Showing 1 - 5 of 5

Files from Sivanesh Ashok

Facebook For Android Friend Acceptance: Posted Aug 10, 2021; Authored by Sivanesh Ashok; Facebook for Android is vulnerable to a permission issue which allows anyone with physical access to the Android device, to accept friend requests without unlocking the phone. Facebook does not consider this a security issue. Version 29.0.0.29.120 on Android 10 is affected.; tags | exploit, bypass; SHA-256 | e54d6e154978012b0aed910e35f2436d413df80ed4bf904c047a72d72574f97f; Download | Favorite | View

October CMS Build 465 XSS / File Read / File Deletion / CSV Injection: Posted Aug 3, 2020; Authored by Sivanesh Ashok; October CMS builds 465 and below suffer from arbitrary file read, arbitrary file deletion, file uploading to arbitrary locations, persistent and reflective cross site scripting, and CSV injection vulnerabilities.; tags | exploit, arbitrary, vulnerability, xss, file upload; advisories | CVE-2020-11083, CVE-2020-5295, CVE-2020-5296, CVE-2020-5297, CVE-2020-5298, CVE-2020-5299; SHA-256 | db161c36ea18421b21654c361479e95224d40c18622344eb445b051377246742; Download | Favorite | View

Bolt CMS 3.7.0 XSS / CSRF / Shell Upload: Posted Jul 3, 2020; Authored by Sivanesh Ashok; Bolt CMS versions 3.7.0 and below suffer from cross site request forgery, cross site scripting, and remote shell upload vulnerabilities that when combined can achieve remote code execution in one click.; tags | exploit, remote, shell, vulnerability, code execution, xss, csrf; advisories | CVE-2020-4040, CVE-2020-4041; SHA-256 | 63f82ab2668cd76e8c576715141ddcdae04ec41e73b11fc6fb4a9139a2bf5851; Download | Favorite | View

Bolt CMS 3.7.0 Authenticated Remote Code Execution: Posted Jun 29, 2020; Authored by r3m0t3nu11, Erik Wynter, Sivanesh Ashok | Site metasploit.com; This Metasploit module exploits multiple vulnerabilities in Bolt CMS version 3.7.0 and 3.6.x in order to execute arbitrary commands as the user running Bolt. Valid credentials for a Bolt CMS user are required. This module has been successfully tested against Bolt CMS 3.7.0 running on CentOS 7.; tags | exploit, arbitrary, vulnerability; systems | linux, centos; SHA-256 | 9f2d762b1d8e6bcbc5f7e02bde9b6d95028ec1015c112f2165e2847c2855320d; Download | Favorite | View

Prestashop 1.7.6.4 XSS / CSRF / Remote Code Execution: Posted Apr 17, 2020; Authored by Sivanesh Ashok; Prestashop versions 1.7.6.4 and below suffer from code execution, cross site request forgery, and cross site scripting vulnerabilities.; tags | exploit, vulnerability, code execution, xss, csrf; SHA-256 | e614085b9eb87091a2d75dab2853ff80979807cfc96148439021df1a832b95a4; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days