Lucene search
K

11233 matches found

0day.today
0day.today
added 2023/04/06 12:0 a.m.378 views

Dompdf 1.2.1 - Remote Code Execution Exploit

!/usr/bin/python3 Exploit Title: Dompdf 1.2.1 - Remote Code Execution RCE Date: 16 February 2023 Exploit Author: Ravindu Wickramasinghe @rvizx9 Vendor Homepage: https://dompdf.github.io/ Software Link: https://github.com/dompdf/dompdf Version: 1.2.1 Tested on: Kali linux CVE : CVE-2022-28368 Gith...

9.8CVSS9.2AI score0.82438EPSS
Exploits8
0day.today
0day.today
added 2023/04/06 12:0 a.m.235 views

Best pos Management System v1.0 - Remote Code Execution on File Upload Vulnerability

Exploit Title: Best pos Management System v1.0 - Remote Code Execution RCE on File Upload Exploit Author: Ahmed Ismail @MrOz1l Vendor Homepage: https://www.sourcecodester.com/php/16127/best-pos-management-system-php.html Software Link:...

8.8CVSS8.8AI score0.02266EPSS
Exploits2
0day.today
0day.today
added 2023/04/06 12:0 a.m.214 views

WIMAX SWC-5100W Firmware V(1.11.0.1 :1.9.9.4) - Authenticated Remote Code Execution Exploit

Exploit Title: WIMAX SWC-5100W Firmware V1.11.0.1 :1.9.9.4 - Authenticated RCE Vulnerability Name: Ballin' Mada Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: http://www.seowonintech.co.kr/eng/main Version: Bootloader1.18.19.0 , HW 0.0.7.0, FW1.11.0.1 : 1.9.9.4 Tested on: Unix CVE :...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.693 views

Binwalk 2.3.2 Remote Command Execution

Exploit Title: Binwalk v2.3.2 - Remote Command Execution RCE Exploit Author: Etienne Lacoche CVE-ID: CVE-2022-4510 import os import inspect import argparse print"" print"" print"------------------CVE-2022-4510----------------" print"" print"--------Binwalk Remote Command Execution--------"...

7.8CVSS7.6AI score0.21845EPSS
Exploits8
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.235 views

Provide Server 14.4 XSS / Cross Site Request Forgery / Code Execution

Provide Server v. 14.4 CVE-2023-23286 Vulnerabilities: CWE-79: Improper Neutralization of Input During Web Page Generation Unauthenticated stored XSS in server-log delivered via username field from login-form CWE-352: Cross-Site Request Forgery CSRF-token exposed in javascript, making it possible...

6.1CVSS6.4AI score0.02628EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.205 views

WIMAX SWC-5100W Remote Command Execution

Exploit Title: WIMAX SWC-5100W Firmware V1.11.0.1 :1.9.9.4 - Authenticated RCE Vulnerability Name: Ballin' Mada Date: 4/3/2023 Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: http://www.seowonintech.co.kr/eng/main Version: Bootloader1.18.19.0 , HW 0.0.7.0, FW1.11.0.1 : 1.9.9.4 Tested...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.278 views

atrocore 1.5.25 User interaction - Unauthenticated File upload - RCE

Exploit Title: atrocore 1.5.25 User interaction - Unauthenticated File upload - RCE Author: nu11secur1ty Date: 02.16.2023 Vendor: https://atropim.com/ Software: https://github.com/atrocore/atrocore/releases/tag/1.5.25 Reference: https://portswigger.net/web-security/file-upload Description: The...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.258 views

Agilebio Lab Collector Electronic Lab Notebook v4.234 - Remote Code Execution (RCE)

Exploit Title: Agilebio Lab Collector Electronic Lab Notebook v4.234 - Remote Code Execution RCE Date: 2023-02-28 Exploit Author: Anthony Cole Vendor Homepage: https://labcollector.com/labcollector-lims/add-ons/eln-electronic-lab-notebook/ Version: v4.234 Contact: http://twitter.com/acole76...

8.8CVSS8.9AI score0.0454EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.278 views

WIMAX SWC-5100W Firmware V(1.11.0.1 :1.9.9.4) - Authenticated RCE

Exploit Title: WIMAX SWC-5100W Firmware V1.11.0.1 :1.9.9.4 - Authenticated RCE Vulnerability Name: Ballin' Mada Date: 4/3/2023 Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: http://www.seowonintech.co.kr/eng/main Version: Bootloader1.18.19.0 , HW 0.0.7.0, FW1.11.0.1 : 1.9.9.4 Tested...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.279 views

ABUS Security Camera TVIP 20000-21150 - LFI, RCE and SSH Root Access

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Exploit Title: ABUS Security Camera TVIP 20000-21150 - LFI, RCE and SSH Root Access Date: 2023-02-16 Exploit Author: [email protected] for NetworkSEC NWSSA-001-2023 Vendor Homepage: https://www.abus.com Version/Model: TVIP...

