47904 matches found
Poppy Web Interface Generator 0.8 - Arbitrary File Upload
Exploit Title: Poppy Web Interface Generator 0.8 - Arbitrary File Upload Dork: N/A Date: 2018-11-04 Exploit Author: Ihsan Sencan Vendor Homepage: http://poppy.dc-development.de/ Software Link: https://master.dl.sourceforge.net/project/poppy-beta-rc/poppy0.8betarc.zip Version: 0.8 Category: Webapp...
SiAdmin 1.1 - 'id' SQL Injection
Exploit Title: SiAdmin 1.1 - 'id' SQL Injection Dork: N/A Date: 2018-11-04 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.bubul.net/ Software Link: https://kent.dl.sourceforge.net/project/siadmin/SiAdmin%201.1/SiAdmin%201.1.zip Version: 1.1 Category: Webapps Tested on:...
Intel (Skylake / Kaby Lake) - 'PortSmash' CPU SMT Side-Channel
Summary This is a proof-of-concept exploit of the PortSmash microarchitecture attack, tracked by CVE-2018-5407. Setup Prerequisites A CPU featuring SMT e.g. Hyper-Threading is the only requirement. This exploit code should work out of the box on Skylake and Kaby Lake. For other SMT architectures,...
qdPM 9.1 - 'filter_by' SQL Injection
Exploit Title: qdPM 9.1 - 'filterby' SQL Injection Date: 2018-11-01 Exploit Author: Özkan Mustafa Akkuş AkkuS Contact: https://pentest.com.tr Vendor Homepage: http://qdpm.net Software Link: http://qdpm.net/download-qdpm-free-project-management Version: v9.1 Category: Webapps Tested on: XAMPP for...
Anviz AIM CrossChex Standard 4.3 - CSV Injection
Exploit Title: Anviz AIM CrossChex Standard 4.3 - CSV Injection Author: Gjoko 'LiquidWorm' Krstic @zeroscience Date: 2018-11-01 Vendor: Anviz Biometric Technology Co., Ltd. Product web page: https://www.anviz.com Affected version: 4.3.6.0 Tested on: Microsoft Windows 7 Professional SP1 EN CVE: N/...
Yot CMS 3.3.1 - 'aid' SQL Injection
Exploit Title: Yot CMS 3.3.1 - 'aid' SQL Injection Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: https://yot.sourceforge.io/ Software Link: https://ayera.dl.sourceforge.net/project/yot/Yot%203.3.1.zip Version: 3.3.1 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...
Jelastic 5.4 - 'host' SQL Injection
Exploit Title: Jelastic 5.4 - 'host' SQL injection Google Dork: N/A Date: date Exploit Author: Procode701 Vendor Homepage: https://jelastic.com/ Software Link: https://jelastic.com/ Version: 5.4 Tested on: Kali Linux CVE : N/A POC: The application /1.0/users/authentication/rest/signin is vulnerab...
WinMTR 0.91 - Denial of Service (PoC)
Exploit Title: WinMTR 0.91 - Denial of Service PoC Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: http://winmtr.net Software Link: http://winmtr.net/winmtrdownload/ Version: 0.91 Category: Dos Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A POC: 1 Host: Payload !/usr/bin/python...
CdCatalog 2.3.1 - Denial of Service (PoC)
Exploit Title: CdCatalog 2.3.1 - Denial of Service PoC Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: http://cdcat.sourceforge.net Software Link: https://netcologne.dl.sourceforge.net/project/cdcat/cdcat/cdcat-2.3.1/cdcat-2.3.1.tar.bz2 Version: 2.3.1 Category: Dos Tested...
Zint Barcode Generator 2.6 - Denial of Service (PoC)
Exploit Title: Zint Barcode Generator 2.6 - Denial of Service PoC Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.zint.org.uk Software Link: https://sourceforge.net/projects/zint/files/latest/download Version: 2.6 Category: Dos Tested on: WiN7x64/KaLiLinuXx64...
