Showing 26 - 50 of 411

Files Date: 2017-12-01 to 2017-12-31

Joomla YouBumpit 2.0 SQL Injection: Posted Dec 27, 2017; Authored by Bilal Kardadou; Joomla YouBumpit extension version 2.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 42dac2f80fd0059aa28118bf8c7611ff165f7a726068f85714c1a3da1711fc61; Download | Favorite | View

Telesquare SKT LTE Router SDT-CS3B1 Denial Of Service: Posted Dec 27, 2017; Authored by LiquidWorm | Site zeroscience.mk; The Telesquare SKT LTE SDT-CS3B1 router suffers from a denial of service vulnerability.; tags | exploit, denial of service; SHA-256 | ad621c441c2540c9fc05f2008b5c91f8f4db98d927535b8a70de58064c182154; Download | Favorite | View

DotNetNuke DreamSlider 01.01.02 Arbitrary File Download: Posted Dec 27, 2017; Authored by Glafkos Charalambous | Site metasploit.com; This Metasploit module exploits an unauthenticated arbitrary file download vulnerability in DotNetNuke DreamSlider versions 01.01.02 and below.; tags | exploit, arbitrary, info disclosure; SHA-256 | 52a4f88b1baa1b9af28067c9267b9d789d0f09fd2836f93790e3965849f1381a; Download | Favorite | View

Sony Playstation 4 4.05 FW Local Kernel Loader: Posted Dec 27, 2017; Authored by CTurt, Specter, Flatz, qwertyoruiopz; In this project you will find a full implementation of the "namedobj" kernel exploit for the PlayStation 4 on 4.05. It will allow you to run arbitrary code as kernel in order to allow jailbreaking and kernel-level modifications to the system. This release does not contain any code related to defeating anti-piracy mechanisms or running homebrew. This exploit does include a loader that listens for payloads on port 9020 and will execute them.; tags | exploit, arbitrary, kernel; SHA-256 | efb9110b6f5259cec31c5c9d64ebc617e49aceaa50877b76a7c68c3811731a96; Download | Favorite | View

Telesquare SKT LTE Router SDT-CS3B1 CSRF / Command Execution: Posted Dec 27, 2017; Authored by LiquidWorm | Site zeroscience.mk; The Telesquare SKT LTE SDT-CS3B1 router suffers from authenticated arbitrary system command execution. The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.; tags | exploit, web, arbitrary, csrf; SHA-256 | bb4107cf0ec04056bd3d6137a9bfae0dd3cdd59475dd791d968a45ac5e86fb66; Download | Favorite | View

Telesquare SKT LTE Router SDT-CS3B1 Insecure Direct Object Reference: Posted Dec 27, 2017; Authored by LiquidWorm | Site zeroscience.mk; The Telesquare SKT LTE SDT-CS3B1 router suffers from an insecure direct object reference vulnerability that leaks information.; tags | exploit; SHA-256 | ecf368d40b507a5ea787f74e4155e0897b1da6e26bcc37abf469c5b25ffe93c8; Download | Favorite | View

Open Upload 0.4.2 Cross Site Scripting: Posted Dec 27, 2017; Authored by indoushka; Open Upload version 0.4.2 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 8fd3ae56c9eaaffbce8ce24528dc7cbc43dfef24347ae365d7f63cdedb64cdca; Download | Favorite | View

Open Upload 3.6.28 Cross site Scripting: Posted Dec 27, 2017; Authored by indoushka; Open Upload version 3.6.28 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | f3825e8a576b5ff6807659b9e39eda4220c0a81e908c0993c8402fb2284e013c; Download | Favorite | View

PHP Web Stat 4.5.03 Backdoor Account: Posted Dec 27, 2017; Authored by indoushka; PHP Web Stat version 4.5.03 has a backdoor admin account with a password of admin.; tags | exploit, web, php; SHA-256 | b316b05a85befd44ed5364cdcb0c1bb1ab576162f7a33118188267fee00b77f2; Download | Favorite | View

PHP Web Stat 4.5.03 Cross Site Scripting: Posted Dec 27, 2017; Authored by indoushka; PHP Web Stat version 4.5.03 suffers from a cross site scripting vulnerability.; tags | exploit, web, php, xss; SHA-256 | 52af61ae89ea0f47f9ef488d88fb9af10b92310e477a51447e9ac55582e63658; Download | Favorite | View

Locations Multipurpose CMS Directory Theme 1.0 Cross Site Scripting: Posted Dec 27, 2017; Authored by ShanoWeb; Locations Multipurpose CMS Directory Theme version 1.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 66c167f6fb3999b8ee3fd84fe82b21211c7709f3acb551fb846c9378085c3a29; Download | Favorite | View

Open Upload 0.4.2 Remote File Inclusion: Posted Dec 27, 2017; Authored by indoushka; Open Upload version 0.4.2 suffers from a remote file inclusion vulnerability.; tags | exploit, remote, code execution, file inclusion; SHA-256 | a0df0b5a7150d48c91d13d58031c2e14cf55b6541cb6008014ba58aa4263bf98; Download | Favorite | View

PHP Web Stat 4.5.03 Database Disclosure: Posted Dec 27, 2017; Authored by indoushka; PHP Web Stat version 4.5.03 suffers from a database backup disclosure vulnerability.; tags | exploit, web, php, info disclosure; SHA-256 | 45ae31dad88d2d189039610229ac26b7c9d472cf99a0b9f4181a045fc4aeed75; Download | Favorite | View

