Lucene search
K
ExploitdbMost viewed

47904 matches found

Exploit DB
Exploit DB
added 2006/12/01 12:0 a.m.2105 views

DZCP (deV!L`z Clanportal) 1.3.6 - Arbitrary File Upload

S Y N O P S I S / =================' - access: remote severity: high - deV!Lz Clanportal allows nearly arbitrary files to be uploaded and stored on the server's filesystem, which enables anyone, even without a user account, to upload PHP code and execute it, leading to arbitrary code execution. B...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/01/02 12:0 a.m.2099 views

ClipShare - 'UID' SQL Injection

video sharing www.clip-share.com Remote SQL Injection Exploit All Version AUTHOR :Krit webmaster of http://www.thaishadow.com HOME : http://www.thaishadow.com Download : http://www.clip-share.com/ DorKs :inurl:/uprofile.php?UID= or "Powered by clipshare" EXPLOIT :...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2021/05/26 12:0 a.m.2059 views

ProFTPd 1.3.5 - 'mod_copy' Remote Command Execution (2)

Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...

10CVSS9.6AI score0.96803EPSS
Exploits22
Exploit DB
Exploit DB
added 2011/02/23 12:0 a.m.2049 views

VidiScript - SQL Injection

====================================== VidiScript Sql Injection Vulnerability ====================================== + Title: VidiScript Sql Injection Vulnerability + Date: 23.02.2011 + Author: ThEtA.Nu + Software Link: VidiScript.com + Where : From Remote Founded by : ThEtA.Nu Team: Kosova Hacke...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/11/11 12:0 a.m.2025 views

Apache HTTP Server 2.4.50 - Remote Code Execution (RCE) (3)

Exploit Title: Apache HTTP Server 2.4.50 - Remote Code Execution RCE 3 Date: 11/11/2021 Exploit Author: Valentin Lobstein Vendor Homepage: https://apache.org/ Version: Apache 2.4.49/2.4.50 CGI enabled Tested on: Debian GNU/Linux CVE : CVE-2021-41773 / CVE-2021-42013 Credits : Lucas Schnell...

9.8CVSS7.6AI score0.99992EPSS
Exploits175
Exploit DB
Exploit DB
added 2020/09/17 12:0 a.m.2015 views

Microsoft SQL Server Reporting Services 2016 - Remote Code Execution

Exploit Title: Microsoft SQL Server Reporting Services 2016 - Remote Code Execution Google Dork: inurl:ReportViewer.aspx Date: 2020-09-17 Exploit Author: West Shepherd Vendor Homepage: https://www.microsoft.com Version: Microsoft SQL Server 2016 32-bit/x64 SP2 CU/GDR, Microsoft SQL Server 2014...

9.8CVSS8.2AI score0.99022EPSS
Exploits14
Exploit DB
Exploit DB
added 2019/08/26 12:0 a.m.1962 views

Exim 4.87 / 4.91 - Local Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'expect' class MetasploitModule 'Exim 4.87 - 4.91 Local Privilege Escalation', 'Description' = %q This module exploits a flaw in Exim versions 4.87 to 4.91...

10CVSS9.7AI score0.99961EPSS
Exploits27
Exploit DB
Exploit DB
added 2023/04/05 12:0 a.m.1961 views

Binwalk v2.3.2 - Remote Command Execution (RCE)

Exploit Title: Binwalk v2.3.2 - Remote Command Execution RCE Exploit Author: Etienne Lacoche CVE-ID: CVE-2022-4510 import os import inspect import argparse print"" print"" print"------------------CVE-2022-4510----------------" print"" print"--------Binwalk Remote Command Execution--------"...

7.8CVSS7.6AI score0.22013EPSS
Exploits8
Exploit DB
Exploit DB
added 2006/11/01 12:0 a.m.1945 views

TikiWiki 1.9.5 Sirius - 'sort_mode' Information Disclosure

/==========================================/ //tikiwiki version 1.9.5 CVS -Sirius- PoC // Product: Tikiwiki // URL: http://tikiwiki.org/ // RISK: critical /==========================================/ there's a critical security bug in tikiwiki version 1.9.5 CVS -Sirius- a anonymous user , can dum...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2020/03/05 12:0 a.m.1935 views

Exchange Control Panel - Viewstate Deserialization (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'bindata' class MetasploitModule 'Exchange Control Panel Viewstate Deserialization', 'Description' = %q This module exploits a .NET serialization vulnerability i...

