Simple Grocery Store Sales And Inventory System 1.0 – Authentication Bypass
October 17th, 2020 📆 | 8429 Views ⚑
# Exploit Title: Simple Grocery Store Sales And Inventory System 1.0 - Authentication Bypass # Date: 24/09/2020 # Exploit Author:
Browsing the "authentication" Tag
Tagged with: authentication • bypass • grocery • inventory • php • sales • simple • store • system • webapps
Zoo Management System 1.0 – Authentication Bypass
October 17th, 2020 📆 | 3245 Views ⚑
# Exploit Title: Zoo Management System 1.0 - Authentication Bypass # Date: 02/10/2020 # Exploit Author: Jyotsna Adhana # Vendor
Tagged with: authentication • bypass • management • php • system • webapps • zoo
Alumni Management System 1.0 – Authentication Bypass
October 17th, 2020 📆 | 3788 Views ⚑
#Exploit Title: Alumni Management System 1.0 - Authentication Bypass #Date: 2020-10-16 #Exploit Author: Ankita Pal #Vendor Homepage: https://www.sourcecodester.com/php/14524/alumni-management-system-using-phpmysql-source-code.html #Software Link:
Tagged with: alumni • authentication • bypass • management • php • system • webapps
Company Visitor Management System (CVMS) 1.0 – Authentication Bypass
October 17th, 2020 📆 | 2781 Views ⚑
# Exploit Title: Company Visitor Management System (CVMS) 1.0 - Authentication Bypass # Date: 16/10/2020 # Exploit Author: Oğuz Türkgenç
Tagged with: authentication • bypass • company • CVMS • management • php • system • visitor • webapps
Employee Management System 1.0 – Authentication Bypass
October 16th, 2020 📆 | 6194 Views ⚑
#Exploit Title: Employee Management System 1.0 - Authentication Bypass #Date: 2020-10-16 #Exploit Author: Ankita Pal #Vendor Homepage: https://www.sourcecodester.com/php/14432/employee-management-system-using-php.html #Software Link:
Tagged with: authentication • bypass • employee • management • php • system • webapps
Vehicle Parking Management System 1.0 – Authentication Bypass
October 15th, 2020 📆 | 3334 Views ⚑
# Exploit Title: Vehicle Parking Management System 1.0 - Authentication Bypass # Google Dork: N/A # Date: 2020-10-14 # Exploit
Tagged with: authentication • bypass • management • parking • php • system • vehicle • webapps
Authentication Bug Opens Android Smart-TV Box to Data Theft
October 13th, 2020 📆 | 5542 Views ⚑
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the
Tagged with: android • android debug bridge • arbitrary code execution • authentication • box • bug • command line • critical • data • hacks • hindotech • HK1 TV Box • Local Privilege Escalation • malware • Mobile Security • opens • privacy • root • Security Vulnerability • serial port • set top box • sick.codes • smart • smart tv • smarttv • theft • UART • vulnerabilities • Web Security
EasyPMS 1.0.0 Authentication Bypass ≈ Packet Storm
October 8th, 2020 📆 | 7657 Views ⚑
# Exploit Title: EasyPMS 1.0.0 – Authentication Bypass# Discovery by: Jok3r# Vendor Homepage: https://www.elektraweb.com/en/# Software Link: https://github.com/Travelaps/EasyPMS/releases/# Tested Version: 1.0.0#
Tagged with: advisory • authentication • bypass • CSRF • easypms • exploit • overflow • packet • scanner • security • storm • vulnerability • whitepaper • XSS
EmbedThis GoAhead Web Server 5.1.1 Digest Authentication Capture Replay Nonce Reuse ≈ Packet Storm
October 8th, 2020 📆 | 6423 Views ⚑
#!/usr/bin/env python3# -*- coding: utf-8 -*-## EmbedThis GoAhead Web Server 5.1.1 Digest Authentication Capture Replay Nonce Reuse### Vendor: Embedthis Software
