Lucene search
K

695 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:4 a.m.11 views

CVE-2024-8651

A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly others. Apply patch from vendor...

6.9CVSS5.3AI score0.00427EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/05/04 2:42 p.m.299 views

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604 !imagehttps://github.com/user-attachments/ass...

10CVSS9.3AI score0.99654EPSS
Exploits31
GithubExploit
GithubExploit
added 2025/04/24 7:31 p.m.751 views

Exploit for SQL Injection in Code-Projects Patient_Record_Management_System

CVE-2025-32433 Erlang SSH Library Exploit A proof-of-concept...

10CVSS8.9AI score0.97673EPSS
Exploits38
Packet Storm
Packet Storm
added 2025/04/07 12:0 a.m.172 views

📄 WBCE CMS 1.6.3 Remote Code Execution

WBCE CMS version 1.6.3 suffers from an authenticated remote code execution vulnerability. Exploit Title: WBCE CMS " exit 1 fi if -z "$which nc" ; then echo "! Netcat is not installed." exit 1 fi ip=$1 port=$2 rm -rf shellModule.zip rm -rf shellModule mkdir shellModule echo Crafting Payload cat...

8.2AI score
Exploits0
Exploit DB
Exploit DB
added 2025/04/06 12:0 a.m.346 views

WBCE CMS 1.6.3 - Authenticated Remote Code Execution (RCE)

Exploit Title: WBCE CMS " exit 1 fi if -z "$which nc" ; then echo "! Netcat is not installed." exit 1 fi ip=$1 port=$2 rm -rf shellModule.zip rm -rf shellModule mkdir shellModule echo Crafting Payload cat shellModule/info.php ?php / @category modules @package Reverse Shell @author Swammers8 @link...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2025/03/07 12:0 a.m.372 views

Webmin 2.202 Remote Command Execution

Webmin version 2.202 remote command execution exploit that provides a reverse shell. ============================================================================================================================================= | Title : Webmin 2.202 Reverse Shell attack | | Author : indoushka | |...

7.7AI score
Exploits0
GithubExploit
GithubExploit
added 2024/11/25 5:28 a.m.416 views

Exploit for Uncontrolled Search Path Element in Needrestart_Project Needrestart

CVE-2024-48990 Exploit My full writeup for how I came to re-...

7.8CVSS7.9AI score0.19924EPSS
Exploits15
Github Security Blog
Github Security Blog
added 2024/11/18 8:1 p.m.310 views

XXE in PHPSpreadsheet's XLSX reader

Summary The XmlScanner class has a scan method which should prevent XXE attacks. However, we found another bypass than the previously reported CVE-2024-47873, the regexes from the findCharSet method, which is used for determining the current encoding can be bypassed by using a payload in the...

7.5CVSS7.5AI score0.00718EPSS
Exploits1References5Affected Software2
Talos Blog
Talos Blog
added 2024/10/30 10:0 a.m.12 views

Writing a BugSleep C2 server and detecting its traffic with Snort

In June 2024, security researchers published their analysis of a novel implant dubbed "MuddyRot"aka "BugSleep". This remote access tool RAT gives operators reverse shell and file input/output I/O capabilities on a victim's endpoint using a bespoke command and control C2 protocol. This blog will...

8.1AI score
Exploits0
GithubExploit
GithubExploit
added 2024/10/25 8:31 p.m.200 views

Exploit for Code Injection in Sqlpad

How It Works: This PHP code is designed to exploit a Remot...

9.1CVSS8.6AI score0.08669EPSS
Exploits12
GithubExploit
GithubExploit
added 2024/10/24 3:15 a.m.191 views

Exploit for Command Injection in Netgate Pfsense

pfSense 2.7.0 Command Injection Exploit CVE-2023-42326 This...

8.8CVSS9.3AI score0.64021EPSS
Exploits2
GithubExploit
GithubExploit
added 2024/10/24 3:15 a.m.758 views

Exploit for Command Injection in Netgate Pfsense

pfSense 2.7.0 Command Injection Exploit CVE-2023-42326 This...

8.8CVSS9.3AI score0.64021EPSS
Exploits2
GithubExploit
GithubExploit
added 2024/10/23 4:1 a.m.363 views

Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms

CVE-2023-4220-RCE Summary Starlabs advisoryhtt...

8.1CVSS7.2AI score0.76084EPSS
Exploits27
GithubExploit
GithubExploit
added 2024/10/16 3:31 a.m.201 views

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604 !imagehttps://github.com/user-attachments/ass...

10CVSS9.3AI score0.99654EPSS
Exploits31
GithubExploit
GithubExploit
added 2024/10/10 9:30 a.m.320 views

Exploit for CVE-2024-4439

Exploit CVE-2024-4439 This Python script demonstrates an exp...

7.2CVSS7.1AI score0.70822EPSS
Exploits4
GithubExploit
GithubExploit
added 2024/10/08 6:7 p.m.292 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

TPAS Log4Shell PoC This repository contains a Proof of Concep...

10CVSS8.9AI score0.99999EPSS
Exploits348
GithubExploit
GithubExploit
added 2024/10/08 5:27 p.m.501 views

Exploit for Deserialization of Untrusted Data in Flask-Caching_Project Flask-Caching

It is an offensive tool for web exploitation. This PoC exploit t...

9.8CVSS9.2AI score0.07288EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/10/02 12:0 a.m.237 views

TitanNit Web Control 2.01 / Atemio 7600 Code Injection

============================================================================================================================================= | Title : TitanNit Web Control 2.01 / Atemio 7600 php code injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score
Exploits0
OSV
OSV
added 2024/09/19 5:15 p.m.6 views

CVE-2024-8651

A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly others. Apply patch from vendor...

5.3CVSS5.8AI score0.00427EPSS
Exploits0References1
OSV
OSV
added 2024/09/19 5:15 p.m.8 views

CVE-2024-8652

A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific path on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly others. Apply patch from vendor https://netcat.ru/ https://netcat.ru/ . Versions 6.4.0.24248 and o...

6.1CVSS5.9AI score0.00267EPSS
Exploits0References1
Rows per page
Query Builder