# Exploit Title: Wordpress uCan Post plugin <= 1.0.09 Stored XSS
# Dork: inurl:/wp-content/plugins/ucan-post/
# Date: 2012/01/18
# Author: Gianluca Brindisi (gATbrindi.si @gbrindisi http://brindi.si/g/)
# Software Link: http://downloads.wordpress.org/plugin/ucan-post.1.0.09.zip
# Version: 1.0.09
1) You need permissions to [...]
<?php
/*
———————————————————————
appRain CMF <= 0.1.5 (uploadify.php) Unrestricted File Upload Exploit
———————————————————————
author…………: Egidio Romano aka EgiX
[...]
# Abysssec Public Exploit
# more info www.abysssec.com
# Avaya WinPDM UniteHostRouter <= 3.8.2 Remote Pre-Auth Command Execute
#A boundary error in the Unite Host Router service (UniteHostRouter.exe)
#when processing certain requests can be exploited to cause a stack-based buffer
[...]
#Exploit Title: AllWebMenus WordPress Menu Plugin Arbitrary file upload
#Version: < 1.1.9
#Date: 2012-01-19
#Author: 6Scan (http://6scan.com) security team
#Software Link: http://wordpress.org/extend/plugins/allwebmenus-wordpress-menu-plugin/
#Official fix: This advisory is released after the vendor was contacted and fixed the issue promptly.
[...]
Source: http://www.1337day.com/exploits/17420
Exploit code is here: http://git.zx2c4.com/CVE-2012-0056/plain/mempodipper.c
Blog post about it is here: http://blog.zx2c4.com/749
# Exploit Title: Mempodipper – Linux Local Root for >=2.6.39, 32-bit and 64-bit
# Date: Jan 21, 2012
# Author: zx2c4
# Tested on: Gentoo, Ubuntu
[...]
Trustwave’s SpiderLabs Security Advisory TWSL2012-002:
Multiple Vulnerabilities in WordPress
Published: 1/24/12
Version: 1.0
Vendor: WordPress (http://wordpress.org/)
Product: WordPress
Version affected: 3.3.1 and prior
Product description:
WordPress is a free and open [...]
+————————————————————————-+
# Exploit Title : Peel SHOPPING – version 2.8 and version 2.9 xss/sql inject Vulnerability
# version : v2.9
# Author : Cyber-Crystal
# Date [...]
require ‘msf/core’
class Metasploit3 < Msf::Exploit::Remote
include Msf::Exploit::Remote::HttpClient
def initialize(info = {})
super(update_info(info,
[...]
#!/usr/bin/perl
########################################################################
# Title : 4images 1.7.6 > 9 Csrf inject php code
# Author : Or4nG.M4n
# Version : 1.7.6 > 9
# Homepage : http://www.4homepages.de/
# Dork [...]
# Exploit Title: Snort Report <= 1.3.2 SQL Injection Vulnerability
# Date: 29/01/2012
# Author: a.kadir altan (testpenter_AT_gmail.com)
# Software Link: http://www.symmetrixtech.com/ids/snortreport-1.3.2.tar.gz
# Version: <= 1.3.2
# Platform: PHP
##########################
Vulnerable parameter:
[...]
========================================
GAzie <= 5.20 Cross Site Request Forgery
========================================
Author___: giudinvx
Email____: <giudinvx[at]gmail[dot]com>
Date_____: 5/02/2012
Site_____: http://www.giudinvx.altervista.org/
——————————————————–
@Application Info:
Multicompany finance application written in PHP using a [...]
# Exploit Title: Tube Ace(Adult PHP Tube Script) SQL Injection
# Date: 05/02/2012
# Author: Daniel Godoy
# Author Mail: DanielGodoy[at]GobiernoFederal[dot]com
# Author Web: www.delincuentedigital.com.ar
# Software: Tube Ace
# http://www.tubeace.com
# Tested on: [...]
Title : PDF Viewer Component ActiveX DoS
Auther : Senator of Pirates
E-Mail : Senator.of.Pirates.team@gmail.com
FaceBook : FaceBook.Com/SenatorofPirates
Software link : http://www.ocxt.com/download/PDFViewerSetup.exe
Date : 05/02/2012
Tested : Windows Xp SP3 EN
eax=00000000 ebx=00000001 ecx=01800990 [...]
Source: http://www.1337day.com/exploits/17492
Source: http://www.1337day.com/exploits/17493
# Exploit Title: Wordpress uCan Post plugin <= 1.0.09 Stored XSS
# Dork: inurl:/wp-content/plugins/ucan-post/
# Date: 2012/01/18
# Author: Gianluca Brindisi (gATbrindi.si @gbrindisi http://brindi.si/g/)
# Software Link: http://downloads.wordpress.org/plugin/ucan-post.1.0.09.zip
# Version: 1.0.09
1) You need permissions to [...]
<?php
/*
———————————————————————
appRain CMF <= 0.1.5 (uploadify.php) Unrestricted File Upload Exploit
———————————————————————
author…………: Egidio Romano aka EgiX
[...]
# Abysssec Public Exploit
# more info www.abysssec.com
# Avaya WinPDM UniteHostRouter <= 3.8.2 Remote Pre-Auth Command Execute
#A boundary error in the Unite Host Router service (UniteHostRouter.exe)
#when processing certain requests can be exploited to cause a stack-based buffer
[...]
#Exploit Title: AllWebMenus WordPress Menu Plugin Arbitrary file upload
#Version: < 1.1.9
#Date: 2012-01-19
#Author: 6Scan (http://6scan.com) security team
#Software Link: http://wordpress.org/extend/plugins/allwebmenus-wordpress-menu-plugin/
#Official fix: This advisory is released after the vendor was contacted and fixed the issue promptly.
[...]