EMC AlphaStor Library Manager < 4.0 build 910 - Opcode 0x4f Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'EMC AlphaStor Library Manager Opcode 0x4f', 'Description' = %q This module exploits a stack based buffer overflow found in EMC Alphastor Library Manager version 'james fitts' , 'License' = MSFLICENSE, 'References' = 'URL',...

PTC KSV1 Script 1.7 - 'type' SQL Injection

Exploit Title: PTC KSV1 Script 1.7 - SQL Injection Dork: N/A Date: 14.09.2017 Vendor Homepage: https://www.goterhosting.com/ Software Link: https://www.goterhosting.com/ptc-ksv1.php Demo: http://www.ksv1demo.gvmhosting.com/ Version: 1.7 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A...

Lockstep Backup for Workgroups 4.0.3 - Remote Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'Lockstep Backup for Workgroups %q This module exploits a stack buffer overflow found in Lockstep Backup for Workgroups 'james fitts' , 'License' = MSFLICENSE, 'Version' = '$Revision: $', 'References' = 'URL', 'http://secunia.com/advisories/50260/' ,...

ICHelpDesk 1.1 - 'pk' SQL Injection

Exploit Title: Support Tickets Helpdesk PHP Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/support-tickets-helpdesk-script.htm Demo: http://icloudcenter.net/demos/ichelpdesk/ Version: 1.1 Category:...

ICDental Clinic 1.2 - 'key' SQL Injection

Exploit Title: Dental Clinic Site Script 1.2 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/dental-clinic-script.htm Demo: http://icloudcenter.net/demos/icdentalclinic/ Version: 1.2 Category: Webapps Tested on:...

IC-T-Shirt 1.2 - 'key' SQL Injection

Exploit Title: Custom T-Shirt WebStore Script 1.2 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/t-shirt.htm Demo: http://icloudcenter.net/demos/ictshirt/ Version: 1.2 Category: Webapps Tested on:...

ICClassifieds 1.1 - SQL Injection

Exploit Title: Classifieds Software Script Like Craigslist 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/craigslist-like-classifieds-script.htm Demo: http://icloudcenter.net/demos/icclassifieds/ Version: 1.1...

Alienvault OSSIM av-centerd 4.7.0 - 'get_log_line' Command Injection (Metasploit)

require 'msf/core' require 'rexml/document' class MetasploitModule 'Alienvault OSSIM av-centerd Command Injection getlogline', 'Description' = %q This module exploits a command injection flaw found in the getlogline function found within Util.pm. The vulnerability is triggered due to an unsanitiz...

Carel PlantVisor 2.4.4 - Directory Traversal Information Disclosure (Metasploit)

require 'msf/core' class MetasploitModule 'Carel Pl@ntVisor Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability found in Carel Pl@ntVisor 'james fitts' , 'License' = MSFLICENSE, 'References' = 'CVE', '2011-3487' , 'BID', '49601' , , 'DisclosureDate' =...

EMC CMCNE Inmservlets.war FileUploadController 11.2.1 - Remote Code Execution (Metasploit)

require 'msf/core' class MetasploitModule 'EMC CMCNE Inmservlets.war FileUploadController Remote Code Execution', 'Description' = %q This module exploits a file upload vulnerability found in EMC Connectrix Manager Converged Network Edition 'james fitts' , 'License' = MSFLICENSE, 'References' =...

ZScada Modbus Buffer 2.0 - Stack Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'ZScada Net Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Z-Scada Net 2.0. The vulnerability is triggered when parsing the response to a Modbus packet. , 'Author' = 'james fitts' , 'License' = MSFLICENSE,...

ICEstate 1.1 - 'id' SQL Injection

Exploit Title: Real Estate Marketplace Site ASP.NET Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/real-estate-marketplace-site.htm Demo: http://www.icloudcenter.com/demos/icestatemarket/ Version: 1.1...

