binary-exploitation-buffer-overflow

Stack Buffer Overflow Exploit Demo !Pythonhttps://img.shie...

exploit-21858

Command : python3 exploit.py TARGETURL FORMPATH EXTRAOPT...

Exploit for Improper Input Validation in Microsoft

Moniker Link CVE-2024-21413 Exploit Demo This repository co...

Exploit for Improper Restriction of XML External Entity Reference in Adobe Commerce

CVE 2024-34102 - CosmicSting XXE Vulnerability in Adobe Commer...

Exploit for Cleartext Transmission of Sensitive Information in Keepass

KeePass 2.53/cmdline files and store the pid of ones with t...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

SMBv3 Ghost...

Joomla Maxcomment 1.6 SQL Injection

@@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@...

ARG-W4 ADSL Router Denial Of Service / Cross Site Request Forgery

Exploit Title: ARG-W4 ADSL Router - Multiple Vulnerabilities Date: 2016-12-11 Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM Tested on: Windows AND Linux Exploit Demo : http://persian-team.ir/showthread.php?tid=196 1 - Denial of Service !/usr/bin/python import urllib2 import...

Netgear WNR2000v4 Abuse / XSS / Command Injection Vulnerabilities

Netgear WNR2000v4 suffers from code execution, missing abuse control, and cross site scripting vulnerabilities. I'm releasing a few vulnerabilities for the WNR2000v4 Netgear router. Netgear is currently working these issues. Quick Fix --------- If you own a WNR2000v4, set a strong password and se...

RobotStats 1.0 - 'robot' SQL Injection

Title : RobotStats v1.0 robot param SQL Injection Vulnerability Author : ZoRLu / [email protected] / [email protected] Home : http://milw00rm.com / its online Twitter : https://twitter.com/milw00rm or @milw00rm Date : 22.11.2014 Demo : http://alpesoiseaux.free.fr/robotstats/ Download :...

WordPress Users Ultra 1.3.37 SQL Injection

Title : Wordpress Users Ultra Plugin - SQL injection Vulnerability Risk : High+/Critical Author : XroGuE Google Dork : inurl: wp-content/plugins/users-ultra/ Plugin Version : 1.3.37 Plugin Name : users ultra Plugin Download Link : https://downloads.wordpress.org/plugin/users-ultra.zip Vendor Home...

WordPress Theme Konzept Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title : WordPress Theme Konzept Arbitrary File Upload Vulnerability Exploit Author : NULLPointer Contact : https://www.facebook.com/xenith.gianni Date : 19/09/2014 Vendor Homepage :...

mrcgiguy the ticket system 2.0 php Multiple Vulnerabilities

No description provided by source. MRCGIGUY The Ticket System 2.0 PHPid Multiple Remote Vulnerabilities Founder: ThE g0bL!N ------ Home: http:/www.4ckx.com/dz/ ---- Vendor:http://www.mrcgiguy.com Special Thx: All Muslims All Members Of Team Algerien Of FootBall Note: Algerie 3-1 Egypt Exploit:...

ClickGallery Server SQL Injection Vulnerability

No description provided by source. ============================================================== ClickGallery Server--SQl iNjection Vulnerabilty ============================================================== Name : ClickGallery Server--SQl iNjection Vulnerabilty Date : july 9,2010 Critical Level...

Abtp Portal Project 0.1.0 LFI Exploit

No description provided by source. !/usr/bin/perl =about ---------------------------------------------------------------------------------------------------- Name : Abtp Portal Project = 1.0 Site : http://sourceforge.net/projects/abtpportal/ Down :...

Freelancers Marketplace Script Persistent XSS Vulnerability

No description provided by source. Name : Freelancers Marketplace Script Persistent XSS Vulnerability Date : july 17,2010 Critical Level : HIGH vendor URL :http://www.guruscript.com/ google dork:Powered by Guruscript.com Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd...

Calendar Express 2.0 - SQL Injection Vulnerability

No description provided by source. Calendar Express 2.0 Vulnerability Calendar Express 2.0 Powered by Phplite.com Download:http://script.wareseeker.com/download/calendar-express-2.rar/11517 Author: Baybora Site: www.1923turk.bizhttp://www.1923turk.biz Exploit: POST...

NC LinkList 1.3.1 - Remote Command Injection Exploit

No description provided by source. -------------------------------------------------------------- NC LinkList 1.3.1 Remote Command injection Exploit --------------------------------------------------------------- Founder :ThE g0bL!N Vendor:http://www.php-linkverzeichnis.de Thank You Very Much...

startbbs最新版本泄露任意用户邮箱

简要描述： 都不知道挖到哪里去了，你们的源码昨天看了一天了...... 详细说明： 主要是你们开发安全意识差啊... /themes/default/userinfo.php在第86行有这样一句 联系方式: " class="external mail"-- 把用户的邮箱输出了但是被注释了！-- 查看源码就可以了。 漏洞证明： 这里我测试了官网demo的，抓取了一个妹子的....（PS：已经加为好友！）...

WordPress Global Flash Galleries File Upload

Exploit Title: WordPress global-flash-galleries Plugin Remote File Upload Vulnerability Author: Ashiyane Digital Security Team Date: 01/18/2014 Vendor Homepage: http://wordpress.org Software Link : http://downloads.wordpress.org/plugin/global-flash-galleries.zip Google dork:...