CVE-2017-20216

FLIR Thermal Camera PT-Series firmware version 8.0.0.64 contains multiple unauthenticated remote command injection vulnerabilities in the controllerFlirSystem.php script. Attackers can execute arbitrary system commands as root by exploiting unsanitized POST parameters in the execFlirSystem functi...

EUVD-2017-3913

Malware in sbrugna...

EUVD-2023-34314

Malicious code in bioql PyPI...

EUVD-2023-28526

Malicious code in bioql PyPI...

EUVD-2023-34064

Malicious code in bioql PyPI...

CVE-2021-38753

An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app...

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

CVE-2024-21762FortiNetPoC Proof-of-concept scanner targeting...

Exploit for Expression Language Injection in Apache Struts

Struts2S2-062CVE-2021-31805 Apache Struts2 S2-062 remote c...

KUKA KR C4

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: KUKA Equipment: KR C4 Vulnerabilities: Use of Hard-Coded Credentials 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in unauthorized access to sensitive information and...

MGASA-2017-0032 Updated python-pycrypto packages fix security vulnerabilities

This is a security fix for a possible Buffer overflow. AES.new with invalid parameter crashes python. The IV parameter is currently ignored when initializing a cipher in ECB or CTR mode. There was a bug in pycrypto which could be exploited to get a shell...

Nagios XI < 5.2.7 命令执行漏洞

参考来源：GNUSEC 多个文件存在命令注入漏洞 POC URL = GET /nagiosxi/includes/components/nagiosim/nagiosim.php?mode=update&token=&incidentid=&title=&status= PARAMETER = title POC PAYLOAD = title'; touch /tmp/FILE; echo ' URL = GET /nagiosxi/includes/components/perfdata/graphApi.php?host=&start=&end= PARAMETERS =...

Microsoft SQL Server Escalate Db_Owner

This module can be used to escalate privileges to sysadmin if the user has the dbowner role in a trustworthy database owned by a sysadmin user. Once the user has the sysadmin role the msssqlpayload module can be used to obtain a shell on the system. This module requires Metasploit:...

ecshop csrf getshell 0day-vulnerability warning-the black bar safety net

0x0 background getshell In submitting an order the place to see the code to call the getmailtemplateget remindofneworder the contents of the template, and then placed into the fetch is performed, if you can control remindofneworder template of content that can make ecshop to perform our command...

discuz! X1.0 - X1.5 Blind SQL injection exploit & Get Shell

Exploit for php platform in category web applications Exploit Title: discuz! X1.0 - X1.5 Blind SQL injection exploit & Get Shell Date: 06-04-2012 Author: Hacker-Fire Category:: webapps Google dork: Powered by Discuz Tested on: Windows 7 P0c : ? Php printr ' +...

Burning Board Lite 1.0.2 - Arbitrary File Upload

======================================================================================== | Title : Burning Board Lite 1.0.2 Upload Shell Vulnerability | Author : indoushka | email : [email protected] | Home : www.iqs3cur1ty.com | Script : Powered by Burning Board Lite 1.0.2 | Tested on: windo...

EEYE: Windows ANI File Parsing Buffer Overflow

Windows ANI File Parsing Buffer Overflow Systems Affected: Windows Me Windows 2000 Windows XP SP1 and earlier Windows 2003 Overview: eEye Digital Security has discovered a vulnerability in USER32.DLL's handling of Windows animated cursor .ani files that will allow a remote attacker to reliably...

technote.pl

Technote Inc. from Korea Command Excution Spawn bash style Shell with webserver uid This Script is currently under development use strict; use IO::Socket; my $host; my $port; my $command; my $url; my $pdf; my $url1; my $number; my $url2; my $shiz; my @results; my $probe; my @U; $U1 =...

linux/x86 unix/SPARC execve /bin/sh 80 bytes

Exploit for multiple platform in category shellcode ============================================ linux/x86 unix/SPARC execve /bin/sh 80 bytes ============================================ / Linux/x86 and Unix/Sparc execve of /bin/sh by dymitri!!! / include char wcode=...