ICProjectBidding 1.1 - SQL Injection

Exploit Title: Project Bidding Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/projectbiddingscript.htm Demo: http://www.icloudcenter.net/demos/icprojectbidding/ Version: 1.1 Category: Webapps Tested on...

Mako Web Server 2.5 - Multiple Vulnerabilities

SSD Beyond Security: https://blogs.securiteam.com/index.php/archives/3391 + Credits: John Page a.k.a hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MAKO-WEB-SERVER-MULTIPLE-UNAUTHENTICATED-VULNERABILIITIES-SECURITEAM.txt + ISR: ApparitionSec...

ICDoctor Appointment 1.3 - 'key' SQL Injection

Exploit Title: Doctor Appointment Script 1.3 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/doctor-appointment-script.htm Demo: http://icloudcenter.net/demos/icdoctorappointment/ Version: 1.3 Category: Webapps...

Motorola Netopia Netoctopus SDCS - Remote Stack Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'Motorola Netopia Netoctopus SDCS Stack Buffer Overflow', 'Description' = %q This module exploits a vulnerability within the code responsible for parsing client requests. When reading in a request from the network, a 32-bit integer is read in that specifi...

Indusoft Web Studio - Directory Traversal Information Disclosure (Metasploit)

require 'msf/core' class MetasploitModule 'Indusoft Web Studio Directory Traversal', 'Description' = %q This module exploits a flaw found in Indusoft Web Studio 'James Fitts' , 'License' = MSFLICENSE, 'Version' = '$Revision: $', 'References' = 'CVE', '2014-0780' , 'ZDI', '14-118/' , 'URL',...

Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'Sielco Sistemi Winlog %q This module exploits a stack based buffer overflow found in Sielco Sistemi Winlog 'James Fitts' , 'License' = MSFLICENSE, 'Version' = '$Revision: $', 'References' = , 'Privileged' = true, 'DefaultOptions' = 'EXITFUNC' = 'thread',...

ICAffiliateTracking 1.1 - Authentication Bypass

Exploit Title: Affiliate Tracking Script 1.1 - Authentication Bypass Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/affiliates-tracking-script.htm Demo: http://www.icloudcenter.com/demos/icaffiliatetracking/ Version: 1.1 Categor...

ICDutchAuction 1.2 - SQL Injection

Exploit Title: Dutch Auction Script 1.2 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/dutch-auction-script.htm Demo: http://icloudcenter.net/demos/icdutchauction/ Version: 1.2 Category: Webapps Tested on:...

ICRestaurant software 1.4 - 'key' SQL Injection

Exploit Title: Restaurant Site Script 1.4 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/restaurant-site-script.htm Demo: http://icloudcenter.net/demos/icrestaurant/ Version: 1.4 Category: Webapps Tested on:...

Astaro Security Gateway 7 - Remote Code Execution

!/usr/bin/python Astaro Security Gateway v7 - Unauthenticated Remote Code Execution Exploit Authors: Jakub Palaczynski and Maciej Grabiec Tested on versions: 7.500 and 7.506 Date: 13.12.2016 Vendor Homepage: https://www.sophos.com/ CVE: CVE-2017-6315 import socket import sys import os import...

Dameware Mini Remote Control 4.0 - Username Stack Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'Dameware Mini Remote Control Username Stack Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow vulnerability found in Dameware Mini Remote Control v4.0. The overflow is caused when sending an overly long username to t...

ICMLM 2.1 - 'key' SQL Injection

Exploit Title: MLM Software Script 2.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/mlm-script.htm Demo: http://www.icloudcenter.net/demos/icmlm/ Version: 2.1 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64...

ICLowBidAuction 3.3 - SQL Injection

Exploit Title: Unique Low Bid Auction Script 3.3 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/unique-low-bid-auction-script.htm Demo: http://www.icloudcenter.net/demos/iclowbidauction/ Version: 3.3 Category:...

