Lucene search
+L

27 matches found

githubexploit
githubexploit
added 2025/04/14 2:33 a.m.322 views

Exploit for Improper Access Control in Papercut Papercut_Mf

CVE-2023-27350 This PoC demonstrates how it’s possible to byp...

9.8CVSS9.1AI score0.99999EPSS
Exploits24
githubexploit
githubexploit
added 2025/03/09 6:8 p.m.263 views

Exploit for Improper Access Control in Papercut Papercut_Mf

! Be careful executing this as it re-configures the server con...

9.8CVSS10AI score0.99999EPSS
Exploits24
rapid7blog
rapid7blog
added 2023/06/09 10:2 p.m.66 views

Metasploit Weekly Wrap-Up

MOVEit It has been a busy few weeks in the security space; the MOVEit vulnerability filling our news feeds with dancing lemurs and a Barracuda vulnerability that has us all wondering how many shredders out there can handle a 1U appliance. Despite those very worthwhile distractions, Metasploit has...

7.5CVSS8.1AI score0.99999EPSS
Exploits37
metasploit
metasploit
added 2023/06/07 7:50 p.m.308 views

PaperCut PaperCutNG Authentication Bypass

This module leverages an authentication bypass in PaperCut NG. If necessary it updates Papercut configuration options, specifically the 'print-and-device.script.enabled' and 'print.script.sandboxed' options to allow for arbitrary code execution running in the builtin RhinoJS engine. This module...

9.8CVSS9.6AI score0.99999EPSS
Exploits24
githubexploit
githubexploit
added 2023/05/27 11:32 a.m.6 views

Exploit for Improper Access Control in Papercut Papercut_Mf

CVE-2023-27350 - The tool is designed specifically for Massiv...

9.8CVSS7.1AI score0.99999EPSS
Exploits24
thn
thn
added 2023/05/25 10:40 a.m.280 views

Buhti Ransomware Gang Switches Tactics, Utilizes Leaked LockBit and Babuk Code

The threat actors behind the nascent Buhti ransomware have eschewed their custom payload in favor of leaked LockBit and Babuk ransomware families to strike Windows and Linux systems. "While the group doesn't develop its own ransomware, it does utilize what appears to be one custom-developed tool,...

9.8CVSS9.9AI score0.99999EPSS
Exploits44
packetstorm
packetstorm
added 2023/05/24 12:0 a.m.383 views

PaperCut NG/MG 22.0.4 Remote Code Execution

Exploit Title: PaperCut NG/MG 22.0.4 - Remote Code Execution RCE Date: 13 May 2023 Exploit Author: Mohin Paramasivam Shad0wQu35t and MaanVader Vendor Homepage: https://www.papercut.com/ Version: 8.0 or later Tested on: 22.0.4 CVE: CVE-2023-27350 import requests import argparse Grouppayload =...

9.8CVSS7.1AI score0.99999EPSS
Exploits24
exploitdb
exploitdb
added 2023/05/23 12:0 a.m.330 views

PaperCut NG/MG 22.0.4 - Remote Code Execution (RCE)

Exploit Title: PaperCut NG/MG 22.0.4 - Remote Code Execution RCE Date: 13 May 2023 Exploit Author: Mohin Paramasivam Shad0wQu35t and MaanVader Vendor Homepage: https://www.papercut.com/ Version: 8.0 or later Tested on: 22.0.4 CVE: CVE-2023-27350 import requests import argparse Grouppayload =...

9.8CVSS9.8AI score0.99999EPSS
Exploits24
zdt
zdt
added 2023/05/23 12:0 a.m.343 views

PaperCut NG/MG 22.0.4 - Remote Code Execution Exploit

Exploit Title: PaperCut NG/MG 22.0.4 - Remote Code Execution RCE Exploit Author: Mohin Paramasivam Shad0wQu35t and MaanVader Vendor Homepage: https://www.papercut.com/ Version: 8.0 or later Tested on: 22.0.4 CVE: CVE-2023-27350 import requests import argparse Grouppayload =...

7.5CVSS7.1AI score0.99999EPSS
Exploits24
nessus
nessus
added 2023/05/18 12:0 a.m.217 views

PaperCut MF Authentication Bypass (CVE-2023-27350)

Binary data papercutmfcve-2023-27350.nbin...

