Lucene search
K

3143 matches found

Packet Storm
Packet Storm
added 2015/12/02 12:0 a.m.92 views

Advantech Switch Bash Environment Variable Code Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Advantech Switch Bash Environment Variable Code Injection Shellshock', 'Description' = %q This module exploits the Shellshock...

10CVSS1AI score0.99999EPSS
Exploits131
0day.today
0day.today
added 2015/12/02 12:0 a.m.87 views

Advantech Switch Bash Environment Variable Code Injection Exploit

This Metasploit module exploits the Shellshock vulnerability, a flaw in how the Bash shell handles external environment variables. This Metasploit module targets the 'ping.sh' CGI script, accessible through the Boa web server on Advantech switches. This Metasploit module was tested against firmwa...

10CVSS0.3AI score0.99999EPSS
Exploits131
Exploit DB
Exploit DB
added 2015/12/02 12:0 a.m.82 views

Advantech Switch - 'Shellshock' Bash Environment Variable Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Advantech Switch Bash Environment Variable Code Injection Shellshock', 'Description' = %q This module exploits the Shellshock...

10CVSS10AI score0.99999EPSS
Exploits131
Metasploit
Metasploit
added 2015/11/18 6:50 p.m.74 views

Chkrootkit Local Privilege Escalation

Chkrootkit before 0.50 will run any executable file named /tmp/update as root, allowing a trivial privilege escalation. WfsDelay is set to 24h, since this is how often a chkrootkit scan is scheduled by default. This module requires Metasploit: https://metasploit.com/download Current source:...

3.7CVSS7AI score0.03828EPSS
Exploits6
Packet Storm
Packet Storm
added 2015/11/13 12:0 a.m.31 views

Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload Version 1

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload', 'Description' = %q This module exploits an arbitrary file...

0.3AI score
Exploits0
Metasploit
Metasploit
added 2015/10/27 10:36 p.m.26 views

Idera Up.Time Monitoring Station 7.0 post2file.php Arbitrary File Upload

This module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without authentication, leading to arbitrary code execution. Although the vendor fixed Up.Time to prevent this...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2015/10/21 12:0 a.m.28 views

Zpanel - Remote Code Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/exploit/phpexe' require 'nokogiri' require 'uri' class Metasploit3 'Zpanel Remote Unauthenticated RCE', 'Description' = %q This modul...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2015/10/08 12:0 a.m.44 views

Watermark Master Buffer Overflow (SEH)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Watermark Master Buffer Overflow SEH', 'Description' = %q This module exploits a stack based buffer overflow in Watermark Master...

9.3CVSS0.2AI score0.32351EPSS
Exploits4
Packet Storm
Packet Storm
added 2015/09/23 12:0 a.m.17 views

w3tw0rk / Pitbul IRC Bot Remote Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'w3tw0rk / Pitbul IRC Bot Remote Code Execution', 'Description' = %q This module allows remote command execution on the w3tw0rk /...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2015/08/25 5:22 p.m.18 views

w3tw0rk / Pitbul IRC Bot Remote Code Execution

This module allows remote command execution on the w3tw0rk / Pitbul IRC Bot. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'w3tw0rk / Pitbul IRC Bot Remote Code Execution', 'Description' = %q...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.40 views

Pdf Shaper Buffer Overflow

This module requires Metabuffer: http://metabuffer.com/download Current source: https://github.com/rapid7/metabuffer-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank definition: http://dev.metabuffer.com/redmine/projects/framework/wiki/ExploitRanking...

0.2AI score
Exploits0
0day.today
0day.today
added 2015/08/17 12:0 a.m.36 views

VideoCharge Studio Buffer Overflow (SEH) Exploit

This Metasploit module exploits a stack based buffer overflow in VideoCharge Studio 2.12.3.685 when processing a specially crafted .VSC file. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine by enticing a user of VideoCharge Studio to open...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/08/11 12:0 a.m.17 views

PDF Shaper Buffer Overflow

This module requires Metabuffer: http://metabuffer.com/download Current source: https://github.com/rapid7/metabuffer-framework require 'msf/core' class Metasploit3 'PDF Shaper Buffer Overflow', 'Description' = %q PDF Shaper is prone to a security vulnerability when processing PDF files. The...

1.2AI score
Exploits0
Packet Storm
Packet Storm
added 2015/06/17 12:0 a.m.31 views

Audio Share 2.0.2 Cross Site Scripting / Remote File Inclusion

| Title : Audio Share v2.0.2 Multi Vulnerability | Author : indoushka | email : [email protected] | Dork : Powered by AudioShareScript.com | Tested on: windows 8.1 Français V.Pro | Download : http://demo.audiosharescript.com/ ======================================= XSS / HTML Inject :...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2015/05/29 12:0 a.m.118 views

60+ Vulnerabilities In 22 SOHO Routers

Dear PacketStorm community, we are a group of security researchers doing our IT Security Master's Thesis at Universidad Europea de Madrid. As a part of the dissertation, we have discovered multiple vulnerability issues on the following SOHO routers: 1. Observa Telecom AW4062 2. Comtrend WAP-5813n...

0.7AI score
Exploits0
Saint
Saint
added 2015/05/29 12:0 a.m.2498 views

ProFTPD mod_copy command execution

Added: 05/29/2015 CVE: CVE-2015-3306 BID: 74238 OSVDB: 120834 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem The modcopy extension, if enabled in ProFTPD, allows unauthenticated attackers to read and write arbitrary files using the SITE CPFR and SITE CPTO...

10CVSS9.1AI score0.96803EPSS
Exploits21
Saint
Saint
added 2015/05/29 12:0 a.m.1008 views

ProFTPD mod_copy command execution

Added: 05/29/2015 CVE: CVE-2015-3306 BID: 74238 OSVDB: 120834 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem The modcopy extension, if enabled in ProFTPD, allows unauthenticated attackers to read and write arbitrary files using the SITE CPFR and SITE CPTO...

10CVSS9.1AI score0.96803EPSS
Exploits21
exploitpack
exploitpack
added 2015/05/26 12:0 a.m.17 views

WordPress Plugin Simple Photo Gallery 1.7.8 - Blind SQL Injection

WordPress Plugin Simple Photo Gallery 1.7.8 - Blind SQL Injection Exploit Title: Wordpess Simple Photo Gallery Blind SQL Injection Date: 12-05-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/simple-photo-gallery/ Version: 1.7.8 Tested on: Apache 2.2.22, PHP 5.3.10...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/05/23 12:0 a.m.47 views

Lenovo System Update Privilege Escalation

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class Metasploit3 'Lenovo System Update Privilege Escalation', 'Description' = %q The named pipe, \SUPipeServer, can be accessed by normal users to interact with the Syst...

7.2CVSS0.3AI score0.04146EPSS
Exploits5
Packet Storm
Packet Storm
added 2015/05/04 12:0 a.m.35 views

Novell ZENworks Configuration Management Arbitrary File Upload

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Novell ZENworks Configuration Management Arbitrary File Upload', 'Description' = %q This module exploits a file upload vulnerability...

10CVSS6.4AI score0.74516EPSS
Exploits9
Rows per page
Query Builder