Blog Posts - Webapps



Image Cyborg, el sitio para descargar todas las imágenes de cualquier página web

En muchas ocasiones mientras navegas por la web, ya sea por ocio o trabajo, haz tenido sin duda que descargar numerosas imágenes. Siempre tienes que realizar el tedioso trabajo de descargar una a una todas aquellas que te atraen o necesitas, ¿no es...
by Maestro De La Computacion on Nov 16, 2016

FotoJet, la herramienta todo en uno para diseñar y editar fotos

Muchas veces logramos capturar con nuestra cámara fotográfica momentos únicos, inolvidables, hermosos, y sentimos que debemos hacer algo para que esas fotografías sean más esplendidas. También nos ocurre que encontramos en la web, o un allegado...
by Maestro De La Computacion on Oct 25, 2016

WordPress Magic Fields 1 Cross Site Scripting

------------------------------------------------------------------------ Persistent Cross-Site Scripting in Magic Fields 1 WordPress Plugin ------------------------------------------------------------------------ Burak Kelebek, July 2016   -----...
by MondoUnix on Aug 19, 2016

WordPress Magic Fields 2 Cross Site Scripting

------------------------------------------------------------------------ Persistent Cross-Site Scripting in Magic Fields 2 WordPress Plugin ------------------------------------------------------------------------ Burak Kelebek, July 2016   -----...
by MondoUnix on Aug 19, 2016

WordPress Google Maps 2.1.2 Cross Site Scripting

------------------------------------------------------------------------ Cross-Site Scripting vulnerability in Google Maps WordPress Plugin ------------------------------------------------------------------------ Julien Rentrop, July 2016   ----...
by MondoUnix on Aug 19, 2016

WordPress Welcome Announcement 1.0.5 Cross Site Scripting

##################### # Exploit Title: Wordpress Welcome Announcement Cross Site Scripting # Exploit Author: bl4ck_mohajem # Vendor Homepage: https://wordpress.org/plugins/welcome-announcement/ # Tested On: Windows7 # Software Link: https://downloads...
by MondoUnix on Aug 7, 2016

WordPress Store Locator Plus 4.5.09 Cross Site Scripting

------------------------------------------------------------------------ Cross-Site Scripting in Store Locator Plus for WordPress ------------------------------------------------------------------------ Yorick Koster, July 2016   ---------------...
by MondoUnix on Aug 7, 2016

Windows 10 app for Natural Health Website HEALTHandMED Now Available

by Josh Robert Nay Those who are interested in natural health or fitness will find something to love in HEALTHandMED, the app available from the website of the same name. HEALTHandMED provides natural health product information, tips on using these...
by Windows Mobile Freeware on Mar 8, 2016

Prepper website Well Prepared launches a Windows 10 app

by Josh Robert Nay If you’re looking to get prepared for both natural and man-made disasters, you’ll likely find usefulness in Well Prepared, a new app from the website of the same name that just launched on Windows 10 this week. Well Pr...
by Windows Mobile Freeware on Feb 26, 2016

Joomla Content History SQL Injection Remote Code Execution

## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ##   require 'msf/core'   class Metasploit3 < Msf::Exploit::Remote Rank = ExcellentRanking   incl...
by MondoUnix on Nov 21, 2015

WP Fastest Cache 0.8.4.8 Blind SQL Injection

# Exploit Title: WP Fastest Cache 0.8.4.8 Blind SQL Injection # Date: 11-11-2015 # Software Link: https://wordpress.org/plugins/wp-fastest-cache/ # Exploit Author: Kacper Szurek # Contact: http://twitter.com/KacperSzurek # Website: http://security.sz...
by MondoUnix on Nov 13, 2015

WordPress Ajax Load More PHP Upload

## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ##   require 'msf/core'   class Metasploit3 < Msf::Exploit::Remote Rank = ExcellentRanking   incl...
by MondoUnix on Nov 13, 2015

WordPress Neuvoo-Jobroll 2.0 Cross Site Scripting

###################################################################### # Exploit Title: Wordpress plugin neuvoo-jobroll 2.0 Reflected Cross-Site Scripting (RXSS) # Date: 05/11/2015 # Author: Mickael Dorigny @ Synetis # Vendor or Software Link: http:/...
by MondoUnix on Nov 6, 2015

WordPress Events Made Easy 1.5.49 CSRF / XSS

Plugin link: https://wordpress.org/plugins/events-made-easy/ Active Installs: 10,000+ Version tested: 1.5.49 CVE Reference: Waiting Original advisory: https://www.davidsopas.com/events-made-easy-wordpress-plugin-csrf-persistent-xss/   Events Mad...
by MondoUnix on Nov 1, 2015

WordPress Pie Register 2.0.18 SQL Injection

Details ================ Software: Pie Register Version: 2.0.18 Homepage: https://github.com/GTSolutions/Pie-Register CVE: CVE-2015-7682 (Pending) CVSS: 3.5 (Low; AV:N/AC:M/Au:S/C:P/I:N/A:N) CWE: CWE-89   Description ================ Two blind S...
by MondoUnix on Nov 1, 2015

WordPress Font 7.5 Path Traversal

Details ================ Software: Font Version: 7.5 Homepage: https://wordpress.org/plugins/font/ CVE: CVE-2015-7683 (Pending) CVSS: 6.3 (Medium; AV:N/AC:M/Au:S/C:C/I:N/A:N) CWE: CWE-22   Description ================ An absolute path traversal...
by MondoUnix on Nov 1, 2015

WordPress mTheme-Unus Local File Inclusion

####################################### # Exploit Title: Wordpress themes mTheme-Unus LFI Vulnerability # # Date: 2015-09-27 # Exploit Author: FullSecurity.org # Google Dork: ilnurl:/wp-content/themes/mTheme-Unus/ # Vendor Homepage: https://wordpress...
by MondoUnix on Oct 31, 2015

Joomla JNews SQL Injection

# Description of the component: Reach, engage and delight more customers with newsletters, auto-responders or campaign management.   ################################################################################################## # Exploit Tit...
by MondoUnix on Oct 31, 2015

Joomla GoogleSearch (CSE) 3.0.2 Cross Site Scripting

######################################################################################## #Exploit title: Joomla Component GoogleSearch (CSE) 3.0.2 - XSS Vulnerability #Author: Bet0 #Twitter: https://twitter.com/Bet0_Shinoda #Website: www.mc-crew.or.i...
by MondoUnix on Sep 11, 2015

WordPress arcResBookingWidget 1.0 Cross Site Scripting

Title: WordPress 'arcResBookingWidget' Plugin Version: 1.0 Author: Morten Nørtoft, Kenneth Jepsen & Mikkel Vej Date: 2015-06-16 Download: - https://wordpress.org/plugins/arcres-booking-engine/ - https://plugins.svn.wordpress.org/arcres-booking-e...
by MondoUnix on Aug 31, 2015


Trending Topics

Close