Apple macOS 安全漏洞

Apple macOS Sonoma is a version of the Mac operating system released by Apple on June 5, 2023, featuring upgrades in personalized settings, video conferencing, the Safari browser, and the gaming experience. Apple macOS Sonoma suffers from a privilege issue vulnerability that stems from gaining ro...

Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)

Exploit Title: Extensive VC Addons for WPBakery page builder 1.9.1 - Unauthenticated RCE Date: 12 march 2025 Exploit Author: Ravina Vendor Homepage: wprealize Version: 1.9.1 Tested on: windows, linux CVE ID : CVE-2023-0159 Vulnerability Type: Remote Code Execution...

GE Proficy Cimplicity 7.5 Directory Traversal

GE Proficy Cimplicity version 7.5 proof of concept directory traversal vulnerability that takes advantage of a flaw discovered in 2013. ============================================================================================================================================= | Title : GE Profic...

vBulletin 5.0.0 Beta 28 SQL Injection

vBulletin version 5.0.0 Beta 28 proof of concept remote SQL injection exploit that leverages a vulnerability discovered in 2013. ============================================================================================================================================= | Title : vBulletin 5.0.0...

WinTr Scada 5.5.9 Command Injection

WinTr Scada version 5.5.9 suffers from a command injection vulnerability. Exploit Title: WinTr Scada v5.5.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 17.04.2024 Vendor Homepage: http://www.wintr.com.tr Software Link:...

WS FTP Server 5.0.5 Denial of Service

WS FTP Server version 5.0.5 proof of concept denial of service exploit that leverages a flaw found by Fernando Mengali in 2024. ============================================================================================================================================= | Title : WS FTP Server 5.0...

Yokogawa CENTUM CS 3000 R3.08.50 Buffer Overflow / Denial of Service

Yokogawa CENTUM CS version 3000 R3.08.50 proof of concept exploit that leverages a heap buffer overflow from 2014 and can result in a denial of service condition...

Apache NiFi 0.0.2 Remote Code Execution

Apache NiFi version 0.0.2 proof of concept remote code execution exploit that takes advantage of a flaw from 2023. ============================================================================================================================================= | Title : Apache NiFi 0.0.2 RCE...

vBulletin 4.1 Add Administrator

vBulletin version 4.1 add new administrator remote proof of concept exploit that takes advantage of a flaw from 2013. ============================================================================================================================================= | Title : vBulletin 4.1 create new...

TOTOlink A3002R static_gw parameter buffer overflow vulnerability

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3002R version V1.1.1-B20200824.0128, which stems from the staticgw parameter failing to correctly validate the length and size of the input data, and can be exploit...

D Tale 3.10.0 Remote Command Execution

D Tale version 3.10.0 proof of concept remote command execution exploit. ============================================================================================================================================= | Title : D Tale v3.10.0 PHP code execution vulnerability | | Author : indoushka |...

Advantech WebAccess 7.1 SQL Injection

Advantech WebAccess version 7.1 proof of concept exploit that demonstrates a SQL injection vulnerability original discovered in 2014. ============================================================================================================================================= | Title : Advantech...

Hospital Management System SQL Injection / Authentication Bypass Vulnerabilities

Title: Hospital Management System - Authentication Bypass With SQLi Description: HMS with MYSQL authentication bypass Source URL: https://kj5.scriptsterraa.com/hms/admin/ Source Name/Email: Mehmet Can Kadıoğlu a.k.a mao7un CVEs: N/A Software URL:...

ZENworks Configuration Management 11.1a Shell Upload

ZENworks Configuration Management version 11.1a suffers from a remote shell upload vulnerability. ============================================================================================================================================= | Title : ZENworks Configuration Management 11.1a PHP Cod...

Linux Distros Unpatched Vulnerability : CVE-2017-2982

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability in a routine related to player shutdown. Successful...

Judge0 1.13.0 Code Execution

Judge0 version 1.13.0 suffers from a code execution vulnerability. ============================================================================================================================================= | Title : Judge0 v 1.13.0 PHP Code Injection Vulnerability | | Author : indoushka | |...

HTTP Fetch, Linux Reboot

Fetch and execute an MIPSLE payload from an HTTP server. A very small shellcode for rebooting the system using the reboot syscall. This payload is sometimes helpful for testing purposes. Requires CAPSYSBOOT privileges. Module Options msf use payload/cmd/linux/http/mipsle/reboot msf payloadreboot...

TFTP Fetch

Fetch and execute an PPC payload from an TFTP server. Module Options msf use payload/cmd/linux/tftp/ppc/meterpreterreversetcp msf payloadmeterpreterreversetcp show actions ...actions... msf payloadmeterpreterreversetcp set ACTION msf payloadmeterpreterreversetcp show options ...show and set...

TFTP Fetch

Fetch and execute an MIPSLE payload from a TFTP server. Module Options msf use payload/cmd/linux/tftp/mipsle/meterpreterreversetcp msf payloadmeterpreterreversetcp show actions ...actions... msf payloadmeterpreterreversetcp set ACTION msf payloadmeterpreterreversetcp show options ...show and set...

Vulnerability-learning

It is an offensive tool for web application security. The reposi...