Lucene search
K
ExploitdbRecent

47904 matches found

Exploit DB
Exploit DB
added 2021/06/10 12:0 a.m.228 views

Sticky Notes Widget Version 3.0.6 - Denial of Service (PoC)

Exploit Title: Sticky Notes Widget Version 3.0.6 - Denial of Service PoC Date: 06-07-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/us/app/sticky-notes-widget/id1499269608 Version: 3.0.6 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a long lis...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/10 12:0 a.m.540 views

memono Notepad Version 4.2 - Denial of Service (PoC)

Exploit Title: memono Notepad Version 4.2 - Denial of Service PoC Date: 06-09-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/es/app/memono-bloc-de-notas/id906470619 Version: 4.2 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a long list of...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/10 12:0 a.m.415 views

TextPattern CMS 4.8.7 - Stored Cross-Site Scripting (XSS)

Exploit Title: TextPattern CMS 4.8.7 - Stored Cross-Site Scripting XSS Date: 2021/09/06 Exploit Author: Mert Daş [email protected] Software Link: https://textpattern.com/filedownload/113/textpattern-4.8.7.zip Software web: https://textpattern.com/ Tested on: Server: Xampp TextPattern is pron...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/09 12:0 a.m.301 views

GravCMS 1.10.7 - Arbitrary YAML Write/Update (Unauthenticated) (2)

Exploit Title: GravCMS 1.10.7 - Arbitrary YAML Write/Update Unauthenticated 2 Original Exploit Author: Mehmet Ince Vendor Homepage: https://getgrav.org Version: 1.10.7 Tested on: Debian 10 Author: legend /usr/bin/python3 import requests import sys import re import base64 target=...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/09 12:0 a.m.367 views

OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting

Exploit Title: OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting Date: 2021/08/06 Exploit Author: Mert Daş Vendor Homepage: https://www.opencart.com/ Software Link: https://www.opencart.com/index.php?route=cms/download Version: 3.0.3.7 Tested on: Windows 10 Stored Cross-site scriptingXSS:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/09 12:0 a.m.279 views

Intelbras Router RF 301K - 'DNS Hijacking' Cross-Site Request Forgery (CSRF)

Exploit Title: Intelbras Router RF 301K - 'DNS Hijacking' Cross-Site Request Forgery CSRF Date: 01/05/2021 Exploit Author: Rodolfo Mariano Version: Firmware 1.1.2-1.1.5 CVE: 2021-32403 Exploit Code: document.forms0.submit;...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/09 12:0 a.m.352 views

OpenCart 3.0.3.7 - 'Change Password' Cross-Site Request Forgery (CSRF)

Exploit Title : OpenCart 3.0.3.7 - 'Change Password' Cross-Site Request Forgery CSRF Date : 2021/08/06 Exploit Author : Mert Daş [email protected] Software Link : http://www.opencart.com/index.php?route=download/download : https://github.com/opencart Software web : www.opencart.com Tested on...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/09 12:0 a.m.189 views

WordPress Plugin visitors-app 0.3 - 'user-agent' Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin visitors-app 0.3 - 'user-agent' Stored Cross-Site Scripting XSS Date: 09/06/2021 Exploit Author: Mesut Cetin Vendor Homepage: https://profiles.wordpress.org/domingoruiz/ Software Link: https://wordpress.org/plugins/visitors-app/ Version: 0.3 Tested on: Debian...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/08 12:0 a.m.428 views

WordPress Plugin wpDiscuz 7.0.4 - Remote Code Execution (Unauthenticated)

Exploit Title: WordPress Plugin wpDiscuz 7.0.4 - Remote Code Execution Unauthenticated Date: 2021/06/08 Exploit Author: Fellipe Oliveira Vendor Homepage: https://gvectors.com/ Software Link: https://downloads.wordpress.org/plugin/wpdiscuz.7.0.4.zip Version: wpDiscuz 7.0.4 Tested on: Debian9,...