Tagged with: advisory • authentication • capture • CSRF • digest • embedthis • exploit • goahead • nonce • overflow • packet • replay • reuse • scanner • security • server • storm • vulnerability • web • whitepaper • XSS
EasyPMS 1.0.0 – Authentication Bypass
October 6th, 2020 📆 | 7690 Views ⚑
# Exploit Title: EasyPMS 1.0.0 - Authentication Bypass # Discovery by: Jok3r # Vendor Homepage: https://www.elektraweb.com/en/ # Software Link: https://github.com/Travelaps/EasyPMS/releases/
Tagged with: authentication • bypass • easypms • JSON • webapps
Hashicorp Vault AWS IAM Integration Authentication Bypass
October 6th, 2020 📆 | 2756 Views ⚑
HashiCorp Vault’s AWS IAM authentication method can be bypassed by sending a serialized request to the STS AssumeRoleWithWebIdentity method as
Tagged with: advisory • authentication • AWS • bypass • CSRF • exploit • hashicorp • IAM • integration • overflow • scanner • security • vault • vulnerability • whitepaper • XSS
Hashicorp Vault GCP IAM Integration Authentication Bypass
October 6th, 2020 📆 | 8114 Views ⚑
HashiCorp Vault’s GCP authentication method can be bypassed on gce type roles that do not specify bound_service_accounts. Vault does not
Tagged with: advisory • authentication • bypass • CSRF • exploit • GCP • hashicorp • IAM • integration • overflow • scanner • security • vault • vulnerability • whitepaper • XSS
RocketLinx Series Authentication Bypass / CSRF / Command Injection ≈ Packet Storm
October 5th, 2020 📆 | 2600 Views ⚑
SEC Consult Vulnerability Lab Security Advisory < 20201005-0 >=======================================================================title: Multiple Critical Vulnerabilitiesproduct: RocketLinx Seriesvulnerable version: See “Vulnerable / tested versions”fixed
Tagged with: advisory • authentication • bypass • command • CSRF • exploit • injection • overflow • packet • rocketlinx • scanner • security • series • storm • vulnerability • whitepaper • XSS
Microsoft urges organizations to adopt multi-factor authentication
September 30th, 2020 📆 | 2943 Views ⚑
Add Microsoft to the growing chorus of tech companies urging organizations to implement multi-factor authentication as soon as possible to
Tagged with: adopt • authentication • factor • microsoft • multi • multifactor • organizations • urges
Artica Proxy 4.30.000000 Authentication Bypass / Command Injection ≈ Packet Storm
September 23rd, 2020 📆 | 8078 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStagerdef initialize(info =
Tagged with: 000000 • advisory • artica • authentication • bypass • command • CSRF • exploit • injection • overflow • packet • proxy • scanner • security • storm • vulnerability • whitepaper • XSS
MFA Bypass Bugs Opened Microsoft 365 To Attack
September 15th, 2020 📆 | 6963 Views ⚑
MFA Bypass Bugs Opened Microsoft 365 To Attack Source link
Tagged with: attack • authentication • azure • Bugs • bypass • cloud computing • cloud security • COVID-19 • hacks • malware • MFA • microsoft • Mobile Security • multi-factor authentication • Office 365 • opened • privacy • Proofpoint • threat actors • Visual Studio • vulnerabilities • Web Security • WS-Trust
BLURtooth vulnerability lets attackers overwrite Bluetooth authentication keys
September 10th, 2020 📆 | 6438 Views ⚑
The organizations behind the Bluetooth wireless technology has published guidance today on how device vendors can mitigate a new attack
Tagged with: attackers • authentication • bluetooth • blurtooth • keys • lets • overwrite • vulnerability
Daily Tracker System 1.0 – Authentication Bypass
September 3rd, 2020 📆 | 5105 Views ⚑
