16 matches found
Exploit for CVE-2026-46300
Security Research & Legal Disclaimer This repository is for educ...
Exploit for Incorrect Authorization in Pydio Cells
PoC for CVE-2023-32749 This is a quick and dirty PoC I wrote...
XenServer and Citrix Hypervisor Security Update for CVE-2023-46842, CVE-2024-2201 and CVE-2024-31142
Description of Problem Two issues have been identified that affect XenServer and Citrix Hypervisor; each issue may allow malicious unprivileged code in a guest VM to infer the contents of memory belonging to its own or other VMs on the same host. These issues have the following identifiers:...
Exploit for Improper Access Control in Joomla Joomla\!
Joomla! options Arguments - url: Root URL base...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963-Poc-Bearcules This is a POC for CVE-2022-229...
magicRecon - A Powerful Shell Script To Maximize The Recon And Data Collection Process Of An Objective And Finding Common Vulnerabilities
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats. The new version of MagicRecon has a large number of new too...
SecuSTATION SC-831 HD Camera Remote Configuration Disclosure
!/usr/bin/perl SecuSTATION SC-831 HD Camera Remote Configuration Disclosure Copyright 2020 c Todor Donev https://donev.eu/ Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that Todor Donev i...
ACTi ACM-5611 Video Camera Remote Command Execution
!/usr/bin/perl ACTi ACM-5611 Video Camera Remote Command Execution Exploit Copyright 2019 c Todor Donev Firmware Version = A1D-220-V3.08.08-AC Production ID = ACM5611-08G-X-00485 Factory Default Type = NTSC, Composite, Two Ways Audio 0x71 Company Name = ACTi Corporation WEB Site = www.acti.com...
Stretcher - Tool Designed To Help Identify Open Elasticsearch Servers That Are Exposing Sensitive Information
Stretcher is a tool to search for open elasticsearch servers. Usage: python stretcher.py --shodan key --action analyze --threads 0..100 --dork python stretcher.py --help / // / / // / \ / / / / / / / / / / / // / / / // // / / / / / //// //// //// Tool designed to help identify incorrectly...
Koadic - COM Command & Control Framework (JScript RAT)
Koadic, or COM Command & Control, is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire. The major difference is that Koadic does most of its operations using Windows Script Host a.k.a. JScript/VBScript, with compatibility in t...
Threat Outbreak Alert RuleID28481: Email Messages Distributing Malicious Software on March 27, 2017
Medium Alert ID: 53174 First Published: 2017 March 27 13:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID28481 may contain the following files: Name | Si...
Tenda ADSL22+ Modem D820R - DNS Change
Tenda ADSL22+ Modem D820R - DNS Change !/bin/bash Tenda ADSL2/2+ Modem D820R Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is...
Threat Outbreak Alert RuleID25339: Email Messages Distributing Malicious Software on September 30, 2016
Medium Alert ID: 49097 First Published: 2016 September 30 13:44 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID25339 may contain the following files: Name ...
Kaillera Multiple Clients Buffer Overflow Vulnerabilities
Exploit for windows platform in category remote exploits !/usr/bin/perl Exploit Title: Remote Buffer Overflows in Kaillera clients Date: 6/30/11 Author: sil3ntdre4m Software Link: Multiple: 1. Kaillera original client: An emulator to download with this client bundled with it is Project64K 0.13:...
New vulnerability in Xerox Fiery Webtools
Hello i am from portugal and i would like to report a new vulnerability in Xerox Fiery Webtools. The probleam is in /wt3/ summary.php?select= if you and ' you have the possibility to exploit this condition to inject SQL code. Already have contact the vendor best regards Bernardo Trigo Qualidade e...
Microsoft Windows - JPEG GDI+ BindReverseAdminFile Download
Microsoft Windows - JPEG GDI+ BindReverseAdminFile Download / Exploit Name: ============= JpegOfDeath.M.c v0.6.a All in one Bind/Reverse/Admin/FileDownload ============= Tweaked Exploit By M4Z3R For GSO All Credits & Greetings Go To: ========== FoToZ, Nick DeBaggis, MicroSoft, Anthony Rocha,...