Lucene search
K
ExploitdbMost viewed

47904 matches found

Exploit DB
Exploit DB
added 2021/05/21 12:0 a.m.754 views

Microsoft Exchange 2019 - Unauthenticated Email Download (Metasploit)

Exploit Title: Microsoft Exchange 2019 - Unauthenticated Email Download Metasploit Date: 2021-03-02 Exploit Author: RAMELLA Sébastien Vendor Homepage: https://microsoft.com Version: This vulnerability affects Exchange 2013 Versions 'Microsoft Exchange ProxyLogon Collector', 'Description' = %q Thi...

9.8CVSS9.5AI score0.99999EPSS
Exploits65
Exploit DB
Exploit DB
added 2020/11/24 12:0 a.m.754 views

OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting

Exploit Title: OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting Date: 24-11-2020 Exploit Author: Hemant Patidar HemantSolo Vendor Homepage: https://www.opencart.com/ Software Link: https://www.opencart.com/index.php?route=cms/download Version: 3.0.3.6 Tested on: Windows 10/Kali Linux CVE:...

4.8CVSS5.5AI score0.0169EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/05/18 12:0 a.m.751 views

Oracle Hospitality RES 3700 5.7 - Remote Code Execution

Exploit Title: Oracle Hospitality RES 3700 5.7 - Remote Code Execution Date: 2019-10-01 Exploit Author: Walid Faour Vendor Homepage: https://www.oracle.com/industries/food-beverage/products/res-3700/ Software Link: N/A Available to customers Version: \ \ MDSSYSUTILS \ TransferFile \ Session \ \ '...

9CVSS9.2AI score0.14457EPSS
Exploits4
Exploit DB
Exploit DB
added 2020/11/16 12:0 a.m.749 views

Cisco 7937G - DoS/Privilege Escalation

Exploit Title: Cisco 7937G 1-4-5-7 - DoS/Privilege Escalation Date: 2020-08-10 Exploit Author: Cody Martin Vendor Homepage: https://cisco.com Version: =SIP-1-4-5-7 Tested On: SIP-1-4-5-5, SIP-1-4-5-7 !/usr/bin/python import sys import getopt import requests import paramiko import socket import os...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/10/09 12:0 a.m.748 views

OrientDB 2.2.2 < 2.2.22 - Remote Code Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OrientDB 2.2.x Remote Code Execution', 'Description' = %q This module leverages a privilege escalation on OrientDB to execute unsandboxed OS...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/16 12:0 a.m.746 views

Water Billing System 1.0 - 'id' SQL Injection (Authenticated)

Exploit Title: Water Billing System 1.0 - 'id' SQL Injection Authenticated Date: 2020-11-14 Exploit Author: Mehmet Kelepçe / Gais Cyber Security Author ID: 8763 Vendor: https://www.sourcecodester.com/php/14560/water-billing-system-phpmysqli-full-source-code.html Version: 1.0 Tested on: Apache2 an...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/24 12:0 a.m.746 views

BoastMachine 3.1 - Arbitrary File Upload

:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : boastMachine v3.1 Remote File Upload Vulnerability Author: alnjm33 Software Link: http://boastology.com/pages/dload.php?id=bmachine-3.1.zip Software...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/10 12:0 a.m.745 views

PDF Complete 3.5.310.2002 - 'pdfsvc.exe' Unquoted Service Path

Exploit Title: PDF Complete 3.5.310.2002 - 'pdfsvc.exe' Unquoted Service Path Discovery by: Zaira Alquicira Discovery Date: 2020-12-10 Vendor Homepage: https://pdf-complete.informer.com/3.5/ Tested Version: 3.5.310.2002 Vulnerability Type: Unquoted Service Path Tested on OS: Windows 10 Pro x64 es...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/10/21 12:0 a.m.745 views

