Files Date: 2015-09-16 to 2015-09-17 ≈ Packet Storm

↧

Weeman Phishing HTTP Server

September 16, 2015, 2:22 am

Weeman is a simple HTTP server using python that creates a phishing pages, takes data from the user, and will try to login as the user to the original website.

View Article

WordPress ALO EasyMail Newsletter 2.6 CSRF / Cross Site Scripting

September 16, 2015, 3:11 am

WordPress ALO EasyMail Newsletter plugin version 2.6 suffers from cross site request forgery and cross site scripting vulnerabilities.

View Article

WordPress xPinner Lite 2.2 Cross Site Request Forgery / Cross Site Scripting

September 16, 2015, 4:11 am

WordPress xPinner plugin version 2.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

View Article

ZeusCart 4.0 Cross Site Scripting

September 16, 2015, 6:03 am

ZeusCart version 4.0 suffers from a cross site scripting vulnerability.

View Article

ZeusCart 4.0 SQL Injection

September 16, 2015, 6:33 am

ZeusCart version 4.0 suffers from multiple remote SQL injection vulnerabilities.

View Article

WordPress WP-Shop 3.4.3.18 Cross Site Scripting

September 16, 2015, 6:33 am

WordPress WP-Shop plugin version 3.4.3.18 suffers from a cross site scripting vulnerability.

View Article

ManageEngine OpManager 11.5 Hardcoded Credential / SQL Bypass

September 16, 2015, 6:33 am

ManageEngine OpManager versions 11.5 and below suffer from SQL query protection bypass and has hard-coded credentials.

View Article

ManageEngine EventLog Analyzer 10.6 Build 10060 SQL Query Execution

September 16, 2015, 7:44 am

ManageEngine EventLog Analyzer version 10.6 build 10060 suffers from a SQL query execution vulnerability.

View Article

ZeusCart 4.0 Cross Site Request Forgery

September 16, 2015, 8:02 am

ZeusCart version 4.0 suffers from a cross site request forgery vulnerability.

View Article

Anchor CMS 0.9.2 Cross Site Scripting / Open Redirect

September 16, 2015, 8:22 am

Anchor CMS version 0.9.2 suffers from cross site scripting and open redirect vulnerabilities.

View Article

Kirby CMS 2.1.0 CSRF / Shell Upload

September 16, 2015, 8:55 am

Kirby CMS versions 2.1.0 and below suffer from cross site request forgery and remote shell upload vulnerabilities.

View Article

ZeusCart 4.0 Code Execution

September 16, 2015, 10:32 am

ZeusCart version 4.0 suffers from a remote code execution vulnerability.

View Article

Kirby CMS 2.1.0 Authentication Bypass / Traversal

September 16, 2015, 11:32 am

Kirby CMS versions 2.1.0 and below suffer from an authentication bypass vulnerability via path traversal.

View Article

Zen Cart 1.5.4 Code Execution / Information Disclosure

September 16, 2015, 12:22 pm

Zen Cart version 1.5.4 suffers from code execution and information leakage vulnerabilities.

View Article

Microsoft released a security bulletin (MS15-101) describing a .NET MVC denial of service vulnerability. This post analyzes the vulnerability in detail, starting from the theory and then providing a...

View Article

More Pages to Explore .....