109 matches found
OpenBSD OpenSMTPD 6.6 Remote Code Execution Exploit
smtpmailaddr in smtpsession.c in OpenSMTPD version 6.6, as used in OpenBSD version 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This affects the "uncommented" default...
Google Chrome 81.0.4044 V8 - Remote Code Execution Exploit
Exploit Title: Google Chrome 81.0.4044 V8 - Remote Code Execution Exploit Author: Tobias Marcotto Tested on: Kali Linux x64 Version: 83.0.4103.106 Description: Out of bounds write in V8 in Google Chrome prior to 83.0.4103.106 allowed a remote attacker to potentially exploit heap corruption via a...
FrontAccounting 2.4.5 - SubmitUser SQL Injection
FrontAccounting 2.4.5 - SubmitUser SQL Injection Exploit Title: FrontAccounting 2.4.5 - 'SubmitUser' SQL Injection Google Dork: N/A Date: 2018-12-22 Exploit Author: Sainadh Jamalpur Vendor Homepage: http://frontaccounting.com/ Software Link: https://sourceforge.net/projects/frontaccounting/...
HotelDruid 2.3.0 - id_utente_mod SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: SQL Injection in HotelDruid version 2.3 Google Dork: N/A Exploit Author: Sainadh Jamalpur Vendor Homepage: http://www.hoteldruid.com Software Link: https://sourceforge.net/projects/hoteldruid/ Version: 2.3 REQUIRED Tested on:...
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Simple PHP Shopping Cart 0.9 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage: https://asaancart.wordpress.com/ Software Link:...
LaraChurch 1.0 Shell Upload
Exploit Title: LaraChurch - Complete Church Management System - Remote Shell Upload Date: 2018/24/06 Exploit Author: ShanoWeb Author Mail : MrdotNet2NetatGmaildotcom Vendor Homepage: https://creatydev.com Software Buy:...
GoodTravel Travel And Locations 1.0 Cross Site Scripting Vulnerability
GoodTravel Travel and Locations PHP script and mobile application version 1.0 suffers from a cross site scripting vulnerability. Exploit Title: GoodTravel - Travel & Locations PHP Script & Mobile App - xss Google Dork: N/A Date: 2017/28/12 Exploit Author: ShanoWeb Author Mail :...
Social Directory Script 2.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Social Directory Script 2.0 - SQL Injection Google Dork: N/A Date: 11.04.2017 Vendor Homepage: http://www.phponly.com/ Software: http://www.phponly.com/Social-Directory.html Demo: http://www.phponly.com/demo/link/ Version: 2.0...
MyClassifiedScript 5.1 - SQL Injection
MyClassifiedScript 5.1 - SQL Injection Exploit Title: Classified Portal Software 5.1 - SQL Injection Google Dork: N/A Date: 11.04.2017 Vendor Homepage: http://www.myclassifiedscript.com/ Software: http://www.myclassifiedscript.com/demo.html Demo: http://www.clpage.com/ Version: 5.1 Tested on: Win...
MyClassifiedScript 5.1 - SQL Injection
Exploit Title: Classified Portal Software 5.1 - SQL Injection Google Dork: N/A Date: 11.04.2017 Vendor Homepage: http://www.myclassifiedscript.com/ Software: http://www.myclassifiedscript.com/demo.html Demo: http://www.clpage.com/ Version: 5.1 Tested on: Win7 x64, Kali Linux x64 Exploit Author:...
MyClassifiedScript 5.1 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Classified Portal Software 5.1 - SQL Injection Google Dork: N/A Date: 11.04.2017 Vendor Homepage: http://www.myclassifiedscript.com/ Software: http://www.myclassifiedscript.com/demo.html Demo: http://www.clpage.com/ Version: 5.1...
My Gaming Ladder Combo System 7.5 - SQL Injection
My Gaming Ladder Combo System 7.5 - SQL Injection Exploit Title: My Gaming Ladder Combo System 7.5 - SQL Injection Google Dork: N/A Date: 07.04.2017 Vendor Homepage: http://www.mygamingladder.com/ Software: http://www.mygamingladder.com/demos.shtml Demo: http://www.mygamingladder.com/upgrade/comb...
Document Management Template - hash SQL Injection
Document Management Template - hash SQL Injection Exploit Title: Document Management Template v1.0 for PHPRunner 8.x,ASPRunnerPro 9.x,ASPRunner.NET 8.x or better.- SQL Injection Google Dork: N/A Date: 07.04.2017 Vendor Homepage: https://xlinesoft.com/ Software: https://xlinesoft.com/docmanager...
My Gaming Ladder Combo System 7.5 - SQL Injection
Exploit Title: My Gaming Ladder Combo System 7.5 - SQL Injection Google Dork: N/A Date: 07.04.2017 Vendor Homepage: http://www.mygamingladder.com/ Software: http://www.mygamingladder.com/demos.shtml Demo: http://www.mygamingladder.com/upgrade/combo/ Version: 7.5 Tested on: Win7 x64, Kali Linux x6...
Ladder System 6.0 - faqid SQL Injection
Ladder System 6.0 - faqid SQL Injection Exploit Title: My Gaming Ladder System 6.0 - SQL Injection Google Dork: N/A Date: 07.04.2017 Vendor Homepage: http://www.mygamingladder.com/ Software: http://www.mygamingladder.com/ladder.shtml Demo: http://www.ladder.tf2.co.za/ Version: 6.0 Tested on: Win7...
Survey Template 1.1 - masterkey1 Parameter SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Survey Template v1.1 for ASPRunnerPro,PHPRunner. - SQL Injection Google Dork: N/A Date: 07.04.2017 Vendor Homepage: https://xlinesoft.com/ Software: https://xlinesoft.com/marketplace/productsview.php?editid1=3 Demo:...
Sweepstakes Pro Software - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Sweepstakes Pro Software - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/sweepstakes-pro-software/ Demo: http://mysweepstakespro.com/demo/ Version: N/A Tested...
ImagePro Lazygirls Clone Script - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: ImagePro Lazygirls Clone Script - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/8-2/ Demo: http://imagepro.clonedemo.com/ Version: N/A Tested on: Win7 x64, Ka...
Premium Penny Auction Script - SQL Injection
Premium Penny Auction Script - SQL Injection Exploit Title: Premium Penny Auction Script - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/premium-penny-auction-script/ Demo: http://pennyauction.clonedemo.com/ Version: N/A Tested...
Maian Survey 1.1 - survey SQL Injection
Maian Survey 1.1 - survey SQL Injection Exploit Title: Maian Survey v1.1 - SQL Injection Google Dork: N/A Date: 04.04.2017 Vendor Homepage: http://www.maiansoftware.com/ Software: http://www.maiansurvey.com/?dl=yes Demo: http://www.maiansoftware.com/demos/survey/ Version: 1.1 Tested on: Win7 x64,...