Lucene search
+L
ExploitdbRecent

47904 matches found

exploitdb
exploitdb
added 2017/10/23 12:0 a.m.64 views

Unitrends UEB 9 - bpserverd Authentication Bypass Remote Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Unitrends UEB bpserverd authentication bypass RCE', 'Description' = %q It was discovered that the Unitrends bpserverd proprietary protocol, as...

10CVSS9.6AI score0.68217EPSS
Exploits9
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.38 views

FS Expedia Clone - 'hid' SQL Injection

Exploit Title: FS Expedia Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/expedia-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contac...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.45 views

K7 Total Security 15.1.0.305 - Device Driver Arbitrary Memory Read

Vulnerability Summary The following advisory describes an Crash found in K7 Total Security. Credit An independent security researcher, Kyriakos Economou aka @kyREcon, has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program Vendor response K7 has released patches ...

7.1CVSS7AI score0.01242EPSS
Exploits2
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.22 views

FS Freelancer Clone - 'sk' SQL Injection

Exploit Title: FS Freelancer Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/freelancer-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.17 views

FS Groupon Clone - 'category' SQL Injection

Exploit Title: FS Groupon Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/groupon-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contac...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.20 views

FS OLX Clone - 'catg_id' SQL Injection

Exploit Title: FS OLX Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/olx-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.29 views

FS Indiamart Clone - 'keywords' SQL Injection

Exploit Title: FS Indiamart Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/indiamart-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.21 views

FS Lynda Clone - 'category' SQL Injection

Exploit Title: FS Lynda Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/lynda-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.37 views

FS Amazon Clone - 'category_id' SQL Injection

Exploit Title: FS Amazon Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/amazon-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.49 views

Polycom - Command Shell Authorization Bypass (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Polycom Command Shell Authorization Bypass', 'Alias' = 'polycomhdxauthbypass', 'Author' = 'Paul Haas ', module 'h00die ', submission/cleanup ,...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.20 views

FS Book Store Script - 'category' SQL Injection

Exploit Title: FS Book Store Script - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/book-store-script/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.37 views

FS Ebay Clone - 'pd_maincat_id' SQL Injection

Exploit Title: FS Ebay Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/ebay-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.30 views

FS Car Rental Script - 'pickup_location' SQL Injection

Exploit Title: FS Car Rental Script - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/car-rental-script/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...

7AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.58 views

Unitrends UEB 9 - http api/storage Remote Root (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Unitrends UEB 9 http api/storage remote root', 'Description' = %q It was discovered that the api/storage web interface in Unitrends Backup UB...

10CVSS9.5AI score0.78269EPSS
Exploits12
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.28 views

FS Food Delivery Script - 'keywords' SQL Injection

Exploit Title: FS Food Delivery Script - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/food-delivery/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.67 views

Kaltura < 13.2.0 - Remote Code Execution

!/usr/bin/env python Kaltura = 13.1.0 RCE CVE-2017-14143 https://telekomsecurity.github.io/2017/09/kaltura-rce.html $ python kalturarce.py "https://example.com" 0xxxxxxxx "system'id'" host: https://example.com entryid: 0xxxxxxxx code: system'id' + sending request.. uid=1003wwwrun gid=50004www...

9.8CVSS8.3AI score0.75497EPSS
Exploits12
exploitdb
exploitdb
added 2017/10/23 12:0 a.m.39 views

Mikogo 5.4.1.160608 - Local Credentials Disclosure

!/usr/bin/env python Mikogo 5.4.1.160608 Local Credentials Disclosure Vendor: Snapview GmbH Product web page: https://www.mikogo.com Affected version: 5.4.1.160608 Summary: Mikogo is a desktop sharing software application for web conferencing and remote support, and is provided by the online...

