1794 matches found
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft
PoC for the ThemeBleed CVE-2023-38146 exploit Windows 11 Them...
Exploit for CVE-2023-38646
CVE-2023-38646-exploit "This vulnerability, designated as CVE-...
Exploit for CVE-2023-38646
CVE-2023-38646-exploit "This vulnerability, designated as CVE-...
Exploit for CVE-2023-38646
Metabase Pre-Auth RCE CVE-2023-38646 POC This is a script w...
Exploit for CVE-2023-38646
CVE-2023-38646 The original script originates from securezer...
Free Download Manager Site Compromised to Distribute Linux Malware to Users for 3+ Years
A download manager site served Linux users malware that stealthily stole passwords and other sensitive information for more than three years as part of a supply chain attack. The modus operandi entailed establishing a reverse shell to an actor-controlled server and installing a Bash stealer on th...
Windows/x64 - PIC Null-Free TCP Reverse Shell Shellcode (476 Bytes)
import ctypes, struct import argparse from keystone import Exploit Title: Windows/x64 - PIC Null-Free TCP Reverse Shell Shellcode 476 Bytes Exploit Author: Senzee Date: 08/29/2023 Platform: Windows X64 Tested on: Windows 11 Home/Windows Server 2022 Standard/Windows Server 2019 Datacenter OS Versi...
HTTP-Shell - MultiPlatform HTTP Reverse Shell
HTTP-Shell is Multiplatform Reverse Shell. This tool helps you to obtain a shell-like interface on a reverse connection over HTTP. Unlike other reverse shells, the main goal of the tool is to use it in conjunction with Microsoft Dev Tunnels, in order to get a connection as close as possible to a...
Exploit for Code Injection in Apache Commons_Text
Quickstart bash sudo apt install golang To run like...
Exploit for Code Injection in Apache Commons_Text
Quickstart bash sudo apt install golang To run like...
Exploit for Code Injection in Apache Commons_Text
Quickstart bash sudo apt install golang To run like...
Wp2Fac - OS Command Injection
Exploit Title: Wp2Fac v1.0 - OS Command Injection Date: 2023-08-27 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://github.com/metinyesil/wp2fac Tested on: Kali Linux & Windows 11 CVE: N/A import requests def sendpostrequesthost, revshell: url = f'http://host/send.php' headers = 'User-Agent':...
Mirai Botnet Variant 'Pandora' Hijacks Android TVs for Cyberattacks
A Mirai botnet variant called Pandora has been observed infiltrating inexpensive Android-based TV sets and TV boxes and using them as part of a botnet to perform distributed denial-of-service DDoS attacks. Doctor Web said the compromises are likely to occur either during malicious firmware update...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
CVE-2023-38831 En este caso, os comparto los archivos necesar...
GOM Player 2.3.90.5360 MITM / Remote Code Execution Exploit
GOM Player version 2.3.90.5360 man-in-the-middle proof of concept remote code execution exploit. Exploit Title: GOM Player 2.3.90.5360 - Remote Code Execution RCE Author: M. Akil Gündoğan Contact: https://twitter.com/akilgundogan Vendor Homepage: https://www.gomlab.com/gomplayer-media-player/...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
CVE-2023-38831-winrar-expoit-simple-Poc Very important I h...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
CVE-2023-38831-winrar-expoit-simple-Poc Very important I h...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
OBTENCIÓN DE REVERSE SHELL EXPLOTANDO LA VULNERABILIDAD CVE-20...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
OBTENCIÓN DE REVERSE SHELL EXPLOTANDO LA VULNERABILIDAD CVE-20...
Exploit for Improper Privilege Management in Openwebanalytics Open_Web_Analytics
CVE-2022-24637 Open Web Analytics 1.7.3 - Remote Code Executio...