Lucene search
K
ExploitpackMost viewed

41207 matches found

exploitpack
exploitpack
added 2016/07/06 12:0 a.m.36 views

Advanced Webhost Billing System (AWBS) 2.9.6 - Multiple Vulnerabilities

Advanced Webhost Billing System AWBS 2.9.6 - Multiple Vulnerabilities AWBS v2.9.6 Multiple Remote Vulnerabilities Vendor: Total Online Solutions, Inc. Product web page: http://www.awbs.com Affected version: 2.9.6 Platform: PHP Summary: Whether starting new or looking to expand your existing web...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2016/06/21 12:0 a.m.36 views

Linux Kernel - ecryptfs proc$pidenviron Local Privilege Escalation

Linux Kernel - ecryptfs proc$pidenviron Local Privilege Escalation Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=836 Stacking filesystems, including ecryptfs, protect themselves against deep nesting, which would lead to kernel stack overflow, by tracking the recursion depth of...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2016/05/10 12:0 a.m.36 views

JVC HDRs Net (Multiple Cameras) - Multiple Vulnerabilities

JVC HDRs Net Multiple Cameras - Multiple Vulnerabilities | | | | \ |\ \ \ / - | | | | - /| //||||,|.// www.orwelllabs.com security advisory olsa-2016-04-01 Adivisory Information +++++++++++++++++++++++ + Title: JVC Multiple Products Multiple Vulnerabilities + Vendor: JVC Professional Video +...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2016/04/28 12:0 a.m.36 views

PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow

PHP 7.0.5 - ZipArchive::getFrom Integer Overflow Details ======= An integer wrap may occur in PHP 7.x before version 7.0.6 when reading zip files with the getFromIndex and getFromName methods of ZipArchive, resulting in a heap overflow. php-7.0.5/ext/zip/phpzip.c ,---- | 2679 static void...

7.5CVSS0.6AI score0.5851EPSS
Exploits5
exploitpack
exploitpack
added 2016/04/27 12:0 a.m.36 views

Microsoft Windows - CSRSS BaseSrvCheckVDM Session 0 Process Creation Privilege Escalation (MS16-048)

Microsoft Windows - CSRSS BaseSrvCheckVDM Session 0 Process Creation Privilege Escalation MS16-048 / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=692 Windows: CSRSS BaseSrvCheckVDM Session 0 Process Creation EoP Platform: Windows 8.1, not tested on Windows 10 or 7 Class:...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2016/04/13 12:0 a.m.36 views

Oracle Application Testing Suite (ATS) 12.4.0.2.0 - Authentication Bypass Arbitrary File Upload

Oracle Application Testing Suite ATS 12.4.0.2.0 - Authentication Bypass Arbitrary File Upload Exploit Title: Oracle Application Testing Suite Authentication Bypass and Arbitrary File Upload Remote Exploit Exploit Author: Zhou Yu Vendor Homepage: http://www.oracle.com/ Software Link:...

6.4CVSS0.2AI score0.92719EPSS
Exploits7
exploitpack
exploitpack
added 2016/04/07 12:0 a.m.36 views

PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities

PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities | | | | | | | | | | | | / | '\ \ /\ / / \ | | |/ | ' / | | | | \ V V / / | | | | | | \ \ /|| // ||||,|./|/ Security Adivisory 2016-04-06 www.orwelllabs.com Twitter:@orwelllabs mantra: ...not affect a product that is in...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2016/04/04 12:0 a.m.36 views

Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow

Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow !/usr/bin/python Meta information Exploit Title: Hexchat IRC client - CAP LS Handling Stack Buffer Overflow Date: 2016-02-07 Exploit Author: PizzaHatHacker Vendor Homepage: https://hexchat.github.io/index.html Software Link:...

