exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Nik Cubrilovic

Disqus 2.7.5 Cross Site Request Forgery / Cross Site Scripting

Posted Aug 13, 2014

Authored by Nik Cubrilovic

Cross site request forgery exploit for Disqus for WordPress versions up to 2.7.5 that adds a stored cross site scripting attack.

tags | exploit, xss, csrf

SHA-256 | b2d8ead094b8e10bb30ef3224c49e7dc5a87455af918e2e1e66ebceff7be1203

Download | Favorite | View

CS-Cart 4.2.0 Session Hijacking

Posted Aug 12, 2014

Authored by Nik Cubrilovic

CS-Cart version 4.2.0 suffers from a session hijacking vulnerability due to weakly minted session identifiers.

tags | exploit

SHA-256 | 75b089cb05c7acd3308c73cf9aed379821ea108918fd45c8a1f4b82e65e09695

Download | Favorite | View

WordPress Disqus 2.7.5 CSRF / Cross Site Scripting

Posted Aug 12, 2014

Authored by Nik Cubrilovic

WordPress Disqus versions 2.7.5 and below suffer from cross site request forgery and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, csrf

SHA-256 | 2df5dbf30ee565d7f622d21cfbcd0f06f378ce8494ab640f6e97b5154395387e

Download | Favorite | View