Infinite Automation Mango Automation - Command Injection (Metasploit)

require 'msf/core' class MetasploitModule 'Infinite Automation Mango Automation Command Injection', 'Description' = %q This module exploits a command injection vulnerability found in Infinite Automation Systems Mango Automation v2.5.0 - 2.6.0 beta builds prior to 430. , 'Author' = 'james fitts' ,...

ICSiteBuilder 1.1 - SQL Injection

Exploit Title: Website Builder Script With e-Commerce 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/site-builder-script.htm Demo: http://icloudcenter.net/demos/icsitebuilder/ Version: 1.1 Category: Webapps...

Foodspotting Clone 1.0 - SQL Injection

Exploit Title: Foodspotting Clone v1.0 - SQL Injection/Reflected XSS Date: 2017-09-13 Exploit Author: 8bitsec Vendor Homepage: http://www.phpscriptsmall.com/ Software Link: http://www.phpscriptsmall.com/product/foodspotting-clone/ Version: 1.0 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email:...

Microsoft Windows .NET Framework - Remote Code Execution

Source: https://github.com/Voulnet/CVE-2017-8759-Exploit-sample Running CVE-2017-8759 exploit sample. Flow of the exploit: Word macro runs in the Doc1.doc file. The macro downloads a badly formatted txt file over wsdl, which triggers the WSDL parser log. Then the parsing log results in running...

Alienvault OSSIM av-centerd - Util.pm sync_rserver Command Execution (Metasploit)

require 'msf/core' class MetasploitModule 'Alienvault OSSIM av-centerd Util.pm syncrserver Command Execution', 'Description' = %q This module exploits a command injection vulnerability found within the syncrserver function in Util.pm. The vulnerability is triggered due to an incomplete blacklist...

ICProductConfigurator 1.1 - 'key' SQL Injection

Exploit Title: Customized Products Shopping Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/bpProductConfigurator.htm Demo: http://icloudcenter.net/demos/icproductconfigurator/ Version: 1.1 Category:...

ICStudents 1.2 - 'key' SQL Injection

Exploit Title: Students Course Assessment Test Script 1.2 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/student-course-assessment-test-script.htm Demo: http://icloudcenter.net/demos/icstudents/ Version: 1.2...

Trend Micro Control Manager - ImportFile Directory Traversal Remote Code Execution (Metasploit)

require 'msf/core' require 'msf/core/exploit/phpexe' class MetasploitModule 'Trend Micro Control Manager importFile Directory Traversal RCE', 'Description' = %q This module exploits a directory traversal vulnerability found in Trend Micro Control Manager. The vulnerability is triggered when sendi...

Viap Automation WinPLC7 5.0.45.5921 - Recv Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'VIPA Authomation WinPLC7 recv Stack Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in VIPA Automation WinPLC7 'james fitts' , 'License' = MSFLICENSE, 'References' = 'ZDI', '17-112' , 'CVE', '2017-5177' ,...

ICGrocery 1.1 - 'key' SQL Injection

Exploit Title: Grocery Store Supermarket Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/grocery-store-supermarket-script.htm Demo: http://icloudcenter.net/demos/icgrocery/ Version: 1.1 Category: Webapp...

ICAutosales 2.2 - SQL Injection

Exploit Title: Auto Dealer Car Sales PHP Script 2.2 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/auto-dealer-car-sales-script.htm Demo: http://icloudcenter.net/demos/icautosales/ Version: 2.2 Category: Webapps...

ICAuction 2.2 - 'id' SQL Injection

Exploit Title: eBay like Auction PHP Script 2.2 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/ebay-like-auction-script.htm Demo: http://icloudcenter.net/demos/icauction/ Version: 2.2 Category: Webapps Tested on:...

EMC CMCNE 11.2.1 - FileUploadController Remote Code Execution (Metasploit)

require 'msf/core' class MetasploitModule 'EMC CMCNE FileUploadController Remote Code Execution', 'Description' = %q This module exploits a fileupload vulnerability found in EMC Connectrix Manager Converged Network Edition MSFLICENSE, 'Author' = 'james fitts' , 'References' = 'ZDI', '13-279' ,...