Swamp 0.0.2 Remote File Inclusion: Posted Dec 27, 2017; Authored by indoushka; Swamp version 0.0.2 suffers from a remote file inclusion vulnerability.; tags | exploit, remote, code execution, file inclusion; SHA-256 | 987d279e607a13603848a4d7ac3c5d8687587b2789323cbef401c109bb9b5bd7; Download | Favorite | View

SysGauge Server 3.6.18 Denial Of Service: Posted Dec 27, 2017; Authored by Ahmad Mahfouz; SysGauge Server version 3.6.18 suffers from a denial of service vulnerability.; tags | exploit, denial of service; advisories | CVE-2017-15667; SHA-256 | 721f0a10955f32c3a028a3838c5ed37b4352f8cd0aa8f6b51b858db3fabdc4bd; Download | Favorite | View

PHP Web Stat 4.x.x Information Disclosure: Posted Dec 27, 2017; Authored by indoushka; PHP Web Stats versions 4.x.x suffers from an information disclosure vulnerability.; tags | exploit, web, php, info disclosure; SHA-256 | a88f53cb440f7610f4f2941493f4252a9d622e5e62f8eddd1bf1763773c68e1a; Download | Favorite | View

ALLPlayer ALLMediaServer 0.95 Buffer Overflow: Posted Dec 27, 2017; Authored by Aloyce J. Makalanga; ALLPlayer ALLMediaServer versions 0.95 and below suffer from a buffer overflow vulnerability.; tags | exploit, overflow; advisories | CVE-2017-17932; SHA-256 | 7beeec87d60642363ea3f4cc1b85be925f9972466a5f66117c32bef9c55c5d5d; Download | Favorite | View

Library CMS 1.0 Cross Site Scripting: Posted Dec 27, 2017; Authored by ShanoWeb; Library CMS version 1.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 504db67bbcbe800bddbba7526c7d578a982e7efc7fb0dfe056e07ec4f7af08ba; Download | Favorite | View

Joomla YJ Live Search 2.0 SQL Injection: Posted Dec 26, 2017; Authored by Bilal Kardadou; Joomla YJ Live Search module extension version 2.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 2308452a3e243192e49d275a10278708b0d18850979ce947230cebba7b72d18f; Download | Favorite | View

Windows Media Player Information Disclosure: Posted Dec 26, 2017; Authored by James Lee; Windows Media Player suffers from an information disclosure vulnerability that lets an attacker know if a file exists.; tags | exploit, info disclosure; systems | windows; advisories | CVE-2017-11768; SHA-256 | 1f694c4131e9ec55e403693af394ce2335f4eb0d4c13ff11ea2fb2d82f65d150; Download | Favorite | View

Joomla YJ Filter For K2 1.0.5 SQL Injection: Posted Dec 26, 2017; Authored by Bilal Kardadou; Joomla YJ Filter for K2 extension version 1.0.5 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 0036d85f86e40d23cdcf335a0547e0415575cc6dc460337853361765db2675b2; Download | Favorite | View

COMTREND ADSL Router CT-5367 Remote Code Execution: Posted Dec 26, 2017; Authored by TnMch; COMTREND ADSL Router CT-5367 suffers from a remote code execution vulnerability. This vulnerability was originally discovered in March, 2011 by Todor Donev.; tags | exploit, remote, code execution; SHA-256 | f946364fbbb4e11c76d87c1d3b3dfc0173a9d86e0745d98cfcf5995885f541bc; Download | Favorite | View

SilverStripe CMS 3.6.2 CSV Excel Macro Injection: Posted Dec 26, 2017; Authored by Ishaq Mohammed; SilverStripe CMS version 3.6.2 suffers from a CSV excel macro injection vulnerability.; tags | exploit; SHA-256 | 8f24e7c970ae02bcd4583691a0f0ebc51741966988c3925aea6dcc05ed3c7c40; Download | Favorite | View

Biometric Shift Employee Management System 3.0 Local File Disclosure: Posted Dec 26, 2017; Authored by Ihsan Sencan; Biometric Shift Employee Management System version 3.0 suffers from a local file disclosure vulnerability.; tags | exploit, local, info disclosure; advisories | CVE-2017-17876; SHA-256 | 32171126fbdfd4bc9903ce06336349990ace1eaf33722e72bb088000224ca3f8; Download | Favorite | View

Sendroid Bulk SMS Portal / Marketing Script 6.5.0 SQL Injection: Posted Dec 26, 2017; Authored by Onwuka Gideon; Sendroid Bulk SMS Portal and Market Script versions 5.0.0 through 6.5.0 suffer from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 350f8eafa5ec2ef5c03f352ef6de83bd47858908da6a3f459ecc1a5cff8ceddf; Download | Favorite | View

Page 2 of 17 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 298 files
Ubuntu 66 files
Debian 25 files
Gentoo 16 files
Ahmet Umit Bayram 10 files
Apple 9 files
malvuln 8 files
Google Security Research 5 files
Jann Horn 5 files
nu11secur1ty 4 files

File Archives

Systems

AIX (429)
Apple (2,088)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,054)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,500)
HPUX (880)
iOS (375)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,920)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (16,008)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,547)
UNIX (9,413)
UnixWare (187)
Windows (6,661)
Other

Files Date: 2017-12-01 to 2017-12-31

File Archive:

June 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems