Whitepaper called Mobile Application Hacking Diary Episode 2.
84148946cba1f4a8c203b9d331ca95302a61cbb0ac567289bcf37ab3c2259cf6
Wolf CMS version 0.8.2 suffers from a remote shell upload vulnerability.
4990d8207294db847c52a10db69b2d36845054777429b586fc9dc3d039882413
Betster version 1.0.4 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
e161b508a74a09db14463cb1bb5efc6cbe154ca415e1e0a6118180c093f5f54d
Ultimate PHP Board (UPB) version 2.2.7 suffers from a cross site scripting vulnerability.
cb49bc015eedad265df4b05a3e04a6d40180f9d63f5ef9c69a3504e94a2f334d
WeBid version 1.1.1 suffers from an unrestricted file upload vulnerability.
0a29501b52601df8e1a2c36d36023a6d23b42554cdc2393e27eeb09b58827dcd
Clipbucket version 2.7.0.4.v2929-rc3 suffers from a remote blind SQL injection vulnerability.
f9100e2bf9451bea1a2cc28324f069af76f121782cfc3f115453c63ed3703a94
Mobile Application Hacking Diary whitepaper part one.
e4c6024f8478fdc045b8579a4c2724e32ec5a10026f2eff6c54bd0d3f6b96044
Elemata CMS version RC3.0 suffers from a remote SQL injection vulnerability.
443a7fa25dbcb64b6c45d3b60b8d94b3efa8d77348711bef3b594d0ec5f393ff
PodHawk version 1.85 suffers from a remote shell upload vulnerability.
66127ace927c9b025512d07ab5c3b575ddacf360ed2d83034adf295a340d4e7e
This Metasploit module exploits a file upload vulnerability found in LibrettoCMS 1.1.7, and possibly prior. Attackers bypass the file extension check and abuse the upload feature in order to upload a malicious PHP file without authentication, which results in arbitrary remote code execution.
30ecd42376c5e4bb7dd7923719eb84398fa5da45f31326b369732ac687c9d496
This Metasploit module exploits a file upload vulnerability found in Havalite CMS version 1.1.7. Prior versions are possibly affected. Attackers can abuse the upload feature in order to upload a malicious PHP file without authentication, which results in arbitrary remote code execution.
caf2d6ad9662842ffd45e96d09bc069561d43e22364b1adc6736d0aee2a8406c
imacs CMS version 0.3.0 remote shell upload exploit.
34c09e05c941242d343fb28e2f634ca4846414d6d7e2985667dc792bc4b4ee87
Bloofox CMS version 0.5.0 suffers from a remote shell upload vulnerability.
7d5c61ab1aa7ffbbf9fe697d07f1ef149b201aaeb6241852bafde647d79890a4
Havalite CMS version 1.1.7 suffers from a remote shell upload vulnerability.
3bfd1949b6240b29766e07c024d6e056daea82b6d1ae3e403725c28bc153e69a
Fly-High CMS version 2012-07-08 suffers from a remote shell upload vulnerability.
82b2a9f27a9c028ca4a7d4c77abb62633e96833d6738836ba15ee85e4379dc40
Libretto CMS version 2.2.2 suffers from a remote shell upload vulnerability.
91eefe177f39b398e5c19181a6fcec682bb28fc4da2b7d6c1ed0924158344bfa
230 CMS version 1.1.2012 suffers from a remote PHP code injection vulnerability.
f7997f1b21b5cccdfda0c6e183d786c03dfe34dec04e28c420e044c913f2003a
mkCMS version 3.6 suffers from a remote PHP code injection vulnerability.
b5a49fec1931ad3ae774efe120b62e22cf911136f7154322a7d3ff1e572659f2
Fobuc Guestbook version 0.9 suffers from a remote SQL injection vulnerability.
e9d441b015327d860d5ceb7e4d2dfdb88ad5e89146155f01bcf60ab38bb9639f
NanoBB version 0.7 suffers from cross site scripting and remote SQL injection vulnerabilities.
83e3693f866591301cbb5f6157865c114f517dbdea2d30608ef6a6dd724b3655
Lokboard version 1.1 suffers from a remote PHP code injection vulnerability.
d657c10dae83eb0c200a7f8f29e9521a0a4b076a65a941d86d5b104b56ffda5e
MaxForum version 2.0.0 suffers from PHP code injection, local file inclusion, and credential disclosure vulnerabilities.
e86565b1040c9480a896fd183b64a35b3657cb31227e853becd6ffe5cdc1c01b
Napata CMS version 1.5.2013 suffers from a remote command execution vulnerability.
ebcf583596fbf219f2bb9ee1f35d37975af3f02ec258ec4464dc9a0ed5490f6f
gpEasy CMS version 4.0 suffers from a remote shell upload vulnerability.
e6a962ae8b8f243dd6d721a24a57df334654b638a0b15f05c7375f21e7d1860b
Cuppa CMS suffers from remote and local file inclusion vulnerabilities.
1a69a262547b1fde2db132b721a60013a5cd8b3c578bd74d70a96f541610f65b