Lucene search
K

438 matches found

Metasploit
Metasploit
added 2020/11/13 5:41 p.m.81 views

HorizontCMS Arbitrary PHP File Upload

This module exploits an arbitrary file upload vulnerability in HorizontCMS 1.0.0-beta in order to execute arbitrary commands. The module first attempts to authenticate to HorizontCMS. It then tries to upload a malicious PHP file via an HTTP POST request to /admin/file-manager/fileupload. The serv...

8.8CVSS9.3AI score0.18461EPSS
Exploits4
Hacker One
Hacker One
added 2020/10/19 4:7 p.m.40 views

Informatica: Improper Sanitization leads to XSS Fire on admin panel

Summary Because the HTML is not sanitized when taking the input on https://accounts.informatica.com/registration.html, the input is vulnerable to XSS. When a payload such as " is put into the form under company it triggers a blind xss. When the payload successfully is loaded, it dumps information...

5.7AI score
Exploits0
WPVulnDB
WPVulnDB
added 2020/08/31 12:0 a.m.12 views

Chamber Dashboard Business Directory < 3.3.1 - Authenticated Stored Cross-Site Scripting

The plugin does not sanitise user input when creating or editing a business in the dashboard, allowing high privilege users Editor+ to set XSS payloads in various fields. PoC Login as an editor or admin, then add/edit a business and set the phone number as " The payload will then be executed in t...

4.3CVSS1.3AI score0.01011EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2020/08/21 9:15 p.m.4 views

CVE-2020-9063

NCR SelfServ ATMs running APTRA XFS 05.01.00 or earlier do not authenticate or protect the integrity of USB HID communications between the currency dispenser and the host computer, permitting an attacker with physical access to internal ATM components the ability to inject a malicious payload and...

7.6CVSS7.7AI score0.00674EPSS
Exploits1References6
Gitee
Gitee
added 2020/08/18 6:10 p.m.7 views

Phantom-Evasion

This is a Python antivirus evasion tool called Phantom-Evasion. It is free software, licensed under the GNU General Public License GPL version 3. The tool is designed to evade detection by antivirus software and is intended for educational or research purposes only. The tool consists of several...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2020/07/28 10:0 p.m.64 views

SNOWCRASH - A Polyglot Payload Generator

A polyglot payload generator Introduction SNOWCRASH creates a script that can be launched on both Linux and Windows machines. Payload selected by the user in this case combined Bash and Powershell code is embedded into a single polyglot template, which is platform-agnostic. There are few payloads...

7.5AI score
Exploits0References1
The Hacker News
The Hacker News
added 2020/07/28 12:40 p.m.37 views

Undetectable Linux Malware Targeting Docker Servers With Exposed APIs

Cybersecurity researchers today uncovered a completely undetectable Linux malware that exploits undocumented techniques to stay under the radar and targets publicly accessible Docker servers hosted with popular cloud platforms, including AWS, Azure, and Alibaba Cloud. Docker is a popular...

8.1AI score
Exploits0
OSV
OSV
added 2020/07/13 7:15 p.m.5 views

CVE-2020-10989

An XSS issue in the /goform/WifiBasicSet endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute malicious payloads via the WifiName POST parameter...

6.1CVSS6.6AI score0.00856EPSS
Exploits1References2
0daydb
0daydb
added 2020/05/25 2:9 p.m.164 views

Synology DiskStation Manager smart.cgi - Remote Command Execution

This Metasploit module exploits a vulnerability found in Synology DiskStation Manager DSM versions prior to 5.2-5967-5... This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule \d+&minor=?\d+&build=?\d...

7.2CVSS0.2AI score0.72453EPSS
Exploits16
OSV
OSV
added 2019/10/01 5:15 p.m.36 views

CVE-2019-16943

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled either globally or for a specific property for an externally exposed JSON endpoint and the service has the p6spy 3.8.6 jar in the classpath, and an attacker can find an RMI...