Gate Pass Management System 2.1 - 'login' SQL Injection
Exploit Title: Gate Pass Management System 2.1 - 'login' SQL Injection Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.livebms.com Software Link: https://netcologne.dl.sourceforge.net/project/gatepass/gpmsUpdate.zip Version: 2.1 Category: Webapps Tested on:...
Fantastic Blog CMS 1.0 - 'id' SQL Injection
Exploit Title: Fantastic Blog CMS 1.0 - 'id' SQL Injection Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/ronald-ronniem/ Software Link: https://www.sourcecodester.com/sites/default/files/download/Ronald%20Ronnie/fantasticblog0.zip...
Artha The Open Thesaurus 1.0.3.0 - Denial of Service (PoC)
Exploit Title: Artha The Open Thesaurus 1.0.3.0 - Denial of Service PoC Dork: N/A Date: 2018-11-01 Exploit Author: Ihsan Sencan Vendor Homepage: http://artha.sourceforge.net Software Link: https://netcologne.dl.sourceforge.net/project/artha/artha/1.0.3/artha1.0.3.0.exe Version: 1.0.3.0 Category:...
WebDrive 18.00.5057 - Denial of Service (PoC)
Exploit Title: WebDrive 18.00.5057 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-10-31 Vendor Homepage: https://webdrive.com/ Software Link: https://webdrive.com/download/ Tested Version: 18.00.5057 Tested on: Windows 10 Single Language x64 Steps to produce the crash...
Arm Whois 3.11 - Denial of Service (PoC)
Exploit Title: Arm Whois 3.11 - Denial of Service PoC Date: 2018-10-31 Exploit Author: Yair Rodríguez Aparicio Vendor Homepage: http://www.armcode.com/ Software Link: http://www.armcode.com/downloads/arm-whois.exe Version: 3.11 Tested on: Windows XP Profesional Español SP3 x86 Steps to Produce th...
WordPress Plugin GoURL.io < 1.4.14 - File Upload
Shell link...
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution
Exploit Title: Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Date: 2018-07-24 Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.loadbalancer.org/ Version: . Such JavaScript is stored in "Apache User Log". This way attacker can store JavaScript code that can for...
SmartFTP Client 9.0.2615.0 - Denial of Service (PoC)
Exploit Title: SmartFTP Client 9.0.2615.0 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-10-30 Vendor Homepage: https://www.smartftp.com/en-us/ Software Link: https://www.smartftp.com/en-us/download Tested Version: 9.0.2615.0 Tested on: Windows 10 Single Language x64...
Electricks eCommerce 1.0 - 'prodid' SQL Injection
Exploit Title: Electricks eCommerce 1.0 - 'prodid' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/billyblue Software Link: https://www.sourcecodester.com/sites/default/files/download/billyblue/electricks.zip Version: 1.0...
xorg-x11-server 1.20.3 - Privilege Escalation
Exploit Title: xorg-x11-server 1.20.3 - Privilege Escalation Date: 2018-10-27 Exploit Author: Marco Ivaldi Vendor Homepage: https://www.x.org/ Version: xorg-x11-server 1.19.0 - 1.20.2 Tested on: OpenBSD 6.3 and 6.4 CVE : CVE-2018-14665 raptorxorgasm !/bin/sh raptorxorgasm - xorg-x11-server LPE vi...
Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
Exploit Title: Nutanix AOS & Prism - SFTP Authentication Bypass Date: 2018-10-27 Exploit Author: Adam Brown Vendor Homepage: https://www.nutanix.org Software Link: https://www.nutanix.com/products/software-options/ Version: 5.5.5 LTS, 5.8.1 STS Tested on: Acropolis Operating System CVE : Related ...
Netgear WiFi Router R6120 - Credential Disclosure
Exploit Title: NETGEAR WiFi Router R6120 - Credential Disclosure Date: 2018-10-28 Exploit Author: Wadeek Hardware Version: R6120 Firmware Version: 1.0.0.30 Vendor Homepage: https://www.netgear.com/support/product/R6120.aspx Firmware Link:...
