WordPress BBPress 2.5 CVE-2020-13693 - Privilege Escalation

WordPress BBPress plugin version 2.5 suffers from an unauthenticated privilege escalation vulnerability. Exploit Title: WordPress Plugin BBPress 2.5 - Unauthenticated Privilege Escalation Date: 2020-05-29 Exploit Author: Raphael Karger Software Link: https://codex.bbpress.org/releases/ Version:...

Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass

Crystal Shard http-protection version 0.2.0 suffers from an IP spoofing bypass vulnerability. Exploit Title : Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass Exploit Author : Halis Duraki @0xduraki Date : 2020-05-28 Product : http-protection Crystal Shard Product URI :...

PanaceaSoft - Shell Upload

Various PanaceaSoft products appear to suffer from a shell upload vulnerability. Exploit Title: PanaceaSoft products Arbitrary File Upload/RCE Google Dork: NA Date: 25/5/2020 Exploit Author: syfi Vendor Homepage: http://www.panacea-soft.com/ Software Link: http://www.panacea-soft.com/ Version:...

WordPress Multi-Scheduler 1.0.0 - Cross Site Request Forgery

WordPress Multi-Scheduler plugin version 1.0.0 suffers from a cross site request forgery vulnerability. Exploit Title: WordPress Plugin Multi-Scheduler 1.0.0 - Cross-Site Request Forgery Delete User Google Dork: N/A Date: 2020-05-21 Exploit Author: UnD3sc0n0c1d0 Vendor Homepage:...

Pi-Hole 4.3.2 DHCP MAC OS CVE-2020-8816 - Command Execution

This Metasploit module exploits a command execution in Pi-Hole versions 4.3.2... This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Pi-Hole DHCP MAC OS Command Execution', 'Description' = %q This...

QNAP QTS And Photo Station 6.0.3 - Remote Command Execution

QNAP QTS and Photo Station version 6.0.3 suffers from a remote command execution vulnerability. Exploit Title: QNAP QTS and Photo Station 6.0.3 - Remote Command Execution Exploit Author: Yunus YILDIRIM Th3Gundy Team: CT-Zer0 @CRYPTTECH - https://www.crypttech.com Date: 2020-05-28 Vendor Homepage:...

NOKIA VitalSuite SPM 2020 - SQL Injection

NOKIA VitalSuite SPM 2020 suffers from a remote SQL injection vulnerability. Exploit Title: NOKIA VitalSuite SPM 2020 - 'UserName' SQL Injection Exploit Author: Berk Dusunur Google Dork: N/A Type: Web App Date: 2020-05-28 Vendor Homepage: https://www.nokia.com Software Link:...

Pi-hole 4.4.0 CVE-2020-11108 - Remote Code Execution

Pi-hole version 4.4.0 suffers from a remote code execution vulnerability. Exploit Title: Pi-hole 4.4.0 - Remote Code Execution Authenticated Date: 2020-05-22 Exploit Author: Photubias Vendor Advisory: 1 https://github.com/pi-hole/AdminLTE Version: Pi-hole . Based and improved on:...

StreamRipper32 2.6 - Buffer Overflow

StreamRipper32 version 2.6 buffer overflow proof of concept exploit. Exploit Title: StreamRipper32 2.6 - Buffer Overflow PoC Date: 2020-05-14 Exploit Author: Andy Bowden Tested On: Win10 x64 Download Link: http://streamripper.sourceforge.net/sr32/StreamRipper3226.exe Vendor Page:...

WordPress Drag And Drop File Upload Contact Form 1.3.3.2 Shell Upload

WordPress Drag and Drop File Upload Contact Form plugin version 1.3.3.2 suffers from a remote shell upload vulnerability. Exploit Title: WordPress Plugin Drag and Drop File Upload Contact Form 1.3.3.2 - Remote Code Execution Date: 2020-05-11 Exploit Author: Austin Martin Google Dork:...