9.8CVSS9.9AI score0.99999EPSS
Exploits24References2
thn
thn
added 2023/05/12 7:59 a.m.6 views

Bl00dy Ransomware Gang Strikes Education Sector with Critical PaperCut Vulnerability

U.S. cybersecurity and intelligence agencies have warned of attacks carried out by a threat actor known as the Bl00dy Ransomware Gang that attempt to exploit vulnerable PaperCut servers against the education facilities sector in the country. The attacks took place in early May 2023, the Federal...

9.8CVSS8AI score0.99999EPSS
Exploits24
thn
thn
added 2023/05/12 7:59 a.m.128 views

Bl00dy Ransomware Gang Strikes Education Sector with Critical PaperCut Vulnerability

U.S. cybersecurity and intelligence agencies have warned of attacks carried out by a threat actor known as the Bl00dy Ransomware Gang that attempt to exploit vulnerable PaperCut servers against the education facilities sector in the country. The attacks took place in early May 2023, the Federal...

9.8CVSS9.8AI score0.99999EPSS
Exploits24
ics
ics
added 2023/05/11 12:0 p.m.59 views

Malicious Actors Exploit CVE-2023-27350 in PaperCut MF and NG

SUMMARY The Federal Bureau of Investigation FBI and Cybersecurity and Infrastructure Security Agency CISA are releasing this joint Cybersecurity Advisory CSA in response to the active exploitation of CVE-2023-27350. This vulnerability occurs in certain versions of PaperCut NG and PaperCut MF and...

9.8CVSS9.7AI score0.99999EPSS
Exploits24References33
thn
thn
added 2023/05/09 8:53 a.m.188 views

Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability

Iranian nation-state groups have now joined financially motivated actors in actively exploiting a critical flaw in PaperCut print management software, Microsoft disclosed over the weekend. The tech giant's threat intelligence team said it observed both Mango Sandstorm Mercury and Mint Sandstorm...

9.8CVSS9.2AI score0.99999EPSS
Exploits24
thn
thn
added 2023/05/04 1:3 p.m.67 views

Researchers Uncover New Exploit for PaperCut Vulnerability That Can Bypass Detection

Cybersecurity researchers have found a way to exploit a recently disclosed critical flaw in PaperCut servers in a manner that bypasses all current detections. Tracked as CVE-2023-27350 CVSS score: 9.8, the issue affects PaperCut MF and NG installations that could be exploited by an unauthenticate...

9.8CVSS10AI score0.99999EPSS
Exploits24
thn
thn
added 2023/04/27 8:20 a.m.83 views

Microsoft Confirms PaperCut Servers Used to Deliver LockBit and Cl0p Ransomware

Microsoft has confirmed that the active exploitation of PaperCut servers is linked to attacks that are designed to deliver Cl0p and LockBit ransomware families. The tech giant's threat intelligence team is attributing a subset of the intrusions to a financially motivated actor it tracks under the...

9.8CVSS8.9AI score0.99999EPSS
Exploits37
packetstorm
packetstorm
added 2023/04/26 12:0 a.m.430 views

PaperCut NG/MG 22.0.4 Authentication Bypass

Exploit Title: PaperCut NG/MG 22.0.4 - Authentication Bypass Date: 21 April 2023 Exploit Author: MaanVader Vendor Homepage: https://www.papercut.com/ Version: 8.0 or later Tested on: 22.0.4 CVE: CVE-2023-27350 import requests from bs4 import BeautifulSoup import re def vulnversion: ip = input"Ent...

6.2AI score0.99999EPSS
Exploits24
githubexploit
githubexploit
added 2023/04/25 8:51 p.m.373 views

Exploit for Improper Access Control in Papercut Papercut_Mf

CVE-2023-27350 Exploit POCThis is a Proof of Concept POC explo...

9.8CVSS10AI score0.99999EPSS
Exploits24
exploitdb
exploitdb
added 2023/04/25 12:0 a.m.506 views

PaperCut NG/MG 22.0.4 - Authentication Bypass

Exploit Title: PaperCut NG/MG 22.0.4 - Authentication Bypass Date: 21 April 2023 Exploit Author: MaanVader Vendor Homepage: https://www.papercut.com/ Version: 8.0 or later Tested on: 22.0.4 CVE: CVE-2023-27350 import requests from bs4 import BeautifulSoup import re def vulnversion: ip = input"Ent...

9.8CVSS9.6AI score0.99999EPSS
Exploits24
nessus
nessus
added 2023/04/25 12:0 a.m.123 views

PaperCut NG Authentication Bypass (CVE-2023-27350)

Binary data papercutngcve-2023-27350.nbin...

9.8CVSS9.6AI score0.99999EPSS
Exploits24References2
Rows per page
Query Builder