9CVSS8.7AI score0.99965EPSS
Exploits30
Exploit DB
Exploit DB
added 2017/09/27 12:0 a.m.1881 views

Oracle WebLogic Server 10.3.6.0 - Java Deserialization Remote Code Execution

Exploit Title: Oracle WebLogic Server Java Deserialization Remote Code Execution Date: 27/09/2017 Exploit Author: SlidingWindow , Twitter: @kapilkhot Vulnerability Author: FoxGloveSecurity Vendor Homepage: http://www.oracle.com/technetwork/middleware/weblogic/overview/index.html Affetcted Version...

9.8CVSS8.7AI score0.96032EPSS
Exploits17
Exploit DB
Exploit DB
added 2022/03/16 12:0 a.m.1878 views

Hikvision IP Camera - Backdoor

Exploit Title: Hikvision IP Camera - Backdoor Date: 14/03/2022 Exploit Author: Sobhan Mahmoodi Reference: https://ipvm.com/reports/hik-exploit GitHub: https://github.com/bp2008/HikPasswordHelper/ Hikvision included a magic string that allowed instant access to any camera, regardless of what the...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/12/09 12:0 a.m.1878 views

Apache - Denial of Service

/ This is a reverse engineered version of the exploit for CVE-2011-3192 made by ev1lut10n http://jayakonstruksi.com/backupintsec/rapache.tgz. Copyright 2011 Ramon de C Valle Compile with the following command: gcc -Wall -pthread -o rcvalle-rapache rcvalle-rapache.c / include include include inclu...

7.8CVSS7.9AI score0.98945EPSS
Exploits17
Exploit DB
Exploit DB
added 2019/10/28 12:0 a.m.1870 views

PHP-FPM + Nginx - Remote Code Execution

PHuiP-FPizdaM What's this This is an exploit for a bug in php-fpm CVE-2019-11043. In certain nginx + php-fpm configurations, the bug is possible to trigger from the outside. This means that a web user may get code execution if you have vulnerable config see below. What's vulnerable If a webserver...

9.8CVSS9.7AI score0.9947EPSS
Exploits55
Exploit DB
Exploit DB
added 2017/10/02 12:0 a.m.1833 views

Dnsmasq < 2.78 - Stack Overflow

''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14493.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html 1 Build the docker and open two terminals docker build -t dnsmasq . docker run --rm -t -i...

9.8CVSS9AI score0.83638EPSS
Exploits6
Exploit DB
Exploit DB
added 2020/10/29 12:0 a.m.1821 views

WebLogic Server 10.3.6.0.0 / 12.1.3.0.0 / 12.2.1.3.0 / 12.2.1.4.0 / 14.1.1.0.0 - Unauthenticated RCE via GET request

!/usr/bin/python3 Exploit Title: Oracle WebLogic Server 10.3.6.0.0 / 12.1.3.0.0 / 12.2.1.3.0 / 12.2.1.4.0 / 14.1.1.0.0 - Unauthenticated RCE via GET request Exploit Author: Nguyen Jang CVE: CVE-2020-14882 Vendor Homepage: https://www.oracle.com/middleware/technologies/weblogic.html Software Link:...

10CVSS9.9AI score0.99997EPSS
Exploits41
Exploit DB
Exploit DB
added 2022/07/11 12:0 a.m.1797 views

Nginx 1.20.0 - Denial of Service (DOS)

Exploit Title: Nginx 1.20.0 - Denial of Service DOS Date: 2022-6-29 Exploit Author: Mohammed Alshehri - https://Github.com/M507 Vendor Homepage: https://nginx.org/ Software Link: https://github.com/nginx/nginx/releases/tag/release-1.20.0 Version: 0.6.18 - 1.20.0 Tested on: Ubuntu 18.04.4 LTS bion...

7.7CVSS6.9AI score0.53461EPSS
Exploits10
Exploit DB
Exploit DB
added 2016/12/23 12:0 a.m.1748 views

OpenSSH < 7.4 - agent Protocol Arbitrary Library Loading

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1009 The OpenSSH agent permits its clients to load PKCS11 providers using the commands SSHAGENTCADDSMARTCARDKEY and SSHAGENTCADDSMARTCARDKEYCONSTRAINED if OpenSSH was compiled with the ENABLEPKCS11 flag normally enabled and the age...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/03 12:0 a.m.1735 views

Cisco RV110W/RV130(W)/RV215W Routers Management Interface - Remote Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework linux/armle/meterpreter/bindtcp - segfault linux/armle/meterpreter/reversetcp - segfault linux/armle/meterpreterreversehttp - works linux/armle/meterpreterreversehttps -...