10CVSS9.5AI score0.94535EPSS
Exploits19
Exploit DB
Exploit DB
added 2021/06/08 12:0 a.m.177 views

Nsauditor 3.2.3 - Denial of Service (PoC)

Exploit Title: Nsauditor 3.2.3 - Denial of Service PoC Date: 07/06/2021 Author: Erick Galindo Vendor Homepage: http://www.nsauditor.com Software http://www.nsauditor.com/downloads/nsauditorsetup.exe Version: 3.2.3.0 Tested on: Windows 10 Pro x64 es Proof of Concept: 1.- Copy printed "AAAAA..."...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/08 12:0 a.m.227 views

NBMonitor 1.6.8 - Denial of Service (PoC)

Exploit Title: NBMonitor 1.6.8 - Denial of Service PoC Date: 07/06/2021 Author: Erick Galindo Vendor Homepage: http://www.nsauditor.com Software Link: http://www.nbmonitor.com/downloads/nbmonitorsetup.exe Version: 1.6.8 Tested on: Windows 10 Pro x64 es Proof of Concept: 1.- Copy printed "AAAAA......

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/08 12:0 a.m.307 views

Backup Key Recovery 2.2.7 - Denial of Service (PoC)

Exploit Title: Backup Key Recovery 2.2.7 - Denial of Service PoC Date: 07/06/2021 Author: Erick Galindo Vendor Homepage: http://www.nsauditor.com Software http://www.nsauditor.com/downloads/backeyrecoverysetup.exe Version: 2.2.7.0 Tested on: Windows 10 Pro x64 es Proof of Concept: 1.- Copy printe...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.155 views

WordPress Plugin Smart Slider-3 3.5.0.8 - 'name' Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin Smart Slider-3 3.5.0.8 - 'name' Stored Cross-Site Scripting XSS Exploit Author: Hardik Solanki Date: 05/06/2021 Software Link: https://wordpress.org/plugins/smart-slider-3/ Version: 3.5.0.8 Tested on Windows How to reproduce vulnerability: 1. Install WordPress 5.7....

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.449 views

OptiLink ONT1GEW GPON 2.1.11_X101 Build 1127.190306 - Remote Code Execution (Authenticated)

Exploit Title: OptiLink ONT1GEW GPON 2.1.11X101 Build 1127.190306 - Remote Code Execution Authenticated Date: 23/03/2021 Exploit Authors: Developed by SecNigma and Amal. Vendor Homepage: https://optilinknetwork.com/ Version: ONT1GEW V2.1.11X101 Build.1127.190306 Mitigation: Ask the vendor to issu...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.142 views

Sticky Notes & Color Widgets 1.4.2 - Denial of Service (PoC)

Exploit Title: Sticky Notes & Color Widgets 1.4.2 - Denial of Service PoC Date: 06-04-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/us/app/sticky-notes-color-widgets/id1476063010 Version: 1.4.2 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.907 views

Rocket.Chat 3.12.1 - NoSQL Injection (Unauthenticated)

Title: Rocket.Chat 3.12.1 - NoSQL Injection to RCE Unauthenticated Author: enox Date: 06-06-2021 Product: Rocket.Chat Vendor: https://rocket.chat/ Vulnerable Versions: Rocket.Chat 3.12.1 CVE: CVE-2021-22911 Credits: https://blog.sonarsource.com/nosql-injections-in-rocket-chat !/usr/bin/python...

9.8CVSS9.5AI score0.95242EPSS
Exploits16
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.249 views

IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP

Exploit Title: IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP Date: 2020-05-20 Exploit Author: Austin Babcock Vendor Homepage: https://icofx.ro/ Software Link: https://drive.google.com/file/d/1SONzNStAW3pAPU5IUvsYS3z0jYymEZn/view?usp=sharing Version: 2.6.0.0 Tested on: Windows 7...