5CVSS7.7AI score0.34652EPSS
Exploits5
exploitpack
exploitpack
added 2016/03/28 12:0 a.m.37 views

FireEye - Malware Input Processor Privilege Escalation

FireEye - Malware Input Processor Privilege Escalation Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=670 The mip user is already quite privileged, capable of accessing sensitive network data. However, as the child process has supplementary gid contents, there is a very simple...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2016/03/09 12:0 a.m.36 views

Adobe Digital Editions 4.5.0 - .pdf Critical Memory Corruption

Adobe Digital Editions 4.5.0 - .pdf Critical Memory Corruption Title: Adobe Digital Editions = 4.5.0 - Critical memory corruption Application: Adobe Digital Editions Version: 4.5.0 and earlier versions Platform: Windows, Macintosh, iOS and Android Software Link:...

10CVSS9.6AI score0.19128EPSS
Exploits3
exploitpack
exploitpack
added 2016/02/19 12:0 a.m.36 views

Chamilo LMS IDOR - messageId Delete POST Injection

Chamilo LMS IDOR - messageId Delete POST Injection Document Title: =============== Chamilo LMS IDOR - messageId Delete POST Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1720 Video: https://www.youtube.com/watch?v=3ApPhUIk12Y Relea...

7.7AI score
Exploits0
exploitpack
exploitpack
added 2016/02/15 12:0 a.m.36 views

Delta Industrial Automation DCISoft 1.12.09 - Local Stack Buffer Overflow

Delta Industrial Automation DCISoft 1.12.09 - Local Stack Buffer Overflow !/usr/bin/env python Delta Industrial Automation DCISoft 1.12.09 Stack Buffer Overflow Exploit Vendor: Delta Electronics, Inc. Product web page: http://www.delta.com.tw Software link:...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2016/01/13 12:0 a.m.36 views

WhatsUp Gold 16.3 - Remote Code Execution

WhatsUp Gold 16.3 - Remote Code Execution Exploit Title: WhatsUp Gold v16.3 Unauthenticated Remote Code Execution Date: 2016-01-13 Exploit Author: Matt Buzanowski Vendor Homepage: http://www.ipswitch.com/ Version: 16.3.x Tested on: Windows 7 x86 CVE : CVE-2015-8261 Usage: python...

7.5CVSS0.3AI score0.0355EPSS
Exploits4
exploitpack
exploitpack
added 2015/11/23 12:0 a.m.36 views

Nvidia Stereoscopic 3D Driver Service 7.17.13.5382 - Arbitrary Run Key Creation

Nvidia Stereoscopic 3D Driver Service 7.17.13.5382 - Arbitrary Run Key Creation Source: https://code.google.com/p/google-security-research/issues/detail?id=515 NVIDIA: Stereoscopic 3D Driver Service Arbitrary Run Key Creation Platform: Windows, NVIDIA Service Version 7.17.13.5382 Class: Elevation...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2015/11/16 12:0 a.m.36 views

D-Link DIR-815 DIR-850L - SSDP Command Injection

D-Link DIR-815 DIR-850L - SSDP Command Injection Advisory Information Title: SSDP command injection using UDP for a lot of Dlink routers including DIR-815, DIR-850L Vendors contacted: William Brown Dlink Release mode: Released CVE: None Note: All these security issues have been discussed with the...

7.8AI score
Exploits0
exploitpack
exploitpack
added 2015/10/18 12:0 a.m.36 views

Tomabo MP4 Player 3.11.6 - Local Stack Overflow (SEH)

Tomabo MP4 Player 3.11.6 - Local Stack Overflow SEH !/usr/bin/python Exploit Title: Tomabo MP4 Player 3.11.6 SEH Based Stack Overflow Exploit Author: @yokoacc, @nudragn, @runggareksya Vendor Homepage: http://www.tomabo.com/ Software Link: http://www.tomabo.com/mp4-player/download.html Vulnerable...

Exploits0
exploitpack
exploitpack
added 2015/09/03 12:0 a.m.36 views

Tenda N3 Wireless N150 Router - Authentication Bypass

Tenda N3 Wireless N150 Router - Authentication Bypass Exploit Title: Complete Authentication Bypass In Tenda N3 Wireless N150 Routers Date: 03-09-2015 Software Link: http://tendacn.com/en/product/N150.html Exploit Author: Mandeep Jadon Contact: http://twitter.com/1337tr0lls Website:...

