Showing 1 - 25 of 192

Files

Packet Storm New Exploits For June, 2013: Posted Jul 1, 2013; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 192 exploits added to Packet Storm in June, 2013.; tags | exploit; systems | linux; SHA-256 | 95019076b638e2f09aaf08a7874f0386a18e21c90290b3a25dd85a226c5662bc; Download | Favorite | View

Carberp Web Panel C2 Backdoor Remote PHP Code Execution: Posted Jun 30, 2013; Authored by Luis Santana, bwall, Steven K | Site metasploit.com; This Metasploit module exploits backdoors that can be sighted all over the leaked source code of the Carberp botnet C2 Web Panel.; tags | exploit, web; SHA-256 | 8e430225d99c7af533d24ccc317c9b9e1fefd8bc6b0785c793924b5d5a2741a0; Download | Favorite | View

Xorbin Analog Flash Clock 1.0 For Joomla XSS: Posted Jun 30, 2013; Authored by Prakhar Prasad, Rafay Baloch; Xorbin Analog Flash Clock plugin version 1.0 for Joomla suffers from a flash-based cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2013-4692; SHA-256 | db191d2a15c32b3a82e6a57b0ed829bbbb56a36958154f8a7150bc0dc3f1d59f; Download | Favorite | View

Xorbin Digital Flash Clock 1.0 For WordPress XSS: Posted Jun 30, 2013; Authored by Prakhar Prasad, Rafay Baloch; Xorbin Digital Flash Clock plugin version 1.0 for WordPress suffers from a flash-based cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2013-4693; SHA-256 | 52281822ff4a323761052080687530ded283d887d7b6d4c7707929f84c1ef54d; Download | Favorite | View

Xorbin Analog Flash Clock 1.0 For WordPress XSS: Posted Jun 30, 2013; Authored by Prakhar Prasad, Rafay Baloch; Xorbin Analog Flash Clock plugin version 1.0 for WordPress suffers from a flash-based cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2013-4692; SHA-256 | 4095a10cc00eeeb24a4ebbf0d3b8293fa9afb1e65add0ab3198f35283253d6ca; Download | Favorite | View

C.P.Sub 4.5 Privilege Escalation: Posted Jun 30, 2013; Authored by Chako; C.P.Sub versions 4.5 and below allows for administrative access escalation by the simple tweak of a user-supplied parameter.; tags | exploit, bypass; SHA-256 | 14729e57eccb98c1c5eea6f86f24ddce13fd2cdb43c82ac103ce384009b6a37a; Download | Favorite | View

Vatican Cross Site Scripting: Posted Jun 30, 2013; Authored by Andrea Menin; The Vatican vaticanstate.va webcam page suffered from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | a8894f1b1dd5890c9866d2426fdde5123f882692bbd5b0645b0fea35e9fbd003; Download | Favorite | View

Atomymaxsite Shell Upload: Posted Jun 30, 2013; Authored by Iranian_Dark_Coders_Team; Sites powered by ATOMYMAXSITE appear to suffer from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | d379da817df77aaeadcc98a86b9e17fdf60ec6d4b1849e11e8c49f2fe3c406da; Download | Favorite | View

Nameko Webmail Cross Site Scripting: Posted Jun 29, 2013; Authored by Andrea Menin; Nameko Webmail versions 0.10.146 and below suffer from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 3b2740074a19f52c84f779efae84cdd9f1a80d8cc1175eef3efe3108818db72a; Download | Favorite | View

Static HTTP Server 1.0 SEH Overflow: Posted Jun 29, 2013; Authored by Jacob Holcomb; Static HTTP Server version 1.0 SEH overflow exploit that leverages the configuration file and binds a shell to port 4444.; tags | exploit, web, overflow, shell; SHA-256 | 20860972de52d3d5624343a4ab0e0c228e90b1a76c4d40afeed190c4d848a86b; Download | Favorite | View

AVS Media Player 4.1.11.100 Denial Of Service: Posted Jun 29, 2013; Authored by metacom; AVS Media Player version 4.1.11.100 local denial of service exploit that generates a malicious AC3 file.; tags | exploit, denial of service, local; SHA-256 | e38991db53bda992deb7fb8bd65ba6883291ab7c0faf79ec5055a5da0cdbb1e2; Download | Favorite | View

WordPress WP-Private-Messages SQL Injection: Posted Jun 29, 2013; Authored by IeDb; WordPress WP-Private-Messages this party plugin suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | b964cff16f08182af4664c78ba3cdaa0af3da335ea7d4470e22511915ce137ed; Download | Favorite | View

Fortigate Firewall Cross Site Request Forgery: Posted Jun 28, 2013; Authored by Sven Wurth; Fortigate Firewall versions prior to 4.3.13 and 5.0.2 suffer from multiple cross site request forgery vulnerabilities.; tags | exploit, vulnerability, csrf; advisories | CVE-2013-1414; SHA-256 | 5e716d94582ec65cc97f47dcfeeb3d561fddabaebd2912e1d7b23f64de396cd8; Download | Favorite | View

YOPMail XSS / Injection / HTTP Response Splitting: Posted Jun 28, 2013; Authored by Juan Carlos Garcia; YOPMail suffers from cross site scripting, HTTP response splitting, CRLF injection, and session token handling vulnerabilities.; tags | exploit, web, vulnerability, xss; SHA-256 | 695a2946cc39df0b7ae62aedfd486a14f8ffc15c2fc2ef1b909e0eeccfa856ae; Download | Favorite | View