9.3CVSS6.4AI score0.66998EPSS
Exploits14
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.366 views

Grav CMS 1.7.10 - Server-Side Template Injection (SSTI) (Authenticated)

Title: Grav CMS 1.7.10 - Server-Side Template Injection SSTI Authenticated Author: enox Date: 06-06-2021 Vendor: https://getgrav.org/ Software Link: https://getgrav.org/download/core/grav-admin/1.7.10 Vulnerable Versions: Grav CMS 1.7.10 CVE: CVE-2021-29440 Credits:...

8.4CVSS7.2AI score0.30623EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/06/07 12:0 a.m.492 views

Wordpress Plugin wpDiscuz 7.0.4 - Arbitrary File Upload (Unauthenticated)

Exploit Title: Wordpress Plugin wpDiscuz 7.0.4 - Arbitrary File Upload Unauthenticated Google Dork: inurl:/wp-content/plugins/wpdiscuz/ Date: 2021-06-06 Original Author: Chloe Chamberland Exploit Author: Juampa Rodríguez aka UnD3sc0n0c1d0 Vendor Homepage: https://gvectors.com/ Software Link:...

10CVSS9.5AI score0.94535EPSS
Exploits19
Exploit DB
Exploit DB
added 2021/06/04 12:0 a.m.203 views

Macaron Notes great notebook 5.5 - Denial of Service (PoC)

Exploit Title: Macaron Notes great notebook 5.5 - Denial of Service PoC Date: 06-04-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/us/app/macaron-notes-great-notebook/id1079862221 Version: 5.5 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a lo...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/04 12:0 a.m.162 views

Color Notes 1.4 - Denial of Service (PoC)

Exploit Title: Color Notes 1.4 - Denial of Service PoC Date: 06-04-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/gt/app/color-notes/id830515136 Version: 1.4 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a long list of characters is being used...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/04 12:0 a.m.210 views

Gitlab 13.10.2 - Remote Code Execution (Authenticated)

Exploit Title: Gitlab 13.10.2 - Remote Code Execution Authenticated Date: 04/06/2021 Exploit Author: enox Vendor Homepage: https://about.gitlab.com/ Software Link: https://gitlab.com/ Version: 13.10.3 Tested On: Ubuntu 20.04 Environment: Gitlab 13.10.2 CE Credits:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/04 12:0 a.m.965 views

Monstra CMS 3.0.4 - Remote Code Execution (Authenticated)

Exploit Title: Monstra CMS 3.0.4 - Remote Code Execution Authenticated Date: 03.06.2021 Exploit Author: Ron Jost hacker5preme Vendor Homepage: https://monstra.org/ Software Link: https://monstra.org/monstra-3.0.4.zip Version: 3.0.4 Tested on: Ubuntu 20.04 CVE: CVE-2018-6383 Documentation:...

8.8CVSS8.7AI score0.13499EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/04 12:0 a.m.165 views

My Notes Safe 5.3 - Denial of Service (PoC)

Exploit Title: My Notes Safe 5.3 - Denial of Service PoC Date: 06-04-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/us/app/my-notes-safe/id689971781 Version: 5.3 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a long list of characters is being...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/04 12:0 a.m.162 views

Inkpad Notepad & To do list 4.3.61 - Denial of Service (PoC)

Exploit Title: Inkpad Notepad & To do list 4.3.61 - Denial of Service PoC Date: 2021-06-03 Author: Brian Rodríguez Download Link: https://play.google.com/store/apps/details?id=com.workpail.inkpad.notepad.notes&hl=esMX Version: 4.3.61 Category: DoS Android Vulnerability InkPad Bloc de notas - Tare...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.175 views

4Images 1.8 - 'redirect' Reflected XSS

Exploit Title: 4Images 1.8 - 'redirect' Reflected XSS Exploit Author: Piyush Patil Vendor Homepage: https://www.4homepages.de/ Software Link: https://www.4homepages.de/?download=4images1.8.zip&code=81da0c7b5208e172ea83d879634f51d6 Version: 4Images Gallery 1.8 Tested on: Windows 10 and Kali CVE :...