10CVSS1AI score0.19065EPSS
Exploits3
exploitpack
exploitpack
added 2015/07/16 12:0 a.m.36 views

4 TOTOLINK Router Models - Backdoor Credentials

4 TOTOLINK Router Models - Backdoor Credentials Advisory Information Title: Backdoor credentials found in 4 TOTOLINK router models Advisory URL: https://pierrekim.github.io/advisories/2015-totolink-0x03.txt Blog URL:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/07/08 12:0 a.m.36 views

Symantec Endpoint Protection 12.1.4013 - Service Disabling

Symantec Endpoint Protection 12.1.4013 - Service Disabling Exploit Title: Antivirus Google Dork: intitle: Antivirus Date: 2015-07-07 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: www.symantec.com Software Link: www.symantec.com/endpoint-protection...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2015/06/29 12:0 a.m.37 views

Endian Firewall 3.0.0 - OS Command Injection (Metasploit)

Endian Firewall 3.0.0 - OS Command Injection Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Endian Firewall %q This module exploits an OS command injection vulnerabilit...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2015/04/02 12:0 a.m.36 views

phpSFP Schedule Facebook Posts 1.5.6 - SQL Injection

phpSFP Schedule Facebook Posts 1.5.6 - SQL Injection | | / | \ | |/ |/ | / | | | | | | | | | | | | | / \ | | | || || | |\ | || | | / | | |/|| ||// \| phpSFP - Schedule Facebook Posts 1.5.6 SQL Injection 0-day Website : http://codecanyon.net/item/phpsfp-schedule-facebook-posts/5177393...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2015/03/27 12:0 a.m.36 views

Acunetix 9.5 - OLE Automation Array Remote Code Execution

Acunetix 9.5 - OLE Automation Array Remote Code Execution !/usr/bin/python import BaseHTTPServer, sys, socket Acunetix OLE Automation Array Remote Code Execution Author: Naser Farhadi Linkedin: http://ir.linkedin.com/pub/naser-farhadi/85/b3b/909 Date: 27 Mar 2015 Version: acunetix.exe Video:...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2015/03/04 12:0 a.m.36 views

SolarWinds Orion Service - SQL Injection

SolarWinds Orion Service - SQL Injection I found a couple SQL injection vulnerabilities in the core Orion service used in most of the Solarwinds products SAM, IPAM, NPM, NCM, etc…. This service provides a consistent configuration and authentication layer across the products. To be exact, the...

7.5CVSS0.4AI score0.47749EPSS
Exploits8
exploitpack
exploitpack
added 2015/02/07 12:0 a.m.36 views

LG DVR LE6016D - Remote UsersPasswords Disclosure

LG DVR LE6016D - Remote UsersPasswords Disclosure !/usr/bin/perl LG DVR LE6016D unauthenticated remote users/passwords disclosure exploit Copyright 2015 c Todor Donev http://www.ethical-hacker.org/ Digital video recorder DVR surveillance is the use of cameras, often hidden or concealed, that use...

7.5AI score
Exploits0
exploitpack
exploitpack
added 2015/01/30 12:0 a.m.36 views

Symantec Encryption Management Server 3.2.0 MP6 - Remote Command Injection

Symantec Encryption Management Server 3.2.0 MP6 - Remote Command Injection Vantage Point Security Advisory 2014-007 ======================================== Title: Symantec Encryption Management Server - Remote Command Injection ID: VP-2014-007 Vendor: Symantec Affected Product: Symantec Encrypti...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2015/01/22 12:0 a.m.36 views

ecommerceMajor - SQL Injection Authentication Bypass

ecommerceMajor - SQL Injection Authentication Bypass Exploit Title : ecommercemajor ecommerce CMS SQL Injection and Authentication bypass Author : Manish Kishan Tanwar Home page Link : https://github.com/xlinkerz/ecommerceMajor Date : 22/01/2015 Discovered at : IndiShell Lab Love to : zero...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2015/01/04 4:30 p.m.36 views