Windows 7 SP1 Local Access SYSTEM Compromise: Posted Jun 28, 2013; Authored by Anastasios Monachos; If you have physical access to a Microsoft Windows 7 SP1 instance, you can leverage the "Launch startup Repair" functionality to gain SYSTEM access.; tags | exploit; systems | windows; SHA-256 | fac9f4e8231364eeec4b1aecc36f354fe04953186fefb938b3fc672b096c51cb; Download | Favorite | View

Mobile USB Drive HD 1.2 Shell Upload: Posted Jun 28, 2013; Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com; Mobile USB Drive HD version 1.2 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | af5f77c231114e25afd0e7bb7892ab8b042909b94e8970efbfe6ac0a8a8915f3; Download | Favorite | View

Barracuda CudaTel Communication Server 2.6.002.040 XSS: Posted Jun 28, 2013; Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com; Barracuda CudaTel Communication Server version 2.6.002.040 suffers from multiple script injection vulnerabilities.; tags | exploit, vulnerability; SHA-256 | 40dfe644016b1ad81c1a85043ea8e429a90b78046c7c522200ab93064f1ac717; Download | Favorite | View

PCMan's FTP Server 2.0 Buffer Overflow: Posted Jun 28, 2013; Authored by Chako; PCMan's FTP Server version 2.0 remote buffer overflow exploit that leverages USER and pops calc.exe.; tags | exploit, remote, overflow; SHA-256 | ebe2ee53f912fbc36e072f14536b5b3d704cb736c0af15df0fafefd130440e39; Download | Favorite | View

PayPal Enumeration / Information Disclosure: Posted Jun 28, 2013; Authored by Karim H.B., Vulnerability Laboratory | Site vulnerability-lab.com; The PayPal Hong Kong marketing site suffers from information disclosure, user enumeration, and bruteforcing vulnerabilities.; tags | exploit, vulnerability, info disclosure; SHA-256 | 9392e6433d56701d485bdda4c180db292d48ca179237ab880ff00fd75ff3f245; Download | Favorite | View

eFile Wifi Transfer Manager 1.0 LFI / XSS: Posted Jun 28, 2013; Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com; eFile Wifi Transfer Manager version 1.0 for iOS suffers from local file inclusion and cross site scripting vulnerabilities.; tags | exploit, local, vulnerability, xss, file inclusion; systems | ios; SHA-256 | f4659d8f270b07a83389f539606ad8dafb4a5388e016cbf23573ae55c1a4c349; Download | Favorite | View

PCMan's FTP Server 2.0.7 Remote Root: Posted Jun 28, 2013; Authored by Jacob Holcomb; PCMan's FTP Server version 2.0.7 remote root buffer overflow exploit that leverages the USER command and binds a shell to port 4444.; tags | exploit, remote, overflow, shell, root; advisories | CVE-2013-4730; SHA-256 | 7f0bb5b4598cb64d889b69fe79face4a1e564281d836fd315c6a126034d7cc32; Download | Favorite | View

Java Applet ProviderSkeleton Insecure Invoke Method: Posted Jun 27, 2013; Authored by Adam Gowdiak, Matthias Kaiser | Site metasploit.com; This Metasploit module abuses the insecure invoke() method of the ProviderSkeleton class that allows to call arbitrary static methods with user supplied arguments. The vulnerability affects Java version 7u21 and earlier.; tags | exploit, java, arbitrary; advisories | CVE-2013-2460, OSVDB-94346; SHA-256 | 4c7f2d07b2fb9904b25b6805e68094ce81bd292f4e93feb4b36e0f249b1ace06; Download | Favorite | View

PCMan's FTP Server 2.0 Denial Of Service: Posted Jun 27, 2013; Authored by Chako; Send an empty password to PCMan's FTP Server version 2.0 triggers a denial of service condition.; tags | exploit, denial of service; SHA-256 | 5c6bc2540fe27f8b6ae22a14eac60214f4d64052fc02c888492e8709cf10aec6; Download | Favorite | View

Xaraya 2.4.0-b1 Cross Site Scripting: Posted Jun 26, 2013; Authored by High-Tech Bridge SA | Site htbridge.com; Xaraya version 2.4.0-b1 suffers from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2013-3639; SHA-256 | ed1a6f3ff2988a17b6db15e8220f076ffe9b16698f9b2452201a32c958af6c74; Download | Favorite | View

InstantCMS 1.6 Code Execution: Posted Jun 26, 2013; Authored by Akastep; InstantCMS version 1.6 remote PHP code execution exploit that spawns a reverse shell.; tags | exploit, remote, shell, php, code execution; SHA-256 | 58c5a918b42d3c4c9947890483bf68e4a4eea813701b686f794e5f548a9a717d; Download | Favorite | View

Page 1 of 8 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 293 files
Ubuntu 63 files
Debian 33 files
Gentoo 28 files
LiquidWorm 10 files
nu11secur1ty 7 files
Adam Gowdiak 4 files
kai6u 3 files
gabe_k 3 files
liquidsky 3 files

Files

Top Authors In Last 30 Days

Recent News