7.2CVSS7AI score0.38722EPSS
Exploits5
0day.today
0day.today
added 2023/04/06 12:0 a.m.351 views

Unified Remote 3.13.0 - Remote Code Execution Exploit

Exploit Title: Unified Remote 3.13.0 - Remote Code Execution RCE Google Dork: NA Exploit Author: H4rk3nz0 Vendor Homepage: https://www.unifiedremote.com/ Software Link: https://www.unifiedremote.com/download/windows Version: 3.13.0 Current Tested on: Windows CVE : NA Due to the use of...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/04/05 11:30 p.m.56 views

Critical: Red Hat Security Advisory: OpenShift Container Platform 4.9.59 security update

Red Hat OpenShift Container Platform release 4.9.59 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which...

9.8CVSS7AI score0.99931EPSS
Exploits41References4
GithubExploit
GithubExploit
added 2023/04/05 9:34 a.m.378 views

Exploit for OS Command Injection in Contao

CVE-2022-26265 The first proof of c...

9.8CVSS9.7AI score0.30367EPSS
Exploits4
0day.today
0day.today
added 2023/04/05 12:0 a.m.251 views

Kardex Mlog MCC 5.7.12 - Remote Code Execution Exploit

!/usr/bin/env python3 Exploit Title: Kardex Mlog MCC 5.7.12 - RCE Remote Code Execution Date: 12/13/2022 Exploit Author: Patrick Hener Vendor Homepage: https://www.kardex.com/en/mlog-control-center Version: 5.7.12+0-a203c2a213-master Tested on: Windows Server 2016 CVE : CVE-2023-22855 Writeup:...

9.8CVSS9.2AI score0.14832EPSS
Exploits8
0day.today
0day.today
added 2023/04/05 12:0 a.m.306 views

Froxlor 2.0.3 Stable - Remote Code Execution Exploit

!/usr/bin/python3 Exploit Title: Froxlor 2.0.3 Stable - Remote Code Execution RCE Date: 2023-01-08 Exploit Author: Askar @mohammadaskar2 CVE: CVE-2023-0315 Vendor Homepage: https://froxlor.org/ Version: v2.0.3 Tested on: Ubuntu 20.04 / PHP 8.2 import telnetlib import requests import socket import...

8.8CVSS8.6AI score0.97653EPSS
Exploits8
0day.today
0day.today
added 2023/04/05 12:0 a.m.386 views

PostgreSQL 9.6.1 - Remote Code Execution (Authenticated) Exploit

Exploit Title: PostgreSQL 9.6.1 - Remote Code Execution RCE Authenticated Exploit Author: Paulo Trindade @paulotrindadec, Bruno Stabelini @Bruno Stabelini, Diego Farias @fulcrum and Weslley Shaimon Github: https://github.com/paulotrindadec/CVE-2019-9193 Version: PostgreSQL 9.6.1 on...

7.2CVSS7.1AI score0.91877EPSS
Exploits17
0day.today
0day.today
added 2023/04/05 12:0 a.m.339 views

Provide Server v.14.4 XSS - CSRF & Remote Code Execution Vulnerabilities

Provide Server v. 14.4 CVE-2023-23286 Vulnerabilities: CWE-79: Improper Neutralization of Input During Web Page Generation Unauthenticated stored XSS in server-log delivered via username field from login-form CWE-352: Cross-Site Request Forgery CSRF-token exposed in javascript, making it possible...

6.1CVSS6.4AI score0.02628EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/04/05 12:0 a.m.268 views

D-Link DIR-846 Remote Command Execution

Exploit Title: D-Link DIR-846 - Remote Command Execution RCE vulnerability Google Dork: NA Date: 30/01/2023 Exploit Author: Françoa Taffarel Vendor Homepage:...

8.8CVSS8.8AI score0.10503EPSS
Exploits4
0day.today
0day.today
added 2023/04/05 12:0 a.m.221 views

projectSend r1605 - Remote Code Exectution Vulnerability

Exploit Title: projectSend r1605 - Remote Code Exectution RCE Application: projectSend Version: r1605 Bugs: rce via file extension manipulation Technology: PHP Vendor URL: https://www.projectsend.org/ Software Link: https://www.projectsend.org/ Date of found: 26-01-2023 Author: Mirabbas Ağalarov...

6.8AI score
Exploits0
0day.today
0day.today
added 2023/04/05 12:0 a.m.254 views

Responsive FileManager 9.9.5 - Remote Code Execution Exploit

Exploit Title: Responsive FileManager 9.9.5 - Remote Code Execution RCE Exploit Author: Galoget Latorre @galoget Vendor Homepage: https://responsivefilemanager.com Software Link: https://github.com/trippo/ResponsiveFilemanager/releases/download/v9.9.5/responsivefilemanager.zip Dockerfile:...

8.8CVSS8.7AI score0.08627EPSS
Exploits5
Rows per page
Query Builder