NRSS Reader 0.3.9 - Local Stack Overflow

NRSS Reader 0.3.9 - Local Stack Overflow Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - [email protected] Program affected: NRSS RSS Reader Version: 0.3.9-1 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program...

WordPress Q&A (Focus Plus) FAQ Plugin 1.3.9.7 - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: WordPress Q and A Focus Plus FAQ Full Path Disclosure and SQL Injection Google Dork: inurl:"wp-content/plugins/q-and-a" Date: 12-05-2016 Software Link: https://wordpress.org/plugins/q-and-a-focus-plus-faq/ Version: 1.3.9.7 and...

All Windows Null-Free Shellcode - Functional Keylogger to File - 601 0x0259 bytes

All Windows Null-Free Shellcode - Functional Keylogger to File - 601 0x0259 bytes. Shellcode exploit for windows platform / ; Exploit Title: All windows null free shellcode - functional keylogger to file - 601 0x0259 bytes ; Date: Sat May 7 19:32:08 GMT 2016 ; Exploit Author: Fugu ; Vendor...

Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing

Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing Software Link:http://en.browser.baidu.com/query/fullpackage.exe?lang=en Version:43.23.1000.476 Tested on:Win7/WinXP details: The baidu spark browser is vulnerable to Address Bar Spoofing in the latest version of the...

WordPress Easy Social Share Buttons 3.2.5 XSS

FULL DISCLOSURE Product :Easy Social Share Buttons for WordPress Exploit Author : Rahul Pratap Singh Version :3.2.5 Home page Link : http://codecanyon.net/item/easy-social-share-buttons-for-wordpress/6394476 Website : 0x62626262.wordpress.com Linkedin : https://in.linkedin.com/in/rahulpratapsingh...

Webutler CMS 3.2 - Cross-Site Request Forgery

Dear OffSec, Here is the vulnerability detail as I submitted Exploit Title: Webutler CMS Cross-Site Request Forgery Date: 18 April 2016 Exploit Author: Keerati T. Post Vendor Homepage: http://webutler.de/en Software Link: http://webutler.de/download/webutlerv3.2.zip Version: 3.2 Tested on: Linux...

Webnet CMS 1.2 XSS / File Disclosure / SQL Injection

Exploit Title : Webnet CMS Multiple Vulnerabilities Exploit Author : Persian Hack Team Vendor Homepage : http://www.webnet.ir/ Homepage : http://www.persian-team.ir Date: 2016/04/15 Version : 1.2 POC: 1-LFDLocal File Dislocation Explain : ids Parameter encode base64 Path , you can use...

Oracle Application Testing Suite (ATS) 12.4.0.2.0 - Authentication Bypass Arbitrary File Upload

Oracle Application Testing Suite ATS 12.4.0.2.0 - Authentication Bypass Arbitrary File Upload Exploit Title: Oracle Application Testing Suite Authentication Bypass and Arbitrary File Upload Remote Exploit Exploit Author: Zhou Yu Vendor Homepage: http://www.oracle.com/ Software Link:...

Sysax Multi Server 6.50 SEH Overflow

Exploit Title: Sysax Multi Server 6.50 HTTP File Share SEH Overflow RCE Exploit Date: 03/21/2016 Exploit Author: Paul Purcell Contact: ptpxploit at gmail Vendor Homepage: http://www.sysax.com/ Vulnerable Version Download: http://download.cnet.com/Sysax-Multi-Server/3000-21604-76171493.html 6.50 a...

WordPress Plugin Import CSV 1.0 - Directory Traversal

WordPress Plugin Import CSV 1.0 - Directory Traversal Exploit Title: Wordpress Import CSV | Directory Traversal Exploit Author: Wadeek Website Author: https://github.com/Wad-Deek Software Link: https://downloads.wordpress.org/plugin/xml-and-csv-import-in-article-content.zip Stable Tag: 1.1 Tested...