Webiness Inventory 2.9 - Arbitrary File Upload
Exploit Title: Webiness Inventory 2.9 - Arbitrary File Upload Date: 2018-10-27 Exploit Author: Boumediene KADDOUR Unit: Algerie Telecom R&D Unit Software Link: https://github.com/webiness/webinessinventory Version: 2.9 3145728 61 continue; 62 63 64 // remove old file with same name 65 if...
phptpoint Pharmacy Management System 1.0 - 'username' SQL Injection
Exploit Title: phptpoint Pharmacy Management System 1.0 - 'username' SQL injection Date: 2018-10-24 Exploit Author: Boumediene KADDOUR Unit: Algerie Telecom R&D Unit Vendor Homepage: https://www.phptpoint.com/ Software Link: https://www.phptpoint.com/pharmacy-management-system/ Version: 1 Tested...
South Gate Inn Online Reservation System 1.0 - 'q' SQL Injection
Exploit Title: South Gate Inn Online Reservation System 1.0 - 'q' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/southgateinn0.zip...
R 3.4.4 (Windows 10 x64) - Buffer Overflow (DEP/ASLR Bypass)
!/usr/bin/python R 3.4.4 Win10 x86 Buffer Overflow discovered by: bzyo author: Charles Truscott I love you Alison Thompson OAM tested on: Windows 10 x86 rebooted for practice defeating ASLR/DEP -------------------------------------------- GUI Preferences - paste boom.txt into 'Language for menus...
SIPp 3.3.990 - Local Buffer Overflow (PoC)
Exploit Title: SIPp 3.3.990 - Local Buffer Overflow PoC Date: 2018-10-29 Exploit Author: Nawaf Alkeraithe Vendor Homepage: http://sipp.sourceforge.net/ Software Link: https://sourceforge.net/projects/sipp/files/sipp/3.4/sipp-3.3.990.tar.gz/download Version: SIPp v3.4-beta1 aka v3.3.990-SCTP-PCAP...
Notes Manager 1.0 - Arbitrary File Upload
Exploit Title: Notes Manager 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.webprojectbuilder.com/item/notes-management Software Link: https://astuteinternet.dl.sourceforge.net/project/notes-manager/notesmanagement.zip Version: 1.0...
Expense Management 1.0 - Arbitrary File Upload
Exploit Title: Expense Management 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.webprojectbuilder.com/item/expense-management Software Link:...
Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Any Sound Recorder 2.93 Buffer Overflow SEH', 'Description' = %q This module exploits a stack based buffer overflow in Any Sound...
MyBB Downloads 2.0.3 - SQL Injection
Exploit Title: MyBB Downloads 2.0.3 - SQL Injection Date: 28-10-2018 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://github.com/vintagedaddyo/MyBBPlugin-Downloads Software Link:...
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection
Exploit Title: Simple PHP Shopping Cart 0.9 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://asaancart.wordpress.com/ Software Link: https://vorboss.dl.sourceforge.net/project/asaancart/asaancart%20v-0.9/asaancart%20v-0.9.zip Version: 0.9...
Instagram Clone 1.0 - Arbitrary File Upload
Exploit Title: Instagram Clone 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/justinwilliam Software Link: https://www.sourcecodester.com/sites/default/files/download/justinwilliam/instagram3.zip Version: 1...
CI User Login and Management 1.0 - Arbitrary File Upload
Exploit Title: CI User Login and Management 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage 1: http://www.webprojectbuilder.com/item/user-login-and-management Vendor Homepage 2: https://sourceforge.net/projects/user-management-system/ Software...
ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure
Exploit Title: ZyXEL VMG3312-B10B - Leak Credentials "; else continue; else echo "pfff"; ftpclose$ftpconn; ?...
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
Exploit Title: University Application System 1.0 - SQL Injection / Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/pamzey Software Link:...
