41207 matches found
INFOMARK IMW-C920W MiniUPnPd 1.0 - Denial of Service
INFOMARK IMW-C920W MiniUPnPd 1.0 - Denial of Service !/usr/bin/perl miniupnpd/1.0 remote denial of service exploit Copyright 2015 c Todor Donev [email protected] http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with...
D-Link DSL-2750u DSL-2730u - (Authenticated) Local File Disclosure
D-Link DSL-2750u DSL-2730u - Authenticated Local File Disclosure + Author: SATHISH ARTHAR + Exploit Title: Dlink Wireless Router Password File Access Exploit Local File Inclusion + Date: 07-07-2015 + Platform: Hardware + Tested on: linux + Vendor: http://www.dlink.co.in + Product web page:...
phpLiteAdmin 1.1 - Multiple Vulnerabilities
phpLiteAdmin 1.1 - Multiple Vulnerabilities Exploit Title: CSRF & XSS Google Dork: intitle: CSRF & XSS Date: 2015-07-05 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: bitbucket.org/phpliteadmin Software Link: bitbucket.org/phpliteadmin Version: v1.1 Tested...
AirDroid - Arbitrary File Upload
AirDroid - Arbitrary File Upload /IN THE NAME OF GOD /auth====PARSA ADIB import sys,requests,re,urllib2 def logo: print"\t\t . . . ." print"\t\t || | / || | /" print"\t\t\ \ | \ / |\ / | |/ | " print"\t\t / | || | / // | | | \ / // | " print"\t\t /||| \ | || /|\ | " print"\t\t / / / "...
WordPress Plugin S3Bubble Cloud Video With Adverts Analytics 0.7 - Arbitrary File Download
WordPress Plugin S3Bubble Cloud Video With Adverts Analytics 0.7 - Arbitrary File Download Exploit Title: Wordpress S3Bubble Cloud Video With Adverts & Analytics - Arbitrary File Download Google Dork: inurl:/plugins/s3bubble-amazon-s3-html-5-video-with-adverts/ Date: 04/07/2015 Exploit Author:...
WK UDID 1.0.1 iOS - Command Injection
WK UDID 1.0.1 iOS - Command Injection Document Title: =============== WK UDID v1.0.1 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1539 Release Date: ============= 2015-07-01 Vulnerability Laboratory ID VL-ID:...
CuteNews 2.0.3 - Arbitrary File Upload
CuteNews 2.0.3 - Arbitrary File Upload CuteNews 2.0.3 Remote File Upload Vulnerability ================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //...
WordPress Plugin Albo Pretorio Online 3.2 - Multiple Vulnerabilities
WordPress Plugin Albo Pretorio Online 3.2 - Multiple Vulnerabilities Exploit Title: Albo Pretorio Online 3.2 Multiple Vulnerabilities Google Dork: inurl:/?action=visatto Date: 09/06/2015 Exploit Author: Alessandro Cingolani Vendor Homepage: http://plugin.sisviluppo.info/ Software Link:...
PHPXMLRPC 1.1 - Remote Code Execution
PHPXMLRPC 1.1 - Remote Code Execution PHPXMLRPC Remote Code Execution Vendor: Useful Information Inc. Product: PHPXMLRPC Version: = 1.1 Website: http://phpxmlrpc.sourceforge.net/ BID: 14088 CVE: CVE-2005-1921 OSVDB: 17793 SECUNIA: 15852 PACKETSTORM: 38394 Description: PHPXMLRPC aka XML-RPC For PH...
D-Link DSP-W w110 v1.05b01 - Multiple Vulnerabilities
D-Link DSP-W w110 v1.05b01 - Multiple Vulnerabilities Exploit Title: D-Link DSP-W Arbitrary Arbitrary file upload Date: 30/06/2015 Exploit Author: DNO Vendor Homepage: link Version: w110 v1.05b01 Tested on: linux CVE : N/A ======================================== the only 'filtering' on this...
