271 matches found
TV B Gone Kit - New Universal Device Case
Document Title: =============== TV B Gone Kit - New Universal Device Case References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2172 Download: https://www.vulnerability-lab.com/resources/documents/TVBGoneKitSTL.zip Informativ: https://learn.adafruit.com/tv-b-gone-kit/overvie...
Malcom - Malware Communications Analyzer
Malcom is a tool designed to analyze a system's network communication using graphical representations of network traffic, and cross-reference them with known malware sources. This comes handy when analyzing how certain malware species try to communicate with the outside world. What is Malcom?...
[SECURITY] Fedora 28 Update: ghc-hakyll-4.10.0.0-3.fc28
Hakyll is a static website compiler library. It provides you with the tools to create a simple or advanced static website using a Haskell DSL and formats such as markdown or RST. You can find more information, including a tutorial, on the website:...
[SECURITY] Fedora 28 Update: botan2-2.7.0-1.fc28
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
Node.js third-party modules: Privilage escalation with malicious .npmrc
Hello. I'm forwarding to you my conversation with npm staff regarding security issue. It allows to escalate to root privilages of victim using either: a basic social engineering - convincing victim to run npm in attacker-controlled folder eg. repository, including such innocent ones like "npm hel...
ezsniper.com XSS vulnerability
Open Bug Bounty ID: OBB-610532 Description| Value ---|--- Affected Website:| ezsniper.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Nessus plug-in“arms”tutorial-vulnerability warning-the black bar safety net
! Overview In a recent internal penetration test, we need to use a Java two-stage deserialization vulnerability. In this article, we will tell you how to transform the Nessus plugin, because the plugin was originally only the use of an existing RCE vulnerability, but we will teach you how to...
[SECURITY] Fedora 27 Update: osc-0.162.1-230.1.1.fc27
Commandline client for the Open Build Service. See http://en.opensuse.org/openSUSE:OSC , as well as http://en.opensuse.org/openSUSE:BuildServiceTutorial for a general introduction...
CVE-2017-17904
FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the editprofilefirstname parameter to user/editprofile...
Command injection
FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the editprofilefirstname parameter to user/editprofile...
FS Lynda Clone Cross-Site Scripting Vulnerability
FS Lynda Clone is a video tutorial software developed with jQuery, PHP and MySQL. A cross-site scripting vulnerability exists in FS Lynda Clone. The vulnerability can be exploited to conduct cross-site scripting attacks via the keywords parameter of tutorial/ or the editprofilefirstname parameter...
FS Lynda Clone Cross-Site Request Forgery Vulnerability
FS Lynda Clone is a video tutorial software developed with jQuery, PHP and MySQL. FS Lynda Clone suffers from a cross-site request forgery vulnerability. An attacker can exploit this vulnerability to conduct cross-site request forgery attacks via user/editprofile...
FS Lynda Clone SQL Injection Vulnerability
FS Lynda Clone is a set of scripts for video learning websites written using the PHP Codelgniter framework. A SQL injection vulnerability exists in FS Lynda Clone version 1.0. A remote attacker can exploit the vulnerability by sending the 'keywords' parameter to tutorial/ to inject SQL commands...
CVE-2017-17643
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/...
CVE-2017-17643
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/...
[SECURITY] Fedora 27 Update: botan-1.10.17-1.fc27
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
Evil-Droid - Framework to Create, Generate & Embed APK Payloads
Evil-Droid is a framework that create & generate & embed apk payload to penetrate android platforms. Screenshot: Dependencies : 1 - metasploit-framework 2 - xterm 3 - Zenity 4 - Aapt 5 - Apktool 6 - Zipalign Download/Config/Usage: 1 - Download the tool from github git clone...
SQLiv - Massive SQL Injection Vulnerability Scanner
Massive SQL injection vulnerability scanner. Features 1. multiple domain scanning with SQL injection dork by Bing, Google, or Yahoo 2. targetted scanning by providing specific domain with crawling 3. reverse domain scanning both SQLi scanning and domain info checking are done in multiprocessing s...
[SECURITY] Fedora 25 Update: botan-1.10.17-1.fc25
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
FS Lynda Clone - category SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: FS Lynda Clone - SQL Injection Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/lynda-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6...