41207 matches found
Embedthis Goahead WebServer 3.1.3-0 - Multiple Vulnerabilities
Embedthis Goahead WebServer 3.1.3-0 - Multiple Vulnerabilities Title: Embedthis Goahead Webserver multiple DoS vulnerabilities. Author: 0in Maksymilian Motyl Date: 18.02.2014 Version: 3.1.3-0 Software Link: http://embedthis.com/products/goahead/ Download: https://github.com/embedthis/goahead Test...
Open Web Analytics 1.5.4 - owa_email_address SQL Injection
Open Web Analytics 1.5.4 - owaemailaddress SQL Injection """ Dell SecureWorks Security Advisory SWRX-2014-001 Open Web Analytics Pre-Auth SQL Injection Advisory Information Title: Open Web Analytics Pre-Auth SQL Injection Advisory ID: SWRX-2014-001 Advisory URL:...
My PDF Creator DE DM 1.4 iOS - Multiple Vulnerabilities
My PDF Creator DE DM 1.4 iOS - Multiple Vulnerabilities Document Title: =============== My PDF Creator & DE DM v1.4 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1201 Release Date: ============= 2014-02-16 Vulnerability...
Ultra Mini HTTPd 1.21 - POST Remote Stack Buffer Overflow (1)
Ultra Mini HTTPd 1.21 - POST Remote Stack Buffer Overflow 1 Exploit Title: Ultra Mini HTTPD stack buffer overflow POST request Date: 16 Feb 2014 Exploit Author: Sumit Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Version: 1.21 Tested o...
MODx Evogallery Module - Uploadify.php Arbitrary File Upload
MODx Evogallery Module - Uploadify.php Arbitrary File Upload source: https://www.securityfocus.com/bid/65646/info MODx Evogallery module is prone to an arbitrary file upload vulnerability. An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in...
Concrete5 CMS 5.6.2.1 - index.php?cID SQL Injection
Concrete5 CMS 5.6.2.1 - index.php?cID SQL Injection Exploit Title: Concrete5 sql injection Date: 18/02/2014 Exploit Author: [email protected] Vendor Homepage: https://www.concrete5.org/ Software Link: http://www.concrete5.org/downloadfile/-/view/58379/8497/ Version: 5.6.2.1 stable Tested on:...
Pina CMS - Multiple Vulnerabilities
Pina CMS - Multiple Vulnerabilities Title: Pina CMS SQL Injection and XSS Vulnerabilities Vendor: www.pinacms.com Vendor Notified: 15-02-2014 Vendor Replied: 16-02-2014 Release in Public: 18-02-2014 Tested on: Windows/Linux Author/Found by: Shadman Tanjim Website: www.secupent.com and...
Joomla! Component com_wire_immogest - index.php SQL Injection
Joomla! Component comwireimmogest - index.php SQL Injection source: https://www.securityfocus.com/bid/65606/info Wire Immogest component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...
IceWarp Mail Server 11.0.0.0 - Cross-Site Scripting
IceWarp Mail Server 11.0.0.0 - Cross-Site Scripting Disclaimer: This code is for Educational Purposes , I would Not be responsible for any misuse of this code Attack type : Remote Patch Status : Unpatched Exploitation : Author: Usman Saeed Company: Xc0re Security Research Group Website:...
i-doit Pro - objID SQL Injection
i-doit Pro - objID SQL Injection source: https://www.securityfocus.com/bid/65557/info i-doit Pro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Trendchip HG520 ADSL2+ Wireless Modem - Cross-Site Request Forgery
Trendchip HG520 ADSL2+ Wireless Modem - Cross-Site Request Forgery Exploit Title: Trendchip HG520 ADSL2+ Wireless Modem CSRF Vulnerability Google Dork: N/A Date: 15/02/2014 Exploit Author: Dhruv Shah Vendor Homepage: N/A Software Link : N/A Version: Firmware Version:2.11.38.0RE0.C2B3.9.9.5 Tested...
ImageMagick 6.8.8-4 - Local Buffer Overflow (SEH)
ImageMagick 6.8.8-4 - Local Buffer Overflow SEH !/usr/bin/perl Exploit Title: ImageMagick 6.8.8-5 - Local Buffer Overflow SEH Date: 2-13-2014 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: ImageMagick all versions prior to 6.8.8-5 Software Link:...
Linksys E-series - Remote Code Execution
Linksys E-series - Remote Code Execution !/usr/bin/php ?php / Exploit for 0day linksys unauthenticated remote code execution vulnerability. As exploited by TheMoon worm; Discovered in the wild on Feb 13, 2013 by Johannes Ullrich. I was hoping this would stay under-wraps until a firmware patch cou...
HP Data Protector - EXEC_BAR Remote Command Execution
HP Data Protector - EXECBAR Remote Command Execution import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Test...
File Hub 1.9.1 iOS - Multiple Vulnerabilities
File Hub 1.9.1 iOS - Multiple Vulnerabilities Document Title: =============== File Hub v1.9.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1195 Release Date: ============= 2014-02-15 Vulnerability Laboratory ID VL-ID...
mbDriveHD 1.0.7 iOS - Multiple Vulnerabilities
mbDriveHD 1.0.7 iOS - Multiple Vulnerabilities Document Title: =============== mbDriveHD v1.0.7 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1198 Release Date: ============= 2014-02-14 Vulnerability Laboratory ID...
Office Assistant Pro 2.2.2 iOS - Local File Inclusion
Office Assistant Pro 2.2.2 iOS - Local File Inclusion Document Title: =============== Office Assistant Pro v2.2.2 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1197 Release Date: ============= 2014-02-13 Vulnerability...
Dexter (CasinoLoader) Panel - SQL Injection
Dexter CasinoLoader Panel - SQL Injection Exploit Title: Dexter CasinoLoader Panel SQLi Date: Feb, 13, 2014 Exploit Author: Brian Wallace @botnethunter Version: CasinoLoader Tested on: Windows 7, Ubuntu, Debian import pycurl import urllib import cStringIO import base64 import argparse import sys...
Eudora Qualcomm WorldMail 9.0.333.0 - IMAPd Service UID Buffer Overflow
Eudora Qualcomm WorldMail 9.0.333.0 - IMAPd Service UID Buffer Overflow !/usr/bin/python Tested on 6.1.19.0 import sys,socket banner = """ Coded by: Muhammad Alharmeel Details: - PRE AUTHENTICATION Eudora Qualcomm WorldMail 9.0.333.0 IMAPd Service Preauthentication Buffer Overflow. - Tested on:...
CA 2E Web Option 8.1.2 - Authentication Bypass
CA 2E Web Option 8.1.2 - Authentication Bypass Vulnerability title: Unauthenticated Privilege Escalation in CA 2E Web Option CVE: CVE-2014-1219 Vendor: CA Product: 2E Web Option Affected version: 8.1.2 Fixed version: N/A Reported by: Mike Emery Details: CA 2E Web Option r8.1.2 and potentially...
Apache Commons FileUpload and Apache Tomcat - Denial of Service
Apache Commons FileUpload and Apache Tomcat - Denial of Service CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat Denial-of-Service Author: Oren Hafif, Trustwave SpiderLabs Research This is a Proof of Concept code that was created for the sole purpose of assisting system administrators in...
NETGEAR DGN2200 N300 Wireless Router - Multiple Vulnerabilities
NETGEAR DGN2200 N300 Wireless Router - Multiple Vulnerabilities Title: Multiple vulnerabilities in NETGEAR N300 WIRELESS ADSL2+ MODEM ROUTER DGN2200 ==================================================================================== Notification Date: 11 February 2014 Affected Vendor: NetGear...
MyBB 1.6.12 - misc.php Remote Denial of Service
MyBB 1.6.12 - misc.php Remote Denial of Service source: https://www.securityfocus.com/bid/65545/info MyBB is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. MyBB 1.6.12 is vulnerable; oth...
Rhino - Cross-Site Scripting Password Reset
Rhino - Cross-Site Scripting Password Reset source: https://www.securityfocus.com/bid/65628/info Rhino is prone to a cross-site scripting vulnerability and security-bypass vulnerability . An attacker can exploit these issues to execute arbitrary script code in the context of the vulnerable site,...
jDisk (stickto) 2.0.3 iOS - Multiple Vulnerabilities
jDisk stickto 2.0.3 iOS - Multiple Vulnerabilities Document Title: =============== jDisk stickto v2.0.3 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1196 Release Date: ============= 2014-02-12 Vulnerability Laborator...
WiFi Camera Roll 1.2 iOS - Multiple Vulnerabilities
WiFi Camera Roll 1.2 iOS - Multiple Vulnerabilities Document Title: =============== WiFi Camera Roll v1.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1192 Release Date: ============= 2014-02-08 Vulnerability...
