[FD] Wordpress plugin Simple Ads Manager - Arbitrary File Upload

2015-04-05 Thread ITAS Team
: CVE-2015-2825 #Author: Tran Dinh Tien (tien.d.t...@itas.vn) ITAS Team ::PROOF OF CONCEPT:: + REQUEST POST /wp-content/plugins/simple-ads-manager/sam-ajax-admin.php HTTP/1.1 Host: targer.com Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Content-Type: multipart/form-data

[FD] Wordpress plugin Simple Ads Manager - SQL Injection

2015-04-05 Thread ITAS Team
: CVE-2015-2824 #Author: Le Hong Minh (minh.h...@itas.vn) ITAS Team ::PROOF OF CONCEPT:: ---SQL INJECTION 1--- + REQUEST: POST /wp-content/plugins/simple-ads-manager/sam-ajax.php HTTP/1.1 Host: target.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:30.0) Gecko/20100101 Firefox/28.0

[FD] Wordpress plugin Simple Ads Manager - Information Disclosure

2015-04-05 Thread ITAS Team
/ #CVE ID: CVE-2015-2826 #Author: Nguyen Hung Tuan (tuan.h.ngu...@itas.vn) ITAS Team ::PROOF OF CONCEPT:: + REQUEST POST /wp-content/plugins/simple-ads-manager/sam-ajax-admin.php HTTP/1.1 Host: target.com Content-Type: application/x-www-form-urlencoded Content-Length: 17 action=load_users

[FD] Multiple SQL Injection

2015-04-05 Thread ITAS Team
/ #CVE ID: CVE-2015-2824 #Author: Le Hong Minh (minh.h...@itas.vn) ITAS Team ::PROOF OF CONCEPT:: ---SQL INJECTION 1--- + REQUEST: POST /wp-content/plugins/simple-ads-manager/sam-ajax.php HTTP/1.1 Host: target.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:30.0) Gecko/20100101 Firefox

[FD] Community Gallery - Srored Corss-Site Scripting vulnerability

2015-03-12 Thread ITAS Team
version: Community Gallery 2.0 after 12/26/2014 #CVE ID: CVE-2015-2275 #Author: Pham Kien Cuong (cuong.k.p...@itas.vn) ITAS Team (www.itas.vn) ::PROOF OF CONCEPT:: + REQUEST: POST /7788bdbc/gallery/index.php/AJAXProxy/?t=7d53f8ad7553c0f885e3ccb60edbc0b6512 d9eed HTTP/1.1 Host: target User-Agent

[FD] ProjectSend r561 - SQL injection vulnerability

2015-03-05 Thread ITAS Team
#Vulnerability title: ProjectSend r561 - SQL injection vulnerability #Product: ProjectSend r561 #Vendor: http://www.projectsend.org/ #Affected version: ProjectSend r561 #Download link: http://www.projectsend.org/download/67/ #Fixed version: N/A #Author: Le Ngoc Phi (phi.n...@itas.vn) ITAS Team

[FD] Radexscript CMS 2.2.0 - SQL Injection vulnerability

2015-02-11 Thread ITAS Team
Kien Cuong (cuong.k.p...@itas.vn) ITAS Team (www.itas.vn) :: PROOF OF CONCEPT :: POST /redaxscript/ HTTP/1.1 Host: target.local User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:34.0) Gecko/20100101 Firefox/34.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept

[FD] Sefrengo CMS v1.6.1 - Multiple SQL Injection Vulnerabilities

2015-02-02 Thread ITAS TEAM
ID: CVE-2015-1428 # Vulnerability:SQL Injection # Affected version: Sefrengo CMS v1.6.1 # Fixed version:Sefrengo CMS v1.6.2 # Author:Nguyen Hung Tuan (tuan.h.ngu...@itas.vn) ITAS Team ( www.itas.vn) ::PROOF OF CONCEPT:: Link 1: - Vulnerable file: /backend

[FD] XSS Vulnerability in Fork CMS 3.8.3

2015-01-12 Thread ITAS Team
# Exploit Title: XSS Vulnerability in Fork CMS 3.8.3 # Google Dork: N/A # Date: 12/26/2014 # Exploit Author: Le Ngoc phi (phi.n...@itas.vn) and ITAS Team (www.itas.vn) # Vendor Homepage: http://www.fork-cms.com # Software Link: http://www.fork-cms.com/blog/detail/fork-3.8.4-released

[FD] SQL Injection Vulnerability in Microweber 0.95

2015-01-12 Thread ITAS Team
: SQL Injection # Affected version: Version 0.95 before 12/09/2014. # Fixed version:Version 0.95 updated on 12/11/2014 # Author: Pham Kien Cuong (cuong.k.p...@itas.vn) ITAS Team (www.itas.vn) ::VULNERABILITY DETAIL:: - A SQL injection vulnerability has been found