Vulnerabilities

Document Title: =============== Cells Blog CMS v1.1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=591 Release Date: ============= 2012-06-04 Vulnerability Laboratory ID VL-ID: ==================================== 591 Comm...

7.1AI score

exploitpack•added 2012/04/23 12:0 a.m.•15 views

Havalite CMS 1.0.4 - Multiple Vulnerabilities

Havalite CMS 1.0.4 - Multiple Vulnerabilities Title: ====== Havalite CMS v1.0.4 - Multiple Web Vulnerabilities Date: ===== 2012-04-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=520 VL-ID: ===== 520 Introduction: ============= Havalite, a lightweight, open source CM...

0.5AI score

0day.today•added 2011/12/01 12:0 a.m.•21 views

Muster Render Farm Management System Arbitrary File Download

Exploit for php platform in category web applications Name: Muster Render Farm Management System Arbitrary File Download Vendor Website : http://www.vvertex.com/muster.html Date Released : November 29, 2011 Affected Software : Muster 6.20 Researcher : Nick Freeman email protected Description...

7.1AI score