9.8CVSS9.4AI score
Exploits0References26
GithubExploit
GithubExploit
added 2019/10/01 10:26 a.m.138 views

Exploit for XML Injection (aka Blind XPath Injection) in Nsa Ghidra

CVE-2019-16941 Proof-of-Concept: The vulnerability requires...

9.8CVSS9.4AI score0.05133EPSS
Exploits2
Metasploit
Metasploit
added 2019/09/30 7:18 p.m.44 views

DOUBLEPULSAR Payload Execution and Neutralization

This module executes a Metasploit payload against the Equation Group's DOUBLEPULSAR implant for SMB as popularly deployed by ETERNALBLUE. While this module primarily performs code execution against the implant, the "Neutralize implant" target allows you to disable the implant...

7.5AI score
Exploits0
NVD
NVD
added 2019/06/17 10:15 p.m.19 views

CVE-2017-10722

Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the desktop application used to connect to the device suffers from a stack overflow if more than 26 characters are passed to it as the Wi-Fi password. This application is...

7.8CVSS8AI score0.00735EPSS
Exploits1References3
Kitploit
Kitploit
added 2019/06/05 1:3 p.m.240 views

ReverseTCPShell - PowerShell ReverseTCP Shell, Client & Server

Reverse Encrypted AES 256-bit Shell over TCP - usingPowerShell SecureString. Attacker C2-Server Listener: PS .\ReverseTCP.ps1 Target Client: CMD ECHO...

7.4AI score
Exploits0References1
Packet Storm
Packet Storm
added 2019/04/29 12:0 a.m.67 views

AIS Logistics ESEL-Server SQL Injection / Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AIS logistics ESEL-Server Unauth SQL Injection RCE', 'Description' = %q This module will execute an arbitrary payload on an "ESEL" server used by...

0.4AI score0.6585EPSS
Exploits5
exploitpack
exploitpack
added 2019/04/08 12:0 a.m.15 views

CentOS Web Panel 0.9.8.793 (Free) 0.9.8.753 (Pro) - Cross-Site Scripting

CentOS Web Panel 0.9.8.793 Free 0.9.8.753 Pro - Cross-Site Scripting Exploit Title: CentOS Web Panel v0.9.8.793 Free and v0.9.8.753 Pro - Email Field Stored Cross-Site Scripting Vulnerability Google Dork: N/A Date: 06 - April - 2019 Exploit Author: DKM Vendor Homepage: http://centos-webpanel.com...

3.5CVSS5AI score0.02879EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/02/28 12:0 a.m.26 views

Feng Office 3.7.0.5 Remote Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'uri' class MetasploitModule 'Feng Office 3.7.0.5 - Unauthenticated Remote Command Execution', 'Description' = %q This module exploits arbitrar...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2018/09/21 7:45 p.m.15 views

Delphi Packer Looks for Human Behavior Before Deploying Payload

As bad actors continue to innovate in the area of sandbox evasion, the use of the Delphi programming language to pack malware code has become more and more prevalent. Researchers recently observed several spam campaigns using a specific packer written in Delphi that goes to great lengths to hunt...

7.9AI score
Exploits0References6
Metasploit
Metasploit
added 2018/05/06 6:16 a.m.22 views

Android 'su' Privilege Escalation

This module uses the su binary present on rooted devices to run a payload as root. A rooted Android device will contain a su binary often linked with an application that allows the user to run commands as root. This module will use the su binary to execute a command stager as root. The command...

0.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2018/02/26 5:0 p.m.67 views

A Deep Dive into Database Attacks [Part II]: Delivery and Execution of Malicious Executables through SQL commands (SQL Server)

An organization’s database servers are frequently the prime target of attackers. We recently started a new research project we named StickyDB to learn more about database hacking, primarily to understand common database attacks, tools and techniques engaged by attackers. To conduct this research,...

7.8AI score
Exploits0
Rows per page
Query Builder