Joomla XCloner Backup 3.5.3 - Local File Disclosure

Joomla XCloner Backup version 3.5.3 suffers from a local file disclosure vulnerability. Exploit Title: Joomla XCloner Backup - Authenticated Local File Disclosure Date: 10.05.2020 Exploit Author: Mehmet Kelepçe / Gais Cyber Security Exploit-Db Author ID: 8763 Reference:...

Online Discussion Forum Site 1.0 - Remote Code Execution

Online Discussion Forum Site version 1.0 suffers from a remote code execution vulnerability. Exploit Title: Online Discussion Forum Site 1.0 - Remote Code Execution Google Dork: N/A Date: 2020-05-24 Exploit Author: Selim Enes 'Enesdex' Karaduman Vendor Homepage:...

OpenEMR - Remote Code Execution

OpenEMR versions prior to 5.0.1 suffer from a remote code execution vulnerability. Title: OpenEMR 5.0.1 - Remote Code Execution Exploit Author: Musyoka Ian Date: 2020-05-25 Title: OpenEMR 5.0.1 - Remote Code Execution Vendor Homepage: https://www.open-emr.org/ Software Link:...

GoldWave 5.70 - Buffer Overflow

GoldWave version 5.70 SEH unicode buffer overflow exploit. Exploit Title: GoldWave 5.70 – Buffer Overflow SEH Unicode Date: 2020-05-14 Exploit Author: Andy Bowden Vendor Homepage: https://www.goldwave.com/ Version: 5.70 Download Link: http://goldwave.com//downloads/gwave570.exe Tested on: Windows...

WordPress Form Maker 5.4.1 - SQL Injection

WordPress Form Maker plugin versions 5.4.1 and below suffer from a remote SQL injection vulnerability. Exploit Title: WordPress Plugin Form Maker 5.4.1 - 's' SQL Injection Authenticated Exploit Author: SunCSR Sun Cyber Security Research Date: 2020 - 5 - 22 Vender Homepage: https://help.10web.io/...

Synology DiskStation Manager smart.cgi - Remote Command Execution

This Metasploit module exploits a vulnerability found in Synology DiskStation Manager DSM versions prior to 5.2-5967-5... This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule \d+&minor=?\d+&build=?\d...

Druva inSync Windows Client 6.6.3 CVE-2020-5752 - Local Privilege Escalation

Druva inSync Windows Client version 6.6.3 suffers from a local privilege escalation vulnerability. Exploit Title: Druva inSync Windows Client 6.6.3 - Local Privilege Escalation Date: 2020-05-21 Exploit Author: Matteo Malvica Credits: Chris Lyne for previous version's exploit Vendor Homepage:...

Gym Management System 1.0 - Remote Code Execution

Gym Management System version 1.0 suffers from an unauthenticated remote code execution vulnerability. Exploit Title: Gym Management System v1.0 - Unauthenticated Remote Code Execution Exploit Author: Bobby Cooke Date: May 21th, 2020 Vendor Homepage: https://projectworlds.in/ Software Link:...

WebLogic Server CVE-2020-2555 - Remote Code Execution

his Metasploit module exploits a Java object deserialization vulnerability in multiple versions of WebLogic. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WebLogic Server Deserialization RCE ...

OpenEDX Ironwood 2.5 CVE-2020-13144 - Remote Code Execution

OpenEDX platform Ironwood version 2.5 suffers from a remote code execution vulnerability. Exploit Title: OpenEDX platform Ironwood 2.5 - Remote Code Execution Google Dork: N/A Date: 2020-05-20 Exploit Author: Daniel Monzón stark0de Vendor Homepage: https://open.edx.org/ Software Link:...

PHP-Fusion 9.03.50 - Cross Site Scripting

PHP-Fusion version 9.03.50 has been found susceptible to additional methods of persistent cross site scripting. Exploit Title: PHPFusion 9.03.50 - Persistent Cross-Site Scripting Date: 2020-05-20 Exploit Author: coiffeur Vendor Homepage: https://www.php-fusion.co.uk/home.php Software Link:...