7AI score
Exploits0
exploitdb
exploitdb
added 2017/10/22 12:0 a.m.123 views

Linux Kernel 4.14.0-rc4+ - 'waitid()' Local Privilege Escalation

define GNUSOURCE include include include include include include include struct cred; struct taskstruct; typedef struct cred preparekernelcredt struct taskstruct daemon attributeregparm3; typedef int commitcredst struct cred new attributeregparm3; preparekernelcredt preparekernelcred; commitcreds...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/22 12:0 a.m.60 views

WordPress Plugin Polls 1.2.4 - SQL Injection (PoC)

Exploit Title :WordPress Polls plugin1.2.4 SQL Injection vulnerability Vulnerable version:Download Link : https://downloads.wordpress.org/plugin/polls-widget.1.2.4.zip //////////////////////// /// Overview: //////////////////////// WordPress Polls plugin is a tool for creating polls and survey...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/22 12:0 a.m.21 views

CometChat < 6.2.0 BETA 1 - Local File Inclusion

Exploit Title: CometChat Vendor Homepage: https://cometchat.com/ Version: 6.2.0 BETA 1 Tested on: Ubuntu Linux 14.04 -------------------------------------------------------------------------------------- In versions of CometChat before version v6.2.0 BETA 1 a bug existed which allowed any...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/21 12:0 a.m.32 views

ArGoSoft Mini Mail Server 1.0.0.2 - Denial of Service

!/usr/bin/env python coding: utf-8 Description: The vulnerability was discovered during a vulnerability research lecture. Denial-of-service vulnerability in ArGoSoft Mini Mail Server 1.0.0.2 and earlier allows remote attackers to waste CPU resources memory consumption via unspecified vectors...

5.3CVSS5.3AI score0.04534EPSS
Exploits5
exploitdb
exploitdb
added 2017/10/21 12:0 a.m.42 views

Ayukov NFTP FTP Client < 2.0 - Remote Buffer Overflow

!/usr/bin/env python coding: utf-8 Description: The vulnerability was discovered during a vulnerability research lecture. This is meant to be a PoC. Exploit Title: Ayukov NFTP FTP Client - Buffer Overflow Date: 2017-10-21 Exploit Author: Berk Cem Göksel Contact: twitter.com/berkcgoksel ||...

9.8CVSS9.5AI score0.60328EPSS
Exploits16
exploitdb
exploitdb
added 2017/10/20 12:0 a.m.1085 views

Axis SSI - Remote Command Execution / Read Files

STX Subject: SSI Remote Execute and Read Files Researcher: bashis August 2016 Release date: October, 2017 Old stuff that I've forgotten, fixed Q3/2016 by Axis Attack Vector: Remote Authentication: Anonymous no credentials needed Conditions: The cam must be configure to allow anonymous view Execut...

7AI score
Exploits0
exploitdb
exploitdb
added 2017/10/20 12:0 a.m.60 views

Mozilla Firefox < 55 - Denial of Service

Exploit Title: Mozilla Firefox Firefox Lockout Vulnerability"; //Content to be forcibly viewed echo ""; //End echo "setTimeout"location.href ='".$location."';",10000;"; ? Solution: Update to version 55 https://www.mozilla.org/en-US/firefox/55.0/releasenotes/ Mozilla Foundation Security Advisory:...

7.5CVSS8.7AI score0.13697EPSS
Exploits5
exploitdb
exploitdb
added 2017/10/20 12:0 a.m.30 views

Sync Breeze Enterprise 10.1.16 - 'POST' Remote Buffer Overflow

!/usr/bin/python import socket try: print "\nSending evil buffer..." shellcode = "\xba\x31\x13\x39\xe4\xdb\xd3\xd9\x74\x24\xf4\x5e\x33\xc9\xb1" "\x52\x31\x56\x12\x03\x56\x12\x83\xdf\xef\xdb\x11\xe3\xf8\x9e" "\xda\x1b\xf9\xfe\x53\xfe\xc8\x3e\x07\x8b\x7b\x8f\x43\xd9\x77"...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/19 12:0 a.m.38 views

Microsoft Game Definition File Editor 6.3.9600 - XML External Entity Injection

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MS-WINDOWS-GAME-DEFINITION-FILE-MAKER-v6.3.9600-XML-EXTERNAL-ENTITY.txt + ISR: ApparitionSec Vendor: ================= www.microsoft.com Product: =========== GDFMaker...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/18 12:0 a.m.68 views

