exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 22 of 22

Files Date: 2022-02-21

OpenStego Free Steganography Solution 0.8.4

Posted Feb 21, 2022

Authored by Samir Vaidya | Site github.com

OpenStego is a tool implemented in Java for generic steganography, with support for password-based encryption of the data. It supports plugins for various steganographic algorithms (currently, only Least Significant Bit algorithm is supported for images).

Changes: Fixed EXIF data handling that was incorrectly copying over ICC profile data and messing up colors in some JPEGs.

tags | tool, java, encryption, steganography

SHA-256 | 0c090016988bf2e261b53c9de462f1d217ec09da87c1912c4eb2cfcbe7129c92

Download | Favorite | View

TestSSL 3.0.7

Posted Feb 21, 2022

Authored by Dr. Dirk Wetter | Site drwetter.org

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws, and much more. It is written in (pure) bash, makes only use of standard Unix utilities, openssl and last but not least bash sockets.

Changes: Added SSLv2 and OpenSSL fixes. 15 additional bug fixes and improvements.

tags | tool, scanner, protocol, bash

systems | unix

SHA-256 | c2beb3ae1fc1301ad845c7aa01c0a292c41b95747ef67f34601f21fb2da16145

Download | Favorite | View

Gentoo Linux Security Advisory 202202-03

Posted Feb 21, 2022

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202202-3 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 98.0.4758.102 are affected.

tags | advisory, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2022-0452, CVE-2022-0453, CVE-2022-0454, CVE-2022-0455, CVE-2022-0456, CVE-2022-0457, CVE-2022-0458, CVE-2022-0459, CVE-2022-0460, CVE-2022-0461, CVE-2022-0462, CVE-2022-0463, CVE-2022-0464, CVE-2022-0465, CVE-2022-0466, CVE-2022-0467, CVE-2022-0468, CVE-2022-0469, CVE-2022-0470, CVE-2022-0603, CVE-2022-0604, CVE-2022-0605, CVE-2022-0606, CVE-2022-0607, CVE-2022-0608, CVE-2022-0609, CVE-2022-0610

SHA-256 | b4d76a339c1f6375e65437493d4d4152da6d13ba3d13e75ed4aa2e6f6d77b3f9

Download | Favorite | View

Chrome RenderFrameHostImpl Use-After-Free

Posted Feb 21, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from a state tracking issue in RenderFrameHostImpl that leads to a use-after-free vulnerability.

tags | exploit

advisories | CVE-2022-0290

SHA-256 | d581673d0c71222578b61244ffc597f2d89dd9ee51ee889782cd5588f7d54bf9

Download | Favorite | View

Cyclades Serial Console Server 3.3.0 Privilege Escalation

Posted Feb 21, 2022

Authored by ibby

Cyclades Serial Console Server version 3.3.0 suffers from a local privilege escalation vulnerability.

tags | exploit, local

SHA-256 | 5ec4dcc6026a7ac554bcc47517f65b2b0072a8c5753d80439a5386667556372e

Download | Favorite | View

Simple Real Estate Portal System 1.0 SQL Injection

Posted Feb 21, 2022

Authored by nu11secur1ty

Simple Real Estate Portal System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 2a175a101b412ad22ce92495b58ffcb40e5ea3e33025cd72c7dfc87ffad16377

Download | Favorite | View

Microweber 1.2.11 Shell Upload

Posted Feb 21, 2022

Authored by Chetanya Sharma

Microweber version 1.2.11 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell

advisories | CVE-2022-0557

SHA-256 | 0f6099f5333136e7ed26b16e612cd8174391ba44ec5c5315299e6e968e78e18a

Download | Favorite | View

Dbltek GoIP GHSFVT-1.1-67-5 Local File Inclusion

Posted Feb 21, 2022

Authored by Lassi Korhonen, Valtteri Lehtinen

Dbltek GoIP with firmware version GHSFVT-1.1-67-5 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion

SHA-256 | 0d6bacc2c1374df5d970bb3cd46b2c784a546df1614076f108665a82cba4a43f

Download | Favorite | View

Red Hat Security Advisory 2022-0582-01

Posted Feb 21, 2022

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-0582-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include HTTP request smuggling, HTTP response splitting, code execution, denial of service, information leakage, and spoofing vulnerabilities.

tags | advisory, web, denial of service, spoof, vulnerability, code execution, ruby

systems | linux, redhat

advisories | CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255, CVE-2020-10663, CVE-2020-10933, CVE-2020-25613, CVE-2020-36327, CVE-2021-28965, CVE-2021-31799, CVE-2021-31810, CVE-2021-32066, CVE-2021-41817, CVE-2021-41819

SHA-256 | 28f434c8a7e0c5a9a457c78e1d0a72539ecb56d9a3673853dd0aa3595f619eda

Download | Favorite | View

FileCloud 21.2 Cross Site Request Forgery

Posted Feb 21, 2022

Authored by Masashi Fujiwara

FileCloud version 21.2 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

advisories | CVE-2022-25241

SHA-256 | 416ed4585ffdeade05c15223afc7b591ef0cc08552298fcd8b219cac992f1ebf

Download | Favorite | View

Datarobot Remote Code Execution

Posted Feb 21, 2022

Authored by Mike Coers

Datarobot suffers from a remote code execution vulnerability.

