what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 6 of 6

Files from Elar Lang

Tibco JasperSoft Path Traversal

Posted Sep 9, 2019

Authored by Elar Lang

Tibco JasperSoft suffers from a path traversal vulnerability.

tags | exploit, file inclusion

advisories | CVE-2018-18809

SHA-256 | 3d5803f45be81659caf4f3bffb04cadddfd4a598bf1a1150dafa4203a2d45984

Download | Favorite | View

dotCMS SQL Injection

Posted Feb 13, 2018

Authored by Elar Lang

dotCMS versions prior to 4.1.1 suffer from remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection

advisories | CVE-2016-10007, CVE-2016-10008

SHA-256 | 2ef6211acd43254ff086ea4b5c0fc2e1e58d4c393813f4848d7027c88d8aaacd

Download | Favorite | View

Joomla DT Register SQL Injection

Posted Dec 13, 2016

Authored by Elar Lang

Joomla DT Register component versions prior to 3.1.12 in Joomla 3.x and version 2.8.18 in Joomla 2.5 suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2016-1000271

SHA-256 | 2401db98d6efacc01bb96cbf2070c6ba9ba40606cc319b660982157d64981c63

Download | Favorite | View

dotCMS 3.x SQL Injection

Posted Nov 1, 2016

Authored by Elar Lang

dotCMS versions before 3.5, 3.3.1, and 3.3.2 suffer from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection

advisories | CVE-2016-4040, CVE-2016-8902, CVE-2016-8903, CVE-2016-8904, CVE-2016-8905, CVE-2016-8906, CVE-2016-8907, CVE-2016-8908

SHA-256 | a54ada06f8d6aa3e53325d0f82db718e690aa6788d01901bab2662c50fa64311

Download | Favorite | View

dotCMS CAPTCHA Bypass

Posted Oct 20, 2016

Authored by Elar Lang

The CAPTCHA in dotCMS versions prior to 3.6.0 allows for reuse of a valid code.

tags | advisory

advisories | CVE-2016-8600

SHA-256 | 29a73c14faaa05b81b9eeda110a0f49d8af1d2341b03371d3664beb58d8c3e5c

Download | Favorite | View

dotCMS Email Header Injection

Posted May 25, 2016

Authored by Elar Lang

dotCMS versions prior to 3.5 and 3.3.2 suffers from an email header injection vulnerability.

tags | exploit

advisories | CVE-2016-4803

SHA-256 | 8a2aa086022ce89bb40306dc783a8bd835f0e4f8c1d80ad34fa487953fa9ea7b

Download | Favorite | View