TextPattern CMS 4.8.3 – Remote Code Execution (Authenticated)
October 24th, 2020 📆 | 4216 Views ⚑
#!/usr/bin/python3 # Exploit Title: TextPattern < = 4.8.3 - Authenticated Remote Code Execution via Unrestricted File Upload # Google Dork:
Browsing the "cms" Tag
Tagged with: authenticated • cms • code • execution • php • remote • textpattern • webapps
Textpattern CMS 4.6.2 Cross Site Request Forgery ≈ Packet Storm
October 23rd, 2020 📆 | 7748 Views ⚑
# Exploit Title: Textpattern CMS 4.6.2 – Cross-site Request Forgery# Exploit Author: Alperen Ergel# Contact: @alpren_ae# Software Homepage: https://textpattern.com/# Version
Tagged with: advisory • cms • cross • CSRF • exploit • forgery • overflow • packet • request • scanner • security • Site • storm • textpattern • vulnerability • whitepaper • XSS
Rite CMS 2.2.1 Remote Code Execution ≈ Packet Storm
October 22nd, 2020 📆 | 2973 Views ⚑
# Exploit Title: RiteCMS 2.2.1 – Authenticated Remote Code Execution# Date: 2020-07-03# Exploit Author: H0j3n# Vendor Homepage: http://ritecms.com/# Software Link:
Tagged with: advisory • cms • code • CSRF • execution • exploit • overflow • packet • remote • Rite • scanner • security • storm • vulnerability • whitepaper • XSS
Tiki Wiki CMS Groupware 21.1 Authentication Bypass ≈ Packet Storm
October 22nd, 2020 📆 | 6978 Views ⚑
# Exploit Title: Tiki Wiki CMS Groupware 21.1 – Authentication Bypass# Date: 01.08.2020 (1st August 2020)# Exploit Author: Maximilian Barz
Tagged with: advisory • authentication • bypass • cms • CSRF • exploit • groupware • overflow • packet • scanner • security • storm • Tiki • vulnerability • whitepaper • Wiki • XSS
Kentico CMS 9.0-12.0.49 Cross Site Scripting ≈ Packet Storm
October 13th, 2020 📆 | 8093 Views ⚑
# Exploit Title: Kentico CMS 9.0-12.0.49 – Persistent Cross Site Scripting# Exploit Author: Ataberk YAVUZER# CVE: CVE-2019-19493# Type: Webapps# Vendor
Tagged with: advisory • cms • cross • CSRF • exploit • kentico • overflow • packet • scanner • scripting • security • Site • storm • vulnerability • whitepaper • XSS
Kentico CMS 9.0-12.0.49 – Persistent Cross Site Scripting
October 9th, 2020 📆 | 3205 Views ⚑
# Exploit Title: Kentico CMS 9.0-12.0.49 - Persistent Cross Site Scripting # Exploit Author: Ataberk YAVUZER # CVE: CVE-2019-19493 #
Tagged with: cms • cross • CVE-2019-19493 • kentico • persistent • php • scripting • Site • webapps
Textpattern CMS 4.6.2 Cross Site Scripting ≈ Packet Storm
October 9th, 2020 📆 | 3059 Views ⚑
# Exploit Title: Textpattern CMS 4.6.2 – ‘body’ Persistent Cross-Site Scripting# Exploit Author: Alperen Ergel# Web Site: https://alperenae.gitbook.io/# Software Homepage:
Tagged with: advisory • cms • cross • CSRF • exploit • overflow • packet • scanner • scripting • security • Site • storm • textpattern • vulnerability • whitepaper • XSS
Textpattern CMS 4.6.2 – ‘body’ Persistent Cross-Site Scripting
October 8th, 2020 📆 | 7614 Views ⚑
# Exploit Title: Textpattern CMS 4.6.2 - 'body' Persistent Cross-Site Scripting # Exploit Author: Alperen Ergel # Web Site: https://alperenae.gitbook.io/
Tagged with: body • cms • cross • CrossSite • persistent • php • scripting • textpattern • webapps
Typesetter CMS 5.1 Remote Code Execution ≈ Packet Storm
October 7th, 2020 📆 | 5470 Views ⚑