Cisco UCS Manager 2.1(1b) Shellshock

!/usr/bin/python Cisco UCS Manager 2.11b Shellshock Exploit CVE-2014-6278 Confirmed on version 2.11b, but more are likely vulnerable. Cisco's advisory: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash Exploit generates a reverse shell to a nc listener...

Cerberus Helpdesk (Cerb5) 5 < 6.7 - Password Hash Disclosure

Exploit for php platform in category web applications !/bin/bash Exploit Title: Cerberus Helpdesk Cerb5 Password Hash Grabbing Date: 04.02.2016 Exploit Author: asdizzle Vendor Homepage: http://www.cerberusweb.com/ Software Link: http://www.cerberusweb.com/downloads/cerb5/archive/cerb5-544.zip...

STIMS Cutter 1.1.3.20 - Buffer Overflow (Denial of Service) (PoC)

Exploit Title: STIMS CUTTER OVERFLOW SEH OVERWRITE Date: 19 Feb 2016 Exploit Author: Shantanu Khandelwal Vendor Homepage: http://www.stimslabs.com/ Software Link: http://www.stimslabs.com/en/cutter/STIMSCutterEnSetup.exe Version: 1.1.3.20 Tested on: Windows XP SP3 CVE : UNKNOWN ==============HOW ...

FTPShell Client 5.24 - Add to Favorites Buffer Overflow

Exploit for windows platform in category local exploits Exploit Title: FTPShell Client 5.24 - Add to Favorites Buffer Overflow Google Dork: N/A Date: 2015-01-04 Exploit Author: INSECT.B Twitter : @INSECT.B Facebook : https://www.facebook.com/B.INSECT00 Blog : http://binsect00.tistory.com Vendor...

KiTTY Portable 0.65.1.1p - Local Saved Session Overflow (Egghunter XP Denial of Service 78.110)

KiTTY Portable 0.65.1.1p - Local Saved Session Overflow Egghunter XP Denial of Service 78.110 Exploit Title: KiTTY Portable Local Code Execution Win7 - Denial Of...

KiTTY Portable 0.65.1.1p - Local Saved Session Overflow (Egghunter XP / Denial of Service 7/8.1/10)

Exploit Title: KiTTY Portable Local Code Execution Win7 - Denial Of Service Win8.1 - Denial Of Service Win10 - Denial Of Service...

NASA Cross Site Scripting

Exploit Title : NASA Subdomain XSS Vulnerability Exploit Author : 4TT4CK3R Date : 2015/12/27 Tested on : Kali linux , Windows 8.1 Vendor HomePage : https://ghrc.nsstc.nasa.gov/ Google Dork : No Category : Web Application : Vulnerable Location :https://ghrc.nsstc.nasa.gov/hydro/search.pl : Using...

ATOMYMAXSITE 2.5 SQL Injection

Exploit Title : ATOMYMAXSITE 2.5 SQL Injection Vulnerability Exploit Author : Persian Hack Team Vendor Homepage : http://www.ibizz.nl/ Google Dork : "Power by : ATOMYMAXSITE 2.5" OR Powered by ATOMYMAXSITE 2.5 Date: 2015/12/24 Version : 2.5 Demo:...

Easy File Sharing Web Server 7.2 - HEAD HTTP request SEH Buffer Overflow Exploit

Exploit for windows platform in category remote exploits Exploit Title: Easy File Sharing Web Server 7.2 - HEAD HTTP request SEH Buffer Overflow Exploit Author: ArminCyber Version: 7.2 Tested on: XP SP3 EN category: Remote Exploit Usage: ./exploit.py ip port import socket import sys host =...

Easy File Sharing Web Server 7.2 - Remote Buffer Overflow (SEH) (DEP Bypass + ROP)

!/usr/bin/env python Exploit title: Easy File Sharing Web Server v7.2 - Remote SEH Buffer Overflow DEP bypass with ROP Date: 29/11/2015 Exploit Author: Knaps Contact: @TheKnapsy Website: http://blog.knapsy.com Software Link: http://www.sharing-file.com/efssetup.exe Version: Easy File Sharing Web...