10CVSS7.4AI score0.95707EPSS
Exploits15
Exploit DB
Exploit DB
added 2021/09/01 12:0 a.m.1728 views

Confluence Server 7.12.4 - 'OGNL injection' Remote Code Execution (RCE) (Unauthenticated)

Exploit Title: Confluence Server 7.12.4 - 'OGNL injection' Remote Code Execution RCE Unauthenticated Date: 01/09/2021 Exploit Author: h3v0x Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/confluence/download-archives Version: All 7.12.x versions befor...

9.8CVSS8.8AI score0.99999EPSS
Exploits45
Exploit DB
Exploit DB
added 2019/03/11 12:0 a.m.1727 views

PRTG Network Monitor 18.2.38 - (Authenticated) Remote Code Execution

!/bin/bash echo -e "\n\e00;33m++ \e00m" echo -e "\e00;32m Authenticated PRTG network Monitor remote code execution \e00m" echo -e "\e00;33m++ \e00m" echo -e "\e00;32m Date: 11/03/2019 \e00m" echo -e "\e00;33m++ \e00m" echo -e "\e00;32m Author: https://github.com/M4LV0 [email protected]...

9CVSS6.9AI score0.87173EPSS
Exploits12
Exploit DB
Exploit DB
added 2008/06/18 12:0 a.m.1725 views

PHP 5.2.6 - 'chdir()' Function http URL Argument Safe_mode Restriction Bypass

source: https://www.securityfocus.com/bid/29796/info PHP is prone to multiple 'safemode' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to determine the presence of files in unauthorized locations; other attacks are also possible. Exploiting these issues allows...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2018/10/23 12:0 a.m.1723 views

MGB OpenSource Guestbook 0.7.0.2 - 'id' SQL Injection

Exploit Title: MGB OpenSource Guestbook 0.7.0.2 - 'id' SQL Injection Dork: N/A Date: 2018-10-23 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.m-gb.org/ Software Link: https://sourceforge.net/projects/mopzz-gb/files/latest/download Version: 0.7.0.2 Category: Webapps Tested on:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/09 12:0 a.m.1716 views

Shoutbox 1.0 - 'Shoutbox.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/25254/info Shoutbox is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2021/02/05 12:0 a.m.1711 views

PhreeBooks 5.2.3 ERP - Remote Code Execution (2)

Exploit Title: PhreeBooks 5.2.3 - Remote Code Execution Date: 22 Jan 2021 Exploit Author: Kr0ff Vendor Homepage: https://www.phreesoft.com/ Software Link: https://sourceforge.net/projects/phreebooks/ Version: 5.2.3 Tested on: Windows Server 2016 !/usr/bin/env python3 ''' DESCRIPTION: - PhreeBooks...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/03/16 12:0 a.m.1686 views

Tiny File Manager 2.4.6 - Remote Code Execution (RCE)

Exploit Title: Tiny File Manager 2.4.6 - Remote Code Execution RCE Date: 14/03/2022 Exploit Author: FEBIN MON SAJI Software Link: https://github.com/prasathmani/tinyfilemanager Version: Tiny File Manager Example: $0 http://files.ubuntu.local/index.php admin "admin@123" " log-in URL=$1 admin=$2...

6.5CVSS6.9AI score0.08235EPSS
Exploits5
Exploit DB
Exploit DB
added 2017/05/29 12:0 a.m.1684 views

Samba 3.5.0 < 4.4.14/4.5.10/4.6.4 - 'is_known_pipename()' Arbitrary Module Load (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Samba isknownpipename Arbitrary Module Load', 'Description' = %q This module triggers an arbitrary shared library load vulnerability in Samba...

10CVSS10AI score0.99448EPSS
Exploits24
Exploit DB
Exploit DB
added 2021/03/29 12:0 a.m.1679 views

vsftpd 3.0.3 - Remote Denial of Service

Exploit Title: vsftpd 3.0.3 - Remote Denial of Service Date: 22-03-2021 Exploit Author: xynmaps Vendor Homepage: https://security.appspot.com/vsftpd.html Software Link: https://security.appspot.com/downloads/vsftpd-3.0.3.tar.gz Version: 3.0.3 Tested on: Parrot Security OS 5.9.0...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/03/07 12:0 a.m.1672 views

Apache 2.2.14 mod_isapi - Dangling Pointer Remote SYSTEM

/ Apache 2.2.14 modisapi Dangling Pointer Remote SYSTEM Exploit CVE-2010-0425 ------------------------------------------------------------------------------ Advisory: http://www.senseofsecurity.com.au/advisories/SOS-10-002 Description: pwn-isapi.cpp exploits a dangling pointer vulnerabilty in...

