Lucene search
K

855 matches found

Exploit DB
Exploit DB
added 2018/02/21 12:0 a.m.38 views

EChat Server 3.1 - 'CHAT.ghp' Buffer Overflow

Exploit Author: Juan Sacco Vulnerability found using Exploit Pack v10 - http://exploitpack.com Impact: An attacker could exploit this vulnerability to execute arbitrary code in the context of the application. Failed exploit attempts will result in adenial-of-service condition. Program description...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/02/17 12:0 a.m.23 views

PHIMS - Hospital Management Information System - Password SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: PHIMS - Hospital Management Information System - 'Password' SQL Injection Exploit Author: Borna nematzadeh L0RD or email protected Vendor Homepage: https://codecanyon.net/item/phims/14974225?srank=1566 Version: All version...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/02/17 12:0 a.m.54 views

Joomla! File Download Tracker 3.0 SQL Injection

Exploit Title: Joomla! Component File Download Tracker 3.0 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://techsolsystem.com/ Software Link: https://extensions.joomla.org/extensions/extension/directory-a-documentation/downloads/file-download-tracker/ Version: 3.0 Category:...

9.2AI score0.02703EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/02/17 12:0 a.m.32 views

Joomla! Saxum Numerology 3.0.4 SQL Injection

Exploit Title: Joomla! Component Saxum Numerology 3.0.4 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://www.saxum2003.hu/ Software Link: http://www.saxum2003.hu/en/downloadsen/category/7-saxumnumerology-komponens.html Software Download:...

9.2AI score0.02703EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/02/16 12:0 a.m.63 views

EPIC MyChart - X-Path Injection

Exploit Title: Epic Systems Corporation MyChart X-Path Injection Google Dork: MyChart® licensed from Epic Systems Corporation Date: 8/19/16 Exploit Author: Shayan Sadigh http://threat.tevora.com/author/shayan/ Vendor Homepage: https://www.epic.com/software Software Link: N/A Version: N/A Tested o...

7.5CVSS7.7AI score0.21255EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/02/16 12:0 a.m.48 views

Joomla! Component DT Register 3.2.7 - 'id' SQL Injection

Exploit Title: Joomla! Component DT Register 3.2.7 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: https://www.dthdevelopment.com/ Software Link: https://extensions.joomla.org/extensions/extension/calendars-a-events/events/dt-register/ Version: 3.2.7 Category: Webapps Tested on:...

9.8CVSS9.8AI score0.03872EPSS
Exploits5
0day.today
0day.today
added 2018/02/12 12:0 a.m.18 views

Paypal Clone Script 1.0.9 - id / acctype SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Paypal / Money Transfer Clone Script 1.0.9 - SQL Injection Dork: N/A Date: 2018-02-10 Exploit Author: Borna nematzadeh L0RD or email protected Vendor Homepage: https://www.phpscriptsmall.com/product/paypal-money-transfer-clone/...

7.1AI score
Exploits0
0day.today
0day.today
added 2018/02/10 12:0 a.m.40 views

Facebook Clone Script 1.0.5 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Facebook Clone Script 1.0.5 - Stored XSS Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/naukri-clone-script/ Category: Web Application Exploit Author: Prasenjit Kanti Paul...

3.5CVSS5.8AI score0.00558EPSS
Exploits4
Exploit DB
Exploit DB
added 2018/02/05 12:0 a.m.34 views

BOCHS 2.6-5 - Local Buffer Overflow

Exploit Author: Juan Sacco - http://exploitpack.com Vulnerability found using Exploit Pack v10 - Fuzzer module An attacker could exploit this vulnerability to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition. Program...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/02/05 12:0 a.m.58 views

Joomla Zh GoogleMap 8.4.0.0 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications input name="id" value="-11 UNION ALL SELECT...

7.5CVSS0.02759EPSS
Exploits5
0day.today
0day.today
added 2018/01/30 12:0 a.m.46 views

LabF nfsAxe 3.7 TFTP Client - Local Buffer Overflow Exploit

Exploit for windows platform in category dos / poc !/usr/bin/python Exploit Author: Miguel Mendez Z Exploit Title: LabF nfsAxe v3.7 - TFTP "Input Directory" Local Buffer Overflow Date: 29-01-2018 Software: LabF nfsAxe Version: v3.7 Vendor Homepage: http://www.labf.com Software Link:...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/01/28 12:0 a.m.20 views

Netis WF2419 Router - Cross-Site Request Forgery Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Netis-WF2419 Router Cross-Site Request Forgery CSRF Exploit Author: Sajibe Kanti Author Contact: https://twitter.com/@sajibekantibd Vendor Homepage: http://www.netis-systems.com/ Version: Netis-WF2419, V2.2.36123 Tested on:...