PEAR XML_RPC 1.3.0 - Remote Code Execution
PEAR XMLRPC 1.3.0 - Remote Code Execution PEAR XMLRPC Remote Code Execution Vendor: The PEAR Group Product: PEAR XMLRPC Version: = 1.3.0 Website: http://pear.php.net/package/XMLRPC/ CVE: 17793 PACKETSTORM: 38393 Description: PEAR XMLRPC is a PHP implementation of the XML-RPC web RPC protocol, and...
McAfee SiteAdvisor 3.7.2 - Firefox Use-After-Free (PoC)
McAfee SiteAdvisor 3.7.2 - Firefox Use-After-Free PoC McAfee SiteAdvisor 3.7.2 for firefox Use After Free Poc / Title: McAfee SiteAdvisor 3.7.2 firefox Use After Free Author: Marcin Ressel Twitter: https://twitter.com/mressel NPMcFFPlg32.dll McAfee SiteAdvisor 3.7.2 Tested on: Windows 8.1 x64 and...
SMTP-VRFY
This is a simple script to help you enumarate and discover valid email addresses on a smtp server, it uses a python script and a dictionary brute-force based attack. import socket import sys s=socket.socketsocket.AFINET, socket.SOCKSTREAM connect=s.connectsys.argv1,intsys.argv2 s.send'VRFY ' +...
Fiyo CMS 2.0_1.9.1 - SQL Injection
Fiyo CMS 2.01.9.1 - SQL Injection Exploit Title: Fiyo CMS multiple SQL vulnerability Date: 2015-06-28 Exploit Author: cfreer poc-lab Vendor Homepage: http://www.fiyo.org/ Software Link: http://tcpdiag.dl.sourceforge.net/project/fiyo-cms/Fiyo%202.0/fiyocms2.0.2.zip Version: 2.01.9.1 Tested on:...
Watchguard XCS 10.0 - Multiple Vulnerabilities
Watchguard XCS 10.0 - Multiple Vulnerabilities , , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. Watchguard XCS Multiple Vulnerabilities Affected versions: Watchguard XCS =10.0 PDF:...
Novius 5.0.1 - Multiple Vulnerabilities
Novius 5.0.1 - Multiple Vulnerabilities + Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-NOVIUSOS0629.txt Vendor: ======================= community.novius-os.org Product:...
WedgeOS 4.0.4 - Multiple Vulnerabilities
WedgeOS 4.0.4 - Multiple Vulnerabilities...
C2Box 4.0.0(r19171) - Cross-Site Request Forgery
C2Box 4.0.0r19171 - Cross-Site Request Forgery Title: Cross-Site Request Forgery CSRF Vulnerability in C2Box application Allows adding an Admin User or reset any user's password. Author: Wissam Bashour - Help AG Middle East Vendor: boxautomationB.A.S Product: C2Box Version: All versions below...
Polycom RealPresence Resource Manager 8.4 - Multiple Vulnerabilities
Polycom RealPresence Resource Manager 8.4 - Multiple Vulnerabilities -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Critical vulnerabilities allow surveillance on...
CollabNet Subversion Edge Management 4.0.11 - Local File Inclusion
CollabNet Subversion Edge Management 4.0.11 - Local File Inclusion Vuln Title: Local file inclusion in CollabNet Subversion Edge Management Frontend via logfile "fileName" parameter of the "tail" action Date: 28.06.2015 Author: otr Software Link: https://www.open.collab.net/downloads/svnedge...
Huawei Home Gateway UPnP1.0 IGD1.00 - Password Disclosure
Huawei Home Gateway UPnP1.0 IGD1.00 - Password Disclosure ! /usr/bin/python Exploit Title: Huawei Home Gateway password disclosure Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00 Tested on:...
Endian Firewall 3.0.0 - OS Command Injection (Metasploit)
Endian Firewall 3.0.0 - OS Command Injection Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Endian Firewall %q This module exploits an OS command injection vulnerabilit...