tags | advisory, remote, code execution

advisories | CVE-2021-45414

SHA-256 | 655be82d858b050310a87d53a8e33454703d09ce4323f8de6be4263ffe788843

Download | Favorite | View

WordPress Perfect Survey 1.5.1 SQL Injection

Posted Feb 21, 2022

Authored by Ron Jost

WordPress Perfect Survey plugin version 1.5.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2021-24762

SHA-256 | ab5b6dcc9f080add826ddde39b1034b8a2169f9e05ade5e04cba6ab0dd330869

Download | Favorite | View

WordPress WP User Frontend 3.5.25 SQL Injection

Posted Feb 21, 2022

Authored by Ron Jost

WordPress WP User Frontend plugin version 3.5.25 suffers from an authenticated remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2021-25076

SHA-256 | 280867a4c60d20510ff5bcaa423c881cbcd213e1b2b74568a593019331132f17

Download | Favorite | View

Red Hat Security Advisory 2022-0581-01

Posted Feb 21, 2022

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-0581-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include HTTP request smuggling, HTTP response splitting, code execution, denial of service, information leakage, and spoofing vulnerabilities.

tags | advisory, web, denial of service, spoof, vulnerability, code execution, ruby

systems | linux, redhat

advisories | CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255, CVE-2020-10663, CVE-2020-10933, CVE-2020-25613, CVE-2020-36327, CVE-2021-28965, CVE-2021-31799, CVE-2021-31810, CVE-2021-32066, CVE-2021-41817, CVE-2021-41819

SHA-256 | 8bd21cf01e10e7a947db8efca057a501595b8383a816b9f497a90e17a13ebc45

Download | Favorite | View

Thinfinity VirtualUI 2.5.26.2 Information Disclosure

Posted Feb 21, 2022

Authored by Daniel Morales

Thinfinity VirtualUI version 2.5.26.2 suffers from an information disclosure vulnerability.

tags | exploit, info disclosure

advisories | CVE-2021-46354

SHA-256 | 2b19df6335cfc9aa814e3c77fff5405550b9e652464edcbb2f4a2198d44c4ca2

Download | Favorite | View

Thinfinity VirtualUI 2.5.41.0 IFRAME Injection

Posted Feb 21, 2022

Authored by Daniel Morales

Thinfinity VirtualUI version 2.5.41.0 suffers from an iframe injection vulnerability.

tags | exploit

advisories | CVE-2021-45092

SHA-256 | 283c85287dddc71af90a100ee3df9c121378aa5bca5bd0c6921c262fe57f8e4a

Download | Favorite | View

Auto Spare Parts Management 1.0 SQL Injection

Posted Feb 21, 2022

Authored by nu11secur1ty

Auto Spare Parts Management version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 30d2f6c411784c3d31a4f2a68f89253ed00f4b05363894cf28982b8ab866391c

Download | Favorite | View

HMA VPN 5.3 Unquoted Service Path

Posted Feb 21, 2022

Authored by Saud Alenazi

HMA VPN version 5.3 suffers from an unquoted service path vulnerability.

tags | exploit

SHA-256 | fc3746e5e4d9467b9c73f54d58ba3cb675ceafeb9154939efe86c570c653aae5

Download | Favorite | View

Microsoft Gaming Services 2.52.13001.0 Unquoted Service Path

Posted Feb 21, 2022

Authored by Johto Robbie

Microsoft Gaming Services version 2.52.13001.0 suffers from an unquoted service path vulnerability.

tags | exploit

SHA-256 | 79139fdf3f5e6f9881454cf1de4ebaa7d172abaf459df0807afef041b5d9a6ad

Download | Favorite | View

Cab Management System 1.0 SQL Injection

Posted Feb 21, 2022

Authored by Alperen Ergel

Cab Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | c54a778ac6cac7cf0947d6a7afb026a8c6339c431312f32c1346da1b9e5231db

Download | Favorite | View

Cab Management System 1.0 Remote Code Execution

Posted Feb 21, 2022

Authored by Alperen Ergel

Cab Management System version 1.0 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution

SHA-256 | 771891c9014d619ea4cab2be545d0859bab5c615100aa07d5a40c542c6895aae

Download | Favorite | View

Collabfiltrator 2.1

Posted Feb 21, 2022

Authored by Ryan Griffin, Frank Scarpella, Jared McLaren, Adam Logue | Site github.com

Collabfiltrator is a tool to exfiltrate blind remote code execution output over DNS via Burp Collaborator.

tags | tool, remote, code execution, rootkit

systems | unix

SHA-256 | e4f2c5b6b0aea01cabdd0c7e8cce96dca706d60a5b08960cdab94118b9c52dfe

Download | Favorite | View