Postfix-SMTP---Shellshock

Date: 10/3/2014 Exploit Author: fattymcwopr Vendor Homepage: gnu.org Software Link: http://ftp.gnu.org/gnu/bash/ Version: 4.2.x 4.2.48 !/bin/python Exploit Title: Shellshock SMTP Exploit Date: 10/3/2014 Exploit Author: fattymcwopr Vendor Homepage: gnu.org Software Link: http://ftp.gnu.org/gnu/bas...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2014/12/23 12:0 a.m.36 views

PHPMyRecipes 1.2.2 - browse.php?category SQL Injection

PHPMyRecipes 1.2.2 - browse.php?category SQL Injection Exploit Title : phpMyRecipes 1.2.2 SQL injectionpage browse.php, parameter category Author : Manish Kishan Tanwar Download Link : http://prdownloads.sourceforge.net/php-myrecipes/phpMyRecipes-1.2.2.tar.gz?download Date : 23/12/2014 Discovered...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2014/11/24 12:0 a.m.36 views

WordPress Plugin DukaPress 2.5.2 - Directory Traversal

WordPress Plugin DukaPress 2.5.2 - Directory Traversal Exploit Title: DukaPress 2.5.2 Path Traversal Date: 27-10-2014 Exploit Author: Kacper Szurek - http://security.szurek.pl Software Link: https://downloads.wordpress.org/plugin/dukapress.2.5.2.zip Category: webapps CVE: CVE-2014-8799 1...

5CVSS0.3AI score0.6846EPSS
Exploits6
exploitpack
exploitpack
added 2014/11/17 12:0 a.m.36 views

Microsoft Internet Explorer 8 - Fixed Col Span ID (Full ASLR + DEP + EMET 5.1 Bypass) (MS12-037)

Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP + EMET 5.1 Bypass MS12-037 function strtointstr return str.charCodeAt10x10000 + str.charCodeAt0; var free = "EEEE"; while free.length 500 free += free; var string1 = "AAAA"; while string1.length 500 string1 += string1; var string2...

9.3CVSS6.3AI score0.64962EPSS
Exploits27
exploitpack
exploitpack
added 2014/11/17 12:0 a.m.36 views

WebsiteBaker 2.8.3 - Multiple Vulnerabilities

WebsiteBaker 2.8.3 - Multiple Vulnerabilities ============================================= MGC ALERT 2014-004 - Original release date: March 11, 2014 - Last revised: November 18, 2014 - Discovered by: Manuel Garcia Cardenas - Severity: 10/10 CVSS Base Score...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2014/10/09 12:0 a.m.36 views

Nessus Web UI 2.3.3 - Persistent Cross-Site Scripting

Nessus Web UI 2.3.3 - Persistent Cross-Site Scripting Nessus Web UI 2.3.3: Stored XSS ========================================================= CVE number: CVE-2014-7280 Permalink: http://www.thesecurityfactory.be/permalink/nessus-stored-xss.html Vendor advisory:...

4.3CVSS6.1AI score0.03269EPSS
Exploits6
exploitpack
exploitpack
added 2014/09/27 12:0 a.m.36 views

dbPowerAmp 2.010.0 - Local Buffer Overflow

dbPowerAmp 2.010.0 - Local Buffer Overflow dbPowerAmp Buffer Overflow Vendor: Illustrate Product: dbPowerAmp Version: = 2.0/10.0 Website: http://www.dbpoweramp.com BID: 11266 CVE: CVE-2004-1569 OSVDB: 10380 11126 11127 SECUNIA: 12684 PACKETSTORM: 34531 Description: Often called the Swiss Army kni...

