h1-5411-CTF: Remote Command Execution in a internal server to get the flag file

Summary: After source code disclosure using a LFI vulnerability and using PHP object injection with XXE I was able to find an internal service at port 1337. Using the SSRF through XXE I sent a HTTP request to this internal service and discovered a python object injection using status parameter,...

Beyond Remote 2.2.5.3 Denial Of Service

Exploit Title: Beyond Remote 2.2.5.3 - Denial of Service PoC Author: Erenay Gencay Discovey Date: 2018-09-24 Vendor notified : 2018-09-24 Software Link: https://beyond-remote-client-and-server.jaleco.com/ Tested Version: 2.2.5.3 Tested on OS: Windows XP Professional sp3 ENG Steps to Reproduce: Ru...

Faleemi Plus 1.0.2 - Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: Faleemi Plus 1.0.2 - Denial of Service PoC Author: Gionathan "John" Reale Software Link: http://support.faleemi.com/fsc776/FaleemiPlusv1.0.2.exe Tested Version: 1.0.2 Tested on OS: Windows 10 Steps to Reproduce: Run the python...

PDF Explorer 1.5.66.2 - Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: PDF Explorer 1.5.66.2 - Denial of Service PoC Author: Gionathan "John" Reale Software Link: https://www.rttsoftware.com/files/PDFExplorerTrialSetup.zip Tested Version: 1.5.66.2 Tested on OS: Windows 7 32-bit Steps to Reproduce: Run...

Faleemi Desktop Software 1.8.2 - SavePath for ScreenShots Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: Faleemi Desktop Software 1.8.2 - 'SavePath for ScreenShots' Buffer Overflow SEH Author: Gionathan "John" Reale Software Link: http://support.faleemi.com/fsc776/Faleemiv1.8.exe Tested Version: 1.8.2 Tested on OS: Windows 7 32bi...

TeamViewer App 13.0.100.0 Denial Of Service

Exploit Title: TeamViewer App 13.0.100.0 - Denial of Service PoC Exploit Author: Ali Alipour WebSite: http://Alipour.it Date: 2018-09-13 Vendor Homepage: https://www.teamviewer.com Software Link...

Faleemi Plus 1.0.2 - Denial of Service (PoC)

Faleemi Plus 1.0.2 - Denial of Service PoC Exploit Title: Faleemi Plus 1.0.2 - Denial of Service PoC Author: Gionathan "John" Reale Discovey Date: 2018-09-14 Software Link: http://support.faleemi.com/fsc776/FaleemiPlusv1.0.2.exe Tested Version: 1.0.2 Tested on OS: Windows 10 Steps to Reproduce: R...

Free MP3 CD Ripper 2.6 - '.mp3' Buffer Overflow (SEH)

Exploit Title: Free MP3 CD Ripper 2.6 - '.mp3' Buffer Overflow SEH Author: Gionathan "John" Reale Discovey Date: 2018-09-13 Software Link: http://www.commentcamarche.net/download/telecharger-34082200-free-mp3-cd-ripper Tested on OS: Windows 7 32bit Tested Version: 2.6 Steps to Reproduce: Run the...

iCash 7.6.5 - Denial of Service (PoC)

Exploit Title: iCash 7.6.5 - Denial of Service PoC Author: Gionathan "John" Reale Discovey Date: 2018-09-12 Software Link: https://www.maxprog.com/site/misc/downloadsus.php Tested Version: 7.6.5 Tested on OS: Windows 7 32-bit Steps to Reproduce: Run the python exploit script, it will create a new...

Web-Traffic-Generator - A Quick And Dirty HTTP/S "Organic" Traffic Generator

Just a simple poorly written Python script that aimlessly "browses" the internet by starting at pre-defined rootURLs and randomly "clicking" links on pages until the pre-defined clickDepth is met. I created this as a noise generator to use for an Incident Response / Network Defense simulation. Th...

Photo To Video Converter Professional 8.07 Buffer Overflow

Exploit Title: Photo To Video Converter Professional 8.07 - Buffer Overflow SEH Date: 2018-09-08 Author: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Software Link:hhttp://www.dvd-photo-slideshow.com/photo-to-video-converter.html Tested Version: 8.05 Tested on OS: Windows XP Servic...

SocuSoft iPod Photo Slideshow 8.05 Buffer Overflow

Exploit Title: SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow SEH Date: 2018-09-08 Author: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Software Link:http://www.dvd-photo-slideshow.com/ipod-photo-slideshow.html Tested Version: 8.05 Tested on OS: Windows XP Service Pack 3 x86...

SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: SocuSoft iPod Photo Slideshow 8.05 - Buffer Overflow SEH Author: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Software Link:http://www.dvd-photo-slideshow.com/ipod-photo-slideshow.html Tested Version: 8.05 Teste...

Wikipedia 12.0 - Denial of Service (PoC)

Exploit Title: Wikipedia 12.0 - Denial of Service PoC Date: 9/2/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://www.microsoft.com/en-us/p/wikipedia/9wzdncrfhwm4?activetab=pivot%3aoverviewtab Version: 12.0 Tested on: Windows 10 Proof of Concept: Run the python scrip...

Wikipedia 12.0 - Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: Wikipedia 12.0 - Denial of Service PoC Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://www.microsoft.com/en-us/p/wikipedia/9wzdncrfhwm4?activetab=pivot%3aoverviewtab Version: 12.0 Tested on: Windows 10...

Wikipedia 12.0 - Denial of Service (PoC)

Wikipedia 12.0 - Denial of Service PoC Exploit Title: Wikipedia 12.0 - Denial of Service PoC Date: 9/2/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://www.microsoft.com/en-us/p/wikipedia/9wzdncrfhwm4?activetab=pivot%3aoverviewtab Version: 12.0 Tested on: Windows 10...

Valve: [Half-Life 1] Malformed map name leads to memory corruption and code execution

A stack overflow takes place when map names with malformed names are listed which can be used to execute arbitrary code. I made a Proof of Concept that executes gnome-calculator on Linux. This was tested on Half Life 2018-08-29 on Linux, Ubuntu 18.04. To reproduce: - Extract the attached zip-file...

Drive Power Manager 1.10 - Denial Of Service (PoC)

Drive Power Manager 1.10 - Denial Of Service PoC Exploit Title: Drive Power Manager 1.10 - Denial Of Service PoC Author: Gionathan "John" Reale Discovey Date: 2018-08-29 Homepage: https://www.hdtune.com/ Software Link: https://www.hdtune.com/download.html Tested Version: v1.10 Tested on OS: Windo...

Fathom 2.4 - Denial Of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: Fathom 2.4 - Denial Of Service PoC Author: Gionathan "John" Reale Homepage: https://fathom.concord.org/ Software Link: https://fathom.concord.org/download/ Tested Version: v2.4 Tested on OS: Windows 7 32-bit Steps to Reproduce: Run...

HD Tune Pro 5.70 - Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: HD Tune Pro 5.70 - Denial Of Service PoC Author: Gionathan "John" Reale Discovey Date: 2018-08-29 Homepage: https://www.hdtune.com/ Software Link: https://www.hdtune.com/download.html Tested Version: v5.70 Tested on OS: Windows 7...