[Canvas] D2 Elliot 1.7, January 29 2017

DSquare Security sales at d2sec.com
Sun Jan 29 11:14:01 EST 2017

D2 Elliot has been updated with 17 new web exploits. Payloads and workflows 
have also been improved. 

Now exploits have a VulnDB ID. If you already have an account to access VulnDB 
portal you can click on the VulnDB ID and see details about the vulnerability. 
For more information about VulnDB please contact us or go to

D2 Elliot Web Exploitation Framework is regularly updated with new exploits 
and tools to keep a high level of efficiency. If you need customized exploits 
or tools please contact us at info at d2sec.com 

For sales inquiries and orders, please contact sales at d2sec.com

DSquare Security, LLC


Exploits - Added:
 E-541 - Sophos Web Protection Appliance RCE
 E-542 - SonicWALL Global Management System RCE
 E-543 - SonicWALL Global Management System File Disclosure
 E-544 - vBulletin 4 ForumRunner SQL Injection
 E-545 - Symantec Web Gateway 5.2.2 RCE
 E-546 - SonicWALL Global Management System ImagePreviewServlet SQL Injection
 E-547 - eFront libraries/includes/social.php SQL Injection
 E-548 - Joomla Component com_eventbooking SQL Injection
 E-549 - Joomla Component com_blog_calendar SQL Injection
 E-550 - Joomla com_videogallerylite SQL Injection
 E-551 - Joomla CMS Form Data Handling Remote User Account Manipulation
 E-552 - Joomla Component com_dtregister SQL Injection
 E-553 - Joomla Component com_rpl SQL Injection
 E-554 - WordPress Tevolution 2.3.1 File Upload
 E-555 - WordPress Product Catalog 8 SQL Injection
 E-556 - WordPress WP Vault LFI
 E-557 - WordPress Simply Poll 1.4.1 SQL Injection

More information about the Canvas mailing list