Stock Management System 1.0 - 'Categories Name' Persistent Cross-Site Scripting

Exploit Title: Stock Management System 1.0 - Persistent Cross-Site Scripting Categories Name Exploit Author: Adeeb Shah @hyd3sec Date: August 2, 2020 Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/14366/stock-management-system-php.html Version:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/05/28 12:0 a.m.744 views

PHPFusion 9.03.50 - Remote Code Execution

Exploit Title: PHPFusion 9.03.50 - Remote Code Execution Date: 20/05/2021 Exploit Author: g0ldm45k Vendor Homepage: https://www.php-fusion.co.uk/home.php Software Link: https://www.php-fusion.co.uk/infusions/downloads/downloads.php?catid=30&downloadid=606 Version: 9.03.50 Tested on: Docker + Debi...

9CVSS8.8AI score0.67289EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/03/08 12:0 a.m.742 views

Hotel and Lodge Management System 1.0 - Remote Code Execution (Unauthenticated)

Exploit Title: Hotel and Lodge Management System 1.0 - Remote Code Execution Unauthenticated Date: 07-03-2021 Exploit Author: Christian Vierschilling Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/13707/hotel-and-lodge-management-system.html...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2017/05/19 12:0 a.m.742 views

D-Link DIR-600M Wireless N 150 - Authentication Bypass

Exploit Title: D-Link DIR-600M Wireless N 150 Login Page Bypass Date: 19-05-2017 Software Link: http://www.dlink.co.in/products/?pid=DIR-600M Exploit Author: Touhid M.Shaikh Vendor : www.dlink.com Contact : http://twitter.com/touhidshaikh22 Version: Hardware version: C1 Firmware version: 3.04...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/11/17 12:0 a.m.741 views

Wordpress Plugin Smart Product Review 1.0.4 - Arbitrary File Upload

Exploit Title: Wordpress Plugin Smart Product Review 1.0.4 - Arbitrary File Upload Google Dork: inurl: /wp-content/plugins/smart-product-review/ Date: 16/11/2021 Exploit Author: Keyvan Hardani Vendor Homepage: https://demo.codeflist.com/wordpress-plugins/smart-product-review/ Version: = 1.0.4...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/07/13 12:0 a.m.741 views

Apache Tomcat 9.0.0.M1 - Cross-Site Scripting (XSS)

Exploit Title: Apache Tomcat 9.0.0.M1 - Cross-Site Scripting XSS Date: 05/21/2019 Exploit Author: Central InfoSec Version: Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39, and 7.0.0 to 7.0.93 CVE : CVE-2019-0221 Requirements: SSI support must be enabled within Apache Tomcat. SSI support is no...

6.1CVSS7AI score0.45571EPSS
Exploits3
Exploit DB
Exploit DB
added 2021/04/23 12:0 a.m.739 views

GetSimple CMS My SMTP Contact Plugin 1.1.2 - Persistent Cross-Site Scripting

Exploit Title: GetSimple CMS My SMTP Contact Plugin 1.1.2 - CSRF to Stored XSS to RCE Exploit Author: Bobby Cooke boku Date: 22/04/2021 Vendor Homepage: http://get-simple.info & Software Link: http://get-simple.info/download/ Version: Exploit = v1.1.1 | Stored XSS = v1.1.2 Tested against Server...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/10/06 12:0 a.m.738 views

Atlassian Jira Server Data Center 8.16.0 - Arbitrary File Read

Exploit Title: Atlassian Jira Server Data Center 8.16.0 - Arbitrary File Read Date: 2021-10-05 Exploit Author: Mayank Deshmukh Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/jira/download/data-center Version: versions 8.5.14, 8.6.0 ≤ version 8.13.6,...

