Lucene search
K

6 matches found

0day.today
0day.today
added 2021/11/17 12:0 a.m.538 views

SuiteCRM 7.11.18 - Remote Code Execution Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SuiteCRM Log File Remote Code Execution', 'Description' = %q This module exploits an input validation error on the log file extension parameter. ...

9CVSS8.7AI score0.64094EPSS
Exploits12
Packet Storm
Packet Storm
added 2021/11/17 12:0 a.m.648 views

SuiteCRM 7.11.18 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SuiteCRM Log File Remote Code Execution', 'Description' = %q This module exploits an input validation error on the log file extension parameter. ...

9CVSS8.6AI score0.64094EPSS
Exploits12
GithubExploit
GithubExploit
added 2021/11/11 4:34 a.m.1019 views

Exploit for Code Injection in Gitlab

CVE-2021-22205 GitLab CE/EE Preauth RCE using ExifTool This...

10CVSS9.3AI score0.99731EPSS
Exploits30
Packet Storm
Packet Storm
added 2021/08/17 12:0 a.m.601 views

Lucee Administrator imgProcess.cfm Arbitrary File Write

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Lucee Administrator imgProcess.cfm Arbitrary File Write', 'Description' = %q This module exploits an arbitrary file write in Lucee Administrator'...

9.8CVSS0.7AI score0.89189EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/02/15 12:0 a.m.182 views

Klog Server 2.4.1 Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Klog Server authenticate.php user Unauthenticated Command Injection', 'Description' = %q This module exploits an unauthenticated command injectio...

10CVSS0.1AI score0.87987EPSS
Exploits8
Metasploit
Metasploit
added 2019/02/03 5:38 a.m.62 views

Evince CBT File Command Injection

This module exploits a command injection vulnerability in Evince before version 3.24.1 when opening comic book .cbt files. Some file manager software, such as Nautilus and Atril, may allow automatic exploitation without user interaction due to thumbnailer preview functionality. Note that limited...

7.8CVSS0.3AI score0.50076EPSS
Exploits9
Rows per page
Query Builder