Joomla Zh YandexMap 6.1.1.0 SQL Injection

Exploit Title: Joomla! Component Zh YandexMap 6.1.1.0 - SQL Injection Dork: N/A Date: 29.09.2017 Vendor Homepage: http://zhuk.cc/ Software Link: https://extensions.joomla.org/extensions/extension/maps-a-weather/maps-a-locations/zh-yandexmap/ Demo: http://joomla.zhuk.cc/index.php Version: 6.1.1.0...

JitBit HelpDesk <= 9.0.2 - Authentication Bypass Vulnerability

Exploit for asp platform in category web applications Exploit Title: JitBit HelpDesk = 9.0.2 Broken Authentication Google Dork: "Powered by Jitbit HelpDesk" -site:jitbit.com Date: 09/22/2017 Exploit Author: Rob Simon Kc57 - TrustedSec www.trustedsec.com Vendor Homepage:...

Lending And Borrowing - pid Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Lending And Borrowing Script - SQL Injection Dork: N/A Date: 22.09.2017 Vendor Homepage: http://www.i-netsolution.com/ Software Link: http://www.i-netsolution.com/product/lending-borrowing-script/ Demo:...

Enterprise Edition Payment Processor Script 3.7 SQL Injection

Exploit Title: Enterprise Edition Payment Processor Script 3.7 - SQL Injection Dork: N/A Date: 14.09.2017 Vendor Homepage: https://www.goterhosting.com/ Software Link: https://www.goterhosting.com/payment-processor-script.php Demo: http://www.enterprise-edition.gvmhosting.com/ Version: 3.7...

ICCallLimousine 1.1 - (key) Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Car Rental Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/limousine-car-hire-script.html Demo:...

ICLowBidAuction 3.3 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Unique Low Bid Auction Script 3.3 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/unique-low-bid-auction-script.htm Demo:...

Job Board Software 1.0 SQL Injection

Exploit Title: Job Board Software 1.0 - SQL Injection Dork: N/A Date: 09.09.2017 Vendor Homepage: http://scriptzee.com/ Software Link: http://scriptzee.com/best-softwares/job-board-software Demo: http://jobsite.scriptzee.com/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A...

Online Print Business 1.0 - SQL Injection

Online Print Business 1.0 - SQL Injection Exploit Title: Online Print Business Software 1.0 - SQL Injection Dork: N/A Date: 09.09.2017 Vendor Homepage: http://scriptzee.com/ Software Link: http://scriptzee.com/best-softwares/online-print-business Demo: http://onlineprintbssiness.scriptzee.com/...

Babysitter Website Script 1.0 - SQL Injection

Exploit Title: Babysitter Website Script 1.0 - SQL Injection Dork: N/A Date: 09.09.2017 Vendor Homepage: http://scriptzee.com/ Software Link: http://scriptzee.com/best-softwares/babysitter-website Demo: http://babysitter.scriptzee.com/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx6...

Joomla CheckList 1.1.0 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component CheckList 1.1.0 - SQL Injection Dork: N/A Date: 03.09.2017 Vendor Homepage: http://joomplace.com/ Software Link: https://extensions.joomla.org/extensions/extension/living/personal-life/checklist/ Demo:...

Dup Scout Enterprise 9.9.14 - Input Directory Local Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title : Dup Scout Enterprise v9.9.14 - 'Input Directory' Local Buffer Overflow Date : 04 Sept, 2017 Exploit Author : Touhid M.Shaikh - www.touhidshaikh.com Contact : https://github.com/touhidshaikh Vendor Homepage:...

IBM Notes 8.5.x9.0.x - Denial of Service (2)

IBM Notes 8.5.x9.0.x - Denial of Service 2 Exploit Title: IBM Notes is affected by a denial of service vulnerability Date: 31 August 2017 Software Link: http://www-01.ibm.com/support/docview.wss?uid=swg21999384 Exploit Author: Dhiraj Mishra Contact: http://twitter.com/mishradhiraj Website:...

Posty 1.0 SQL Injection Vulnerability

Exploit for php platform in category web applications ======================================================== Posty SQL injection Authentication bypass Description : an attacker is able to inject malicious sql query to bypass the login page and login as normal user Proof of Concept : -...

Easy DVD Creator 2.5.11 - Local Buffer Overflow (SEH)

!/usr/bin/python Exploit Title: Easy DVD Creator 2.5.11 - Buffer Overflow Windows 10 64bit, SEH Date: 26-08-2017 Exploit Author: tr0ubl3m4k3r Vulnerable Software: Easy DVD Creator Vendor Homepage: http://www.divxtodvd.net/ Version: 2.5.11 Software Link: http://www.divxtodvd.net/easydvdcreator.exe...

Disk Pulse Enterprise 9.9.16 Buffer Overflow

!/usr/bin/env python Exploit Title: Disk Pulse Enterprise 9.9.16 Remote SEH Buffer Overflow Date: 2017-08-25 Exploit Author: Nipun Jaswal & Anurag Srivastava Author Homepage: www.pyramidcyber.com Vendor Homepage: http://www.diskpulse.com Software Link:...

Disk Pulse Enterprise 10.0.12 Buffer Overflow

!/usr/bin/python Exploit Title : Disk Pulse Enterprise v10.0.12 - Buffer Overflow Discovery by : Anurag Srivastava Email : [email protected] Website : www.pyramidcyber.com Discovery Date : 25/08/2017 Software Link : http://www.diskpulse.com/setups/diskpulseentsetupv10.0.12.exe...

MP3 WAV to CD Burner 1.4.24 - Local Buffer Overflow (SEH)

!/usr/bin/python Exploit Title: MP3 WAV to CD Burner 1.4.24 - 'Enter User Name' Field Buffer Overflow SEH Date: 24-08-2017 Exploit Author: Anurag Srivastava Website: www.pyramidcyber.com Vulnerable Software: MP3 WAV to CD Burner Vendor Homepage: http://www.divxtodvd.net/ Version: 1.4.24 Software...

Matrimonial Script - SQL Injection

Exploit Title: Matrimonial Script - SQL Injection Dork: N/A Date: 22.08.2017 Vendor Homepage: http://www.scubez.net/ Software Link: http://www.mscript.in/ Demo: http://www.mscript.in/matrimonial-demo.html Version: N/A Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A Exploit Author: Ihsa...

Disk Savvy Enterprise 9.9.14 - Import Command Local Buffer Overflow

Disk Savvy Enterprise 9.9.14 - Import Command Local Buffer Overflow !/usr/bin/python Exploit Title : Disk Savvy Enterprise v9.9.14 - 'Import Command' Buffer Overflow Discovery by : Anurag Srivastava Email : [email protected] Website : www.pyramidcyber.com Discovery Date :...

Disk Savvy Enterprise 9.9.14 - &#039;Import Command&#039; Local Buffer Overflow

!/usr/bin/python Exploit Title : Disk Savvy Enterprise v9.9.14 - 'Import Command' Buffer Overflow Discovery by : Anurag Srivastava Email : [email protected] Website : www.pyramidcyber.com Discovery Date : 22/08/2017 Software Link :...