198 matches found
Yammer Desktop Detection (Mac OS X SSH Login)
Detects the installed version of Yammer Desktop on Mac OS X. The script logs in via ssh, searches for folder SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Grapixel New Media 2 - pageref SQL Injection
Grapixel New Media 2 - pageref SQL Injection Exploit Title: Grapixel New Media 2 - 'pageref' SQL Injection Exploit Author: Berk Dusunur Google Dork: N/A Type: Web App Date: 2018-10-26 Vendor Homepage: http://www.grapixel.com Software Link: http://www.grapixel.com Affected Version: v2 Tested on:...
Node.js Detection (Mac OS X SSH Login)
Detects the installed version of Node.js on Mac OS X. The script logs in via ssh, and gets the version via command line option SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Joomla Ek rishta 2.10 Component - SQL Injection Vulnerability
Exploit for php platform in category web applications Title: SQL Injection Joomla Component Ek rishta 2.10 - SQL Injection Exploit Author: Guilherme Assmann Vendor Homepage:https://www.joomla.org/ Version: 2.10 Tested on: MacOSX, Safari, Chrome Download:...
Joomla Component Ek Rishta 2.10 - SQL Injection
Joomla Component Ek Rishta 2.10 - SQL Injection Title: SQL Injection Joomla Component Ek rishta 2.10 - SQL Injection Date: 2018-06-14 Exploit Author: Guilherme Assmann Vendor Homepage:https://www.joomla.org/ Version: 2.10 Tested on: MacOSX, Safari, Chrome Download:...
Joomla! Component Ek Rishta 2.10 - SQL Injection
Title: SQL Injection Joomla Component Ek rishta 2.10 - SQL Injection Date: 2018-06-14 Exploit Author: Guilherme Assmann Vendor Homepage:https://www.joomla.org/ Version: 2.10 Tested on: MacOSX, Safari, Chrome Download: https://extensions.joomla.org/extension/ek-rishta/ CVE: CVE-2018-12254...
Apple Xcode Code < 9.4.1 Multiple Vulnerabilities
Apple Xcode is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:xcode"; ifdescription...
CylancePROTECT 2.0.x < 2.0.1480 SSL Validation (Cy2008-002) (macOS)
The version of CylancePROTECT installed on the remote MacOS/MacOSX host is 2.0.x prior to 2.0.1480. It is, therefore, affected by an SSL validation flaw that can allow an attacker to cause an arbitrary file download. C Tenable Network Security, Inc. include"compat.inc"; if description...
CrawlBox - Easy Way To Brute-Force Web Directory.
Easy way to brute-force web directory. Operating Systems Tested MacOSX Ubuntu 16.04 Usage python crawlbox.py -h -v -w WORDLIST url positional arguments: url specific target url, like domain.com optional arguments: -h, --help show this help message and exit -v, --version show program's version...
Wireshark 2.4.x < 2.4.5 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.5. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.5 advisory. - In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed...
Adobe Acrobat Reader DC (Continuous Track) Detection (Mac OS X SSH Login)
Detects the installed version of Adobe Acrobat Reader DC Continuous Track. The script logs in via ssh, searches for folder SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
macOS High Sierra - Root Privilege Escalation Exploit
Exploit for macOS platform in category local exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mac OS X Root Privilege Escalation', 'Description' = %q This module exploits a serious flaw...
Apple macOS 10.13.1 (High Sierra) - 'Blank Root' Local Privilege Escalation (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mac OS X Root Privilege Escalation', 'Description' = %q This module exploits a serious flaw in MacOSX High Sierra. Any user can login with user...
Mac OS X Root Privilege Escalation
This module exploits a serious flaw in MacOSX High Sierra. Any user can login with user "root", leaving an empty password. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mac OS X Root Privileg...
Mac OS X Root Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mac OS X Root Privilege Escalation', 'Description' = %q This module exploits a serious flaw in MacOSX High Sierra. Any user can login with user...
openSUSE Security Update : java-1_7_0-openjdk (openSUSE-2017-629)
This update for java-170-openjdk fixes the following issues : - Update to 2.6.10 - OpenJDK 7u141 bsc1034849 - Security fixes - S8163520, CVE-2017-3509: Reuse cache entries - S8163528, CVE-2017-3511: Better library loading - S8165626, CVE-2017-3512: Improved window framing - S8167110, CVE-2017-351...
Mac OSX/Dok Unauthorized Remote Access
A MacOSX malware exists in the wild. A remote attacker can send the malware via mail, and then entice the victim to execute it by means of social engineering. Activating this malware results in complete remote control over the victim's machine...
dirsearch - Brute Force Directories and Files in Websites
dirsearch is a simple command line tool designed to brute force directories and files in websites. Operating Systems supported Windows XP/7/8/10 GNU/Linux MacOSX Features Multithreaded Keep alive connections Support for multiple extensions -e|--extensions asp,php Reporting plain text, JSON...
Apple Mac OS X 10.12/iOS 10 SecureTransport SSL handshake OCSP MiTM and DoS
Exploit for macOS platform in category dos / poc Apple macOS 10.12/iOS 10 SecureTransport SSL handshake OCSP MiTM and DoS --- 0. Description ---- The latest macOS and iOS have weak OCSP validation process which allow attacker to send OCSP requests up to 200k in name of victim during MiTM attack...
Open Source Disk Encryption: VeraCrypt
VeraCrypt is a software for establishing and maintaining an on-the-fly-encrypted volume data storage device. On-the-fly encryption means that data is automatically encrypted right before it is saved and decrypted right after it is loaded, without any user intervention. No data stored on an...