SysAid Help Desk Administrator Portal Arbitrary File Upload Exploit

This Metasploit module exploits a file upload vulnerability in SysAid Help Desk. The vulnerability exists in the ChangePhoto.jsp in the administrator portal, which does not handle correctly directory traversal sequences and does not enforce file extension restrictions. You need to have an...

ManageEngine Multiple Products Arbitrary Directory Listing Exploit

This module exploits a directory listing information disclosure vulnerability in the FailOverHelperServlet on ManageEngine OpManager, Applications Manager and IT360. It makes a recursive listing, so it will list the whole drive if you ask it to list / in Linux or C:\ in Windows. This vulnerabilit...

Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflow"

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Open Flash Chart 2 - Arbitrary File Upload (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Open Flash Chart v2 Arbitrary File Upload", 'Description' = %q This module exploits a file upload vulnerability found in Open Flash...

Mozilla Firefox - nsTreeRange Dangling Pointer (2)

Mozilla Firefox - nsTreeRange Dangling Pointer 2 Advisory : Abysssec Public Exploit : This module exploits a code execution vulnerability in Mozilla Firefox = 3.6.16 caused by nsTreeSelection element. The specific flaw exists within the way Firefox handles user defined functions of a...

CVE-2009-0545 — ZeroShell Remote Code Execution

cgi-bin/kerbynet in ZeroShell 1.0beta11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the type parameter in a NoAuthREQ x509List action. Recent assessments: hrbrmstr at September 10, 2020 2:42pm UTC reported: MSF module — Assessed Attacker Value: 5...

CVE-2009-0261

creationtimestamp| type| source ---|---|--- 2009-01-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7839 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/totalvideoplayerinibof.rb 2025-10-23...

Limbo CMS 1.0.4.2 - 'itemID' Remote Code Execution (Metasploit)

Title: Limbo CMS version 1.x suffers from a remote code execution vulnerability. Name: limbocms1x.pm License: Artistic/BSD/GPL Info: Trying to get the command execution exploits out of the way on milw0rm.com. M's are always good. - This is an exploit module for the Metasploit Framework, please se...

Snort <= 2.4.2 BackOrifice Remote Buffer Overflow Exploit (meta)

No description provided by source. for educational purpose only by Kira trir00t at gmail.com package Msf::Exploit::snortbooverflowwin32; use base 'Msf::Exploit'; use strict; use Pex::Text; my $holdrand; my $advanced = ; my $info = 'Name' = 'Snort Back Orifice Preprocessor Overflow', 'Version' =...

Wordpress <= 1.5.1.3 Remote Code Execution eXploit (metasploit)

No description provided by source. Title: Wordpress = 1.5.1.3 Remote Code Execution eXploit metasploit Name: phpwordpress.pm License: Artistic/BSD/GPL Info: I lub metasploit yummmm str0ke ! milw0rm.com. Recoded Kartoffelguru's php code for metasploit. I love cookies. /str0ke - This is an exploit...

globalscape_ftp_30.pm

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

calicclnt_getconfig.pm

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

arkeia_type77_win32.pm

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

arkeia_type77_macos.pm

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

WebSTAR FTP Server 5.3.2 (OSX) - USER Overflow (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'WebSTAR FTP...

Samba 2.2.0 < 2.2.8 (OSX) - trans2open Overflow (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Samba...

RedHat Linux 5.05.15.2 Slackware Linux 3.5 - klogd Local Buffer Overflow (1)

RedHat Linux 5.05.15.2 Slackware Linux 3.5 - klogd Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/398/info It is possible to cause a denial of service remote and local through generating old, obscure kernel messages not terminated with \n in klogd. The problem exists because...