5.3CVSS5.7AI score0.99999EPSS
Exploits6
Exploit DB
Exploit DB
added 2021/04/07 12:0 a.m.738 views

Atlassian Jira Service Desk 4.9.1 - Unrestricted File Upload to XSS

Exploit Title: Atlassian Jira Service Desk 4.9.1 - Unrestricted File Upload to XSS Date: 07 Mar 2020 Exploit Author: Captainhook Vendor Homepage: https://www.atlassian.com/ Version: 4.10.0 Tested on: All OS CVE: CVE-2020-14166 Summary: The /servicedesk/customer/portals resource in Jira Service De...

4.8CVSS5.2AI score0.0194EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/07/22 12:0 a.m.737 views

Sophos VPN Web Panel 2020 - Denial of Service (Poc)

Exploit Title: Sophos VPN Web Panel 2020 - Denial of Service Poc Date: 2020-06-17 Exploit Author: Berk KIRAS Vendor Homepage: https://www.sophos.com/ Version:2020 Web Panel Tested on: Apache Berk KIRAS PwC - Cyber Security Specialist Sophos VPN Web Portal Denial of Service Vulnerability System...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/02 12:0 a.m.736 views

Monitorr 1.7.6m - Remote Code Execution (Unauthenticated)

!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Remote Code Execution Unauthenticated Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...

9.8AI score
Exploits0
Exploit DB
Exploit DB
added 2024/06/14 12:0 a.m.735 views

PHP < 8.3.8 - Remote Code Execution (Unauthenticated) (Windows)

Exploit Title: PHP Windows Remote Code Execution Unauthenticated Exploit Author: Yesith Alvarez Vendor Homepage: https://www.php.net/downloads.php Version: PHP 8.3, ',...

9.8CVSS9.9AI score0.99987EPSS
Exploits64
Exploit DB
Exploit DB
added 2020/11/20 12:0 a.m.735 views

Boxoft Convert Master 1.3.0 - 'wav' SEH Local Exploit

Exploit Title: Boxoft Convert Master 1.3.0 - 'wav' SEH Local Exploit Date: 17.09.2020 Vendor Homepage: http://www.boxoft.com/ Software Link: http://www.boxoft.com/convert-master/setupboxoft-conver=t-master.exe Exploit Author: Achilles Tested Version: 1.3.0 Tested on: Windows 7 x64 1.- Run python...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.735 views

Apple iOS 10.2 (14C92) - Remote Code Execution

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1317c3 The exploit achieves R/W access to the host's physical memory. This exploit has been tested on the iPhone 7, iOS 10.2 14C92. To run the exploit against different devices or versions, the symbols must be adjusted. The attache...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/03/26 12:0 a.m.734 views

'customhs_js_content' - 'customhs_js_content' Cross-Site Request Forgery

Exploit Title: GetSimple CMS Custom JS Plugin 0.1 - 'customhsjscontent' Cross-Site Request Forgery Exploit Author: Abhishek Joshi Date: March 25, 2021 Vendor Homepage: http://get-simple.info/extend/plugin/custom-js/1267 / http://get-simple.info/download Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/06/16 12:0 a.m.733 views

Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation

/ Exploit Title: ofs.c - overlayfs local root in ubuntu Date: 2015-06-15 Exploit Author: rebel Version: Ubuntu 12.04, 14.04, 14.10, 15.04 Kernels before 2015-06-15 Tested on: Ubuntu 12.04, 14.04, 14.10, 15.04 CVE : CVE-2015-1328...

7.8CVSS7.2AI score0.37679EPSS
Exploits22
Exploit DB
Exploit DB
added 2014/10/08 12:0 a.m.733 views

OpenSSH < 6.6 SFTP (x64) - Command Execution

define GNUSOURCE // THIS PROGRAM IS NOT DESIGNED TO BE SAFE AGAINST VICTIM MACHINES THAT // TRY TO ATTACK BACK, THE CODE IS SLOPPY! // In other words, please don't use this against other people's machines. include include include include include include include include include define mina,b ab?a:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/07/23 12:0 a.m.732 views

Microsoft SharePoint Server 2019 - Remote Code Execution (2)

Exploit Title: Microsoft SharePoint Server 2019 - Remote Code Execution 2 Google Dork: inurl:quicklinks.aspx Date: 2020-08-14 Exploit Author: West Shepherd Vendor Homepage: https://www.microsoft.com Version: SharePoint Enterprise Server 2013 Service Pack 1, SharePoint Enterprise Server 2016 ,...