10CVSS9.6AI score0.94248EPSS
Exploits13
Exploit DB
Exploit DB
added 2019/10/14 12:0 a.m.1671 views

Apache Httpd mod_proxy - Error Page Cross-Site Scripting

The trick is to use a vertical tab %09 and then place another URL in the tag. So once a victim clicks the link on the error page, she will go somewhere else. As you can see, the browser changes the destination from relative / to an absolute url https://enoflag.de. The exploit is...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/22 12:0 a.m.1665 views

phpMyAdmin - 'pmaPWN!' Code Injection / Remote Code Execution

?php $list = array '/phpmyadmin/', '/phpMyAdmin/', '/PMA/', '/pma/', '/admin/', '/dbadmin/', '/mysql/', '/myadmin/', '/phpmyadmin2/', '/phpMyAdmin2/', '/phpMyAdmin-2/', '/php-my-admin/', '/phpMyAdmin-2.2.3/', '/phpMyAdmin-2.2.6/', '/phpMyAdmin-2.5.1/', '/phpMyAdmin-2.5.4/',...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/08/16 12:0 a.m.1649 views

OpenSSH 2.3 < 7.7 - Username Enumeration (PoC)

!/usr/bin/env python Copyright c 2018 Matthew Daley Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files the "Software", to deal in the Software without restriction, including without limitation the rights to use, copy,...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/09/27 12:0 a.m.1638 views

thesystem App 1.0 - 'username' SQL Injection

Exploit Title: thesystem App 1.0 - 'username' SQL Injection Author: Anıl Baran Yelken Discovery Date: 2019-09-26 Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 10 CVE: N/A...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/11/17 12:0 a.m.1623 views

GitLab 13.10.2 - Remote Code Execution (RCE) (Unauthenticated)

Exploit Title: GitLab 13.10.2 - Remote Code Execution RCE Unauthenticated Shodan Dork: https://www.shodan.io/search?query=title%3A%22GitLab%22+%2B%22Server%3A+nginx%22 Date: 11/01/2021 Exploit Author: Jacob Baines Vendor Homepage: https://about.gitlab.com/ Software Link:...

10CVSS9.3AI score0.99981EPSS
Exploits57
Exploit DB
Exploit DB
added 2009/12/16 12:0 a.m.1614 views

Linux Kernel < 2.6.28 - 'fasync_helper()' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/37806/info Linux kernel is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/26 12:0 a.m.1589 views

Oracle WebLogic Server 12.2.1.0 - RCE (Unauthenticated)

Exploit Title: Oracle WebLogic Server 12.2.1.0 - RCE Unauthenticated Google Dork: inurl:"/console/login/LoginForm.jsp" Date: 01/26/2021 Exploit Author: CHackA0101 Vendor Homepage: https://www.oracle.com/security-alerts/cpuoct2020.html Version: Oracle WebLogic Server, version 12.2.1.0 Tested on:...

10CVSS9.9AI score0.99997EPSS
Exploits41
Exploit DB
Exploit DB
added 2017/05/24 12:0 a.m.1577 views

Samba 3.5.0 - Remote Code Execution

!/usr/bin/env python Title : ETERNALRED Date: 05/24/2017 Exploit Author: steelo Vendor Homepage: https://www.samba.org Samba 3.5.0 - 4.5.4/4.5.10/4.4.14 CVE-2017-7494 import argparse import os.path import sys import tempfile import time from smb.SMBConnection import SMBConnection from smb import...

10CVSS10AI score0.99448EPSS
Exploits24
Exploit DB
Exploit DB
added 2009/08/31 12:0 a.m.1577 views

Linux Kernel 2.6 < 2.6.19 (White Box 4 / CentOS 4.4/4.5 / Fedora Core 4/5/6 x86) - 'ip_append_data()' Ring0 Privilege Escalation (1)

/ 0x82-CVE-2009-2698 Linux kernel 2.6 . / include include include include include include include unsigned int uid, gid; void getrootuidunsigned task unsigned addr=task; whileaddr0!=uid||addr1!=uid||addr2!=uid||addr3!=uid addr++; addr0=addr1=addr2=addr3=0; / set uids / addr4=addr5=addr6=addr7=0; ...

7.8CVSS7.7AI score0.07121EPSS
Exploits18
Exploit DB
Exploit DB
added 2020/05/18 12:0 a.m.1559 views

WordPress Plugin Ajax Load More 5.3.1 - '#1' Authenticated SQL Injection

Exploit Title: Wordpress Plugin Ajax Load More 5.3.1 - '1' Authenticated SQL Injection Exploit Author: SunCSR Sun Cyber Security Research - Nguyen Khang Google Dork: N/A Date: 2020-05-18 Vendor Homepage: https://connekthq.com/plugins/ajax-load-more/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/08/12 12:0 a.m.1557 views

Webmin 1.920 - Unauthenticated Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Webmin 1.920 Unauthenticated RCE', 'Description' = %q This module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForg...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/08/19 12:0 a.m.1547 views

Webmin 1.920 - Remote Code Execution

!/bin/sh CVE-2019-15107 Webmin Unauhenticated Remote Command Execution based on Metasploit module https://www.exploit-db.com/exploits/47230 Original advisory: https://pentest.com.tr/exploits/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.html Alternative advisory spanish:...