Cloudview NMS < 2.00b - Arbitrary File Upload (Metasploit)

require 'msf/core' class MetasploitModule 'Cloudview NMS File Upload', 'Description' = %q This module exploits a file upload vulnerability found within Cloudview NMS 'james fitts' , 'License' = MSFLICENSE, 'References' = 'URL', '0day' , 'DefaultOptions' = 'EXITFUNC' = 'thread', , 'Privileged' =...

ICJewelry 1.1 - 'key' SQL Injection

Exploit Title: Jewelry Store Site Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/jewelry-site-script.htm Demo: http://icloudcenter.net/demos/icjewelry/ Version: 1.1 Category: Webapps Tested on:...

ICCallLimousine 1.1 - 'key' SQL Injection

Exploit Title: Car Rental Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/limousine-car-hire-script.html Demo: http://icloudcenter.net/demos/iccalllimousine/ Version: 1.1 Category: Webapps Tested on:...

ICTraveling 2.2 - Authentication Bypass

Exploit Title: Travel Site Script 2.2 - Authentication Bypass Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/traveling-website-script.htm Demo: http://icloudcenter.net/demos/ICPenny/ Version: 2.2 Category: Webapps Tested on:...

Carlo Gavazzi Powersoft 2.1.1.1 - Directory Traversal File Disclosure (Metasploit)

require 'msf/core' class MetasploitModule 'Carlo Gavazzi Powersoft Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability found in Carlo Gavazzi Powersoft 'james fitts' , 'License' = MSFLICENSE, 'References' = 'URL', 'http://gleg.net/agorascadaupd.shtml'...

Fatek Automation PLC WinProladder 3.11 Build 14701 - Stack Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'Fatek Automation PLC WinProladder Stack-based Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Fatek Automation PLC WinProladder v3.11 Build 14701. The vulnerability is triggered when a client connects to a...

ICSurvey 1.1 - SQL Injection

Exploit Title: ICSurvey- Survey Creating Script 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/survey-creating-script.htm Demo: http://icloudcenter.net/demos/icsurvey/ Version: 1.1 Category: Webapps Tested on...

ICHotelReservation 3.3 - 'key' SQL Injection

Exploit Title: Hotel Reservation Site Script 3.3 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/hotel-reservation-site-script.htm Demo: http://icloudcenter.net/demos/ichotelreservation/ Version: 3.3 Category:...

inClick Cloud Server 5.0 - SQL Injection

Exploit Title: inClick Cloud Server 5.0 - SQL Injection Dork: N/A Date: 12.09.2017 Vendor Homepage: http://www.inclick.net/ Software Link: http://www.inclick.net/pageid/demo.html Demo: http://www.inclick.net/pageid/demo.html Version: 5.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A...

D-Link DIR-8xx Routers - Local Firmware Upload

!/bin/bash If you have access to an ethernet port you can upload custom firmware to a device because system recovery service is started and available for a few seconds after restart. E-DB Note: https://embedi.com/blog/enlarge-your-botnet-top-d-link-routers-dir8xx-d-link-routers-cruisin-bruisin E-...

Consumer Review Script 1.0 - SQL Injection

Exploit Title: Consumer Review Script v1.0 - SQL Injection Date: 2017-09-12 Exploit Author: 8bitsec Vendor Homepage: http://www.phpscriptsmall.com/product/consumer-review-script/ Software Link: http://www.phpscriptsmall.com/product/consumer-review-script/ Version: 1.0 Tested on: Kali Linux 2.0 |...

FoodStar 1.0 - SQL Injection

Exploit Title: FoodStar Swiggy Clone Script 1.0 - SQL Injection Dork: N/A Date: 12.09.2017 Vendor Homepage: https://www.abservetech.com/ Software Link: https://www.abservetech.com/foodstar-swiggy-clone/ Demo: http://abservetechdemo.com/products/foodstar/ Version: 1.0 Category: Webapps Tested on:...