Beauty Parlour Booking Script 1.0 - 'gender' / 'city' SQL Injection

Exploit Title: Beauty Parlour Booking Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/beauty-booking-script/ Demo: http://fxwebsolution.com/demo/beautyparlour-search/ Version: 1.0 Category...

FS Expedia Clone 1.0 - 'fl_orig' / 'fl_dest' / 'id' SQL Injection

Exploit Title: FS Expedia Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/expedia-clone/ Demo: http://expedia-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx...

FS Foodpanda Clone 1.0 - SQL Injection

...

FS Groupon Clone 1.0 - 'id' SQL Injection

Exploit Title: FS Groupon Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/groupon-clone/ Demo: http://groupon-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx...

FS Freelancer Clone 1.0 - 'profile.php?u' SQL Injection

Exploit Title: FS Freelancer Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/freelancer-clone/ Demo: http://freelancer-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on:...

FS Gigs Script 1.0 - 'cat' / 'sc' SQL Injection

Exploit Title: FS Gigs Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/gigs-script/ Demo: http://gigs.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A...

FS Grubhub Clone 1.0 - 'keywords' SQL Injection

Ver Ayari...

FS Trademe Clone 1.0 - 'search' / 'id' SQL Injection

Exploit Title: FS Trademe Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/trademe-clone/ Demo: http://trademe-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx...

FS Indiamart Clone 1.0 - 'token' / 'id' / 'c' SQL Injection

Exploit Title: FS Indiamart Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/indiamart-clone/ Demo: http://indiamart-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on:...

Basic B2B Script 2.0.8 - 'product_details.php?id' SQL Injection

Exploit Title: Basic B2B Script 2.0.8 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/professional-b2b-script/ Version: 2.0.8 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A Exploit Author...

Advance Online Learning Management Script 3.1 - 'subcatid' / 'popcourseid' SQL Injection

Exploit Title: Advance Online Learning Management Script 3.1 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/online-learning-management-script/ Demo: http://thavasu.com/demo/onlineeducation/ Version:...

FS Crowdfunding Script 1.0 - 'latest_news_details.php?id' SQL Injection

Exploit Title: FS Crowdfunding Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/crowdfunding-script/ Demo: http://crowdfunding.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on:...

FS Linkedin Clone 1.0 - 'grid' / 'fid' / 'id' SQL Injection

Exploit Title: FS Linkedin Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/linkedin-clone/ Demo: http://linkedin-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on:...

Event Calendar Category Script 1.0 - 'city' SQL Injection

Exploit Title: Event Search Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/event-search-script/ Demo: http://ordermanagementscript.com/demo/eventsearch/ Version: 1.0 Category: Webapps...

Co-work Space Search Script 1.0 - 'city' SQL Injection

Exploit Title: Co-work Space Search Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/co-work-space-search-script/ Demo: http://ordermanagementscript.com/demo/co-work-space/ Version: 1.0...

FS Olx Clone 1.0 - 'scat' / 'pid' SQL Injection

Exploit Title: FS Olx Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/olx-clone/ Demo: http://olx-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A...

Simple Chatting System 1.0.0 - Arbitrary File Upload

Exploit Title: Simple Chatting System 1.0 - Arbitrary File Upload Dork: N/A Date: 08.12.2017 Vendor Homepage: http://yourphpscript.com/ Software Link: http://yourphpscript.com/index.php/product/simple-chatting-system-php-ajax-mysql-javascript/ Demo: http://chat.yourphpscript.com/ Version: 1.0...

Realestate Crowdfunding Script 2.7.2 - 'pid' SQL Injection

Exploit Title: Realestate Crowdfunding Script 2.7.2 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/realestate-crowdfunding-script/ Demo: http://thavasu.com/demo/crowdfunding/ Version: 2.7.2 Category...

FS Monster Clone 1.0 - 'Employer_Details.php?id' SQL Injection

Exploit Title: FS Monster Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/monster-clone/ Demo: http://monster-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx...

FS Thumbtack Clone 1.0 - 'cat' / 'sc' SQL Injection

Exploit Title: FS Thumbtack Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/thumbtack-clone/ Demo: http://thumbtack-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on:...

