Showing 1 - 25 of 163

Files

Packet Storm New Exploits For October, 2017: Posted Nov 1, 2017; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 162 exploits added to Packet Storm in October, 2017.; tags | exploit; SHA-256 | 6df0b6c9fa9b5095c34f144edb026f2fa31bad05bc841f4a50b446c49c89890a; Download | Favorite | View

WordPress User Login History 1.5.2 Cross Site Scripting: Posted Oct 31, 2017; Authored by Nicolas Buzy-Debat; WordPress User Login History plugin version 1.5.2 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2017-15867; SHA-256 | 6c3febf1993c19f0a16505de24832a566c3f18364d14acf384da90a87c23b22d; Download | Favorite | View

Progea Movicon 11.5.1181 Search Path Issues: Posted Oct 31, 2017; Authored by Karn Ganeshen; Progea Movicon versions 11.5.1181 and below suffer from search path related vulnerabilities.; tags | exploit, vulnerability; advisories | CVE-2017-14017, CVE-2017-14019; SHA-256 | 3c27f46c9c35863630e0bcb760272da150ea550494090d47a78f9257d279eb07; Download | Favorite | View

SpiderControl SCADA Web Server 2.02.0007 Improper Privilege Management: Posted Oct 31, 2017; Authored by Karn Ganeshen; SpiderControl SCADA Web Server versions 2.02.0007 and below suffer from an improper privilege management vulnerability.; tags | exploit, web; advisories | CVE-2017-12728; SHA-256 | 2378a84eb198ed39fc681076b39d9def7c87bcb0b99d8a1c1eeae425ed47ed97; Download | Favorite | View

JanTek JTC-200 RS232-NET Connector CSRF / Missing Authentication: Posted Oct 31, 2017; Authored by Karn Ganeshen; JanTek JTC-200 RS232-NET Connector suffers from cross site request forgery and missing authentication vulnerabilities.; tags | exploit, vulnerability, csrf; advisories | CVE-2016-5789, CVE-2016-5791; SHA-256 | c7609342cf2c7e5053c6d7835d18f3713bed53c9a2e04ffdb132de5d57800d31; Download | Favorite | View

Website Broker Script SQL Injection: Posted Oct 30, 2017; Authored by Ihsan Sencan; Website Broker Script suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2017-15992; SHA-256 | 1008f023d20735133678ce895414aae02d18601422947f0bd145a264938f8899; Download | Favorite | View

Vastal I-Tech Agent Zone SQL Injection: Posted Oct 30, 2017; Authored by Ihsan Sencan; Vastal I-Tech Agent Zone suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2017-15991; SHA-256 | 3f5b7a2b9b7f01a7cadcc612a82bc00cb35adf711c3131624b53f1d516e5d380; Download | Favorite | View

Zomato Clone Script SQL Injection: Posted Oct 30, 2017; Authored by Ihsan Sencan; Zomato Clone Script suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2017-15993; SHA-256 | 751c6587f5acca8dc49e0427d6b5ba66ba13c03b4b77bfaaa4b322146d479027; Download | Favorite | View

PHP Inventory Arbitrary File Upload: Posted Oct 30, 2017; Authored by Ihsan Sencan; PHP Inventory suffers from an arbitrary file upload vulnerability.; tags | exploit, arbitrary, php, file upload; advisories | CVE-2017-15990; SHA-256 | 5cb053d150b5b12b4075097eb79ac29ed2b5c952892181b4110e7fc3c1835fa2; Download | Favorite | View

Online Exam Test Application SQL Injection: Posted Oct 30, 2017; Authored by Ihsan Sencan; Online Exam Test Application suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2017-15989; SHA-256 | d1e63c11a3df12015c68150cccfa68f6dbbc1e95760ad97160f791dcd93899cb; Download | Favorite | View

WordPress Ultimate Product Catalog 4.2.24 PHP Object Injection: Posted Oct 30, 2017; Authored by tomplixsee; WordPress Ultimate Product Catalog plugin versions 4.2.24 and below suffer from a PHP object injection vulnerability.; tags | exploit, php; SHA-256 | 3a32c416cc40f0d2746a5880bfd6ee9b498b22a31a88ccef544429ac5814521e; Download | Favorite | View

MitraStar DSL-100HN-T1/GPT-2541GNAC Privilege Escalation: Posted Oct 28, 2017; Authored by j0lama; MitraStar DSL-100HN-T1 and GPT-2541GNAC routers suffer from a privilege escalation vulnerability.; tags | exploit; SHA-256 | 5426db97308973a77a4108df438988e172dce98e20172ca1738636474257ce4d; Download | Favorite | View

Android Private Internet Access Denial Of Service: Posted Oct 27, 2017; Authored by Yakov Shafranovich | Site wwws.nightwatchcybersecurity.com; The Android application provided by Private Internet Access (PIA) VPN service can be crashed by downloading a large file containing a list of current VPN servers. This can be exploited by an MITM attacker via intercepting and replacing this file. While the file is digitally signed, it is not served over SSL and the application did not contain logic for checking if the provided file is very large. The vendor has fixed this issue in version 1.3.3.1 and users should install the latest version.; tags | exploit, denial of service; advisories | CVE-2017-15882; SHA-256 | 800f549876739334d620586c15f309262e80b5ce74344d37893a980b9345e1e9; Download | Favorite | View