Linksys E Series - Multiple Vulnerabilities

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Linksys E series, see "Vulnerable / tested versions" vulnerable version: see "Vulnerable / tested versions" fixed version: no public fix...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/18 12:0 a.m.57 views

Afian AB FileRun 2017.03.18 - Multiple Vulnerabilities

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Afian AB FileRun vulnerable version: 2017.03.18 fixed version: 2017.09.18 impact: critical homepage: https://www.filerun.com |...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/18 12:0 a.m.39 views

Xen - Pagetable De-typing Unbounded Recursion

Xen allows pagetables of the same level to map each other as readonly in PV domains. This is useful if a guest wants to use the self-referential pagetable trick for easy access to pagetables by mapped virtual address. When cleaning up a pagetable after the last typed reference to it has been...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/18 12:0 a.m.70 views

Check_MK 1.2.8p25 - Information Disclosure

ADVISORY INFORMATION ======================= Product: Checkmk Vendor URL: https://mathias-kettner.de/checkmk.html Type: Race Condition CWE-362 Date found: 2017-09-21 Date published: 2017-10-18 CVSSv3 Score: 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE: CVE-2017-14955 2. CREDITS...

5.9CVSS5.8AI score0.12134EPSS
Exploits5
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.27 views

Career Portal 1.0 - SQL Injection

Exploit Title: Career Portal v1.0 - SQL Injection Date: 2017-10-17 Exploit Author: 8bitsec Vendor Homepage: https://codecanyon.net/item/career-portal-online-job-search-script/20767278 Software Link: https://codecanyon.net/item/career-portal-online-job-search-script/20767278 Version: 1.0 Tested on...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.43 views

Linux Kernel - 'AF_PACKET' Use-After-Free (1)

/ Source: https://blogs.securiteam.com/index.php/archives/3484 Vulnerabilities summary The following advisory describes a use-after-free vulnerability found in Linux Kernel’s implementation of AFPACKET that can lead to privilege escalation. AFPACKET sockets “allow users to send or receive packets...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.45 views

Squid Analysis Report Generator 2.3.10 - Remote Code Execution

Exploit Title: RCE/Arbitrary file write in Squid Analysis Report Generator SARG Google Dork: inurl:sarg-php Date: 01 September 2017 Exploit Author: Pavel Suprunyuk Vendor Homepage: https://sourceforge.net/projects/sarg/ Software Link: https://sourceforge.net/projects/sarg/ Version: Tested on...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.117 views

Shadowsocks - Log File Command Execution

X41 D-Sec GmbH Security Advisory: X41-2017-008 Multiple Vulnerabilities in Shadowsocks ======================================= Overview -------- Confirmed Affected Versions: Latest commit 2ab8c6b on Sep 6 Confirmed Patched Versions: N/A Vendor: Shadowsocks Vendor URL:...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.43 views

Microsoft Windows - 'nt!NtQueryObject (ObjectNameInformation)' Kernel Pool Memory Disclosure

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1303&desc=2 We have discovered that the nt!NtQueryObject syscall handler discloses portions of uninitialized pool memory to user-mode clients when the following conditions are met: a It is invoked with the ObjectNameInformation...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.41 views

Microsoft Edge Chakra - 'StackScriptFunction::BoxState::Box' Accesses to Uninitialized Pointers (Denial of Service)

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1338 Here's a snippet of the method that interprets a javascript function's bytecode. Js::Var Js::InterpreterStackFrame::INTERPRETERLOOPNAME PROBESTACKscriptContext, Js::Constants::MinStackInterpreter; closureInitDone...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.44 views

Microsoft Edge Chakra JIT - Incorrect GenerateBailOut Calling Patterns

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1333 Bailout: "ChakraCore’s background JIT compiler generates highly optimized JIT’ed code based upon the data and infers likely usage patterns based on the profile data collected by the interpreter. Given the dynamic nature of...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.36 views

Microsoft Edge Chakra JIT - 'RegexHelper::StringReplace' Must Call the Callback Function with Updating ImplicitCallFlags

