Quantcast
Channel: Files Date: 2015-09-16 to 2015-09-17 ≈ Packet Storm
Browsing latest articles
Browse All 15 View Live

Weeman Phishing HTTP Server

Weeman is a simple HTTP server using python that creates a phishing pages, takes data from the user, and will try to login as the user to the original website.

View Article


WordPress ALO EasyMail Newsletter 2.6 CSRF / Cross Site Scripting

WordPress ALO EasyMail Newsletter plugin version 2.6 suffers from cross site request forgery and cross site scripting vulnerabilities.

View Article

WordPress xPinner Lite 2.2 Cross Site Request Forgery / Cross Site Scripting

WordPress xPinner plugin version 2.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

View Article

ZeusCart 4.0 Cross Site Scripting

ZeusCart version 4.0 suffers from a cross site scripting vulnerability.

View Article

ZeusCart 4.0 SQL Injection

ZeusCart version 4.0 suffers from multiple remote SQL injection vulnerabilities.

View Article


WordPress WP-Shop 3.4.3.18 Cross Site Scripting

WordPress WP-Shop plugin version 3.4.3.18 suffers from a cross site scripting vulnerability.

View Article

ManageEngine OpManager 11.5 Hardcoded Credential / SQL Bypass

ManageEngine OpManager versions 11.5 and below suffer from SQL query protection bypass and has hard-coded credentials.

View Article

ManageEngine EventLog Analyzer 10.6 Build 10060 SQL Query Execution

ManageEngine EventLog Analyzer version 10.6 build 10060 suffers from a SQL query execution vulnerability.

View Article


ZeusCart 4.0 Cross Site Request Forgery

ZeusCart version 4.0 suffers from a cross site request forgery vulnerability.

View Article


Anchor CMS 0.9.2 Cross Site Scripting / Open Redirect

Anchor CMS version 0.9.2 suffers from cross site scripting and open redirect vulnerabilities.

View Article

Kirby CMS 2.1.0 CSRF / Shell Upload

Kirby CMS versions 2.1.0 and below suffer from cross site request forgery and remote shell upload vulnerabilities.

View Article

ZeusCart 4.0 Code Execution

ZeusCart version 4.0 suffers from a remote code execution vulnerability.

View Article

Kirby CMS 2.1.0 Authentication Bypass / Traversal

Kirby CMS versions 2.1.0 and below suffer from an authentication bypass vulnerability via path traversal.

View Article


Zen Cart 1.5.4 Code Execution / Information Disclosure

Zen Cart version 1.5.4 suffers from code execution and information leakage vulnerabilities.

View Article

.NET MVC Denial Of Service

Microsoft released a security bulletin (MS15-101) describing a .NET MVC denial of service vulnerability. This post analyzes the vulnerability in detail, starting from the theory and then providing a...

View Article

Browsing latest articles
Browse All 15 View Live