Tizen Studio 1.3 Smart Development Bridge Buffer Overflow: Posted Oct 27, 2017; Authored by Marcin Kopec; Tizen Studio version 1.3 Smart Development Bridge versions prior to 2.3.2 buffer overflow proof of concept exploit.; tags | exploit, overflow, proof of concept; SHA-256 | 76ab0e7b1cd5ce678ed34550ad310cb3fc9e701de65057b5d08d1ee84d2300ff; Download | Favorite | View

DameWare Remote Controller 12.0.0.520 Remote Code Execution: Posted Oct 27, 2017; Authored by Securifera; DameWare Remote Controller versions 12.0.0.520 and below suffer from a remote code execution vulnerability.; tags | exploit, remote, code execution; advisories | CVE-2016-2345; SHA-256 | 4a4c9ff1d9e13aeac05d41ef0fa4e98e4a4c365f635327661de001c1432585c0; Download | Favorite | View

Watchdog Development Anti-Malware / Online Security Pro NULL Pointer Dereference: Posted Oct 27, 2017; Authored by Parvez Anwar; Watchdog Development Anti-Malware / Online Security Pro version 2.74.186.150 suffers from a NULL pointer dereference vulnerability.; tags | exploit; advisories | CVE-2017-15920, CVE-2017-15921; SHA-256 | 1d1aa46aa3dffca08ad0ae09b967754548443a2f89a9b0f56ed5e4412201f732; Download | Favorite | View

HitmanPro 3.7.15 Build 281 Kernel Pool Overflow: Posted Oct 26, 2017; Authored by cbayet; HitmanPro version 3.7.15 Build 281 kernel pool overflow exploit.; tags | exploit, overflow, kernel; advisories | CVE-2017-6008; SHA-256 | 408bf8b107019c5f2a85c3f424fae90139e0c7cc821429e9f874f8e28211b69d; Download | Favorite | View

PHPMailer 5.2.21 Local File Disclosure: Posted Oct 26, 2017; Authored by Yongxiang Li, Maciej Krupa; PHPMailer versions 5.2.21 and below suffer from a file disclosure vulnerability.; tags | exploit; advisories | CVE-2017-5223; SHA-256 | eeaeefcdff3722b2ec1cf3d9459357dc5de426bb7f1c9fb2f39b503acf3a27d4; Download | Favorite | View

Mura CMS Server-Side Request Forgery / XXE Injection: Posted Oct 26, 2017; Authored by Anthony Cole; Mura CMS versions prior to 6.2 suffer from server-side request forgery and XML external entity injection vulnerabilities.; tags | exploit, vulnerability, xxe; advisories | CVE-2017-15639; SHA-256 | c741fa594f6ecdac9c58e2a524f6ef11f7b20005c381775459dc8b4332c6578d; Download | Favorite | View

FS Shutter Stock Clone SQL Injection: Posted Oct 26, 2017; Authored by 8bitsec; FS Shutter Stock Clone suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | b03d0d2ae4dbffe3e2a8581d0d8cfe905b13a447a0b904b2b58e281444538f34; Download | Favorite | View

FS Thumbtack Clone SQL Injection: Posted Oct 26, 2017; Authored by 8bitsec; FS Thumbtack Clone suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 4676e679078b5d30f8b727ef735fa41aa70c4e777df264bc33615df5b55ff764; Download | Favorite | View

FS Trademe Clone SQL Injection: Posted Oct 26, 2017; Authored by 8bitsec; FS Trademe Clone suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 2c7628a451f7e42509025ee13ccb7d4cab819c455ff2513dacc9b5a2ba24788a; Download | Favorite | View

FS Monster Clone SQL Injection: Posted Oct 26, 2017; Authored by 8bitsec; FS Monster Clone suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | ee5a6e1e75975e5578c4906c309a34c30b53ea2ecf3c72b2cc19e80b87d4e1da; Download | Favorite | View

FS Care Clone SQL Injection: Posted Oct 26, 2017; Authored by 8bitsec; FS Care Clone suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 97cd6706ff38ead6bbb290b2a4228364e62e6c2bdb44699e2f2fee01a5b87303; Download | Favorite | View

FS Crowdfunding Script SQL Injection: Posted Oct 26, 2017; Authored by 8bitsec; FS Crowdfunding Script suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 2fcfe6b3957e9208e9d07c8d948a930167e2a1720cc80433b922a6e8ce6fb09b; Download | Favorite | View

Page 1 of 7 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 235 files
Ubuntu 50 files
Debian 19 files
LiquidWorm 15 files
Apple 9 files
Gentoo 5 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

Files

Top Authors In Last 30 Days

Recent News