===== Tempest Security Intelligence – ADV-09/2020 ]========================== Typesetter CMS Author: Rodolfo Tavares Tempest Security Intelligence – Recife, Pernambuco – Brazil
Tagged with: advisory • cms • code • CSRF • execution • exploit • overflow • packet • remote • scanner • security • storm • typesetter • vulnerability • whitepaper • XSS
Typesetter CMS 5.1 – ‘Site Title’ Persistent Cross-Site Scripting
October 3rd, 2020 📆 | 3054 Views ⚑
# Exploit Title: Typesetter CMS 5.1 - 'Site Title' Persistent Cross-Site Scripting # Exploit Author: Alperen Ergel # Web Site:
Tagged with: cms • cross • CrossSite • persistent • php • scripting • Site • title • typesetter • webapps
CMS Made Simple 2.2.14 – Persistent Cross-Site Scripting (Authenticated)
October 3rd, 2020 📆 | 7477 Views ⚑
# Exploit Title: CMS Made Simple 2.2.14 - Persistent Cross-Site Scripting (Authenticated) # Google Dork: - # Date: 2020-09-29 #
Tagged with: authenticated • cms • cross • CrossSite • persistent • php • scripting • simple • webapps
GetSimple CMS 3.3.16 – Persistent Cross-Site Scripting (Authenticated)
October 3rd, 2020 📆 | 3270 Views ⚑
# Exploit Title: GetSimple CMS 3.3.16 - Persistent Cross-Site Scripting (Authenticated) # Google Dork: - # Date: 2020-09-29 # Exploit
Tagged with: authenticated • cms • cross • CrossSite • getsimple • persistent • php • scripting • webapps
Typesetter CMS 5.1 Cross Site Scripting ≈ Packet Storm
October 2nd, 2020 📆 | 5803 Views ⚑
# Exploit Title: Typesetter CMS 5.1 – ‘Site Title’ Persistent Cross-Site Scripting# Exploit Author: Alperen Ergel# Web Site: https://alperenae.gitbook.io/# Contact:
Tagged with: advisory • cms • cross • CSRF • exploit • overflow • packet • scanner • scripting • security • Site • storm • typesetter • vulnerability • whitepaper • XSS
GetSimple CMS 3.3.16 Cross Site Scripting ≈ Packet Storm
October 2nd, 2020 📆 | 5909 Views ⚑
# Exploit Title: GetSimple CMS 3.3.16 – Persistent Cross-Site Scripting (Authenticated)# Google Dork: –# Date: 2020-09-29# Exploit Author: Roel van
Tagged with: advisory • cms • cross • CSRF • exploit • getsimple • overflow • packet • scanner • scripting • security • Site • storm • vulnerability • whitepaper • XSS
CMS Made Simple 2.2.14 Cross Site Scripting ≈ Packet Storm
October 2nd, 2020 📆 | 7829 Views ⚑
# Exploit Title: CMS Made Simple 2.2.14 – Persistent Cross-Site Scripting (Authenticated)# Google Dork: –# Date: 2020-09-29# Exploit Author: Roel
Tagged with: advisory • cms • cross • CSRF • exploit • overflow • packet • scanner • scripting • security • simple • Site • storm • vulnerability • whitepaper • XSS
Anchor CMS 0.12.7 Cross Site Scripting ≈ Packet Storm
September 25th, 2020 📆 | 2030 Views ⚑
# Exploit Title: Anchor CMS 0.12.7 – Persistent Cross-Site Scripting (Authenticated)# Date: 2020-09-24# Exploit Author: Sinem Şahin# Vendor Homepage: https://anchorcms.com/#
Tagged with: advisory • anchor • cms • cross • CSRF • exploit • overflow • packet • scanner • scripting • security • Site • storm • vulnerability • whitepaper • XSS
BigTree CMS 4.4.10 Remote Code Execution ≈ Packet Storm
September 25th, 2020 📆 | 3399 Views ⚑
# Exploit Title: BigTree CMS 4.4.10 – Remote Code Execution# Google Dork: ” BigTree CMS “# Date: 2020-25-09# Exploit Author:
Tagged with: advisory • bigtree • cms • code • CSRF • execution • exploit • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS
Anchor CMS 0.12.7 – Persistent Cross-Site Scripting (Authenticated)
