2126 matches found
File Upload Vulnerability in Disk Enterprise LCMS
Pan Enterprise LCMS is a lightweight PHP development framework . A file upload vulnerability exists in PanEnterprise LCMS. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
Emlog 代码问题漏洞
Emlog is a PHP and MySQL based CMS builder by the individual developer of Emlog. A security vulnerability exists in emlog v6.0.0, which allows users to upload webshell via zip plugin module...
Exploit for Cross-site Scripting in Get-Simple Getsimple_Cms
CVE-2020-23839 | GetSimple CMS v3.3.16 - Reflected XSS to RCE...
GetSimple CMS 3.3.16 - Reflected XSS to RCE Exploit
Exploit Title: GetSimple CMS 3.3.16 - Reflected XSS to RCE Exploit Author: Bobby Cooke boku Discovery Credits: Bobby Cooke boku & Adeeb Shah @hyd3sec CVE ID: CVE-2020-23839 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23839 Vendor Homepage: http://get-simple.info Software Link:...
GetSimple CMS 3.3.16 Cross Site Scripting / Shell Upload
Exploit Title: GetSimple CMS 3.3.16 - Reflected XSS to RCE Exploit Author: Bobby Cooke boku Discovery Credits: Bobby Cooke boku & Adeeb Shah @hyd3sec Date: March 29th, 2021 CVE ID: CVE-2020-23839 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23839 Vendor Homepage: http://get-simple.in...
GetSimple CMS 3.3.16 - Persistent Cross-Site Scripting
Exploit Title: GetSimple CMS 3.3.16 - Reflected XSS to RCE Exploit Author: Bobby Cooke boku Discovery Credits: Bobby Cooke boku & Adeeb Shah @hyd3sec Date: March 29th, 2021 CVE ID: CVE-2020-23839 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23839 Vendor Homepage: http://get-simple.in...
File Upload Vulnerability in UCMS Backend
UCMS is a simple open source content management system. A file upload vulnerability exists in the UCMS backend. An attacker can exploit the vulnerability to upload webshell and gain server privileges...
Exploit for Server-Side Request Forgery in Microsoft
proxylogon Proof-of-concept exploit for CVE-2021-26855 and CV...
ProxyLogon - PoC Exploit for Microsoft Exchange
PoC Exploit for Microsoft Exchange Launche Original PoC: https://github.com/testanull How to use: python proxylogon.py Example: python proxylogon.py primary [email protected] If successful you will be dropped into a webshell. exit or quit to escape from the webshell or ctrl+c By default, it...
File upload vulnerability in We7 CMS (CNVD-2021-24741)
We7 CMS is a domestic asp.net-based at the same time with open source and open plug-in CMS system. A file upload vulnerability exists in We7 CMS. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
File Upload Vulnerability in NGFW of Netcom Next Generation Firewall (CNVD-2021-24752)
Netcom Next Generation Firewall NGFW is an application layer firewall launched by Netcom Technology that can comprehensively deal with network threats. A file upload vulnerability exists in NGFW. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
File Upload Vulnerability in Seven Bears Library System
Seven bears library system is a similar to Baidu library online document preview, selling system. A file upload vulnerability exists in the Seven Bears Library System. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
Arbitrary File Upload Vulnerability in Website Management System of Hangzhou Boce Network Technology Co.
Hangzhou Bocai Network Technology Co., Ltd. provides comprehensive digital innovation services. An arbitrary file upload vulnerability exists in the website management system login of Hangzhou Boce Network Technology Co. An attacker could use this vulnerability to upload a webshell and gain serve...
File Upload Vulnerability in NS-NGFW Backend of Netcom Next-Generation Firewalls
hereinafter referred to as Netcom was founded in 2004, is specialized in providing operators, finance, government, education, health care, enterprises, hotels, export integrated application gateway. A file upload vulnerability exists in the background of NS-NGFW. Attackers can utilize the...
File Upload Vulnerability in NGFW of Netcom NGFW
Netcom Next Generation Firewall NGFW is an application layer firewall launched by Netcom Technology that can comprehensively deal with network threats. A file upload vulnerability exists in NGFW. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
File Upload Vulnerability in NGFW of Netcom Next Generation Firewall (CNVD-2021-24366)
Netcom Next Generation Firewall NGFW is an application layer firewall launched by Netcom Technology that can comprehensively deal with network threats. A file upload vulnerability exists in NGFW. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
VMware vCenter Server File Upload / Remote Code Execution Exploit
This Metasploit module exploits an unauthenticated OVA file upload and path traversal in VMware vCenter Server to write a JSP payload to a web-accessible directory. Fixed versions are 6.5 Update 3n, 6.7 Update 3l, and 7.0 Update 1c. Note that later vulnerable versions of the Linux appliance aren'...
File upload vulnerability exists in UCMS (CNVD-2021-21601)
UCMS is a content management system written in PHP. There is a file upload vulnerability in the UCMS backend, which can be exploited by an attacker to upload arbitrary scripts to obtain a website webshell...
Exploit for Path Traversal in Microsoft
I will continue to add any new code or modify existing code ba...
Exploit for Path Traversal in Vmware Cloud_Foundation
cve-2021-21972 Usage Instructions p...