accept no compromises

Register | Login

FilesNewsUsersAuthors

Home Files News About Contact Add New

Showing 1 - 13 of 13

Files from Jesus Olmos Gonzalez

mount.cifs chdir() File Identification

Posted Apr 25, 2012

Authored by Jesus Olmos Gonzalez

mount.cifs chdir() allows for arbitrary file identification as root. All versions prior to 5.4 are affected.

tags | exploit, arbitrary, root

MD5 | 41c9373a80e2bccfd96a9841362dc921

Download | Favorite | Comments (0)

Joomla Exploit Scanner

Posted Oct 14, 2010

Authored by Jesus Olmos Gonzalez

This python script scans for 58 vulnerable Joomla component payloads.

tags | tool, scanner, python

systems | unix

MD5 | 1f2e168c439731b5d2528a5ef6a5466b

Download | Favorite | Comments (0)

PSI Integer Overflow Denial Of Service

Posted Dec 30, 2008

Authored by Jesus Olmos Gonzalez

PSI suffers from a remote integer overflow denial of service vulnerability. Proof of concept code is included.

tags | exploit, remote, denial of service, overflow, proof of concept

MD5 | 0237354cd81dac5592010af49e36942e

Download | Favorite | Comments (0)

Wordpress Forced Upgrade Vulnerability

Posted Dec 30, 2008

Authored by Jesus Olmos Gonzalez

Wordpress suffers from an unauthenticated forced upgrade vulnerability.

tags | exploit

MD5 | a8cee2b4bf4fe5452182dfd96b3c61f0

Download | Favorite | Comments (0)

smbclientparser-exec.txt

Posted Jul 18, 2008

Authored by Jesus Olmos Gonzalez

The SmbClientParser perl module suffers from a vulnerability that allows for remote command execution.

tags | exploit, remote, perl

MD5 | 435e611466edb69599f8c7790d08fce3

Download | Favorite | Comments (0)

tikiwiki-traverse.txt

Posted Dec 24, 2007

Authored by Jesus Olmos Gonzalez

The Tikiwiki CMS has a vulnerability that allows an attacker to get the first 1000 bytes from an arbitrary file through the tiki-listmovies.php script.

tags | exploit, arbitrary, php, file inclusion

MD5 | 5eee6c20979ac907f14a5250773f0b54

Download | Favorite | Comments (0)

isaa-2007-004.txt

Posted Dec 8, 2007

Authored by Jesus Olmos Gonzalez

wwwstats versions 3.21 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss

MD5 | b7f7aebf9320772283841e111dbcc87d

Download | Favorite | Comments (0)

wwwstatsHack.txt

Posted Nov 27, 2007

Authored by Jesus Olmos Gonzalez

Simple exploit that demonstrates a script insertion vulnerability in wwwstats.

tags | exploit

MD5 | ec5f4aab77adfa1a9be1add8fed7cc49

Download | Favorite | Comments (0)

cygwin-overflow.txt

Posted Nov 27, 2007

Authored by Jesus Olmos Gonzalez

Cygwin is vulnerable to a buffer overflow when checking filename lengths. cygwin1.dll versions up to 1.5.7 are susceptible.

tags | exploit, overflow

MD5 | 20fb5ba384fafc5019b93acaf0190eb4

Download | Favorite | Comments (0)

vtls-xss.txt

Posted Nov 13, 2007

Authored by Jesus Olmos Gonzalez

VTLS Inc.'s vtls.web.gateway CGI is susceptible to a cross site scripting vulnerability. Versions up to 48.1.0 are affected.

tags | exploit, web, cgi, xss

MD5 | 2a8b7b1bc67d3bbbf94037535e82cdfc

Download | Favorite | Comments (0)

isa-2006-013.txt

Posted May 23, 2007

Authored by Jesus Olmos Gonzalez

Microsoft IIS5 suffers from NTLM and basic authentication bypass vulnerabilities.

tags | exploit, vulnerability

MD5 | 1b15b612bd51141e0b499c25a3feb7f0

Download | Favorite | Comments (0)

ISAA-2006-007.txt

Posted Dec 6, 2006

Authored by Jesus Olmos Gonzalez

The BlueSocket web administration interface is vulnerable to a cross site scripting attack. Versions below 5.2 are susceptible.

tags | exploit, web, xss

MD5 | cde2ee3ca53a545cca5919eb8071d8df

Download | Favorite | Comments (0)

ISAA-2006-001.txt

Posted Jan 21, 2006

Authored by Jesus Olmos Gonzalez

123flashchat server versions 5.1 and below suffer from directory traversal attacks that allow for arbitrary file creation.

tags | exploit, arbitrary

MD5 | 6b899581652a6d00c78163f8d0a75085

Download | Favorite | Comments (0)