Lucene search
K

11967 matches found

Exploit DB
Exploit DB
added 2014/11/25 12:0 a.m.170 views

Linux Kernel 3.14.5 (CentOS 7 / RHEL) - 'libfutex' Local Privilege Escalation

/ CVE-2014-3153 exploit for RHEL/CentOS 7.0.1406 By Kaiqu Chen [email protected] Based on libfutex and the expoilt for Android by GeoHot. Usage: $gcc exploit.c -o exploit -lpthread $./exploit / include include include include include include include include include include include include include...

7.8CVSS7.5AI score0.37233EPSS
Exploits15
Exploit DB
Exploit DB
added 2014/11/24 12:0 a.m.20 views

WordPress Plugin wpDataTables 1.5.3 - Arbitrary File Upload

!/usr/bin/python Exploit Name: Wordpress wpDataTables 1.5.3 and below Unauthenticated Shell Upload Vulnerability Vulnerability discovered by Claudio Viviani Date : 2014-11-22 Exploit written by Claudio Viviani Video Demo: https://www.youtube.com/watch?v=44m4VNpeEVc...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2014/11/20 4:2 p.m.19 views

SMTP NTLM Domain Extraction

Extract the Windows domain name from an SMTP NTLM challenge. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMTP NTLM Domain Extraction', 'Description' = 'Extract the Windows domain name from ...

7.3AI score
Exploits0
seebug.org
seebug.org
added 2014/11/13 12:0 a.m.62 views

Linux Local Root => 2.6.39 (32-bit & 64-bit) - Mempodipper #2

No description provided by source. /Exploit code is here: http://git.zx2c4.com/CVE-2012-0056/plain/mempodipper.c Blog post about it is here: http://blog.zx2c4.com/749 / / Mempodipper by zx2c4 Linux Local Root Exploit Rather than put my write up here, per usual, this time I've put it in a rather...

6.9CVSS7.9AI score0.10904EPSS
Exploits11
seebug.org
seebug.org
added 2014/11/13 12:0 a.m.39 views

MS Office 2007 and 2010 - OLE Arbitrary Command Execution

No description provided by source. Full exploit: http://www.exploit-db.com/sploits/35216.rar CVE-2014-6352 OLE Remote Code Execution Author Abhishek Lyall - abhilyallatgmaildotcom, infoataslitsecuritydotcom Advanced Hacking Trainings - http://training.aslitsecurity.com Web -...

9.3CVSS7.6AI score0.77553EPSS
Exploits11
ICS
ICS
added 2014/11/12 12:0 p.m.26 views

Bash Command Injection Vulnerability (Supplement)

OVERVIEW This advisory supplement is to accompany the NCCIC/ICS-CERT advisory titled ICSA-14-269-01 Bash Command Injection Vulnerability and all following updates that were originally published September 26, 2014, on the ICS-CERT web site and posted to the US-CERT secure Portal library. Please...

7.4AI score
Exploits0References22
Fedora
Fedora
added 2014/11/10 6:5 a.m.38 views

[SECURITY] Fedora 21 Update: slapi-nis-0.54.1-1.fc21

This package provides two plugins for Red Hat and 389 Directory Server. The NIS Server plugin allows the directory server to act as a NIS server for clients, dynamically generating and updating NIS maps according to its configuration and the contents of the DIT, and serving the results to clients...

3.5CVSS6.4AI score0.01787EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/11/10 12:0 a.m.2 views

PHPNuke friendphp Module Remote SQL Injection

An SQL injection vulnerability has been reported in PHPNuke Friend.php Module. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

4.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/11/10 12:0 a.m.3 views

Joomla Component com_rsfiles Directory traversal (CVE-2007-4504)

A directory traversal vulnerability has been reported in Joomla ComRsfiles. Successful exploitation of this vulnerability would allow a remote attacker to list directories on the affected system...

