exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 7 of 7

Files from gx1

WordPress Contact Form Entries Cross Site Scripting

Posted Jan 10, 2022

Authored by gx1

WordPress Contact Form Entries plugin versions prior to 1.2.4 suffer from an unauthenticated persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2021-25079

SHA-256 | c6aa22feb391bfa611341a3207a48bd136366a08bc16032ddcc31ead2835bcf9

Download | Favorite | View

WordPress Contact Form Entries 1.1.6 Cross Site Scripting

Posted Jan 5, 2022

Authored by gx1

WordPress Contact Form Entries plugin version 1.1.6 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 1a4170e77c884542c90b8a6345525c697cfc4ad2bc42f246b37a096d39fc571d

Download | Favorite | View

WordPress Core 5.2.2 Cross Site Scripting

Posted Jan 2, 2021

Authored by gx1

WordPress core versions 5.2.2 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2019-16223

SHA-256 | c9c85f985108f8e92174599c2942f9ba153160f4208d223bcbd889a4eda01b3d

Download | Favorite | View

WordPress Epsilon Framework SSRF / Denial of Service

Posted Dec 23, 2020

Authored by gx1

Multiple themes from the WordPress Epsilon Framework suffer from an unauthenticated function injection vulnerability that allows for server-side request forgery and denial of service attacks.

tags | exploit, denial of service

SHA-256 | 42d834d50e95bb3d58e3d0702beeb435b43360364f98da806946bb570f0d94a1

Download | Favorite | View

WordPress Yet Another Stars Rating PHP Object Injection

Posted Dec 18, 2020

Authored by gx1, Paul Dannewitz | Site metasploit.com

This Metasploit module affects WordPress Yet Another Stars Rating plugin versions prior to 1.8.7 and demonstrates a PHP object injection vulnerability.

tags | exploit, php

SHA-256 | a1a09a3983590ec069365baa90b96a395451c12d03067449dba59d8e803a84f5

Download | Favorite | View

Jenkins 2.251 / LTS 2.235.3 Cross Site Scripting

Posted Dec 18, 2020

Authored by gx1

Jenkins versions 2.251 and below and LTS 2.235.3 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2020-2231

SHA-256 | fe78de531ac764992ae8de65e10f60a4d5a3ae82a3af279a85c1daa0d31531ec

Download | Favorite | View

Jenkins 2.235.3 Cross Site Scripting

Posted Dec 11, 2020

Authored by gx1

Jenkins version 2.235.3 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss

advisories | CVE-2020-2229, CVE-2020-2230

SHA-256 | 5ae48804e53b05b0959fb9da096cca0880a8cea84800e7c45b02f24e07a2393d

Download | Favorite | View