XOOPS 2.0.11 - Multiple Vulnerabilities
XOOPS 2.0.11 - Multiple Vulnerabilities XOOPS Multiple Vulnerabilities Vendor: XOOPS Product: XOOPS Version: = 2.0.11 Website: http://www.xoops.org/ BID: 14094 14096 CVE: CVE-2005-2112 CVE-2005-2113 OSVDB: 17633 17634 17635 SECUNIA: 15843 PACKETSTORM: 38372 Description: XOOPS is a very popular...
Huawei Home Gateway UPnP1.0 IGD1.00 - Password Change
Huawei Home Gateway UPnP1.0 IGD1.00 - Password Change ! /usr/bin/python Exploit Title: Huawei Home Gateway password change vulnerability Date: June 27, 2015 Exploit Author: Fady Mohamed Osman @fadyosman Vendor Homepage: http://www.huawei.com/en/ Software Link: N/A. Version: UPnP/1.0 IGD/1.00 Test...
Endian Firewall 3.0.0 - OS Command Injection (Python)
Endian Firewall 3.0.0 - OS Command Injection Python !/usr/bin/env python Endian Firewall Proxy User Password Change /cgi-bin/chpasswd.cgi OS Command Injection Exploit POC Reverse TCP Shell Ben Lincoln, 2015-06-28 http://www.beneaththewaves.net/ Requires knowledge of a valid proxy username and...
DeDeCMS 5.7-sp1 - Remote File Inclusion
DeDeCMS 5.7-sp1 - Remote File Inclusion ========================== Exploit Title: Dedecms variable coverage leads to getshell Date: 26-06-2015 Vendor Homepage: http://www.dedecms.com/ Version: dedecms 5.7-sp1 and all old version CVE : CVE-2015-4553 =========================== CVE-2015-4553Dedecms...
Havij - OLE Automation Array Remote Code Execution
Havij - OLE Automation Array Remote Code Execution !/usr/bin/php ?php Title : Havij OLE Automation Array Remote Code Execution Affected Versions: All Version Founder : ITSecTeam Tested on Windows 7 / Server 2008 Author : Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail ...
Koha 3.20.1 - Multiple Cross-Site Scripting Cross-Site Request Forgery Vulnerabilities
Koha 3.20.1 - Multiple Cross-Site Scripting Cross-Site Request Forgery Vulnerabilities Exploit Title: Koha Open Source ILS - Multiple XSS and XSRF Vulnerabilities Google Dork: Date: 25/06/2015 Exploit Author: Raschin Tavakoli, Bernhard Garn, Peter Aufner and Dimitris Simos - Combinatorial Securit...
Thycotic Secret Server 8.8.000004 - Persistent Cross-Site Scripting
Thycotic Secret Server 8.8.000004 - Persistent Cross-Site Scripting COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html CVE ID : CVE-2015-3443 Product: Secret Server 1 Vendor: Thycotic Subject: Stored Cross-Site Scripting Vulnerability XSS Risk: High Effect: Remotely...
Apple Mac OSX 10.10.3 (Yosemite) Safari 8.0.x - Crash (PoC)
Apple Mac OSX 10.10.3 Yosemite Safari 8.0.x - Crash PoC !/usr/bin/php ?php Title : Safari 8.0.X / OS X Yosemite 10.10.3 Crash Proof Of Concept Product Website: https://www.apple.com/safari/ Author : Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail : meatrezadotes ,...
Koha 3.20.1 - Multiple SQL Injections
Koha 3.20.1 - Multiple SQL Injections Exploit Title: Koha Open Source ILS - Unauthenticated SQL Injection in OPAC Google Dork: Date: 25/06/2015 Exploit Author: Raschin Tavakoli, Bernhard Garn, Peter Aufner and Dimitris Simos - Combinatorial Security Testing Group of SBA Research...
