29 matches found
PT-2026-43403
Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the component override system transpiles user-supplied TSX via Sucrase and evaluates it with new Function, shadowing dangerous globals fetch, window, eval, etc. with undefined. A static source validator...
EUVD-2025-208209
In multiple functions of MmsProvider.java, there is a possible way to arbitrarily delete files which affect telephony, SMS, and MMS functionalities due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not...
EUVD-2017-0732
Malware in sbrugna...
EUVD-2025-16798
Malicious code in bioql PyPI...
EUVD-2024-21976
Malicious code in bioql PyPI...
Exploit for Path Traversal in Igniterealtime Openfire
It is an exploit module for Openfire, a Jabber/XMPP server. The...
Exploit for Files or Directories Accessible to External Parties in Apache Struts
Exploit CVE-2023-50164 para o Laboratório HackTheBox Descr...
Exploit for CVE-2024-24576
CVE-2024-24576-Poc-Python A quick POC for the vulnerability di...
CVE-2024-24569
The Pixee Java Code Security Toolkit is a set of security APIs meant to help secure Java code. ZipSecurityisBelowCurrentDirectory is vulnerable to a partial-path traversal bypass. To be vulnerable to the bypass, the application must use toolkit version =1.1.1, use ZipSecurity as a guard against...
Chaojicms 跨站脚本漏洞
Chaojicms is a super Cms web management system. A security vulnerability exists in Chaojicms v2.18. An attacker can exploit the vulnerability to execute arbitrary code via /index.php?admin-master-webset...
Apache HTTP Server 2.4.50 - Path Traversal & Remote Code Execution (RCE)
Exploit: Apache HTTP Server 2.4.50 - Path Traversal & Remote Code Execution RCE Date: 10/05/2021 Exploit Author: Lucas Souza https://lsass.io Vendor Homepage: https://apache.org/ Version: 2.4.50 Tested on: 2.4.50 CVE : CVE-2021-42013 Credits: Ash Daulton and the cPanel Security Team !/bin/bash if...
DEBIAN-CVE-2020-14400
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path of exploitation or cross of a trust boundary...
Oracle E-Business Suite 12.1.3/12.2.x - Open Redirect
Exploit Title: Oracle E-Business suite Open Redirect Google Dork: inurl:OAHTML/cabo/ Date: April 2017 Exploit Author: author Vendor Homepage: http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html Software Link: download link if available Version: Oracle E-Business Suite...
lftp <= 2.6.9 - Remote Stack based Overflow Exploit
No description provided by source. / lftp remote stack-based overflow exploit by Li0n7 voila fr Vulnerability discovered by Ulf Harnhammar Ulf.Harnhammar.9485 student uu se Lftp versions later than 2.6.10 are prone to a remotly exploitable stack-based overflow in trynetscapeproxy and trysquideplf...
WordPress Blogggie Shell Upload
Exploit Title : Wordpress Themes Bloggie Arbitrary File Upload Vulnerability Author : ReC0ded Vendor : http://themify.me/ Download : http://themify.me/themes/Bloggie Date : 22, November 2013. Type : php, html, htm, asp, etc. Category : Web Applications Vulnerability : File Upload Tested On :...
8pixel.net 2009 Database Disclosure
============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== � Note : Forever RevengeHack.Com...
Pluck 4.6.2 (langpref) Local File Inclusion Vulnerabilities
No description provided by source. =-=-local file include-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-= script::pluck version 4.6.2 ------------------------------------------------- Author: ahmadbady my site :Coming Soon =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= download...
iamma-upload.txt
Found by: X0r Iamma Simple Gallery Arbitrary File Upload Version: 1,2 ? Email: evolutionteam.x0atgmaildotcom Script Download:http://www.matteoiammarrone.com/public/modules.php?name=Downloads&dop=getit&lid=4 Script Download...
AL-Athkar.v2.0 Remote File Include
Discovred By : Hasadya Raed ---------------------------- Contact : [email protected] , [email protected] , [email protected] ---------------------------- Greetz : Fairoz ---------------------------- Script: AL-Athkar.v2.0 ---------------------------- Download:...
wikivi5-rfi.txt
Wikivi5 Remote File Inclusion Vulnerability D.Script: http://wiki.vi5.org/fichiers/Wikivi5.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Exploit:Path/handlers/page/show.php?sousrep=Shell Greetz To: Tryag-Team...