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal
!-- Exploit Title: Cross Site Scripting in Microstrategy Web version 7 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: https://www.microstrategy.com Software Link: https://www.microstrategy.com Version: Microstrategy Web version 7 Tested on: Unix CVE : CVE-2018-18775 Category:...
QNAP NetBak Replicator 4.5.6.0607 - Denial of Service (PoC)
Exploit Title: QNAP NetBak Replicator 4.5.6.0607 Denial of Service PoC Date: 2018-10-29 Exploit Author: Yair Rodríguez Aparicio Vendor Homepage: https://www.qnap.com/en/ Software Link: https://www.qnap.com/en/download Version: 4.5.6.0607 Tested on: Windows XP Profesional Español SP3 x86 Steps to...
Local Server 1.0.9 - Denial of Service (PoC)
Exploit Title: Local Server 1.0.9 - Denial of Service PoC Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.ujang-rohidin.blogspot.com/ Software Link: https://sourceforge.net/projects/local-server/files/latest/download Version: 1.0.9 Category: Dos Tested on:...
School Equipment Monitoring System 1.0 - 'login' SQL Injection
Exploit Title: School Equipment Monitoring System 1.0 - 'login' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/sems0.zip Version: 1...
AlienIP 2.41 - Denial of Service (PoC)
Exploit Title: AlienIP 2.41 - Denial of Service PoC Author: Arturo de la Cruz Tellez Discovery Date: 2018-10-17 Vendor Homepage: http://www.armcode.com Tested Version: 2.41 Tested on OS: Microsoft Windows 10 Home Single Language x64 Versión 10.0.10240 compilación 10240 PoC Steps to produce the...
Grapixel New Media 2 - 'pageref' SQL Injection
Exploit Title: Grapixel New Media 2 - 'pageref' SQL Injection Exploit Author: Berk Dusunur Google Dork: N/A Type: Web App Date: 2018-10-26 Vendor Homepage: http://www.grapixel.com Software Link: http://www.grapixel.com Affected Version: v2 Tested on: MacosX CVE : N/A Proof Of Concept Time-Based s...
Navicat 12.0.29 - 'SSH' Denial of Service (PoC)
Exploit Title: Navicat 12.0.29 - 'SSH' Denial of Service PoC Author: Rafael Alfaro Discovery Date: 2018-10-27 Vendor Homepage: https://www.navicat.com/es/ Software Link : https://www.navicat.com/es/download/navicat-premium Vulnerability Type: Denial of Service DoS Local Tested on OS: Windows 7 x6...
Open Faculty Evaluation System 7 - 'batch_name' SQL Injection
Exploit Title: Open Faculty Evaluation System 7 - 'batchname' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://openfacultyeval.sourceforge.io/ Software Link: https://sourceforge.net/projects/openfacultyeval/files/feedbackphp7.zip/download Version: Php...
Library Management System 1.0 - 'frmListBooks' SQL Injection
Exploit Title: Library Management System 1.0 - 'frmListBooks' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
School Attendance Monitoring System 1.0 - Arbitrary File Upload
Exploit Title: School Attendance Monitoring System 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
RhinOS CMS 3.x - Arbitrary File Download
Exploit Title: RhinOS CMS 3.x - Arbitrary File Download Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: https://netix.dl.sourceforge.net/project/rhinos/archived/r1190/RhinOS-en-3.0-1190.win32.exe Version: 3.1 r0 / 3.x Category: Webapp...
PayPal-Credit Card-Debit Card Payment 1.0 - SQL Injection
Exploit Title: PayPal/Credit Card/Debit Card Payment 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link: https://www.sourcecodester.com/sites/default/files/download/janobe/tubigangarden.zip Version...
School Event Management System 1.0 - Cross-Site Request Forgery (Update Admin)
Exploit Title: School Event Management System 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
Aplaya Beach Resort Online Reservation System 1.0 - SQL Injection / Cross-Site Request Forgery
Exploit Title: Aplaya Beach Resort Online Reservation System 1.0 - Multiple Vulnerabilities Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...