WP Hotel Booking < 2.0.9 - Contributor+ Arbitrary Post Deletion

Description The plugin does not have proper authorisation when deleting a package, allowing Contributor and above roles to delete posts that do no belong to them Run the below command in the developer console of the web browser while being on the blog as a Contributor user. This will put the post...

Exploit for Files or Directories Accessible to External Parties in Glpi-Project Glpi

GLPwn A GLPI hack tool, using Apache directory listing and /...

New 'Nice Pack' Exploit Kit Found, Thousands of Owned Sites Redirecting Users to Attack Site

A new exploit pack has appeared on the scene in the last week or so and it already is causing trouble for users, with thousands of compromised Web sites redirecting users to a page that is hosting the pack and exploiting vulnerabilities on their machines to install malware. The attackers behind t...

Text Lines Rearrange Script (filename) File Disclosure Vulnerability

No description provided by source. + Text Lines Rearrange Script download.php filename File Disclosure Vulnerability + Discovered By SirGod + Visit : www.h4cky0u.org + Greetz : All my friends + File Disclosure Vulnerability Vulnerable Code in download.php :...