DAws - Advanced Web Shell (Windows/Linux)

There's multiple things that makes DAws better than every Web Shell out there: 1. Bypasses Disablers; DAws isn't just about using a particular function to get the job done, it uses up to 6 functions if needed, for example, if shellexec was disabled it would automatically use exec or passthru or...

PHP Web Shell Generic Backdoor (CVE-2020-24186)

An attacker might upload a web shell backdoor to a PHP server. A successful exploitation might allow the attacker to run arbitrary code, or use the server as a bot for further attacks...

IBM Tivoli Service Automation Manager 7.2.4 - Remote Code Execution

Exploit Title: IBM Tivoli Service Automation Manager Remote Code Execution Date: 12\12\2014 Exploit Author: Jakub Palaczynski Vendor Homepage: http://www.ibm.com/ Version: All versions of IBM Tivoli Service Automation Manager up to 7.2.4 VU/CVE: VU782708, CVE-2015-0104 1. Create report 2. Browse...

C99Shell (Web Shell) - c99.php Authentication Bypass

C99Shell Web Shell - c99.php Authentication Bypass Exploit Title: C99 Shell Authentication Bypass via Backdoor Google Dork: inurl:c99.php Date: June 23, 2014 Exploit Author: mandatory Matthew Bryant Vendor Homepage: http://ccteam.ru/ Software Link: https://www.google.com/ Version: ", " ",...

CSSearch 2.3 - Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4368/info csSearch is a website search script, written in Perl. It will run on most Unix and Linux variants, as well as Microsoft operating systems. csSearch is prone to an issue which may enable an attacker to execute Pe...

STUNSHELL Web Shell Remote PHP Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

PHD Help Desk 2.12 - SQL Injection Vulnerability

No description provided by source. Exploit Title: PHD Help Desk 2.12 SQLi Date: 05/24/2013 Exploit Author: drone @dronesec More information: http://forelsec.blogspot.com/2013/06/phd-help-desk-212-sqli-and-xss.html Vendor Homepage: http://www.p-hd.com.ar/ Software Link:...

Bitbot C2 Panel gate2.php - Multiple Vulnerabilities

No description provided by source. Exploit Title: Bitbot C2 Panel gate2.php SQLi + XSS Date: 08/19/2013 Exploit Author: Brian Wallace bwall aka @botnethunter Software Link: https://sourceforge.net/p/flippingbitbot/wiki/Home/ Vulnerable Virtual Machine including Bitbot Tested on: Debian/Ubuntu fro...

File Upload Manager 1.3

No description provided by source. Version: v1.3 ============================================================ www.sec-war.com ============================================================ 1- upload shell with: shell.php.jpg shell.php.gif shell.php.htm shell.htm shell.php.jpeg shell.php.bmp 2- Go t...

Bluetooth Photo Share Pro 2.0 iOS - Multiple Vulnerabilities

No description provided by source. Document Title: =============== Bluetooth Photo Share Pro v2.0 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1218 Release Date: ============= 2014-02-27 Vulnerability Laboratory ID VL-ID...

Dolibarr ERP/CMS 3.4.0 (exportcsv.php, sondage param) - SQL Injection

No description provided by source. Exploit Title: Dolibarr 3.4.0 SQLi Date: 10/7/2013 Exploit author: drone @dronesec More information: http://forelsec.blogspot.com/2013/10/dolibarr-340-multiple-vulnerabilities.html Vendor homepage: http://www.dolibarr.org/ Software link: Version: 3.4.0 Fixed in:...

XODA Document Management System 0.4.5 - XSS & Arbitrary File Upload

No description provided by source. Exploit Title: XODA Document Management System Stored XSS & Arbitrary File Upload Vulnerability. Date: 21/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://xoda.org/ Software Link: http://sourceforge.net/projects/xoda/files/xoda/xoda-0.4.5/...

Collabtive 1.0 (manageuser.php, task param) - SQL Injection Vulnerability

No description provided by source. Exploit Title: Collabtive 1.0 SQLi Date: 06/17/2013 Exploit Author: drone @dronesec More information: http://forelsec.blogspot.com/2013/06/collabtive-10-sqli.html Vendor homepage: http://collabtive.o-dyn.de/ Software link:...

k-links directory (sql/xss) Multiple Vulnerabilities

No description provided by source. ================================================================================ || K-Links Directory SQL-INJECTION, XSS ================================================================================ Application: K-Links Directory ------------ Website:...

Vanctech File Commander 1.1 iOS - Multiple Vulnerabilities

No description provided by source. Document Title: =============== Vanctech File Commander 1.1 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1235 Release Date: ============= 2014-03-28 Vulnerability Laboratory ID VL-ID:...

Joomla OS Property 2.0.2 Unrestricted File Upload

No description provided by source. Exploit Title: Joomla comosproperty Unrestricted File Upload Google Dork: comosproperty Date: 13-07-2012 Author: Daniel Barragan D4NB4R Twitter: @D4NB4R site: http://www.insecurityperu.org/ & http://poisonsecurity.wordpress.com/ Vendor: Ossolution Team...

Liffy - Local File Inclusion Exploitation Tool

Liffy is a tool written in Python designed to exploit local file inclusion vulnerabilities using three different techniques that will get you a working web shell. The first two make use of the built-in PHP wrappers php://input and data://. The third makes use of the process control extension call...

Destoon B2B 2014-05-21最新版csrf getshell

简要描述： 上传问题+csrf+后台任意命令执行 = csrf getshell 详细说明： 先说上传问题，自带的fck编辑器没有验证上传图片的合法性，只判断了后缀名。 可以通过上传一个.jpg后缀的swf来进行csrf 然后是后台命令执行 /member/admin/sendmail.inc.php 行151 default: ifisset$send ifisset$preview && $preview $content = stripslashes$content; if$template if$sendtype == 2 $emails = explode"\n",...

PHPYUN云人才系统后台CSRF Getshell

简要描述： phpyun后台没有验证token，可以通过CSRF直接getshell 详细说明： 首先从后台getshell开始。 网站的配置文件，/plus/config.php，用的是双引号做键值，这导致了安全问题。我们可以把php代码写进双引号里面执行。 修改配置文件，提交: 然后访问/plus/config.php： 特别的是，因为phpyun后台没有防御CSRF的办法，所以我们可以构造一个表单，诱使管理员访问，修改配置文件，导致getshell。 详见漏洞证明。 漏洞证明：...

China Chopper Web Shell Remote Code Execution

China Chopper Web Shell is a malware designed to infect Web servers. The malware has a Web shell command-and-control CnC client binary and a text-based Web shell payload server component. Post infection, the malware enables remote attackers to execute arbitrary code on affected systems...