TRENDNet IP Cam Authentication Bypass Vulnerability
# Exploit Title: TRENDNet IP Cam Magic URL Searcher. # Date: [10/04/2013] # Author: [SnakingMax] # Website: http://snakingmax.blogspot.com/# Category: [Remote Exploit] # Vulnerability description:#...
View ArticleUS-CERT Current Activity - Google Releases Google Chrome 26.0.1410.57
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1National Cyber Awareness SystemGoogle Releases Google Chrome 26.0.1410.57Original release date: April 11, 2013Google has released Google Chrome 26.0.1410.57...
View ArticleMetasploit: Nagios Remote Plugin Executor Arbitrary Command Execution
### This file is part of the Metasploit Framework and may be subject to# redistribution and commercial restrictions. Please see the Metasploit# web site for more information on licensing and terms of...
View ArticleGoogle vs. Bing: Search Engines Deliver Infected Websites as Their Top Results
A detailed AV-TEST study recently revealed that although search engineoperators such as Google and Bing make a lot of effort to avoid doing so,they sometimes deliver websites infected with Trojans and...
View ArticleFree Monthly Websites 2.0 - Admin Password Change
==========================================================================================# Title : Free Monthly Websites 2.0 Administrator Remote Password Change# Date :...
View ArticleZbot family runs on selected systems only
It is pretty usual when you try to analyze some malware that does not run in virtual machine or emulator. Using usually very well known tricks it can prevent itself from being analyzed. But what if it...
View ArticleBrute Force Attacks Build WordPress Botnet
Security experts are warning that an escalating series of online attacks designed to break into poorly-secured WordPress blogs is fueling the growth of an unusually powerful botnet currently made up of...
View ArticleClik here to view.
Symbolic Exploit Assistant (SEA) is a tool to help to create exploits of...
ZIPHTTPSSHGit Read-OnlyRead-Only accessTags branch: master Files Commits Branches 1 7 commitsSEA / Update README.mdlatest commit 768cfaf98c neuromancer authored a day agopkgsa day agoadded initial...
View ArticleRemote command injection md2pdf ruby gem
Remote command injection md2pdf ruby gem4/10/2013Description: "creates pdf documents from markdown documents"https://rubygems.org/gems/md2pdfIn md2pdf/converter.rb we see user supplied input being...
View ArticleSecurity Notice: Linode Manager Password Reset
April 12, 2013 7:08 pmThe following email has been sent to all users:Dear Linode customer,Linode administrators have discovered and blocked suspicious activity on the Linode network. This activity...
View ArticleTodoo Forum v2.0 - Multiple Vulnerabilities
Title: Todoo Forum v2.0 - Multiple VulnerabilitiesAuthor: snake eyeDate:04-13-2013Category:web applicationsVerified:VerifiedAffected version: v2.0Platform:windowsVendor:http://www.todoomasters.com/[+]...
View ArticleBotnets and the War on Bitcoin
f you've been reading the most recent news from the interwebs, you probably heard that Bitcoin is on a rollercoaster.If you're not familiar with it, Bitcoin is a global online currency, the cash of the...
View ArticleCross Site Scripting and Content Spoofing Vulnerabilities in Dotclear
These are Cross-Site Scripting and Content Spoofing vulnerabilities inDotclear.CMS Dotclear has three vulnerable flash-files: swfupload.swf, player_flv.swfand player_mp3.swf.File swfupload.swf it's...
View ArticleDigital Realty Announces Results Of Annual European Data Centre Demand Survey
Independent study commissioned by Digital Realty indicates continued growth driven by industry demand for improved security and disaster recovery preparednessLONDON, April 15, 2013 /PRNewswire/...
View ArticleNew Crimeware In BANCOS Paradise
raditionally, Brazil is known for being the home of BANCOS, which steals the banking information of users and is generally limited to the Latin American region. Other banking Trojans like ZeuS, SpyEye,...
View ArticleMinaliC Webserver 2.0.0 - Buffer Overflow
#!/usr/bin/env python# Exploit Title: MinaliC Webserver buffer overflow# Date: 12 Apr 2013# Exploit Author: superkojiman - http://www.techorganic.com# Vendor Homepage: http://minalic.sourceforge.net/#...
View ArticleBig Data Leaders: Big Data Either a Huge Risk or a Huge Opportunity – Outcome...
New report aggregates the thoughts of Federal big data leaders – shows that while big data has value, agencies need training, skilled workers to take advantageALEXANDRIA, Va.--(BUSINESS WIRE)--The...
View ArticleCMSLogik 1.2.1 - Multiple Vulnerabilities
#!/usr/bin/python## CMSLogik 1.2.1 (upload_file_ajax()) Shell Upload Exploit### Vendor: ThemeLogik# Product web page: http://www.themelogik.com/cmslogik# Affected version: 1.2.1 and 1.2.0## Summary:...
View ArticleMobile Malware Up 163% in 2012, Getting even Smarter in 2013, According to NQ...
App repackaging, malicious mobile URLs and "smishing" top delivery techniquesSocial engineering and mobile-to-PC attacks create new challenges for consumers and industryDALLAS and BEIJING, April 15,...
View ArticlephpVMS Virtual Airline Administration 2.1.934 & 2.1.935 - SQLi Vulnerability
============================================================================================================= [o] phpVMS Virtual Airline Administration <= SQL Injection Vulnerability Software...
View Article