WordPress Plugin Frontend Upload - Arbitrary File Upload
WordPress Plugin Frontend Upload - Arbitrary File Upload Exploit Title: Frontend Upload Wordpress Plugin - File Arbitrary Upload Date: 10/02/2014 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web: www.delincuentedigital.com.ar Software: Frontend Upload...
phpBB 3.0.8 - Remote Denial of Service
phpBB 3.0.8 - Remote Denial of Service source: https://www.securityfocus.com/bid/65481/info phpBB is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. Phpbb Forum Denial of Service...
Linux Kernel 3.4.5 (Android 4.2.24.4 ARM) - Local Privilege Escalation
Linux Kernel 3.4.5 Android 4.2.24.4 ARM - Local Privilege Escalation / Just a lame binder local root exploit stub. Somewhat messy but whatever. The bug was reported in CVE-2013-6282. Tested on Android 4.2.2 and 4.4. Kernels 3.0.57, 3.4.5 and few more. All up to 3.4.5 unpatched should be vulnerabl...
WordPress Plugin BuddyPress 1.9.1 - Privilege Escalation
WordPress Plugin BuddyPress 1.9.1 - Privilege Escalation Exploit Title: Wordpress plugin Buddypress 2 Visit the url http://example.com/groups/create/step/group-details/ 3 Enjoy the power...
D-Link DSL-2750B ADSL Route - Cross-Site Request Forgery
D-Link DSL-2750B ADSL Route - Cross-Site Request Forgery Exploit Title : D-Link DSL-2750B ADSL Router CSRF Vulnerability Date : 10-02-2014 Author : [email protected] Vendor site : http://www.d-link.com Version : DSL-2750B Tested on : Firmware Version: EU2.02; Hardware Version: B1 The D-Link...
Titan FTP Server 10.32 Build 1816 - Directory Traversal
Titan FTP Server 10.32 Build 1816 - Directory Traversal "Titan FTP Server Directory Traversal Vulnerabilities" - Affected Vendor: South River Technologies - Affected System: Titan FTP Server software Version 10.32 Build 1816 - Vendor Disclosure Date: January 27th, 2014 - Public Disclosure Date:...
Tableau Server 8.0.7 8.1.2 - Blind SQL Injection
Tableau Server 8.0.7 8.1.2 - Blind SQL Injection Trustwave's SpiderLabs Security Advisory TWSL2014-003: Blind SQL Injection Vulnerability in Tableau Server Published: 02/07/14 Version: 1.1 Vendor: Tableau Software http://www.tableausoftware.com Product: Tableau Server Versions affected: 8.1.X...
MyBB Extended Useradmininfo Plugin 1.2.1 - Cross-Site Scripting
MyBB Extended Useradmininfo Plugin 1.2.1 - Cross-Site Scripting Exploit Title: Extended Useradmininfo MyBB Plugin 1.2.1 - Cross Site Scripting Google Dork: N/A Date: 09.02.2014 Exploit Author: Fikri Fadzil - [email protected] Vendor Homepage: http://forum.mybboard.de/user-9022.html...
ZTE ZXV10 W300 Router - Hard-Coded Credentials
ZTE ZXV10 W300 Router - Hard-Coded Credentials Exploit Title: ZTE ZXV10 W300 router contains hardcoded credentials Date: 03 Feb 2014 Exploit Author: Cesar Neira Vendor Homepage: http://wwwen.zte.com.cn/ Version: ZTE ZXV10 W300 v2.1 CVE : CVE-2014-0329 Dork Shodan: Basic realm="index.htm"...
OneHTTPD 0.8 - Crash (PoC)
OneHTTPD 0.8 - Crash PoC Exploit Title: onehttpd 0.8 Crash PoC Date: Feb 7,2014 Exploit Author: Mahmod Mahajna Mahy Version: 0.8 Software Link: https://onehttpd.googlecode.com/files/onehttpd-0.8.exe Tested on: Windows XP SP3 Email: [email protected] from requests import get,ConnectionError as...
Publish-It 3.6d - .pui Local Buffer Overflow (SEH)
Publish-It 3.6d - .pui Local Buffer Overflow SEH !/usr/bin ruby env Exploit Title: Publish-It 3.6d - SEH Buffer Overflow Date: 8/2/2014 Exploit Author: Muhamad Fadzil Ramli Vendor HomePage: https://www.postersw.com Software Link: https://www.postersw.com/publish3.exe Version App: v3.6d Tested on:...
