what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 18 of 18 RSS Feed

Files from Adam Baldwin

First Active2005-02-01
Last Active2010-12-25
Django Admin List Filter Data Extraction
Posted Dec 25, 2010
Authored by Adam Baldwin

Django suffers from an admin list filter data extraction vulnerability.

tags | exploit
SHA-256 | 0df42c652e8f3a5dd96c219a186deee3bc86b62a4050d27531933efc4d5db86e
Nagios XI users.php SQL Injection
Posted Aug 26, 2010
Authored by Adam Baldwin

Nagios XI suffers from a remote SQL injection vulnerability in users.php.

tags | exploit, remote, php, sql injection
SHA-256 | d8d2f7e65ebe2221b126cfd1ff208afff750e76c28afe69103b749f4529db049
Nagios XI Login Cross Site Scripting
Posted Aug 21, 2010
Authored by Adam Baldwin

The login page for the Nagios XI management interface prior to version 2009R1.3 is vulnerable to cross-site scripting (XSS). This vulnerability does not require the victim to be authenticated. This vulnerability was originally thought to be addressed in version 2009R1.2C.

tags | exploit, xss
SHA-256 | e70887b72d05c6675a468a37609a7d93b2d59e5dfb89be8044b6c7db330dace2
Nagios XI 2009R1.2B Cross Site Request Forgery
Posted Aug 12, 2010
Authored by Adam Baldwin

Nagios XI 2009R1.2B suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 0573a740088330210284491b99c26aad8b303bbd4d855b1965b1754dcd9a977e
McAfee UTM Firewall Cross Site Scripting
Posted Jun 12, 2010
Authored by Adam Baldwin

McAfee UTM Firewall firmware versions 3.0.0 through 4.0.6 suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | d74a18c2c94d3ec9137055c30cb90322d16fe5992676d7772281967380bf88d1
JForum 2.1.8 Cross Site Request Forgery / Cross Site Scripting
Posted Jun 8, 2010
Authored by Adam Baldwin

JForum version 2.1.8 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | 633d4cb4f2a43dbf8c9aded141e86050a135040680d1189e99dfeb202c9740c2
Novatel Wireless MiFi Cross Site Request Forgery
Posted Jan 18, 2010
Authored by Adam Baldwin

Novatel Wireless Mifi suffers from cross site request forgery, output encoding, gps enabling, and authentication vulnerabilities.

tags | advisory, vulnerability, csrf
SHA-256 | b07c73a7c1c8cca6d14d3e4157f32c6256bcf8e00e3240328484ee58d974ad1e
Zenoss 2.3.3 Cross Site Request Forgery
Posted Jan 17, 2010
Authored by Adam Baldwin

Zenoss versions 2.3.3 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 4c13cb2bfaf7588227b342d1323b86c33f615e689fb1db9c07815ef252fcdf19
Zenoss 2.3.3 SQL Injection
Posted Jan 14, 2010
Authored by Adam Baldwin

Zenoss version 2.3.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 8ae88b4d12441e5901a34796eae64264167b57c8699772ac793843d616c0949e
Spiceworks 3.6.31847 XSS / XSRF
Posted Aug 11, 2009
Authored by Adam Baldwin

Spiceworks version 3.6.31847 suffers from cross site scripting and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | b2dd9ecd24e0e81ec7f60bfed240a2d836cb0aad58dd4b3fdce264ca62ca2a8a
Kayako SupportSuite 3.50.06 XSS
Posted Aug 11, 2009
Authored by Adam Baldwin

Kayako SupportSuite version 3.50.05 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 98e9712826329b16ca4abea555a3bf53c9f672d85c9f8ca3d624c6776df1f77c
osTicket Admin Login Blind SQL Injection
Posted Jun 29, 2009
Authored by Adam Baldwin

osTicket version 1.6 RC4 suffers from a blind SQL injection vulnerability.

tags | exploit, sql injection
SHA-256 | 160a91fe4690fbfe3cd0a48f71d8975b3ea5347af229b9d915e9185506152a61
Zabbix 1.6.2 Cross Site Request Forgery
Posted Mar 31, 2009
Authored by Adam Baldwin

Zabbix version 1.6.2 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
SHA-256 | 8ee865f64b5fc17f842d58dc0c0d58f823ba5646c8e910c5bf3f2f0715f41ee8
ExpressionEngine Cross Site Scripting
Posted Mar 24, 2009
Authored by Adam Baldwin

ExpressionEngine versions 1.6.4 through 1.6.6 suffer form a persistent cross site scripting vulnerability. Earlier versions may also be susceptible.

tags | exploit, xss
SHA-256 | a1288027aa737de31887b7c6d39c9f16bbab3e7da1af5f62f00119e0eda3480b
OpenCart 1.1.8 SQL Injection
Posted Mar 16, 2009
Authored by Adam Baldwin

OpenCart version 1.1.8 suffers from a blind SQL injection vulnerability.

tags | advisory, sql injection
SHA-256 | 4afbb0b776c1f7f3dcf3c064b4802ac815d06428bdfaa3c74451542cf3a8b160
simpliciti.txt
Posted Aug 17, 2006
Authored by Adam Baldwin

The Simpliciti Locked Browser interface jail can be broken out of using simple JavaScript.

tags | advisory, javascript
SHA-256 | 31c51ec9f1335cb8936ef3d4bcd381e588378f1959fe7c6f88f870611fcf2a21
deslo.txt
Posted Jun 1, 2005
Authored by Adam Baldwin

Neslo Desktop Rover suffers from a remote denial of service vulnerability.

tags | advisory, remote, denial of service
SHA-256 | a60e6aaf17789932c5057f3a7942283c9a1bb3e4836d0c355a8b98aa268c362a
uofpConfig.txt
Posted Feb 1, 2005
Authored by Adam Baldwin | Site evilpacket.net

An active-x control used to set up e-mail, nntp, and ldap accounts in Outlook Express for the University of Phoenix allows for later account manipulation.

tags | exploit, activex
SHA-256 | 4bca6a33736e5903a701811c2b98fceeb18af1da5f873243b6df0556d9db116d
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    0 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close