Lucene search
+L

3592 matches found

0day.today
0day.today
added 2023/03/15 12:0 a.m.399 views

Microsoft Outlook Remote Code Execution 0day Exploit

Microsoft Outlook Remote Code Execution 0day Exploit - zero-click exploit leading to remote code execution when receiving/downloading emails in Outlook, without requiring any user interaction such as reading the malicious email message or opening an attachment...

2.5AI score
Exploits0
GithubExploit
GithubExploit
added 2023/02/15 6:12 p.m.852 views

Exploit for CVE-2022-44666

Microsoft Windows Contacts VCF/Contact/LDAP syslink control...

9.3CVSS8AI score0.99374EPSS
Exploits63
0day.today
0day.today
added 2022/06/26 12:0 a.m.235 views

Microsoft Office Visio VSD Silent Builder Exploit

0day exploit is a program that injects any executable formatted file .exe into the desired visio .vsd file. The exe is automatically executed when the file.vsd is opened. Bypasses all antivirus programs...

2.1AI score
Exploits0
ThreatPost
ThreatPost
added 2022/06/01 10:38 a.m.3995 views

Microsoft Releases Workaround for ‘One-Click’ 0Day Under Active Attack

Microsoft has released a workaround for a zero-day flaw that was initially flagged in April and that attackers already have used to target organizations in Russia and Tibet, researchers said. The remote control execution RCE flaw, tracked as CVE-2022-3019, is associated with the Microsoft Support...

9.3CVSS8AI score0.99374EPSS
Exploits91References17
ThreatPost
ThreatPost
added 2022/05/24 1:59 p.m.27 views

Fronton IOT Botnet Packs Disinformation Punch

A fresh look at the Fronton DDoS-focused botnet reveals the criminal tool has more capabilities than previously known. The Fronton botnet first made the headline in March 2020. That is when, according to news reports, a hacktivist group called Digital Revolution said it obtained documents claimin...

7.2AI score
Exploits0References2
0day.today
0day.today
added 2022/04/20 12:0 a.m.1822 views

Joomla! 4.1.2 Shell Upload 0day Exploit

...

1.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/04/08 12:0 a.m.379 views

School Club Application System 1.0 Local File Inclusion

Title: School Club Application System 1.0 LFI To RCE Author: Hejap Zairy Date: 08.04.2022 Vendor: https://www.sourcecodester.com/php/15266/school-club-application-system-phpoop-free-source-code.html Software: https://www.sourcecodester.com/sites/default/files/download/oretnom23/scas0.zip Referenc...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2022/03/31 8:30 p.m.22 views

Spring-Spel-0Day-Poc - Spring-Cloud / spring-cloud-function, spring.cloud.function.routing-expression, RCE, 0day, 0-day, POC, EXP

spring-cloud/spring-cloud-function RCE EXP POC https://github.com/spring-cloud/spring-cloud-function header spring.cloud.function.routing-expression:Tjava.lang.Runtime.getRuntime.exec"open -a calculator.app" build wget...

7.4AI score
Exploits0References5
GithubExploit
GithubExploit
added 2022/03/30 3:49 p.m.495 views

Exploit for Code Injection in Vmware Spring_Cloud_Function

CVE-2022-22963 - Spring4shell To run the vulnerable SpringBoot...

9.8CVSS9.6AI score0.99939EPSS
Exploits36
0day.today
0day.today
added 2022/03/30 12:0 a.m.221 views

Message System 1.0 Local File Inclusion Vulnerability

Title: Message System 1.0 LFI To RCE Author: Hejap Zairy Vendor: https://www.sourcecodester.com/php/15249/message-system-phpoop-free-source-code.html Software:https://www.sourcecodester.com/sites/default/files/download/oretnom23/pmms1.zip Reference: https://github.com/Matrix07ksa Tested on:...

0.1AI score
Exploits0
0day.today
0day.today
added 2022/03/09 12:0 a.m.237 views

Audio Conversion Wizard v2.01 - Buffer Overflow Exploit

Exploit Title: Audio Conversion Wizard v2.01 - Buffer Overflow Exploit Author: Hejap Zairy Software Link: https://www.litexmedia.com/acwizard.exe Tested Version: v2.01 Tested on: Windows 10 64bit 1.- Run python code : 0day-HejapZairy.py 2.- Open 0dayHejap.txt and copy All content to Clipboard 3.-...

7.4AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2022/03/09 12:0 a.m.16 views

(0Day) Ecava IntegraXor Inkscape EMF File Parsing Out-Of-Bound Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Ecava IntegraXor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

3.3CVSS3.6AI score
Exploits0
0day.today
0day.today
added 2022/02/23 12:0 a.m.792 views

Twitter reset account Private Method 0day Exploit

Twitter reset any Account Private Method Exploit...

7.1AI score
Exploits0
0day.today
0day.today
added 2022/02/09 12:0 a.m.1572 views

WordPress 5.9.0 core Remote Code Execution 0day Exploit

This python exploit allow remote code execution, work with default installations and should not require any authentication or user interaction...

3.8AI score
Exploits0
0day.today
0day.today
added 2022/01/05 12:0 a.m.1405 views

Hotmail.com reset account 0day Exploit

Hotmail.com 0day Exploit can reset any email account...

2.3AI score
Exploits0
Wallarm Lab
Wallarm Lab
added 2021/12/10 8:56 p.m.138 views

Log4j 0day mitigation update CVE-2021-44228

Wallarm has rolled out the update to detect and mitigate CVE-2021-44228. No additional actions are required from the customers Attempts at exploitation will be automatically blocked in a blocking mode When working in a monitoring mode, consider creating a virtual patch Log4Shell A 0-day exploit i...

9.3CVSS1.9AI score0.99999EPSS
Exploits355
GithubExploit
GithubExploit
added 2021/12/09 11:25 a.m.612 views

Exploit for Path Traversal in Grafana

Grafana V8. Arbitrary File Reading Vulnerability – Multi-t...

7.5CVSS7.4AI score0.88849EPSS
Exploits44
Packet Storm
Packet Storm
added 2021/11/02 12:0 a.m.406 views

Ericsson Network Location MPS GMPC21 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ericsson Network Location MPS - Restrictions Bypass RCE Meow Variant', 'Description' = %q This module exploits an arbitrary command execution...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/10/08 12:0 a.m.62 views

CVE-2021-37976

Inappropriate implementation in Memory in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Recent assessments: gwillcox-r7 at October 02, 2021 7:27pm UTC reported: More info will be available at...

6.5CVSS7.3AI score0.19901EPSS
In wildExploits1References10
Zero Day Initiative
Zero Day Initiative
added 2021/08/30 12:0 a.m.13 views

(0Day) Fuji Electric Tellus Lite V9 File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.8AI score
Exploits0
Rows per page
Query Builder