166 matches found
Specification non-compliance in JUMPI
Impact In evm crate 0.31.0, JUMPI opcode's condition is checked after the destination validity check. However, according to Geth and OpenEthereum, the condition check should happen before the destination validity check. Patches This is a high severity security advisory if you use evm crate for...
ham3d 1.1 Information Disclosure / Default Credentials
/ Exploit Title: ham3d Information Processing Script Local File Download & Default Password Vulnerability Exploit Author: Milad Hacking Vendor Homepage : http://www.ham3d.net/ Demo Script Link: http://wensoni.com Version : 1.1 Google Dork : inurl:fa/forgotpass.html Date: 2019-10-25 Tested on: Kal...
fileGPS - A Tool That Help You To Guess How Your Shell Was Renamed After The Server-Side Script Of The File Uploader Saved It
Introduction When you upload a shell on a web-server using a file upload functionality, usually the file get renamed in various ways in order to prevent direct access to the file, RCE and file overwrite. fileGPS is a tool that uses various techniques to find the new filename, after the server-sid...
X-NetStat Pro 5.63 - Local Buffer Overflow
X-NetStat Pro 5.63 - Local Buffer Overflow !/usr/bin/env python --------------------------------------------------------------------------------------------------------- Exploit: X-NetStat Pro 5.63 - Local Buffer Overflow EggHunter Date: 2019-03-23 Author: Peyman Forouzan Tested Against: Winxp SP...
X-NetStat Pro 5.63 Local Buffer Overflow
!/usr/bin/env python --------------------------------------------------------------------------------------------------------- Exploit: X-NetStat Pro 5.63 - Local Buffer Overflow EggHunter Date: 2019-03-23 Author: Peyman Forouzan Tested Against: Winxp SP2 32-64 bit - Win7 Enterprise SP1 32-64 bit...
IP-Tools 2.5 - 'Log to file' Local Buffer Overflow (SEH) (Egghunter)
!/usr/bin/env python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: IP-Tools 2.5 - Local Buffer OverflowEggHunter Date: 2019-02-06 Author: Juan Prescotto Tested Against: Win7 Pro SP1 64 bit Software...
IP-Tools 2.5 Local Buffer Overflow
!/usr/bin/env python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: IP-Tools 2.5 - Local Buffer OverflowEggHunter Date: 2019-02-06 Author: Juan Prescotto Tested Against: Win7 Pro SP1 64 bit Software...
Easy MPEG to DVD Burner 1.7.11 - Local Buffer Overflow (SEH) (DEP Bypass)
!/usr/bin/python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: Easy MPEG to DVD Burner 1.7.11 SEH + DEP Bypass Local Buffer Overflow Date: 2018-05-19 Author: Juan Prescotto Tested Against: Win7 Pro SP1...
Easy MPEG To DVD Burner 1.7.11 Buffer Overflow
!/usr/bin/python Exploit Title: Easy MPEG to DVD Burner 1.7.11 SEH Local Buffer Overflow Date: 2018-05-02 Exploit Author: Marwan Shamel Software Link: https://downloads.tomsguide.com/MPEG-Easy-Burner,0301-10418.html Version: 1.7.11 Tested on: Windows 7 Enterprise SP1 32 bit Special thanks to my...
LiMEaide - Tool to remotely dump RAM of a Linux client
LiMEaide is a python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local host. I hope that this will simplify Linux digital forensics in a remote environment. In order to use LiMEaide all you need to do is feed a remote Linu...
Easy MOV Converter 1.4.24 Buffer Overflow
!/usr/bin/python Exploit Title: Easy MOV Converter 1.4.24 - 'Enter User Name' Field Buffer Overflow SEH Date: 13-06-2017 Exploit Author: @abatchy17 -- www.abatchy.com Vulnerable Software: Easy MOV Converter Vendor Homepage: http://www.divxtodvd.net/ Version: 1.4.24 Software Link:...
Hassium CMS 0.10 Cross Site Scripting
=============================================================| |A ExploitA Title:A A HassiumA CMSA CrossA SiteA Scripting | |A ExploitA Author:A AshiyaneA DigitalA SecurityA Team | |A VendorA Homepage:A http://www.hassium.org/index.php | |A DownloadA LinkA :A...
Tomabo MP4 Player 3.11.6 - Local Stack Overflow (SEH)
Tomabo MP4 Player 3.11.6 - Local Stack Overflow SEH !/usr/bin/python Exploit Title: Tomabo MP4 Player 3.11.6 SEH Based Stack Overflow Exploit Author: @yokoacc, @nudragn, @runggareksya Vendor Homepage: http://www.tomabo.com/ Software Link: http://www.tomabo.com/mp4-player/download.html Vulnerable...
WebGUI 7.10.29 Cross Site Scripting
Exploit Title: WebGUI 7.10.29 stable version Cross site scripting vulnerability Software Link: http://www.webgui.org/download Author: SECUPENT Website:www.secupent.com Email: researchatsecupentdotcom Date: 17-1-2015 Version: 7.10.29. Previous version maybe vulnerable also. Vulnerable area:...
WordPress Frontend Uploader 0.9.2 Cross Site Scripting
Exploit Title: Wordpress Frontend Uploader Cross Site ScriptingXSS Software Link: https://wordpress.org/plugins/frontend-uploader/ Author: SECUPENT Website:www.secupent.com Email: researchatsecupentdotcom Date: 27-12-2014 Version: 0.9.2 Exploit :...
Free Article Submissions 1.0 - SQL Injection
Exploit Title: Free Article Submissions SQL Injection Vulnerability Google Dork: inurl:/category.php?id=22 "Affiliate Programs Portal" inurl:/category.php?id=2 "Arts & Entertainment" Date: 07/12/2014 Exploit Author: BarrabravaZ Vendor Homepage: http://www.articlesetup.com/ Software Link: download...
Make 3.81 - Heap Overflow PoC
Exploit for linux platform in category dos / poc =for comment Exploit Title: MAKE Heap Overflow - Pointer dereferencing POC Calloc- X86 X64 Date: 14.07.14 Exploit Author: HyP Vendor Homepage: http://www.gnu.org/software/make/ Software Link: http://ftp.gnu.org/gnu/make/ Version: Make 3.81 Tested o...
Make 3.81 - Heap Overflow PoC
No description provided by source. =for comment Exploit Title: MAKE Heap Overflow - Pointer dereferencing POC Calloc-X86 X64 Date: 14.07.14 Exploit Author: HyP Vendor Homepage: http://www.gnu.org/software/make/ Software Link: http://ftp.gnu.org/gnu/make/ Version: Make 3.81 Tested on: linux32,64...
Real player 14.0.2.633 - 0day Buffer overflow/DOS Exploit
No description provided by source. !/usr/bin/perl +Exploit Title: Real player 14.0.2.633 Buffer overflow/DOS Exploit +Software Link: www.soft32.com/download122615.html +Software: Real player +Version: 14.0.2.633 +Tested On: WIN-XP SP3 + Date : 31.03.2011 + Hour : 13:37 PM Similar Bug was found by...
Kietu? <= 4.0.0b2 (hit.php) Remote File Include Vulnerability
No description provided by source. ============================================================================================== Kietu? = v4.0.0b2z urlhit Remote File Inclusion Exploit =============================================================================================== Critical Level ...