LabF nfsAxe FTP Client 3.7 - Remote Buffer Overflow (DEP Bypass)

!/usr/bin/env python Exploit Title : LabF nfsAxe 3.7 FTP Client DEP Bypass Date : 12/8/2017 Exploit Author : wetw0rk Vendor Homepage : http://www.labf.com/nfsaxe/nfs-server.html Software link : http://www.labf.com/download/nfsaxe.exe Version : 3.7 Tested on : Windows 7 x86 Description : Upon...

FS Makemytrip Clone 1.0 - 'fl_orig' / 'fl_dest' SQL Injection

Exploit Title: FS Makemytrip Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/makemytrip-clone/ Demo: http://makemytrip-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on:...

Website Auction Marketplace 2.0.5 - 'cat_id' SQL Injection

Exploit Title: Website Auction Marketplace 2.0.5 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://flippa-clone.com/ Software Link: https://flippa-clone.com/ Demo: https://demo.flippa-clone.com/ Version: 2.0.5 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A Exploit...

E-commerce MLM Software 1.0 - SQL Injection

Exploit Title: E-commerce MLM Software 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/e-commerce-mlm/ Demo: http://74.124.215.220/advaemlm/ Version: 1.0 Category: Webapps Tested on:...

Doctor Search Script 1.0 - 'city' SQL Injection

Exploit Title: Doctor Search Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/doctor-search-script/ Demo: http://fxwebsolution.com/demo/doctorsearch/ Version: 1.0 Category: Webapps Tested o...

Consumer Complaints Clone Script 1.0 - 'id' SQL Injection

Exploit Title: Consumer Complaints Clone Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/consumer-complaints-clone-script/ Demo: http://fxwebsolution.com/demo/consumer-complaints/ Version:...

FS Stackoverflow Clone 1.0 - 'keywords' SQL Injection

Ver Ayari...

CMS Auditor Website 1.0 - SQL Injection

Exploit Title: CMS Auditor Website 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/cms-auditor-website/ Demo: http://74.124.215.220/projclient/client/auditor/ Version: 1.0 Category: Webapps Teste...

Child Care Script 1.0 - 'city' SQL Injection

Exploit Title: Child Care Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/child-care-script/ Demo: http://ordermanagementscript.com/demo/childcare/ Version: 1.0 Category: Webapps Tested on...

FS Shutterstock Clone 1.0 - 'keywords' SQL Injection

Ver Ayari...

Entrepreneur Job Portal Script 2.0.6 - 'jobsearch_all.php?rid1' SQL Injection

Exploit Title: Entrepreneur Job Portal Script 2.0.6 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/entrepreneur-job-portal-script/ Demo: http://freelancewebdesignerchennai.com/demo/job-portal/...

Cab Booking Script 1.0 - 'city' SQL Injection

Exploit Title: Cab Booking Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/cab-booking-script-2/ Demo: http://fxwebsolution.com/demo/cabbooking/ Version: 1.0 Category: Webapps Tested on:...

Chartered Accountant Booking Script 1.0 - 'city' SQL Injection

Exploit Title: Chartered Accountant Booking Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/chartered-accountant-booking-script/ Demo: http://fxwebsolution.com/demo/chartered-accountant/...

Nearbuy Clone Script 3.2 - 'search' SQL Injection

Exploit Title: Nearbuy Clone Script 3.2 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/nearbuy-clone/ Demo: http://www.fxwebsolution.com/demo/arthi/nearby/ Version: 3.2 Category: Webapps Tested on:...

FS Quibids Clone 1.0 - SQL Injection

Exploit Title: FS Quibids Clone 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/quibids-clone/ Demo: http://quibids-clone.demonstration.co.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx...

DomainSale PHP Script 1.0 - 'id' SQL Injection

Exploit Title: DomainSale PHP Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.codester.com/ChewiScripts Software Link: https://www.codester.com/items/5301/domainsale-php-script Demo: http://chewiscripts.x10host.com/domain/ Version: 1.0 Category: Webapps Tested o...

Entrepreneur Dating Script 2.0.1 - 'marital' / 'gender' / 'country' / 'profileid' SQL Injection

Exploit Title: Entrepreneur Dating Script 2.0.1 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/entrepreneur-dating-script/ Demo: http://198.38.86.159/datingscript/ Version: 2.0.1 Category: Webapps...