5CVSS5.3AI score0.09491EPSS
Exploits0
exploitpack
exploitpack
added 2014/11/10 12:0 a.m.28 views

PHP-Fusion 7.02.07 - SQL Injection

PHP-Fusion 7.02.07 - SQL Injection Exploit Title: PHP-Fusion 7.02.07 SQL Injection Date: 06/11/2014 Exploit Author: Mauricio Correa Vendor Homepage: www.php-fusion.co.uk Software Link: http://ufpr.dl.sourceforge.net/project/php-fusion/PHP-Fusion%20Archives/7.x/ PHP-Fusion-7.02.07.zip Version:...

7.5CVSS0.2AI score0.03255EPSS
Exploits6
myhack58
myhack58
added 2014/11/10 12:0 a.m.14 views

clickjacking vulnerability of the mining and use-vulnerability and early warning-the black bar safety net

0x00 introduction 1 talking about clickjacking, a lot of people actually don't know what is. Compared toXSS, clickjacking becomes more mysterious, the clouds vulnerability database inside the related vulnerability is also less than 1 0 bar. 2 sleepy Dragon before hair through a clickjacking of...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/11/03 12:0 a.m.20 views

Drupal 7.0 7.31 - Drupalgeddon SQL Injection (Remote Code Execution)

Drupal 7.0 7.31 - Drupalgeddon SQL Injection Remote Code Execution // and Stefan Esser //· include 'common.inc'; include 'password.inc'; // set values $userid = 0; $username = ''; $codeinject = 'phpinfo;sessiondestroy;die"";'; $url = isset$argv1?$argv1:''; $code = isset$argv2?$argv2:''; if $url =...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2014/11/03 12:0 a.m.72 views

phpfusion (Search Page) Denial of Service Vulnerability

phpfusion All version suffers from a denial of service vulnerability. !/usr/bin/perl @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2014/11/03 12:0 a.m.177 views

Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Remote Code Execution)

// and Stefan Esser //· include 'common.inc'; include 'password.inc'; // set values $userid = 0; $username = ''; $codeinject = 'phpinfo;sessiondestroy;die"";'; $url = isset$argv1?$argv1:''; $code = isset$argv2?$argv2:''; if $url == '-h' echo "usage:\n"; echo $argv0.' $url $code|$file'."\n"; die; ...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2014/10/27 6:1 a.m.23 views

X7 Chat 2.0.5 lib/message.php preg_replace() PHP Code Execution

This module exploits a post-auth vulnerability found in X7 Chat versions 2.0.0 up to 2.0.5.1. The vulnerable code exists on lib/message.php, which uses pregreplace function with the /e modifier. This allows a remote authenticated attacker to execute arbitrary PHP code in the remote machine. This...

6.5CVSS7.5AI score0.36826EPSS
Exploits2
Kitploit
Kitploit
added 2014/10/20 6:39 p.m.293 views

BlackArch Linux v2014.10.07 - Lightweight expansion to Arch Linux for pentesters and security researchers

BlackArch Linux ISOs including more than 1000 tools and lot's of improvements. Also, armv6h and armv7h repositories are filled with more than 1050 tools. A short ChangeLog: - tool fix: beef - fixed pam issues - added services and login.defs file - removed kde/openbox and i3-debug menu items...

8.1AI score
Exploits0References221
securityvulns
securityvulns
added 2014/10/15 12:0 a.m.26 views

VMware NSX and vCNS information disclosure

No description provided...

5CVSS1.3AI score0.0158EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.53 views

Amazon Linux AMI : php54 (ALAS-2014-367)

acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file. A denial of service flaw was found in the way the File Information fileinfo extension parsed certain Composite Document...

7.5CVSS7.7AI score0.30128EPSS
Exploits5References9
Cisco Threats
Cisco Threats
added 2014/10/06 2:56 p.m.37 views

Threat Outbreak Alert RuleID8337: Email Messages Distributing Malicious Software on December 11, 2014.

Medium Alert ID: 35945 First Published: 2014 October 6 14:56 GMT Last Updated: 2014 December 12 13:40 GMT Version: 44 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID8337K...

0.5AI score
Exploits0
Cvelist
Cvelist
added 2014/10/05 1:0 a.m.35 views

CVE-2013-2644

...

Exploits1
Rows per page
Query Builder