7.1AI score
Exploits0
0day.today
0day.today
added 2018/01/24 12:0 a.m.36 views

Photography CMS 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications New Admin Username: Password: Confirm Password: Email: $"ekleabi".live'click',function $.ajax type: "POST", url: "http://ronnieswietek.com/cc/clients/resources/ajax/ajaxnewadmin.php", data: username:$".efe username".val,...

6.8CVSS8.7AI score0.01412EPSS
Exploits4
Packet Storm
Packet Storm
added 2018/01/24 12:0 a.m.40 views

Professional Local Directory Script 1.0 SQL Injection

Exploit Title: Professional Local Directory Script 1.0 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://www.eihitech.com/ Software Link: http://www.eihitech.com/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: CVE-2018-5973 Exploit Author: Ihsan Sencan Author...

9.2AI score0.20455EPSS
Exploits5
0day.today
0day.today
added 2018/01/22 12:0 a.m.53 views

PHPFreeChat 1.7 - Denial of Service Exploit

Exploit for php platform in category web applications Exploit Title: phpFreeChat 1.7 and earlier - Denial of Service Version: 1.7 and earlier Date: 21/01/2018 Vendor Homepage: http://www.phpfreechat.net Software Link: http://www.phpfreechat.net/download Exploit Author: A. Pakbaz CVE : CVE-2018-59...

5CVSS7.5AI score0.091EPSS
Exploits5
exploitpack
exploitpack
added 2018/01/21 12:0 a.m.58 views

PHPFreeChat 1.7 - Denial of Service

PHPFreeChat 1.7 - Denial of Service Exploit Title: phpFreeChat 1.7 and earlier - Denial of Service Version: 1.7 and earlier Date: 21/01/2018 Vendor Homepage: http://www.phpfreechat.net Software Link: http://www.phpfreechat.net/download Exploit Author: A. Pakbaz CVE : CVE-2018-5954 1 $pid=pcntlfor...

5CVSS7.6AI score0.091EPSS
Exploits5
0day.today
0day.today
added 2018/01/17 12:0 a.m.49 views

Zomato Clone Script - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Zomato Clone - Arbitrary File Upload Date: 16.01.2018 Vendor Homepage: http://www.phpscriptsmall.com/ Software Link: http://www.exclusivescript.com/product/099S4111872/php-scripts/zomato-clone-script Demo: http://jhinstitute.com/demo/foodpanda...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/01/12 12:0 a.m.32 views

Taxi Booking Script 1.0 Cross Site Scripting

Exploit Title: Taxi Booking Script v1.0 - Cross-site Scripting XSS Date: 11.01.2018 Vendor Homepage: https://www.phpjabbers.com/taxi-booking-script/ Software Link: Demo: http://demo.phpjabbers.com/1515648238792/index.php?controller=pjAdminUsers&action=pjActionIndex&err=AU01 Version: 1.0 Category:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/12 12:0 a.m.27 views

Taxi Booking Script 1.0 - Cross-site Scripting

Exploit Title: Taxi Booking Script v1.0 - Cross-site Scripting XSS Date: 11.01.2018 Vendor Homepage: https://www.phpjabbers.com/taxi-booking-script/ Software Link: Demo: http://demo.phpjabbers.com/1515648238792/index.php?controller=pjAdminUsers&action=pjActionIndex&err=AU01 Version: 1.0 Category:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/01/10 12:0 a.m.28 views

WordPress Plugin WordPress Download Manager 2.9.60 - Cross-Site Request Forgery

Exploit Title: WordPress Download Manager CSRF Discovery Date: 2017-12-12 Exploit Author: Panagiotis Vagenas Author Link: https://twitter.com/panVagenas Vendor Homepage: https://www.wpdownloadmanager.com/ Software Link: https://wordpress.org/plugins/download-manager Version: 2.9.60 Tested on:...

7AI score
Exploits0
Rows per page
Query Builder