September 25th, 2020 📆 | 6023 Views ⚑
# Exploit Title: Anchor CMS 0.12.7 - Persistent Cross-Site Scripting (Authenticated) # Date: 2020-09-24 # Exploit Author: Sinem Şahin #
Tagged with: anchor • authenticated • cms • cross • CrossSite • persistent • php • scripting • webapps
BigTree CMS 4.4.10 – Remote Code Execution
September 25th, 2020 📆 | 6144 Views ⚑
# Exploit Title: BigTree CMS 4.4.10 - Remote Code Execution # Google Dork: " BigTree CMS " # Date: 2020-25-09
Tagged with: bigtree • cms • code • execution • php • remote • webapps
BlackCat CMS 1.3.6 – Cross-Site Request Forgery
September 22nd, 2020 📆 | 4386 Views ⚑
# Exploit Title: BlackCat CMS 1.3.6 - Cross-Site Request Forgery # Date: 2020-06-01 # Exploit Author: Noth # Vendor Homepage:
Tagged with: blackcat • cms • cross • CrossSite • CVE-2020-25453 • forgery • php • request • webapps
BlackCat CMS 1.3.6 Cross Site Request Forgery ≈ Packet Storm
September 21st, 2020 📆 | 6181 Views ⚑
# Exploit Title: BlackCat CMS 1.3.6 – Cross-Site Request Forgery# Date: 2020-06-01# Exploit Author: Noth# Vendor Homepage: https://github.com/BlackCatDevelopment/BlackCatCMS# Software Link:
Tagged with: advisory • blackcat • cms • cross • CSRF • exploit • forgery • overflow • packet • request • scanner • security • Site • storm • vulnerability • whitepaper • XSS
SiteMagic CMS 4.4.2 Shell Upload ≈ Packet Storm
September 5th, 2020 📆 | 5379 Views ⚑
# Exploit Title: SiteMagic CMS 4.4.2 – Arbitrary File Upload (Authenticated)# Date: 2020-09-02# Exploit Author: v1n1v131r4# Vendor Homepage: https://sitemagic.org/# Software
Tagged with: advisory • cms • CSRF • exploit • overflow • packet • scanner • security • shell • sitemagic • storm • upload • vulnerability • whitepaper • XSS
SiteMagic CMS 4.4.2 – Arbitrary File Upload (Authenticated)
September 3rd, 2020 📆 | 8068 Views ⚑
# Exploit Title: SiteMagic CMS 4.4.2 - Arbitrary File Upload (Authenticated) # Date: 2020-09-02 # Exploit Author: v1n1v131r4 # Vendor
Tagged with: arbitrary • authenticated • cms • File • php • sitemagic • upload • webapps
BloodX CMS 1.0 – Authentication Bypass
September 3rd, 2020 📆 | 8364 Views ⚑
# Exploit Title: BloodX CMS 1.0 - Authentication Bypass # Google Dork: N/A # Date: 2020-09-02 # Exploit Author: BKpatron
Tagged with: authentication • bloodx • bypass • cms • php • webapps
Popular
Windows XP Source Code Leaked By Apparent Bill Gates… September 25, 2020 It’s probably not the biggest security issue that Microsoft is…
FIN11 uncovered: Hacking group promoted to financial… October 14, 2020 Versatile threat actors are the first cybercrime gang to win…
Apple pays $288,000 to white-hat hackers who had run… October 9, 2020 Nick Wright. Used by permission. For months, Apple’s corporate network…
ZeroLogon vulnerability being actively exploited September 28, 2020 Microsoft has revealed it has discovered threat actors using exploits…
UHS hospital network hit by ransomware attack September 28, 2020 Universal Health Services (UHS), a Fortune 500 company and one…
Why You Should Stop Using SMS Security Codes—Even On… October 11, 2020 Apple iMessage Facebook, PayPal, Microsoft, Twitter, Sony, Uber, Dropbox, Amazon...…
A Critical Look At Nano-X Imaging – Disruptive… October 15, 2020 Editor's note: Seeking Alpha is proud to welcome Sustainable Equity…
Members
Comments