7.8CVSS8AI score0.94243EPSS
Exploits10
Exploit DB
Exploit DB
added 2017/03/15 12:0 a.m.731 views

IBM WebSphere - RCE Java Deserialization (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "IBM WebSphere RCE Java Deserialization Vulnerability", 'Description' = %q This module exploits a vulnerability in IBM's WebSphe...

10CVSS7.4AI score0.97655EPSS
Exploits10
Exploit DB
Exploit DB
added 2020/09/11 12:0 a.m.730 views

VTENEXT 19 CE - Remote Code Execution

!/usr/bin/python3 Exploit Title: VTENEXT 19 CE - Remote Code Execution Google Dork: n/a Date: 2020/09/09 Exploit Author: Marco Ruela Vendor Homepage: https://www.vtenext.com/en/ Software Link: Vendor removed vulnerable version from sourceforge.net Version: 19 CE Tested on: Ubuntu 16.04 CVE : N/A...

8.8CVSS7.5AI score0.02883EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/04/22 12:0 a.m.730 views

Edimax EW-7438RPn - Cross-Site Request Forgery (MAC Filtering)

Exploit Title: Edimax EW-7438RPn - Cross-Site Request Forgery MAC Filtering Date: 2020-04-21 Exploit Author: Besim ALTINOK Vendor Homepage: https://www.edimax.com/edimax/merchandise/merchandisedetail/data/edimax/global/wi-firangeextendersn300/ew-7438rpnmini/ Version:1.13 Tested on: Edimax...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/02 12:0 a.m.729 views

Monitorr 1.7.6m - Authorization Bypass

!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...

9.8AI score
Exploits0
Exploit DB
Exploit DB
added 2020/10/08 12:0 a.m.729 views

SEO Panel 4.6.0 - Remote Code Execution (1)

Exploit Title: SEO Panel 4.6.0 - Remote Code Execution Google Dork: N/A Date: 2020-10-03 Exploit Author: Kiko Andreu kikoas1995 & Daniel Monzón stark0de Vendor Homepage: https://seopanel.org/ Software Link: https://www.seopanel.org/spdownload/4.6.0 Version: 4.6.0 Tested on: Kali Linux x64 5.4.0 C...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/07/17 12:0 a.m.729 views

Sonar Qube 8.3.1 - 'SonarQube Service' Unquoted Service Path

Title: Sonar Qube 8.3.1 - 'SonarQube Service' Unquoted Service Path Author: Velayutham Selvaraj Date: 2020-06-03 Vendor Homepage: https://www.sonarqube.org Software Link: https://www.sonarqube.org/downloads/ Version : 8.3.1 Tested on: Windows 10 64bitEN About Unquoted Service Path :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/11 12:0 a.m.728 views

Courier Management System 1.0 - 'ref_no' SQL Injection

Exploit Title: Courier Management System 1.0 - 'refno' SQL Injection Exploit Author: Zhaiyi Zeo Date: 2020-12-11 Vendor Homepage: https://www.sourcecodester.com/php/14615/task-management-system-using-phpmysqli-source-code.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/08/01 12:0 a.m.727 views

Webmin 1.996 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: Webmin 1.996 - Remote Code Execution RCE Authenticated Date: 2022-07-25 Exploit Author: Emir Polat Technical analysis: https://medium.com/@emirpolat/cve-2022-36446-webmin-1-997-7a9225af3165 Vendor Homepage: https://www.webmin.com/ Software Link: https://www.webmin.com/download.html...