# Exploit Title: Daily Tracker System 1.0 - Authentication Bypass # Exploit Author: Adeeb Shah (@hyd3sec) & Bobby Cooke (boku)
Tagged with: authentication • bypass • daily • php • system • tracker • webapps
BloodX CMS 1.0 – Authentication Bypass
September 3rd, 2020 📆 | 4070 Views ⚑
# Exploit Title: BloodX CMS 1.0 - Authentication Bypass # Google Dork: N/A # Date: 2020-09-02 # Exploit Author: BKpatron
Tagged with: authentication • bloodx • bypass • cms • php • webapps
Eibiz i-Media Server Digital Signage 3.8.0 – Authentication Bypass
August 24th, 2020 📆 | 2114 Views ⚑
# Exploit Title: Eibiz i-Media Server Digital Signage 3.8.0 - Authentication Bypass # Date: 2020-08-21 # Exploit Author: LiquidWorm #
Tagged with: authentication • bypass • digital • eibiz • hardware • iMedia • media • server • signage • webapps
Eibiz i-Media Server Digital Signage 3.8.0 Authentication Bypass ≈ Packet Storm
August 22nd, 2020 📆 | 3165 Views ⚑
#!/usr/bin/env python3# -*- coding: utf-8 -*-### Eibiz i-Media Server Digital Signage 3.8.0 (createUser) Authentication Bypass (Add Admin)### Vendor: EIBIZ Co.,Ltd.#
Tagged with: advisory • authentication • bypass • CSRF • digital • eibiz • exploit • iMedia • media • overflow • packet • scanner • security • server • signage • storm • vulnerability • whitepaper • XSS
Bludit 3.9.2 Authentication Bruteforce Mitigation Bypass ≈ Packet Storm
August 18th, 2020 📆 | 5123 Views ⚑
*]#!/usr/bin/env ruby*]## Title: Bludit 3.9.2 – Authentication Bruteforce Mitigation Bypass*]## Author: noraj (Alexandre ZANNI)*]## Author website: https://pwn.by/noraj/*]## Date: 2020-08-16*]## Vendor
Tagged with: advisory • authentication • bludit • bruteforce • bypass • CSRF • exploit • mitigation • overflow • packet • scanner • security • storm • vulnerability • whitepaper • XSS
Bludit 3.9.2 – Authentication Bruteforce Mitigation Bypass
August 17th, 2020 📆 | 6599 Views ⚑
*] *]#!/usr/bin/env ruby ## Title: Bludit 3.9.2 - Authentication Bruteforce Mitigation Bypass ## Author: noraj (Alexandre ZANNI) ## Author website:
Tagged with: authentication • bludit • bruteforce • bypass • CVE-2019-17240 • mitigation • php • webapps
Artica Proxy 4.3.0 Authentication Bypass ≈ Packet Storm
August 14th, 2020 📆 | 2107 Views ⚑
# Exploit Title: Artica Proxy 4.3.0 – Authentication Bypass# Google Dork: N/A# Date: 2020-08-13# Exploit Author: Dan Duffy# Vendor Homepage:
Tagged with: advisory • artica • authentication • bypass • CSRF • exploit • overflow • packet • proxy • scanner • security • storm • vulnerability • whitepaper • XSS
Popular
Windows XP Source Code Leaked By Apparent Bill Gates… September 25, 2020 It’s probably not the biggest security issue that Microsoft is…
FIN11 uncovered: Hacking group promoted to financial… October 14, 2020 Versatile threat actors are the first cybercrime gang to win…
Apple pays $288,000 to white-hat hackers who had run… October 9, 2020 Nick Wright. Used by permission. For months, Apple’s corporate network…
ZeroLogon vulnerability being actively exploited September 28, 2020 Microsoft has revealed it has discovered threat actors using exploits…
UHS hospital network hit by ransomware attack September 28, 2020 Universal Health Services (UHS), a Fortune 500 company and one…
Why You Should Stop Using SMS Security Codes—Even On… October 11, 2020 Apple iMessage Facebook, PayPal, Microsoft, Twitter, Sony, Uber, Dropbox, Amazon...…
Hedge Funds Are Bullish On dMY Technology Group, Inc. (DMYT) October 7, 2020 The latest 13F reporting period has come and gone, and…
Members
Comments