4.8CVSS5.2AI score0.02204EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.338 views

Gitlab 13.9.3 - Remote Code Execution (Authenticated)

Exploit Title: Gitlab 13.9.3 - Remote Code Execution Authenticated Date: 02/06/2021 Exploit Author: enox Vendor Homepage: https://about.gitlab.com/ Software Link: https://gitlab.com/ Version: 13.9.4 Tested On: Ubuntu 20.04 Environment: Gitlab 13.9.1 CE Credits: https://hackerone.com/reports/11254...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.183 views

Seo Panel 4.8.0 - 'from_time' Reflected XSS

Exploit Title: Seo Panel 4.8.0 - 'fromtime' Reflected XSS Date: 23-03-2021 Exploit Author: Piyush Patil Vendor Homepage: https://www.seopanel.org/ Version: Seo Panel 4.8.0 Tested on: Windows 10 and Kali CVE : CVE-2021-28420 -Description: A cross-site scripting XSS issue in Seo Panel 4.8.0 allows...

4.8CVSS5.2AI score0.01933EPSS
Exploits3
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.258 views

CHIYU IoT Devices - 'Telnet' Authentication Bypass

Exploit Title: CHIYU IoT Devices - 'Telnet' Authentication Bypass Date: 01/06/2021 Exploit Author: sirpedrotavares Vendor Homepage: https://www.chiyu-tech.com/msg/msg88.html Software Link: https://www.chiyu-tech.com/category-hardware.html Version: BF-430, BF-431, BF-450M, and SEMAC - all firmware...

9.8CVSS9.7AI score0.35714EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.202 views

FUDForum 3.1.0 - 'srch' Reflected XSS

Exploit Title: FUDForum 3.1.0 - 'srch' Reflected XSS Exploit Author: Piyush Patil Vendor Homepage: http://fudforum.org/ Software Link: https://sourceforge.net/projects/fudforum/files/FUDforum3.1.0.zip/download Version: FUDForum 3.1.0 Tested on: Windows 10 and Kali CVE : CVE-2021-27519 -Descriptio...

6.1CVSS6.3AI score0.07604EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.257 views

PHP 8.1.0-dev - 'User-Agentt' Remote Code Execution

Exploit Title: PHP 8.1.0-dev - 'User-Agentt' Remote Code Execution Date: 23 may 2021 Exploit Author: flast101 Vendor Homepage: https://www.php.net/ Software Link: - https://hub.docker.com/r/phpdaily/php - https://github.com/phpdaily/php Version: 8.1.0-dev Tested on: Ubuntu 20.04 References: -...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.207 views

FUDForum 3.1.0 - 'author' Reflected XSS

Exploit Title: FUDForum 3.1.0 - 'author' Reflected XSS Exploit Author: Piyush Patil Vendor Homepage: http://fudforum.org/ Software Link: https://sourceforge.net/projects/fudforum/files/FUDforum3.1.0.zip/download Version: FUDForum 3.1.0 Tested on: Windows 10 and Kali CVE : CVE-2021-27520...

6.1CVSS6.3AI score0.06396EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.709 views

CHIYU IoT Devices - Denial of Service (DoS)

Exploit Title: CHIYU IoT Devices - Denial of Service DoS Date: 01/06/2021 Exploit Author: sirpedrotavares Vendor Homepage: https://www.chiyu-tech.com/msg/msg88.html Software Link: https://www.chiyu-tech.com/category-hardware.html Version: BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC - all...