Koha 3.20.1 - Directory Traversal
Koha 3.20.1 - Directory Traversal Exploit Title: Koha Open Source ILS - Path Traversal in STAFF client Google Dork: Date: 25/06/2015 Exploit Author: Raschin Tavakoli, Bernhard Garn, Peter Aufner and Dimitris Simos - Combinatorial Security Testing Group of SBA Research [email protected] Vendor...
ManageEngine Asset Explorer 6.1 - Persistent Cross-Site Scripting
ManageEngine Asset Explorer 6.1 - Persistent Cross-Site Scripting Title: =============== ManageEngine Asset Explorer v6.1 - XSS Vulnerability CVE-ID: ==================================== CVE-2015-2169 CVSS: ==================================== 3.5 Product & Service Introduction Taken from their...
Vesta Control Panel 0.9.8 - OS Command Injection
Vesta Control Panel 0.9.8 - OS Command Injection Advisory ID: HTB23261 Product: Vesta Control Panel Vendor: http://vestacp.com Vulnerable Versions: 0.9.8 and probably prior Tested Version: 0.9.8 Advisory Publication: May 20, 2015 without technical details Vendor Notification: May 20, 2015 Vendor...
Joomla! Component com_simpleimageupload - Arbitrary File Upload
Joomla! Component comsimpleimageupload - Arbitrary File Upload Exploit Title: Joomla Simple Image Upload - Arbitrary File Upload Google Dork: inurl:option=comsimpleimageupload Date: 23.06.2015 Exploit Author: CrashBandicot @DosPerl Vendor Homepage: http://tuts4you.de/ Software Link:...
GeniXCMS 0.0.3 - register.php SQL Injection
GeniXCMS 0.0.3 - register.php SQL Injection Exploit Title: Genixcms register.php multiple SQL vuln Date: 2015-06-23 Exploit Author: cfreer poc-lab Vendor Homepage: http://www.genixcms.org Software Link: https://codeload.github.com/semplon/GeniXCMS/zip/master/GeniXCMS-master.zip Version: 0.0.3...
WordPress Plugin Huge-IT Slider 2.7.5 - Multiple Vulnerabilities
WordPress Plugin Huge-IT Slider 2.7.5 - Multiple Vulnerabilities Exploit Title: WordPress: wordpress huge-it-slider 2.7.5 & Persistent JS-HTML Code injection, Arbitrary slider deletion Date: 2015-06-23 Google Dork: intitle:"index of" intext:"/wp-content/plugins/slider-image/" Exploit Author:...
GeniXCMS 0.0.3 - Cross-Site Scripting
GeniXCMS 0.0.3 - Cross-Site Scripting Exploit Title: Persistent XSS Google Dork: intitle: Persistent XSS Date: 2015-06-21 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: genixcms.org Software Link: genixcms.org Version: 0.0.3 Tested on: windows 7 Category:...
Paintshop Pro X7 - .gif Conversion Heap Memory Corruption LZWMinimumCodeSize (Denial of Service)
Paintshop Pro X7 - .gif Conversion Heap Memory Corruption LZWMinimumCodeSize Denial of Service Application: Paintshop Pro X7 GIF Conversion Heap Memory Corruption Vulnerabilities LZWMinimumCodeSize Platforms: Windows Versions: The vulnerability is confirmed in version Paintshop Prox X7, Other...
KMPlayer 3.9.1.136 - Capture Unicode Buffer Overflow (ASLR Bypass)
KMPlayer 3.9.1.136 - Capture Unicode Buffer Overflow ASLR Bypass !/usr/bin/python KMPlayer 3.9.1.136 Capture Unicode Buffer Overflow ASLR Bypass Author: Naser Farhadi Date: 21 June 2015 Version: 3.9.1.136 Tested on: Windows 7 SP1 32 bit Usage: chmod +x KMPlayer.py python KMPlayer.py Alt+c | Video...