10CVSS9.8AI score0.99766EPSS
Exploits38
Exploit DB
Exploit DB
added 2024/05/19 12:0 a.m.1546 views

Backdrop CMS 1.27.1 - Authenticated Remote Command Execution (RCE)

Exploit Title: Backdrop CMS 1.27.1 - Authenticated Remote Command Execution RCE Date: 04/27/2024 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://backdropcms.org/ Software Link: https://github.com/backdrop/backdrop/releases/download/1.27.1/backdrop.zip Version: latest Tested on: MacOS...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/10 12:0 a.m.1542 views

Linux Kernel < 4.13.9 (Ubuntu 16.04 / Fedora 27) - Local Privilege Escalation

/ Credit @bleidl, this is a slight modification to his original POC https://github.com/brl/grlh/blob/master/get-rekt-linux-hardened.c For details on how the exploit works, please visit https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html Tested on Ubuntu 16.04 with th...

7.8CVSS7.8AI score0.30052EPSS
Exploits16
Exploit DB
Exploit DB
added 2022/01/13 12:0 a.m.1532 views

WordPress Core 5.8.2 - 'WP_Query' SQL Injection

Exploit Title: WordPress Core 5.8.2 - 'WPQuery' SQL Injection Date: 11/01/2022 Exploit Author: Aryan Chehreghani Vendor Homepage: https://wordpress.org Software Link: https://wordpress.org/download/releases Version: 5.8.3 Tested on: Windows 10 CVE : CVE-2022-21661 VULNERABILITY DETAILS : This...

8CVSS7.8AI score0.97795EPSS
Exploits14
Exploit DB
Exploit DB
added 2017/06/28 12:0 a.m.1520 views

Linux Kernel (Debian 7/8/9/10 / Fedora 23/24/25 / CentOS 5.3/5.11/6.0/6.8/7.2.1511) - 'ldso_hwcap Stack Clash' Local Privilege Escalation

/ Linuxldsohwcap.c for CVE-2017-1000366, CVE-2017-1000370 Copyright C 2017 Qualys, Inc. myimportanthwcaps adapted from elf/dl-hwcaps.c, part of the GNU C Library: Copyright C 2012-2017 Free Software Foundation, Inc. This program is free software: you can redistribute it and/or modify it under the...

7.8CVSS7.3AI score0.02733EPSS
Exploits17
Exploit DB
Exploit DB
added 2010/06/06 12:0 a.m.1517 views

JForum 2.1.8 - 'bookmarks' Module Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/40600/info JForum is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and script code to run ...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2016/12/23 12:0 a.m.1507 views

OpenSSH < 7.4 - 'UsePrivilegeSeparation Disabled' Forwarded Unix Domain Sockets Privilege Escalation

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1010 This issue affects OpenSSH if privilege separation is disabled config option UsePrivilegeSeparation=no. While privilege separation is enabled by default, it is documented as a hardening option, and therefore disabling it shoul...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/04/17 12:0 a.m.1502 views

Microsoft Windows - SMB Remote Code Execution Scanner (MS17-010) (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework auxiliary/scanner/smb/smbms17010 require 'msf/core' class MetasploitModule 'MS17-010 SMB RCE Detection', 'Description' = %q Uses information disclosure to determine if...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/08/18 12:0 a.m.1501 views

Elgg 1.7.10 - Multiple Vulnerabilities

Exploit Title: Elgg 1.7.10 Software Link: http://elgg.org/getelgg.php?forward=elgg-1.7.10.zip Version: 1.7.10 = 1. XSS...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2021/02/23 12:0 a.m.1494 views

HFS (HTTP File Server) 2.3.x - Remote Command Execution (3)

Exploit Title: HFS HTTP File Server 2.3.x - Remote Command Execution 3 Google Dork: intext:"httpfileserver 2.3" Date: 20/02/2021 Exploit Author: Pergyz Vendor Homepage: http://www.rejetto.com/hfs/ Software Link: https://sourceforge.net/projects/hfs/ Version: 2.3.x Tested on: Microsoft Windows...

10CVSS9.5AI score0.99323EPSS
Exploits23
Total number of security vulnerabilities5000