ASUS infosvr - Authentication Bypass Command Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ASUS infosvr Auth Bypass Command Execution', 'Description' = %q This module exploits an authentication bypass vulnerability in the infosvr service...

ASUS infosvr Authentication Bypass Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ASUS infosvr Auth Bypass Command Execution', 'Description' = %q This module exploits an authentication bypass vulnerability in the infosvr service...

File Upload Vulnerability in Merchant Alliance Membership Spending Management System

Merchant Alliance Consumer Management System is a management software for professional membership management and merchant settlement for heterogeneous merchant alliances. A file upload vulnerability exists in the Merchant Alliance Membership and Consumption Management System. The attacker does no...

Vanno enterprise website management system (PHP version) cms_channel_add.php and channel.php file contains a file inclusion vulnerability

Vanno enterprise website management system PHP version is a php+MySQL development of php enterprise website management system. Vano enterprise website management system PHP version cmschanneladd.php and channel.php file contains a file inclusion vulnerability. The vulnerability is due to the...

GetGo Download Manager 5.3.0.2712 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category remote exploits !/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: GetGo Download Manager 5.3.0.2712 - Remote Buffer Overflow SEH Date: 02-24-2018 Vulnerable Software: GetGo Download Manager 5.3.0.2712 Vendor Homepage:...

GetGo Download Manager 5.3.0.2712 Buffer Overflow

!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: GetGo Download Manager 5.3.0.2712 - Remote Buffer Overflow SEH Date: 02-24-2018 Vulnerable Software: GetGo Download Manager 5.3.0.2712 Vendor Homepage: http://www.getgosoft.com/ Version: 5.3.0.2712 Software Link:...

ASUS infosvr Auth Bypass Command Execution

This module exploits an authentication bypass vulnerability in the infosvr service running on UDP port 9999 on various ASUS routers to execute arbitrary commands as root. This module launches the BusyBox Telnet daemon on the port specified in the TelnetPort option to gain an interactive remote...

Trend Micro Threat Discovery Appliance 2.6.1062r1 - dlp_policy_upload.cgi Remote Code Execution

Trend Micro Threat Discovery Appliance 2.6.1062r1 - dlppolicyupload.cgi Remote Code Execution !/usr/local/bin/python """ Trend Micro Threat Discovery Appliance /opt/TrendMicro/MinorityReport/bin/ Then, all we do is create /engptnstores/prod/sensorSDK/data/si/dlpkill.sh with malicious code and get...

Hershell - Simple TCP reverse shell written in Go

Simple TCP reverse shell written in Go . It uses TLS to secure the communications, and provide a certificate public key fingerprint pinning feature, preventing from traffic interception. Supported OS are: Windows Linux Mac OS FreeBSD and derivatives Why ? Although meterpreter payloads are great,...

Joomla Advertisement Board Classifieds 3.2.0 Shell Upload

Title: Advertisement board Joomla classifieds extension 3.2.0 - Remote Shell Upload Vulnerability Credit: Bilal KARDADOU Vendor: http://ordasoft.com/ URL: http://ordasoft.com/advertisement-board-joomla-classifieds-extension Product: 'Advertisement board Joomla classifieds extension 3.2.0'...

D-Link DSL-6850U Multiple Vulnerabilities

Exploit for hardware platform in category web applications Vulnerabilities Summary The following advisory describes two 2 vulnerabilities found in D-Link DSL-6850U versions BZ1.00.01 – BZ1.00.09. D-Link DSL-6850U is a router “manufactured by D-Link for Bezeq in Israel” The vulnerabilities found...

Chatting System PHP Ajax MySQL JavaScript 1.0 Shell Upload

Exploit Title: Chatting System PHP Ajax MySQL JavaScript - Remote Shell Upload Google Dork: N/A Date: 2017/31/12 Exploit Author: ShanoWeb Author Mail : MrdotNet2NetatGmaildotcom Vendor Homepage: https://www.codester.com/IngeniousDeveloper Software Buy:...

LaCie 5big Network 2.2.8 Command Injection

!/usr/bin/python Exploit Title: LaCie 5big Network 2.2.8 Command Injection Date: 2017-12-04 Exploit Author: Timo Sablowski Contact: [email protected] Vendor Homepage: http://www.lacie.com Software Link: http://www.lacie.com/files/lacie-content/download/drivers/5%20Big%20Network.zip Version:...

Excalibur - An Eternalblue exploit payload based Powershell

Excalibur is an Eternalblue exploit based "Powershell" for the Bashbunny project. It's purpose is to reflect on how a "simple" USB drive can execute the 7 cyber kill chain. Excalibur may be used only for demostrations purposes only, and the developers are not responsible to any misuse or illeagal...

CVE-2017-15909

D-Link DGS-1500 Ax devices before 2.51B021 have a hardcoded password, which allows remote attackers to obtain shell access...

PT-2017-14278 · D Link · D-Link Dgs-1500

Name of the Vulnerable Software and Affected Versions: D-Link DGS-1500 Ax versions prior to 2.51B021 Description: The issue allows remote attackers to obtain shell access due to a hardcoded password. Recommendations: For versions prior to 2.51B021, update to version 2.51B021 or later to resolve t...

dotCMS 4.1.1 Remote Shell Upload Vulnerability

dotCMS is prone to a remote shell upload vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:dotcms:dotcms"; if...

Vanquish - Kali Linux based Enumeration Orchestrator

Vanquish is a Kali Linux based Enumeration Orchestrator built in Python. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases. The results of each phase are fed into the next phase to identify vulnerabilities that could be leveraged f...

Cb Defense Q3 2017 Release Future-Proofs Your Ransomware Defenses

We’re excited to announce the Cb Defense Q3 2017 release is here! Cb Defense has always been focused on bringing you the best possible prevention, built upon our unique streaming prevention platform, combined with our market-leading endpoint detection and response EDR capabilities. The Q3 2017...

Aerohive Networks HiveManager Remote Shell Upload

I. BACKGROUND Aerohive Networks HiveManager Classic Online NMS is a cloud-enabled enterprise-class management system for Aerohive networking products. HiveManager Classic Online offers simple policy creation, firmware upgrades, and centralized monitoring of thousands of Aerohive access points,...