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1334 The "String.prototype.replace" method can be inlined in the JIT process. So in the method, all the calls which may break the JIT assumptions must be invoked with updating "ImplicitCallFlags". But "RegexHelper::StringReplace"...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.50 views

Microsoft Windows 10 - WLDP/MSHTML CLSID UMCI Bypass

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1328 Windows: WLDP/MSHTML CLSID UMCI Bypass Platform: Windows 10 S thought should be anything with UMCI Class: Security Feature Bypass Summary: The enlightened lockdown policy check for COM Class instantiation can be bypassed in...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.735 views

Apple iOS 10.2 (14C92) - Remote Code Execution

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1317c3 The exploit achieves R/W access to the host's physical memory. This exploit has been tested on the iPhone 7, iOS 10.2 14C92. To run the exploit against different devices or versions, the symbols must be adjusted. The attache...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.59 views

OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server does not properly validate input of PUTFILE RPC-command which allows any authenticated user to hijack arbitrary file from Content Server filesystem, because some files on Content Server...

8.8CVSS8.8AI score0.07782EPSS
Exploits4
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.6315 views

Tomcat - Remote Code Execution via JSP Upload Bypass (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Tomcat RCE via JSP Upload Bypass', 'Description' = %q This module uploads a jsp payload and executes it. , 'Author' = 'peewpw', 'License' =...

8.1CVSS8.5AI score0.99988EPSS
Exploits23
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.269 views

TP-Link WR940N - (Authenticated) Remote Code

import urllib2 import base64 import hashlib from optparse import import sys import urllibbanner = "\n" "WR940N Authenticated Remote Code Exploit\n" "This exploit will open a bind shell on the remote target\n" "The port is 31337, you can change that in the code if you wish\n" "This exploit require...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.45 views

WordPress Plugin Car Park Booking - SQL Injection

Exploit Title: Wordpress Plugin Car Park Booking - SQL Injection Date: 2017-10-17 Exploit Author: 8bitsec Vendor Homepage: https://codecanyon.net/item/car-park-booking-wordpress-plugin/20284035 Software Link: https://codecanyon.net/item/car-park-booking-wordpress-plugin/20284035 Version: 13 Octob...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.130 views

Linux Kernel - 'AF_PACKET' Use-After-Free (2)

Vulnerabilities summary The following advisory describes a use-after-free vulnerability found in Linux Kernel’s implementation of AFPACKET that can lead to privilege escalation. AFPACKET sockets “allow users to send or receive packets on the device driver level. This for example lets them to...

7.8CVSS7.8AI score0.00962EPSS
Exploits4
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.41 views

Microsoft Internet Explorer 11 (Windows 7 x86) - 'mshtml.dll' Remote Code Execution (MS17-007)

.class1 float: left; column-count: 5; .class2 column-span: all; columns: 1px; table border-spacing: 0px; var ntdllBase = ""; function infoleak var textarea = document.getElementById"textarea"; var frame = document.createElement"iframe"; textarea.appendChildframe;...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.109 views

Apache Solr 7.0.1 - XML External Entity Expansion / Remote Code Execution

First Vulnerability: XML External Entity Expansion deftype=xmlparser Lucene includes a query parser that is able to create the full-spectrum of Lucene queries, using an XML data structure. Starting from version 5.1 Solr supports "xml" query parser in the search query. The problem is that lucene x...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.66 views

OpenText Documentum Content Server - 'dmr_content' Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to gain privileges of superuser: Content Server stores information about uploaded files in dmrcontent objects, which are queryable...

8.8CVSS8.8AI score0.06639EPSS
Exploits4
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.58 views

OpenText Documentum Content Server - Arbitrary File Download

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to download arbitrary content files regardless attacker's repository permissions: when authenticated user upload content to...

4.3CVSS4.7AI score0.04946EPSS
Exploits4
exploitdb
exploitdb
added 2017/10/17 12:0 a.m.63 views

OpenText Documentum Content Server - Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to gain privileges of superuser: Content Server allows to upload content using batches TAR archives, when unpacking TAR archives...

8.8CVSS8.8AI score0.09494EPSS
Exploits4
Total number of security vulnerabilities47904