7059 matches found
Exploit for OS Command Injection in Magnussolution Magnusbilling
Magnus Billing System v7 Exploit This Python script automates...
XMedia Recode 3.5.8.4 Command Injection
XMedia Recode version 3.5.8.4 suffers from a command injection vulnerability. Exploit Title: XMedia Recode v3.5.8.4 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 16.09.2023 Vendor Homepage: https://www.xmedia-recode.de Software Link: https://www.xmedia-recode.de/downloa...
ZesleCP 3.1.20 Privilege Escalation
ZesleCP version 3.1.20 remote privilege escalation exploit that leverages cron to achieve root level privileges. Exploit Title: ZesleCP v3.1.20 - Privilege Escalation Exploit Author: Ahmet Ümit BAYRAM Date: 09.11.2024 Vendor Homepage: https://zeslecp.com Tested on: Ubuntu 20.04 Privilege Escalati...
WinTr Scada 5.5.9 Command Injection
WinTr Scada version 5.5.9 suffers from a command injection vulnerability. Exploit Title: WinTr Scada v5.5.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 17.04.2024 Vendor Homepage: http://www.wintr.com.tr Software Link:...
Sam Spade 1.14 SEH Overflow / DLL Injection
Sam Spade version 1.14 SEH overflow exploit that leverages DLL injection. Exploit Title: Sam Spade 1.14 - SEH Overflow via Arbitrary DLL Injection Date: 14.03.2024 Software Link: https://www.majorgeeks.com/files/details/samspade.html Exploit Author: Ahmet Ümit BAYRAM Tested Version: 1.14 Tested o...
TextPad 9.3.0 Command Injection
TextPad version 9.3.0 suffers from a remote command injection vulnerability when it opens a batch file. Exploit Title: TextPad v9.3.0 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 17.09.2023 Vendor Homepage: https://www.textpad.com Software Link:...
[SECURITY] Fedora 42 Update: rizin-0.7.4-8.fc42
Rizin is a free and open-source Reverse Engineering framework, providing a complete binary analysis experience with features like Disassembler, Hexadecimal editor, Emulation, Binary inspection, Debugger, and more. Rizin is a fork of radare2 with a focus on usability, working features and co de...
Webmin 2.202 Remote Command Execution
Webmin version 2.202 remote command execution exploit that provides a reverse shell. ============================================================================================================================================= | Title : Webmin 2.202 Reverse Shell attack | | Author : indoushka | |...
DEBIAN-CVE-2024-58063
In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: fix memory leaks and invalid access at probe error path Deinitialize at reverse order when probe fails. When initswvars fails, rtldeinitcore should not be called, specially now that it destroys the rtlwq workqueue...
Ghostscript 9.21 Arbitrary Command Execution
Ghostscript version 9.21 exploit that leverages a flaw from 2017 to execute arbitrary commands and provides a reverse shell. ============================================================================================================================================= | Title : Ghostscript versions...
Wazuh 4.4.0 Remote Code Execution
Wazuh version 4.4.0 proof of concept remote code execution exploit with a reverse shell. ============================================================================================================================================= | Title : Wazuh v4.4.0 PHP Code Injection Vulnerability | | Author...
Linux Distros Unpatched Vulnerability : CVE-2024-27306
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. A XSS vulnerability exists on index pages for static file handling. This...
Linux Distros Unpatched Vulnerability : CVE-2022-2880
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could...
CVE-2024-55907
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
CVE-2024-55907
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
CVE-2024-55907
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
CVE-2024-55907 IBM Cognos Mobile information disclosure
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
CVE-2024-55907
CVE-2024-55907 affects IBM Cognos Analytics Mobile (iOS) version 1.1. The issue arises from weak code obfuscation, enabling an attacker to reverse engineer the codebase to learn about techniques, interfaces, class definitions, algorithms and functions used. IBM’s security bulletin confirms remedi...
CVE-2024-55907 IBM Cognos Mobile information disclosure
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
IBM Cognos Analytics Mobile 安全漏洞
IBM Cognos Analytics Mobile is an application from International Business Machines IBM, Inc. integrates reporting, modeling, analytics, dashboards, cases, and event management. A security vulnerability exists in IBM Cognos Analytics Mobile version 1.1, which stems from weak obfuscation and could...