Wireshark 2.4.0 < 2.4.2 / 2.2.0 < 2.2.10 - CIP Safety Dissector Crash

Summary Name: CIP Safety dissector crash Docid: wnpa-sec-2017-49 Date: November 30, 2017 Affected versions: 2.4.0 to 2.4.2, 2.2.0 to 2.2.10 Fixed versions: 2.4.3, 2.2.11 References: Wireshark bug 14250 Details Description The CIP Safety dissector could crash. Impact It may be possible to make...

Polycom Shell HDX Series - Traceroute Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Polycom Shell HDX Series Traceroute Command Execution', 'Description' = %q Within Polycom command shell, a command execution flaw exists in lan...

Linux Kernel 4.10.5 / < 4.14.3 (Ubuntu) - DCCP Socket Use-After-Free

/ This is an announcement for CVE-2017-8824 which is a use-after-free vulnerability I found in Linux DCCP socket. It can be used to gain kernel code execution from unprivileged processes. You’ll find in attachment the proof of concept code and the kernel panic log. BUG DETAILS When a socket sock...

LaCie 5big Network 2.2.8 - Command Injection

!/usr/bin/python Exploit Title: LaCie 5big Network 2.2.8 Command Injection Date: 2017-12-04 Exploit Author: Timo Sablowski Contact: [email protected] Vendor Homepage: http://www.lacie.com Software Link: http://www.lacie.com/files/lacie-content/download/drivers/5%20Big%20Network.zip Version:...

FS Facebook Clone - 'token' SQL Injection

Exploit Title: FS Facebook Clone - 'token' SQL Injection Date: 2017-12-06 Exploit Author: Dan° Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/facebook-clone/ Version: 2017-12-06 Tested on: Kali Linux 2.0 PoC: SQL Injection on GET parameter = token...

OpenEMR 5.0.0 - OS Command Injection / Cross-Site Scripting

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: OS Command Injection & Reflected Cross Site Scripting product: OpenEMR vulnerable version: 5.0.0 fixed version: 5.0.0 Patch 2 or higher CVE number: - impact: Critical...

Microsoft Windows Defender - Controlled Folder Bypass Through UNC Path

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1418 Windows Defender: Controlled Folder Bypass through UNC Path Platform: Windows 10 1709 + Antimalware client version 4.12.16299.15 Class: Security Feature Bypass Summary: You can bypass the controlled folder feature in Defende...

Claymore Dual ETH + DCR/SC/LBC/PASC GPU Miner - Stack Buffer Overflow / Path Traversal

!/usr/bin/env python -- coding: UTF-8 -- github.com/tintinweb optional: pip install pysocks https://pypi.python.org/pypi/PySocks ''' API overview: nc -L -p 3333 "id":0,"jsonrpc":"2.0","method":"minergetstat1" "id":0,"jsonrpc":"2.0","method":"minerfile","params":"epools.txt",""...

Apple macOS High Sierra 10.13 - 'ctl_ctloutput-leak' Information Leak

/ ctlctloutput-leak.c Brandon Azad CVE-2017-13868 While looking through the source code of XNU version 4570.1.46, I noticed that the function ctlctloutput in the file bsd/kern/kerncontrol.c does not check the return value of sooptcopyin, which makes it possible to leak the uninitialized contents ...

FS IMDB Clone - 'id' SQL Injection

Exploit Title: FS IMDB Clone - 'id' SQL Injection Date: 2017-12-06 Exploit Author: Dan° Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/imdb-clone/ Version: 2017-12-06 Tested on: Kali Linux 2.0 PoC: SQL Injection on GET parameter = id...

Proxifier for Mac 2.19 - Local Privilege Escalation

With CVE-2017-7643 I disclosed a command injection vulnerablity in the KLoader binary that ships with Proxifier = 2.18. Unfortunately 2.19 is also vulnerable to a slightly different attack that yields the same result. When Proxifier is first run, if the KLoader binary is not suid root it gets...

Apple macOS 10.13.1 (High Sierra) - Insecure Cron System Local Privilege Escalation

Recently I was working on an security issue in some other software that has yet to be disclosed which created a rather interesting condition. As a non-root user I was able to write to any file on the system that was not SIP-protected but the resulting file would not be root-owned, even if it...

FS Shaadi Clone - 'token' SQL Injection

Exploit Title: FS Shaadi Clone - SQL Injection Date: 2017-12-05 Exploit Author: Dan° Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/shaadi-clone/ Version: 2017-12-05 Tested on: Kali Linux 2.0 PoC: SQL Injection on GET parameter = token...