Lastest MorXploit:

Title Author Date
New! Exploit Bash/cgi remote command execution exploit Simo Ben youssef 2014-26-09
New! Exploit Yahoo! Mail Captcha bypass/Brute force exploit Simo Ben youssef 2014-15-09
New! Exploit Google Voice private number disclosure Simo Ben youssef 2014-04-04
New! Exploit Adobe Multiple Web Vulnerabilities exploit Simo Ben youssef 2014-27-03
New! Exploit Kloxo remote root exploit Simo Ben youssef 2014-26-02
New! Paper Smashing Bitcoin BrainWallets for fun and profit! paper Simo Ben youssef 2014-30-01
 Exploit Zimbra file inclusion/Shell upload exploit Simo Ben youssef 2014-24-01
 Exploit Zimbra file inclusion/Admin account creation exploit Simo Ben youssef 2014-21-01
Tool MorXAntiRE v1.5 Anti reverse code engineering and dynamic analysis tool Ayoub Faouzi 2013-28-12
Updated! Exploit Cisco Linksys CSRF password change exploit Simo Ben youssef 2013-12-12
 Tool MorXCrack v1.2: Multi-Algorithm/CMS password cracking tool Simo Ben youssef 2013-15-11
Tool MorXBrute v1.01 Beta: HTTP password cracking tool Simo Ben youssef 2013-08-11
 Exploit PHP + Apache remote code execution exploit Simo Ben youssef 2013-03-11

zv7qrnb

Latest CVE Feed:

  • CVE-2013-3632 - The Cron service in rpc.php in OpenMediaVault allows remote authenticated users to execute cron jobs as arbitrary users and execute arbitrary commands via the username parameter.
  • CVE-2013-3092 - The Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication and gain privileges via vectors related to incorrect validation of the HTTP Authorization header.
  • CVE-2013-3066 - Linksys EA6500 with firmware 1.1.28.147876 does not properly restrict access, which allows remote attackers to obtain sensitive information (clients and router configuration) via a request to /JNAP/.
  • CVE-2013-3083 - Cross-site request forgery (CSRF) vulnerability in cgi-bin/system_setting.exe in Belkin F5D8236-4 v2 allows remote attackers to hijack the authentication of administrators for requests that open the remote management interface on arbitrary ports via the remote_mgmt_enabled and remote_mgmt_port parameters.
  • CVE-2013-3089 - Cross-site request forgery (CSRF) vulnerability in apply.cgi in Belkin N300 (F7D7301v1) router allows remote attackers to hijack the authentication of administrators for requests that modify configuration.
  • CVE-2013-3068 - Cross-site request forgery (CSRF) vulnerability in apply.cgi in Linksys WRT310Nv2 2.0.0.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords and modify remote management ports.