9.8CVSS9.6AI score0.96049EPSS
Exploits8
Exploit DB
Exploit DB
added 2020/10/07 12:0 a.m.727 views

BACnet Test Server 1.01 - Remote Denial of Service (PoC)

Title: BACnet Test Server 1.01 - Remote Denial of Service PoC Date: 2020-10-07 Author: LiquidWorm Vendor: https://www.bac-test.com Product link: https://sourceforge.com/projects/bacnetserver CVE: N/A !/usr/bin/perl BACnet Test Server 1.01 Remote Denial of Service Exploit Vendor: BACnet...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2022/07/01 12:0 a.m.726 views

WiFi Mouse 1.7.8.5 - Remote Code Execution(v2)

Exploit Title: WiFi Mouse 1.7.8.5 - Remote Code Execution Date: 25-02-2021 Author: H4rk3nz0 Vendor Homepage: http://necta.us/ Software Link: http://wifimouse.necta.us/download Version: 1.7.8.5 Tested on: Windows Enterprise Build 17763 ​ Python 3 port done by RedHatAugust Original exploit:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/04/26 12:0 a.m.726 views

Hasura GraphQL 1.3.3 - Remote Code Execution

Exploit Title: Hasura GraphQL 1.3.3 - Remote Code Execution Software: Hasura GraphQL Software Link: https://github.com/hasura/graphql-engine Version: 1.3.3 Exploit Author: Dolev Farhi Date: 4/23/2021 Tested on: Ubuntu import requests import sys HASURASCHEME = 'http' HASURAHOST = '192.34.57.144'...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/13 12:0 a.m.724 views

OpenCart Theme Journal 3.1.0 - Sensitive Data Exposure

Exploit Title: OpenCart Theme Journal 3.1.0 - Sensitive Data Exposure Date: 11-06-2020 Vendor Homepage: https://www.journal-theme.com/ Vendor Changelog: https://docs.journal-theme.com/changelog Exploit Author: Jinson Varghese Behanan @JinsonCyberSec Author Advisory:...

7.5CVSS7.7AI score0.04689EPSS
Exploits1
Exploit DB
Exploit DB
added 2020/09/10 12:0 a.m.724 views

ZTE Router F602W - Captcha Bypass

Exploit Title: ZTE Router F602W - Captcha Bypass Exploit Author: Hritik Vijay @MrHritik Vendor Homepage: https://zte.com.cn Reported: 2019-06-14 Version: F6x2W V6.0.10P2T2 Version: F6x2W V6.0.10P2T5 Tested on: F602W CVE: CVE-2020-6862 Background ----------- Captcha is used to make sure the form i...

5.3CVSS5.4AI score0.06306EPSS
Exploits3
Exploit DB
Exploit DB
added 2013/11/19 12:0 a.m.724 views

Nginx 1.1.17 - URI Processing SecURIty Bypass

source: https://www.securityfocus.com/bid/63814/info nginx is prone to a remote security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. nginx 0.8.41 through 1.5.6 are vulnerable. The following example data is...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/24 12:0 a.m.723 views

TP-Link TL-WR841N - Command Injection

Exploit Title: TP-Link TL-WR841N - Command Injection Date: 2020-12-13 Exploit Author: Koh You Liang Vendor Homepage: https://www.tp-link.com/ Software Link: https://static.tp-link.com/TL-WR841NJPV13161028.zip Version: TL-WR841N 0.9.1 4.0 Tested on: Windows 10 CVE : CVE-2020-35576 import requests...

