Showing 1 - 4 of 4
Files from Nahendra Bhati
Real Name | Narendra Bhati |
Email address | private |
Website | websecgeeks.com |
First Active | 2014-11-10 |
Last Active | 2016-06-22 |
Personal Background
'm Narendra Bhati You Can Also Cal Me R00t Sh3ll, A Professional Penetration Tester and Now Working @Suma Soft Pvt. Ltd ( IT Risk & Security Management Services) Pune As Security Analyst.I am also Bug Bounty Hunter , I Would Like To Develop Applications In PHP Sometimes For My Research & I Am Also A Python Lover . I Participated In All Major Bug Bounty Programs Held By Internet Giants Like Google, Facebook, Yahoo, Paypal, Barracuda...etc.. I Have 2+ Years Of Expertise Black Box As Well As Grey Box Penetration Testing..
- Wolf CMS 0.8.2 Arbitrary PHP File Upload
- Posted Jun 22, 2016
- Authored by Nahendra Bhati, Rahmat Nurfauzi | Site metasploit.com
This Metasploit module exploits a file upload vulnerability in Wolf CMS version 0.8.2. This application has an upload feature that allows an authenticated user with administrator roles to upload arbitrary files to the '/public' directory.
- tags | exploit, arbitrary, file upload
- advisories | CVE-2015-6567, CVE-2015-6568
- SHA-256 |
bb14eded63b20bf9f13fdec65b93642599468f8b8d60278a25b93898e6f4fc4b
- Download | Favorite | View
- Web2py 2.14.5 CSRF / XSS / Local File Inclusion
- Posted May 16, 2016
- Authored by Nahendra Bhati
Web2py version 2.14.5 suffers from cross site request forgery, cross site scripting, and local file inclusion vulnerabilities.
- tags | exploit, local, vulnerability, xss, file inclusion, csrf
- advisories | CVE-2016-4806, CVE-2016-4807, CVE-2016-4808
- SHA-256 |
967983318fc0a206d3dfe9b11f666c89eaa24b3941dd90b7f0560b57b3f2d15a
- Download | Favorite | View
- NPDS CMS Revolution-13 SQL Injection
- Posted Jan 30, 2015
- Authored by Nahendra Bhati
NPDS CMS Revolution-13 suffers from a remote SQL injection vulnerability.
- tags | exploit, remote, sql injection
- advisories | CVE-2015-1400
- SHA-256 |
142ca9db88be9cf3d50167d0e6ca107fc856238d9b989d450adedf97f40190cc
- Download | Favorite | View
- X3 CMS 0.5.1.1 Cross Site Request Forgery / Cross Site Scripting
- Posted Nov 10, 2014
- Authored by Nahendra Bhati
X3 CMS versions 0.5.1 and 0.5.1.1 suffer from cross site request forgery and cross site scripting vulnerabilities.
- tags | exploit, vulnerability, xss, csrf
- SHA-256 |
c0f412e75d49e1016a81bfc9b778be1b4b23e45e968f63e05b4d8159c3fdf6cc
- Download | Favorite | View