Latest Exploits

Syndicate content Packet Storm
Packet Storm - Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
Updated: 16 hours 8 min ago

Joomla 3.2.2 Cross Site Scripting

Mon, 03/03/2014 - 05:44
Joomla version 3.2.2 suffers from a persistent cross site scripting vulnerability.
Categories: Security

Yii Framework Blog Cross Site Request Forgery

Mon, 03/03/2014 - 05:44
Yii Framework Blog suffers from a cross site request forgery vulnerability.
Categories: Security

Byte CMS Cross Site Scripting

Mon, 03/03/2014 - 04:44
Byte CMS suffers from a cross site scripting vulnerability.
Categories: Security

WordPress TheCotton Shell Upload

Sun, 03/02/2014 - 21:33
WordPress TheCotton theme suffers from a remote shell upload vulnerability.
Categories: Security

Packet Storm New Exploits For February, 2014

Sun, 03/02/2014 - 11:36
This archive contains all of the 194 exploits added to Packet Storm in February, 2014.
Categories: Security

SpagoBI 4.0 Cross Site Scripting / Shell Upload

Sun, 03/02/2014 - 11:34
SpagoBI version 4.0 suffers from cross site scripting and arbitrary file upload vulnerabilities. The file upload issue could possibly lead to code execution.
Categories: Security

SpagoBI 4.0 HTML Injection

Sun, 03/02/2014 - 11:32
SpagoBI version 4.0 suffers from an HTML injection vulnerability.
Categories: Security

SpagoBI 4.0 Stored Cross Site Scripting

Sun, 03/02/2014 - 11:31
SpagoBI version 4.0 suffers from a persistent cross site scripting vulnerability.
Categories: Security

Kloxo Remote Root Exploit

Sun, 03/02/2014 - 11:24
Kloxo remote root exploit that leverages a blind SQL injection and injects a perl connect back shell (/bin/sh) with root privilege.
Categories: Security

MantisBT 1.2.16 SQL Injection

Sun, 03/02/2014 - 11:21
MantisBT version 1.2.16 suffers from a remote SQL injection vulnerability.
Categories: Security

Oracle Demantra 12.2.1 SQL Injection

Sun, 03/02/2014 - 11:14
Oracle Demantra version 12.2.1 suffers from a remote SQL injection vulnerability.
Categories: Security

Oracle Demantra 12.2.1 Stored Cross Site Scripting

Sun, 03/02/2014 - 11:03
Oracle Demantra version 12.2.1 suffers from a stored cross site scripting vulnerability.
Categories: Security

Oracle Demantra 12.2.1 Reflective Cross Site Scripting

Sun, 03/02/2014 - 11:02
Oracle Demantra version 12.2.1 suffers from a reflective cross site scripting vulnerability.
Categories: Security

Oracle Demantra 12.2.1 Database Credential Leak

Sun, 03/02/2014 - 11:00
Oracle Demantra version 12.2.1 suffers from a data credential leak vulnerability.
Categories: Security

Oracle Demantra 12.2.1 Authentication Bypass

Sun, 03/02/2014 - 10:56
Oracle Demantra version 12.2.1 suffers from an authentication bypass vulnerability.
Categories: Security

Fitnesse Wiki 20131110 Remote Command Execution

Sun, 03/02/2014 - 10:50
Fitnesse Wiki 20131110 suffers from a remote command execution vulnerability.
Categories: Security

CoryApp Cory Support SQL Injection

Sat, 03/01/2014 - 23:44
CoryApp Cory Support suffers from a remote SQL injection vulnerability.
Categories: Security

OpenSupports Remote Shell Upload

Sat, 03/01/2014 - 22:33
Sites powered by OpenSupports suffer from a remote shell upload vulnerability.
Categories: Security

Oracle Demantra 12.2.1 Arbitrary File Retrieval

Sat, 03/01/2014 - 12:22
Oracle Demantra version 12.2.1 suffers from a local file inclusion vulnerability.
Categories: Security

WordPress Sixtees Shell Upload

Sat, 03/01/2014 - 05:02
WordPress Sixtees theme suffers from a remote shell upload vulnerability.
Categories: Security