Photoshop CC2014 Bridge CC 2014 - .gif Parsing Memory Corruption
Photoshop CC2014 Bridge CC 2014 - .gif Parsing Memory Corruption Application: Adobe Photoshop CC 2014 & Bridge CC 2014 Platforms: Windows Versions: The vulnerability is confirmed in version Photoshop CC 2014 and Bridge CC 2014. Secunia: PRL: 2015-07 Author: Francis Provencher Protek Research Lab’...
Photoshop CC2014 Bridge CC 2014 - .png Parsing Memory Corruption
Photoshop CC2014 Bridge CC 2014 - .png Parsing Memory Corruption Application: Adobe Photoshop CC 2014 & Bridge CC 2014 Platforms: Windows Versions: The vulnerability is confirmed in version Photoshop CC 2014 and Bridge CC 2014. Secunia: PRL: 2015-08 Author: Francis Provencher Protek Research Lab’...
Seagate Dashboard 4.0.21.0 - Crash (PoC)
Seagate Dashboard 4.0.21.0 - Crash PoC !/usr/bin/env python Exploit Title: Crash PoC Seagate Dashboard 4.0.21.0 Date: 2015-06-20 Exploit Author: HexTitan Vendor Homepage: http://www.seagate.com/ Software Link: http://www.seagate.com/support/downloads/item/seagate-dashboard-windows-master-dl/...
CUPS 2.0.3 - Multiple Vulnerabilities
CUPS 2.0.3 - Multiple Vulnerabilities Source: http://googleprojectzero.blogspot.se/2015/06/owning-internet-printing-case-study-in.html Abstract Modern exploit mitigations draw attackers into a game of diminishing marginal returns. With each additional mitigation added, a subset of software bugs...
WinylPlayer 3.0.3 - Memory Corruption (PoC)
WinylPlayer 3.0.3 - Memory Corruption PoC !/usr/bin/python + Author: Rajganesh Raj Pandurangan + Exploit Title: WinylPlayer 3.0.3 Memory Corruption PoC + Date: 06-17-2015 + Category: DoS/PoC + Tested on: WinXp/Windows 7 + Vendor: http://vinylsoft.com/ + Download:...
Lively Cart - SQL Injection
Lively Cart - SQL Injection Exploit Title : Lively cart SQL Injection vulnerability Author : Manish Kishan Tanwar AKA error1046 Vendor Link : http://codecanyon.net/item/livelycart-a-jquery-php-store-shop/5531393 Date : 18/06/2015 Love to : zero cool,Team indishell,Mannu,Viki,Hardeep...
Tango DropBox 3.1.5 + PRO - Activex HeapSpray
Tango DropBox 3.1.5 + PRO - Activex HeapSpray Tango DropBox Activex Heap Spray Exploit Version:3.1.5 + PRO The vulnerability lies in the COM component used eSellerateControl350.dll 3.6.5.0 method of the ''GetWebStoreURL' member. Vendor Homepage:http://etonica.com/dropbox/index.html Software...
HansoPlayer 3.4.0 - Memory Corruption (PoC)
HansoPlayer 3.4.0 - Memory Corruption PoC !/usr/bin/python + Author: Rajganesh Raj Pandurangan + Exploit Title: HansoPlayer 3.4.0 Memory Corruption PoC + Date: 06-17-2015 + Category: DoS/PoC + Tested on: WinXp/Windows 7 + Vendor: http://www.hansotools.com + Download:...
ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities
ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities Document Title: =============== ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1501 Release Date: ============= 2015-06-19...
Tango FTP 1.0 (Build 136) - Activex HeapSpray
Tango FTP 1.0 Build 136 - Activex HeapSpray Tango FTP Activex Heap Spray Exploit Version:1.0Build 136 The vulnerability lies in the COM component used eSellerateControl350.dll 3.6.5.0 method of the ''GetWebStoreURL' member. Vendor Homepage:http://www.tangoftp.com/index.html Software...