CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

GithubExploit•added 2020/10/09 1:13 p.m.•47 views

Exploit for Code Injection in Nette Application

CVE-2020-15227 ============== DISCLAIMER! I take no responsibil...

9.8CVSS9.1AI score0.93793EPSS

Exploit DB•added 2020/09/28 12:0 a.m.•371 views

Mida eFramework 2.8.9 - Remote Code Execution

Exploit Title: Mida eFramework 2.8.9 - Remote Code Execution Google Dork: Server: Mida eFramework Date: 2020-08-27 Exploit Author: elbae Vendor Homepage: https://www.midasolutions.com/ Software Link: http://ova-efw.midasolutions.com/ Reference:...

10CVSS9.8AI score0.60975EPSS

Packet Storm•added 2020/09/28 12:0 a.m.•217 views

Mida eFramework 2.8.9 Remote Code Execution

10CVSS0.6AI score0.60975EPSS

Kitploit•added 2020/09/13 11:30 a.m.•49 views

HTTP-revshell - Powershell Reverse Shell Using HTTP/S Protocol With AMSI Bypass And Proxy Aware

HTTP-revshell is a tool focused on redteam exercises and pentesters. This tool provides a reverse connection through the http/s protocol. It use a covert channel to gain control over the victim machine through web requests and thus evade solutions such as IDS, IPS and AV. Help server.py unisessio...

7.3AI score

Exploits0References3

Gitee•added 2020/09/11 3:8 p.m.•3 views

Exploit for CVE-2015-1538

PoC exploit for CVE-2015-1538-1, Google Stagefright ‘stsc’ MP4 Atom Integer Overflow Remote Code Execution. The target product/service is Google Stagefright, a media library for Android. The vulnerability class/vector is Integer Overflow in the libstagefright MP4 'stsc' atom handling, leading to...

10CVSS7.6AI score0.89213EPSS

Exploits6

Github Security Blog•added 2020/09/04 2:58 p.m.•12 views

Malicious Package in sj-labc

All versions of sj-labc contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Github Security Blog•added 2020/09/03 11:28 p.m.•32 views

Malicious Package in superhappyfuntime

All versions of superhappyfuntime contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

3AI score

OSV•added 2020/09/03 11:28 p.m.•9 views

GHSA-6QGX-F452-7699 Malicious Package in superhappyfuntime

OSV•added 2020/09/03 11:27 p.m.•9 views

GHSA-R742-7J4H-HJR8 Malicious Package in arsenic-tabasco-cyborg-peanut-butter

All versions of arsenic-tabasco-cyborg-peanut-butter contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored...

Github Security Blog•added 2020/09/03 11:27 p.m.•25 views

Malicious Package in arsenic-tabasco-cyborg-peanut-butter

Github Security Blog•added 2020/09/03 11:26 p.m.•27 views

Malicious Package in sj-tw-abc

All versions of sj-tw-abc contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2020/09/03 11:26 p.m.•8 views

GHSA-4HFC-FV33-PH9P Malicious Package in sj-tw-abc

OSV•added 2020/09/03 11:25 p.m.•8 views

GHSA-692H-G37C-QV44 Malicious Package in sj-tw-sec

All versions of sj-tw-sec contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Github Security Blog•added 2020/09/03 11:25 p.m.•26 views

Malicious Package in sj-tw-sec

OSV•added 2020/09/03 11:24 p.m.•7 views

GHSA-RCV7-4W2M-GJ9V Malicious Package in sj-tw-test-security

All versions of sj-tw-test-security contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

Github Security Blog•added 2020/09/03 11:24 p.m.•28 views

Malicious Package in sj-tw-test-security

Github Security Blog•added 2020/09/03 11:23 p.m.•24 views

Malicious Package in owl-orchard-apple-sunshine

All versions of owl-orchard-apple-sunshine contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...