9CVSS9.1AI score0.42285EPSS
Exploits1
Exploit DB
Exploit DB
added 2020/12/11 12:0 a.m.723 views

Dolibarr 12.0.3 - SQLi to RCE

Exploit Title: Dolibarr 12.0.3 - SQLi to RCE Date: 2/12/2020 Exploit Author: coiffeur Write Up: https://therealcoiffeur.github.io/c10010, https://therealcoiffeur.github.io/c10011 Vendor Homepage: https://www.dolibarr.org/ Software Link: https://www.dolibarr.org/downloads.php,...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/19 12:0 a.m.723 views

Genexis Platinum 4410 Router 2.1 - UPnP Credential Exposure

Exploit Title: Genexis Platinum 4410 Router 2.1 - UPnP Credential Exposure Date: 17th November 2020 Exploit Author: Nitesh Surana Vendor Homepage: https://www.gxgroup.eu/ont-products/ Version: P4410-V2-1.34H Tested on: Windows/Kali CVE : CVE-2020-25988 import upnpy upnp = upnpy.UPnP Discover UPnP...

6.5CVSS6.8AI score0.03016EPSS
Exploits3
Exploit DB
Exploit DB
added 2006/04/10 12:0 a.m.723 views

SPIP 1.8.3 - 'Spip_login.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/17423/info SPIP is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP co...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.722 views

ProjeQtOr Project Management 9.1.4 - Remote Code Execution

Exploit Title: ProjeQtOr Project Management 9.1.4 - Remote Code Execution Date: 29.05.2021 Exploit Author: Temel Demir Vendor Homepage: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV9.1.4.zip Version: v9.1.4 Tested on: Laragon @WIN10...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/19 12:0 a.m.721 views

TestBox CFML Test Framework 4.1.0 - Directory Traversal

Title: TestBox CFML Test Framework 4.1.0 - Directory Traversal Author: Darren King Date: 2020-07-23 Vendor Homepage: https://www.ortussolutions.com/products/testbox Software Link: https://www.ortussolutions.com/parent/download/testbox?version=3.1.0 Version : 2.3.0 through to 4.1.0 Tested on: Adob...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/10/07 12:0 a.m.721 views

libc/glob(3) - Resource Exhaustion / Remote ftpd-anonymous (Denial of Service)

Source: http://securityreason.com/securityalert/7822 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple Vendors libc/glob3 resource exhaustion +0day remote ftpd-anon Author: Maksymilian Arciemowicz http://netbsd.org/donations/ http://securityreason.com/ http://cxib.net/ Date: - - Dis.:...

7.8CVSS6.5AI score0.35013EPSS
Exploits10
Exploit DB
Exploit DB
added 2020/11/24 12:0 a.m.720 views

docPrint Pro 8.0 - 'Add URL' Buffer Overflow (SEH Egghunter)

Exploit Title: docPrint Pro 8.0 - 'Add URL' Buffer Overflow SEH Egghunter Date: 2020-07-26 Exploit Author: MasterVlad Vendor Homepage: http://www.verypdf.com Software Link: http://dl.verypdf.net/docprintprosetup.exe Version: 8.0 Vulnerability Type: Local Buffer Overflow Tested on: Windows 7 32-bi...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/19 12:0 a.m.720 views

Gemtek WVRTM-127ACN 01.01.02.141 - Authenticated Arbitrary Command Injection

Exploit Title: Gemtek WVRTM-127ACN 01.01.02.141 - Authenticated Arbitrary Command Injection Date: 13/09/2020 Exploit Author: Gabriele Zuddas Version: 01.01.02.127, 01.01.02.141 CVE : CVE-2020-24365 Service Provider : Linkem Product Name : LTE CPE Model ID : WVRTM-127ACN Serial ID : GMK17041801108...

9CVSS9.1AI score0.11414EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/10/20 12:0 a.m.720 views

RiteCMS 2.2.1 - Remote Code Execution (Authenticated)

Exploit Title: RiteCMS 2.2.1 - Authenticated Remote Code Execution Date: 2020-07-03 Exploit Author: H0j3n Vendor Homepage: http://ritecms.com/ Software Link: http://sourceforge.net/projects/ritecms/files/ritecms2.2.1.zip/download Version: 2.2.1 Tested on: Linux Reference:...

7.4AI score
Exploits0
Total number of security vulnerabilities5000