6.8CVSS6.6AI score0.4367EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.175 views

Blacknote 2.2.1 - Denial of Service (PoC)

Exploit Title: Blacknote 2.2.1 - Denial of Service PoC Date: 2021-06-02 Author: Brian Rodríguez Download Link: https://play.google.com/store/apps/details?id=notepad.note.notas.notes.notizen&hl=esMX Version: 2.2.1 Category: DoS Android Vulnerability BlackNote Bloc de notas is vulnerable to a DoS...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.183 views

Notepad notes 2.6.7 - Denial of Service (PoC)

Exploit Title: Notepad notes 2.6.7 - Denial of Service PoC Date: 2021-06-02 Author: Brian Rodríguez Download Link: https://play.google.com/store/apps/details?id=com.hlcsdev.x.notepad&hl=esMX Version: 2.6.7 Category: DoS Android Vulnerability Bloc de notas is vulnerable to a DoS condition when a...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.183 views

ColorNote 4.1.9 - Denial of Service (PoC)

Exploit Title: ColorNote 4.1.9 - Denial of Service PoC Date: 2021-06-02 Author: Brian Rodríguez Download Link: https://play.google.com/store/apps/details?id=com.socialnmobile.dictapps.notepad.color.note&hl=esMX Version: 4.1.9 Category: DoS Android Vulnerability Color Note is vulnerable to a DoS...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/03 12:0 a.m.177 views

BasicNote 1.1.9 - Denial of Service (PoC)

Exploit Title: BasicNote 1.1.9 - Denial of Service PoC Date: 2021-06-02 Author: Brian Rodríguez Download Link: https://play.google.com/store/apps/details?id=notizen.basic.notes.notas.note.notepad&hl=esMX Version: 1.1.9 Category: DoS Android Vulnerability BasicNote - Notas, Bloc de notas is...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.174 views

Seo Panel 4.8.0 - 'category' Reflected XSS

Exploit Title: Seo Panel 4.8.0 - 'category' Reflected XSS Date: 22-03-2021 Exploit Author: Piyush Patil Vendor Homepage: https://www.seopanel.org/ Software Link: https://github.com/seopanel/Seo-Panel/releases/tag/4.8.0 Version: Seo Panel 4.8.0 Tested on: Windows 10 and Kali CVE : CVE-2021-28418...

4.8CVSS5.2AI score0.01871EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.220 views

GetSimple CMS 3.3.4 - Information Disclosure

Exploit Title: GetSimple CMS 3.3.4 - Information Disclosure Date 01.06.2021 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: http://get-simple.info/ Software Link: https://github.com/GetSimpleCMS/GetSimpleCMS/archive/refs/tags/v3.3.4.zip Version: 3.3.4 CVE: CVE-2014-8722 Documentation:...

7.5CVSS7AI score0.14374EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.403 views

Intel(R) Audio Service x64 01.00.1080.0 - 'IntelAudioService' Unquoted Service Path

Exploit Title: IntelR Audio Service x64 01.00.1080.0 - 'IntelAudioService' Unquoted Service Path Date: 06-01-2021 Exploit Author: Geovanni Ruiz Vendor Homepage: https://www.intel.com Software Version: 01.00.1080.0 File Version: 1.00.1080.0 Tested on: Microsoft® Windows 10 Home Single Language...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.168 views

Thecus N4800Eco Nas Server Control Panel - Comand Injection

Exploit Title: Thecus N4800Eco Nas Server Control Panel - Comand Injection Date: 01/06/2021 Exploit Author: Metin Yunus Kandemir Vendor Homepage: http://www.thecus.com/ Software Link: http://www.thecus.com/product.php?PRODID=83 Version: N4800Eco Description:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.194 views

Seo Panel 4.8.0 - 'search_name' Reflected XSS

Exploit Title: Seo Panel 4.8.0 - 'searchname' Reflected XSS Date: 21-03-2021 Exploit Author: Piyush Patil Vendor Homepage: https://www.seopanel.org/ Software Link: https://github.com/seopanel/Seo-Panel/releases/tag/4.8.0 Version: Seo Panel 4.8.0 Tested on: Windows 10 and Kali CVE : CVE-2021-28417...