S9Y Serendipity 1.7.5 - Backend Multiple Vulnerabilities
S9Y Serendipity 1.7.5 - Backend Multiple Vulnerabilities Advisory: Serendipity 1.7.5 Backend - Multiple security vulnerabilities Advisory ID: SSCHADV2014-003 Author: Stefan Schurtz Affected Software: Successfully tested on Serendipity 1.7.5 Vendor URL: http://www.s9y.org/ Vendor Status: fixed...
osCommerce 2.3.3.4 - geo_zones.php?zID SQL Injection
osCommerce 2.3.3.4 - geozones.php?zID SQL Injection Title: osCommerce v2.x SQL Injection Vulnerability Dork: Powered by osCommerce Author: Ahmed Aboul-Ela Contact: ahmed.aboul3laatgmaildotcom - http://twitter.com/secgeek Vendor : http://www.oscommerce.com Version: v2.3.3.4 current latest release...
WHMCompleteSolution (WHMCS) 5.12 - cart.php Denial of Service
WHMCompleteSolution WHMCS 5.12 - cart.php Denial of Service / source: https://www.securityfocus.com/bid/65470/info WHMCS is prone to a denial-of-service vulnerability. Successful exploits may allow attackers to cause denial-of-service condition, denying service to legitimate users. WHMCS 5.12 is...
CTERA 3.2.29.03.2.42.0 - Persistent Cross-Site Scripting
CTERA 3.2.29.03.2.42.0 - Persistent Cross-Site Scripting Exploit Title: CTERA Project Folders - Stored XSS Date: 11-Mar-2013 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.ctera.com Version: 3.2.29.0 and 3.2.42.0 Tested on: ctera os CVE : CVE-2013-2639 OVERVIEW Standard Ctera User...
doorGets CMS 5.2 - SQL Injection
doorGets CMS 5.2 - SQL Injection Advisory ID: HTB23197 Product: doorGets CMS Vendor: doorGets Vulnerable Versions: 5.2 and probably prior Tested Version: 5.2 Advisory Publication: January 15, 2014 without technical details Vendor Notification: January 15, 2014 Vendor Patch: January 15, 2014 Publi...
AuraCMS 2.3 - Multiple Vulnerabilities
AuraCMS 2.3 - Multiple Vulnerabilities Advisory ID: HTB23196 Product: AuraCMS Vendor: AuraCMS Vulnerable Versions: 2.3 and probably prior Tested Version: 2.3 Advisory Publication: January 8, 2014 without technical details Vendor Notification: January 8, 2014 Vendor Patch: January 30, 2014 Public...
PHP Webcam Video Conference - Multiple Vulnerabilities
PHP Webcam Video Conference - Multiple Vulnerabilities Exploit: PHP Webcam Video Conference - LFI/XSS Date: 06/02/2014 Exploit Author: vinicius777 Contact: vinicius777 AT gmail / @vinicius777 Vendor Homepage: http://www.videowhisper.com/ Software Link:...
Joomla! 3.2.1 - SQL Injection
Joomla! 3.2.1 - SQL Injection Exploit Title: Joomla 3.2.1 sql injection Date: 05/02/2014 Exploit Author: [email protected] Vendor Homepage: http://www.joomla.org/ Software Link: http://joomlacode.org/gf/download/frsrelease/19007/134333/Joomla3.2.1-Stable-FullPackage.zip Version: 3.2.1 default...
Publish-It 3.6d - Buffer Overflow
Publish-It 3.6d - Buffer Overflow Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Publish-It Buffer Overflow Vulnerability 1. Advisory Information Title: Publish-It Buffer Overflow Vulnerability Advisory ID: CORE-2014-0001 Advisory URL:...
Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation
Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation Asseco SEE iBank FX Client = 2.0.9.3 Local Privilege Escalation Vulnerability Vendor: Asseco SEE Product web page: http://www.asseco.com Affected version: 2.0.9.3 Build 22.06.2011 - Desktop/Enterprise Edition 1.2 1.1.5.1270 Service...
Booking Calendar - Multiple Vulnerabilities
Booking Calendar - Multiple Vulnerabilities Booking Calendar PHP - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...
VideoLAN VLC Media Player 2.1.2 - .asf Crash (PoC)
VideoLAN VLC Media Player 2.1.2 - .asf Crash PoC !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and...
Plogger 1.0 (RC1) - Multiple Vulnerabilities
Plogger 1.0 RC1 - Multiple Vulnerabilities Exploit Title: Multiply vulnerabilites in plogger 1.0 RC1 Date: 03/02/2014 Exploit Author: [email protected] Vendor Homepage: http://www.plogger.org/ Software Link: http://www.plogger.org/download/ Version: 1.0 RC1 Tested on: Virtualbox debian and Apach...