Showing 1 - 7 of 7

Files Date: 2015-06-24 to 2015-06-25

Thycotic Secret Server 8.8.000004 Cross Site Scripting: Posted Jun 24, 2015; Authored by Marco Delai; Thycotic Secret Server versions 8.6.000000 through 8.8.000004 suffer from a persistent cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2015-3443; SHA-256 | 9ea22b103c6aa0c6d6dc2e889a4f8f3ec01f979507a2b6f0d1b698555069d43a; Download | Favorite | View

Kguard Digital Video Recorder Bypass Issues: Posted Jun 24, 2015; Authored by Federick Joe P Fajardo; A deficiency in handling authentication and authorization has been found with Kguard 104/108/v2 models. While password-based authentication is used by the ActiveX component to protect the login page, all the communication to the application server at port 9000 allows data to be communicated directly with insufficient or improper authorization. Proof of concept exploit included.; tags | exploit, activex, proof of concept; advisories | CVE-2015-4464; SHA-256 | f2bc1717a93e9db3908a82aa2086b5693c8ed751e4401e4bc8ea701c009a43ec; Download | Favorite | View

iBall 150M Wireless-N ADSL2+ Router Authentication Bypass: Posted Jun 24, 2015; Authored by Gem George; The CGI script used in the iBall 150M Wireless-N ADSL2+ router does not validate credentials. Hence any page in the router can be directly accessed by replacing page extension with .cgi.; tags | exploit, cgi, bypass; SHA-256 | 4f6130f32632281e0a685611d0f071ae4329ca63096fc5c385e01cbcf5abc5fc; Download | Favorite | View

ManageEngine Asset Explorer 6.1 Cross Site Scripting: Posted Jun 24, 2015; Authored by Suraj Krishnaswami; ManageEngine Asset Explorer version 6.1 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2015-2169; SHA-256 | 0e0cbef4faaa90dd611f268ecebd5e06de49fa975ef884e5b752fbdcd43706b1; Download | Favorite | View

WordPress Nextend Twitter Connect 1.5.1 Cross Site Scripting: Posted Jun 24, 2015; Authored by Liran Segal; WordPress Nextend Twitter Connect plugin version 1.5.1 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2015-4557; SHA-256 | 2613a7c7a1dcc2e75e1e3e027cc93b73799c9914997cb258302b816d66136f5c; Download | Favorite | View

Google Chrome 43.0.2357.124 XSS Filter Bypass: Posted Jun 24, 2015; Authored by Yosi Ovadia; Google Chrome version 43.0.2357.124 suffers from a cross site scripting filter bypass vulnerability.; tags | exploit, xss, bypass; SHA-256 | 76a2fa134b093b8a4f3a4737dc9c2d7dfa87c9cbf70ffc89e1d6d4da91024f1d; Download | Favorite | View

Agahi 1.6 Cross Site Scripting / SQL Injection: Posted Jun 24, 2015; Authored by indoushka; Agahi version 1.6 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; SHA-256 | da83883858266fb087d8cb7ef2e270fb5581e6362251675cf838c003aa25d2b5; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days