Event Registration System with QR Code 1.0 - Authentication Bypass / Remote Code Execution Exploit

Exploit Title: Event Registration System with QR Code 1.0 - Authentication Bypass & RCE Exploit Author: Javier Olmedo Vendor: Sourcecodester Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/event0.zip Affected Version: 1.0 Category: WebApps Platform: PHP Tested...

Ultimate Member < 2.1.12 - Unauthenticated Privilege Escalation via User Roles

Due to the lack of filtering on the role parameter that could be supplied during the registration process, an attacker could supply the role parameter with a WordPress capability or any custom Ultimate Member role and effectively be granted those privileges. $username, 'firstname-'. $formid =...

DBHcms Cross-Site Request Forgery Vulnerability

DBHcms is a small, free and open source content management system for personal and small business websites. DBHcms 1.2.0 suffers from a cross-site request forgery vulnerability. An attacker can exploit this vulnerability to add users via index.php?dbhcmspid=-70...

FS Freelancer Clone 1.0 - profile.php?u SQL Injection

FS Freelancer Clone 1.0 - profile.php?u SQL Injection Exploit Title: FS Freelancer Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/freelancer-clone/ Demo: http://freelancer-clone.demonstration.co.i...

TodayMail email system/webmail/tools/cardList. php file sort_by parameter SQL injection vulnerability

No description provided by source...

Iwebmall /action/user/remind_info.action.php 注入

No description provided by source...

Rips Scanner 0.5 Directory Listing

...

HTML Compiler - Remote Code Execution Exploit

Exploit for windows platform in category remote exploits !/usr/bin/php New Project - Choose here your site index file 4 . browse loader.html 5 . Enjoy ! loader.html source code : poc proof : http://ehsann.info/proof/HTMLCompilerRemoteCodeExecute.png $port=80; Listen port if using from Skype or...

MvMmallv5. 5SQL injection of php exp exploit-vulnerability warning-the black bar safety net

Vulnerability type: MvMmall v5. 5. 1 SQL injection vulnerability Default background:admincp. php? module=index Google search:”Powered by MvMmall v5. 5. 1" One, use: php exp use 1 Install the php environment Use phpnow very simple to install. 2 Use exp attack Link: Extract password: aahj The exp...

WordPress Themes download.php File Disclosure

!/usr/bin/php -q ?php =============================================================================== NAME: Wordpress A.F.D Verification/ INURL - BRASIL TIPE: Arbitrary File Download Tested on: Linux EXECUTE: php exploit.php www.target.gov.us OUTPUT: WORDPRESAFD.txt AUTOR: Cleiton Pinheiro / NICK...

Family Connections CMS 2.5.0 & 2.7.1 - (less.php) Remote Command Execution

No description provided by source. ?php / Family connections CMS v2.5.0-v2.7.1 remote command execution exploit vendor: https://www.familycms.com/ software link: https://www.familycms.com/download.php author: mrme::rwx kru email: steventhomasseeley!gmail!com ----------------------------------...

Dolphin <= 7.0.7 (member_menu_queries.php) Remote PHP Code Injection

No description provided by source. ?php / ---------------------------------------------------------------------------- Dolphin = 7.0.7 membermenuqueries.php Remote PHP Code Injection Exploit ---------------------------------------------------------------------------- author...............: EgiX...

jPORTAL 2.3.1 & UserPatch (forum.php) Remote Code Execution Exploit

No description provided by source. ?php jPORTAL 2.3.1 & UserPatch forum.php Remote PHP Code Execution Exploit author: irk4zatyahoo.pl http://irk4z.wordpress.com dorks: powered by jPORTAL 2 & UserPatch powered by jPORTAL 2 greetz: str0ke, wacky, polish under :...

Kamads Classifieds 2.0 - Admin Hash Disclosure

No description provided by source. ?php if $argc 2 echo \n+-----------------------------------------------------------------+\n; echo | Kamads classifieds V2 Multiple Vulnerabilities |\n; echo | Author:Mr.tro0oqy |\n; echo | [email protected] |\n; echo | dork:inurl:V2AXHTML |\n; echo | |\n; echo...

PHP <= 4.4.4 unserialize() ZVAL Reference Counter Overflow Exploit PoC

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...

webSPELL <= 4.01.02 Remote PHP Code Execution Exploit

No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; Admin id: 1 Admin hash: 7b24afc8bc80e548d66c4e7ff72171c5 Logged in wsauth=1%3A7b24afc8bc80e548d66c4e7ff72171c5 Trying to upload the malicious file Done http://localhost/webspell4.01.02/downloads/c99shell.php if$ar...

Mambo com_registration_detailed <= 4.1 - Remote File Include

No description provided by source. Mambo comregistrationdetailed = 4.1 Remote File Inclusion Download Source : http://mamboxchange.com/projects/regdetailed/ Dork = allinur:comextendedregistration Found By: k1tk4t - k1tk4td0th4ck4tgmaild0tcom Location: Indonesia file ; registrationdetailed.inc.php...

MacCMS 6. x-referer improper handling of initiator injection-vulnerability warning-the black bar safety net

/user/service.php function Popularize global $db; $userid = safeData"userid","get"; if ! isNum$userid die"user illegal,please, from the new login!"; $Ip = getip; $Ly = $SERVER"HTTPREFERER"; $row = $db-getRow"select from tbluser where uid=" . $userid .""; if $row $sql="Select From tbluservisit whe...

FlashComs Chat 6.5 - Arbitrary File Upload

"@".$options'f'."","fileId" = $options"f"; $result = curlexec$handle; ifstrpos$result,"UPLOADSUCCESS" echo "\n\n"; echo "\t+ Exploitation success!!\n"; echo "\t...

WordPress Cubed Themes Remote File Upload Vulnerability

WordPress Cubed Themes suffers from remote file uplaod vulnerability . . . \ \ | / \ \ \ | || / \ / / \ / |/ \ / | / \ / / /| | |/ \ \ \ // \ / / | \ /\ / | \ \ \ / \ //\ |\ | /\ // | /|\ / / / / / / / Exploit Title: WordPress Cubed Themes Remote File Upload Vulnerability Author:...