4CVSS0.8AI score0.04736EPSS
Exploits3
exploitpack
exploitpack
added 2014/09/15 12:0 a.m.36 views

ALCASAR 2.8.1 - Remote Code Execution

ALCASAR 2.8.1 - Remote Code Execution !/usr/bin/env python -- coding: utf-8 -- ALCASAR = 2.8.1 Remote Root Code Execution Vulnerability Author: eF Date : 2014-09-12 URL : http://www.alcasar.net/ This is not a responsible disclosure coz' I have no sense of ethics and I don't give a fck. db 88...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2014/07/10 12:0 a.m.36 views

C99Shell (Web Shell) - c99.php Authentication Bypass

C99Shell Web Shell - c99.php Authentication Bypass Exploit Title: C99 Shell Authentication Bypass via Backdoor Google Dork: inurl:c99.php Date: June 23, 2014 Exploit Author: mandatory Matthew Bryant Vendor Homepage: http://ccteam.ru/ Software Link: https://www.google.com/ Version: ", " ",...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2014/05/12 12:0 a.m.36 views

Skybox Security 6.3.x 6.4.x - Multiple Denial of Service Vulnerabilities

Skybox Security 6.3.x 6.4.x - Multiple Denial of Service Vulnerabilities Exploit Title: SKYBOX Security - DDOS Date: 22-Jan-2014 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.skyboxsecurity.com Version: Skybox View Appliances with ISO versions: 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54,...

0.3AI score
Exploits16
exploitpack
exploitpack
added 2014/03/26 12:0 a.m.36 views

IBM Tealeaf CX 8.8 - Remote OS Command Injection

IBM Tealeaf CX 8.8 - Remote OS Command Injection IBM Tealeaf CX v8 release 8 Remote OS Command Injection Date: 11/08/2013 Exploit author: drone More information: http://www-01.ibm.com/support/docview.wss?uid=swg21667630 Vendor homepage: http://www-01.ibm.com/software/info/tealeaf/ Version: Versio...

6CVSS0.4AI score0.28583EPSS
Exploits6
exploitpack
exploitpack
added 2014/03/12 12:0 a.m.36 views

vTiger CRM 5.4.06.0 RC6.0.0 GA - browse.php Local File Inclusion

vTiger CRM 5.4.06.0 RC6.0.0 GA - browse.php Local File Inclusion CVE: CVE-2014-1222 Vendor: Vtiger Product: CRM Affected version: Vtiger 5.4.0, 6.0 RC & 6.0.0 GA Fixed version: Vtiger 6.0.0 Security patch 1 Reported by: Jerzy Kramarz Details: A local file inclusion vulnerability was discovered in...

4CVSS0.4AI score0.08795EPSS
Exploits10
exploitpack
exploitpack
added 2014/02/07 12:0 a.m.36 views

CTERA 3.2.29.03.2.42.0 - Persistent Cross-Site Scripting

CTERA 3.2.29.03.2.42.0 - Persistent Cross-Site Scripting Exploit Title: CTERA Project Folders - Stored XSS Date: 11-Mar-2013 Exploit Author: Luigi Vezzoso Vendor Homepage: http://www.ctera.com Version: 3.2.29.0 and 3.2.42.0 Tested on: ctera os CVE : CVE-2013-2639 OVERVIEW Standard Ctera User...

4.3CVSS6.2AI score0.01465EPSS
Exploits5
exploitpack
exploitpack
added 2013/09/30 12:0 a.m.36 views

XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access

XAMPP 1.8.1 - lang.php?WriteIntoLocalDisk method Local Write Access ============================================= INTERNET SECURITY AUDITORS ALERT 2013-007 - Original release date: March 14th, 2013 - Last revised: March 19th, 2013 - Discovered by: Manuel García Cárdenas - Severity: 6,8/10 CVSS Ba...

4.3CVSS6.5AI score0.0521EPSS
Exploits6
exploitpack
exploitpack
added 2013/09/22 12:0 a.m.36 views

Share KM 1.0.19 - Remote Denial of Service

Share KM 1.0.19 - Remote Denial of Service Advisory Information : ====================== Title : Share KM 1.0.19 - Remote Denial Of Service Advisory ID : Cr02013-001 Product : Share KM desktop setup file Vendor : SmartUX Vulnerable Versions : 1.0.19 and probably prior release Tested Version :...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2013/09/17 12:0 a.m.36 views

OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities

OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities Exploit Title: OpenEMR 4.1.1 Patch 14 Multiple Vulnerabilities Date: Sep 17 2013 Exploit Author: xistence Vendor Homepage: www.open-emr.org Tested on: CentOS 5.9 32-bit Affected Version : 4.1.1 Patch 14 and lower Fix: Upgrade to OpenEMR 4.1.2...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2013/07/18 12:0 a.m.36 views

Dell PacketTrap MSP RMM 6.6.x - Multiple Cross-Site Scripting Vulnerabilities

Dell PacketTrap MSP RMM 6.6.x - Multiple Cross-Site Scripting Vulnerabilities Title: ====== Dell PacketTrap MSP RMM 6.6.x - Multiple Persistent Web Vulnerabilities Date: ===== 2013-07-17 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=791 VL-ID: ===== 791 Common...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2013/05/26 12:0 a.m.36 views

WordPress Plugin Spider Catalog 1.4.6 - Multiple Vulnerabilities

WordPress Plugin Spider Catalog 1.4.6 - Multiple Vulnerabilities waraxe-2013-SA105 - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin =================================================================================== Author: Janek Vind "waraxe" Date: 22. May 2013 Location: Estonia,...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2013/05/08 12:0 a.m.36 views

MoinMoin - Arbitrary Command Execution

MoinMoin - Arbitrary Command Execution !/usr/bin/env python -- coding: utf-8 -- ascii = '\x1b1;31m' ascii +=' \r\n' ascii +=' ██████████ ██████ ███ ███ ███ ██████████ ████████ ███ ███████ \r\n' ascii +=' ███████████ ████████ ███ ████ ███ ███████████ ████████ ███ ███████ \r\n' ascii +=' ██▒ ██▒ ██...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2013/05/01 12:0 a.m.36 views

WPS Office - Wpsio.dll Stack Buffer Overflow

WPS Office - Wpsio.dll Stack Buffer Overflow WPS Office Wpsio.dll Stack Buffer Overflow Vulnerability PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/25140.tgz 1 Summary CVE number: CVE-2012-4886 Impact: High Vendor homepage: http://www.wps.cn Credit:...

10CVSS1.2AI score0.15349EPSS
Exploits5
exploitpack
exploitpack
added 2013/03/29 12:0 a.m.36 views

SynConnect Pms - index.php?loginid SQL Injection

SynConnect Pms - index.php?loginid SQL Injection Title: ==== SynConnect - SQL Injection vulnerability Credit: ====== Name: Bhadresh Patel Company/affiliation: Cyberoam Technologies Private Limited Website: www.cyberoam.com CVE: ===== Date: ==== 01-03-2013 CRD: ==== CRD-2013-01 Vendor: ======...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2013/03/11 12:0 a.m.36 views

KindEditor - Multiple Arbitrary File Upload Vulnerabilities

KindEditor - Multiple Arbitrary File Upload Vulnerabilities source: https://www.securityfocus.com/bid/58431/info KindEditor is prone to multiple remote file-upload vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attackers can exploit these issues to upload arbitrary...

7.6AI score
Exploits0
exploitpack
exploitpack
added 2012/12/13 12:0 a.m.36 views

WordPress Plugin Portable phpMyAdmin - Authentication Bypass

WordPress Plugin Portable phpMyAdmin - Authentication Bypass 'portable-phpMyAdmin WordPress Plugin' Authentication Bypass CVE-2012-5469 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- portable-phpMyAdmin doesn't verify an existing WordPress session...

7.5CVSS0.1AI score0.23745EPSS
Exploits6
exploitpack
exploitpack
added 2012/12/02 12:0 a.m.36 views

IBM System Director Agent - Remote System Level

IBM System Director Agent - Remote System Level IBM System Director Remote System Level Exploit CVE-2009-0880 extended zeroday Copyright C 2012 Kingcope IBM System Director has the port 6988 open. By using a special request to a vulnerable server, the attacker can force to load a dll remotely fro...

6.8CVSS6.5AI score0.31595EPSS
Exploits11
Total number of security vulnerabilities5000