4.8CVSS5.2AI score0.01871EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.203 views

Products.PluggableAuthService 2.6.0 - Open Redirect

Exploit Title: Products.PluggableAuthService 2.6.0 - Open Redirect Exploit Author: Piyush Patil Affected Component: Pluggable Zope authentication/authorization framework Component Link: https://pypi.org/project/Products.PluggableAuthService/ Version: =2.6.1"...

6.1CVSS6.3AI score0.08443EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.680 views

Apache Airflow 1.10.10 - 'Example Dag' Remote Code Execution

Exploit Title: Apache Airflow 1.10.10 - 'Example Dag' Remote Code Execution Date: 2021-06-02 Exploit Author: Pepe Berba Vendor Homepage: https://airflow.apache.org/ Software Link: https://airflow.apache.org/docs/apache-airflow/stable/installation.html Version: = 1.10.10 Tested on: Docker...

9.8CVSS9.3AI score0.9967EPSS
Exploits10
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.474 views

Veyon 4.4.1 - 'VeyonService' Unquoted Service Path

Exploit Title: Veyon 4.4.1 - 'VeyonService' Unquoted Service Path Discovery by: Víctor García Discovery Date: 2020-03-23 Vendor Homepage: https://veyon.io/ Software Link: https://github.com/veyon/veyon/releases/download/v4.4.1/veyon-4.4.1.0-win64-setup.exe Tested Version: 4.4.1 Vulnerability Type...

8CVSS7.2AI score0.11255EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.375 views

CHIYU TCP/IP Converter devices - CRLF injection

Exploit Title: CHIYU TCP/IP Converter devices - CRLF injection Date: May 31 2021 Exploit Author: sirpedrotavares Vendor Homepage: https://www.chiyu-tech.com/msg/msg88.html Software Link: https://www.chiyu-tech.com/category-hardware.html Version: BF-430, BF-431, and BF-450M TCP/IP Converter device...

6.5CVSS6.5AI score0.18003EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.222 views

WordPress Plugin WP Prayer version 1.6.1 - 'prayer_messages' Stored Cross-Site Scripting (XSS) (Authenticated)

Exploit Title: WordPress Plugin WP Prayer version 1.6.1 - 'prayermessages' Stored Cross-Site Scripting XSS Authenticated Date: 2021-05-31 Exploit Author: Bastijn Ouwendijk Vendor Homepage: http://goprayer.com/ Software Link: https://wordpress.org/plugins/wp-prayer/ Version: 1.6.1 and earlier Test...

5.4CVSS5.5AI score0.00698EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.609 views

LogonTracer 1.2.0 - Remote Code Execution (Unauthenticated)

Exploit Title: LogonTracer 1.2.0 - Remote Code Execution Unauthenticated Date: 29/05/2021 Exploit Author: g0ldm45k Vendor Homepage: https://www.jpcert.or.jp/ Software Link: https://github.com/JPCERTCC/LogonTracer/releases/tag/v1.2.0 Version: 1.2.0 and earlier Tested on: Version 1.2.0 on Debian...

10CVSS9.6AI score0.74745EPSS
Exploits3
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.271 views

Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery (CSRF)

Exploit Title: Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery CSRF Date: 2021-05-30 Exploit Author: lated Vendor Homepage: https://www.ubeeinteractive.com Version: EVW327 document.forms0.submit;...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/06/01 12:0 a.m.722 views

ProjeQtOr Project Management 9.1.4 - Remote Code Execution

Exploit Title: ProjeQtOr Project Management 9.1.4 - Remote Code Execution Date: 29.05.2021 Exploit Author: Temel Demir Vendor Homepage: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV9.1.4.zip Version: v9.1.4 Tested on: Laragon @WIN10...

7.4AI score
Exploits0
Total number of security vulnerabilities47904