Advisory: Endeca Latitude Cross-Site Request Forgery RedTeam Pentesting discovered a Cross-Site Request Forgery (CSRF) vulnerabilit...
Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
Document Title: ============ Mailspect Control Panel version 4.0.5 Multiple Vulnerabilities
Python CGIHTTPServer Encoded Path Traversal
Advisory: Python CGIHTTPServer File Disclosure and Potential Code Execution The CGIHTTPServer Python module does not pro...
Thomson TWG87OUIR - POST Password CSRF
#Author: nopesled #Date: 24/06/14 #Vulnerability: POST Password Reset CSRF #Tested on: Thomson TWG87OUIR (Hardware Version)
D-link DSL-2760U-E1 - Persistent XSS
#!/bin/bash # Written and discovered by Yuval tisf Nativ # The page 'dhcpinfo.html' will list all machines connected to the...
Wordpress 3.9.1 - CSRF Vulnerability
# EXPLOIT TITLE:Wordpress 3.9.1-CSRF vulnerability # DATE:21st June,2014 # Author:Avinash Kumar Thapa #URL: localhost/wordpress/ ...
web2Project 3.1 - Multiple Vulnerabilities
Advisory ID: HTB23213 Product: web2Project Vendor: http://web2project.net Vulnerable Version(s): 3.1 and probably prior Tested Vers...
ZTE WXV10 W300 - Multiple Vulnerabilities
# Exploit Title: ZTE WXV10 W300 Multiple Vulnerabilities # Date: 17-05-2014 # Server Version: RomPager/4.07 UPnP/1.0 ...
ZeroCMS 1.0 - zero_transact_user.php, Handling Privilege Escalation
import sys,getopt,cookielib,urllib2,urllib # ZeroCMS 1.0 # zero_transact_user.php # Impropper Form post hanling, (parameter poluti...