Lucene search
K
ExploitpackMost viewed

41207 matches found

exploitpack
exploitpack
added 2019/03/29 12:0 a.m.34 views

CentOS Web Panel 0.9.8.789 - NameServer Field Persistent Cross-Site Scripting

CentOS Web Panel 0.9.8.789 - NameServer Field Persistent Cross-Site Scripting Exploit Title: CentOS Web Panel 0.9.8.789 - NameServer Field Stored Cross-Site Scripting Vulnerability Google Dork: N/A Date: 28 - March - 2019 Exploit Author: DKM Vendor Homepage: http://centos-webpanel.com Software...

3.5CVSS5AI score0.02381EPSS
Exploits5
exploitpack
exploitpack
added 2019/03/21 12:0 a.m.34 views

The Company Business Website CMS - Multiple Vulnerabilities

The Company Business Website CMS - Multiple Vulnerabilities Exploit Title: The Company Business Website CMS - 'username' SQL Injection Date: 20.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms Demo Site:...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2019/03/12 12:0 a.m.34 views

PilusCart 1.4.1 - Cross-Site Request Forgery (Add Admin)

PilusCart 1.4.1 - Cross-Site Request Forgery Add Admin Exploit Title: PilusCart 1.4.1 - Cross-Site Request Forgery Add Admin Google Dork: N/A Date: 10-03-2019 Exploit Author: Gionathan "John" Reale Vendor Homepage: https://github.com/piluscart Software Link:...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2019/03/07 12:0 a.m.34 views

Anyburn 4.3 x86 - Copy disc to image file Buffer Overflow (Unicode) (SEH)

Anyburn 4.3 x86 - Copy disc to image file Buffer Overflow Unicode SEH !/usr/bin/python Exploit Title: Anyburn 4.3 - 'Copy disc to image file' Buffer Overflow - UNICODESEH Version: 4.3 Date: 07-03-2019 Author: Hodorsec [email protected] / [email protected] Vendor Homepage:...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2019/03/04 12:0 a.m.34 views

Splunk Enterprise 7.2.4 - Custom App Remote Command Execution (Persistent Backdoor Custom Binary)

Splunk Enterprise 7.2.4 - Custom App Remote Command Execution Persistent Backdoor Custom Binary !/usr/bin/python Exploit Title: Splunk Enterprise 7.2.4 Custom App RCE persistent backdoor - custom binary payload Date: March 1, 2019 Exploit Author: Matteo Malvica Original Author: Lee Mazzoleni Vend...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2019/02/18 12:0 a.m.34 views

Master IP CAM 01 3.3.4.2103 - Remote Command Execution

Master IP CAM 01 3.3.4.2103 - Remote Command Execution Exploit Title: Master IP CAM 01 Remote Command Execution Date: 09-02-2019 Remote: Yes Exploit Authors: Raffaele Sabato Contact: https://twitter.com/syrion89 Vendor: Master IP CAM Version: 3.3.4.2103 CVE: CVE-2019-8387 import sys import reques...

7.5CVSS0.5AI score0.55721EPSS
Exploits5
exploitpack
exploitpack
added 2019/02/04 12:0 a.m.34 views

ResourceSpace 8.6 - watched_searches.php SQL Injection

ResourceSpace 8.6 - watchedsearches.php SQL Injection Exploit Title: ResourceSpace =8.6 'watchedsearches.php' SQL Injection Dork: intext:"Powered by ResourceSpace" Date: 2019-02-01 Exploit Author: dd [email protected] Vendor Homepage: https://www.resourcespace.com/ Software Link:...

8.6AI score
Exploits0
exploitpack
exploitpack
added 2019/01/31 12:0 a.m.34 views

macOS 10.14.3 iOS 12.1.3 - Kernel Heap Overflow in PF_KEY due to Lack of Bounds Checking when Retrieving Statistics

macOS 10.14.3 iOS 12.1.3 - Kernel Heap Overflow in PFKEY due to Lack of Bounds Checking when Retrieving Statistics / Inspired by Ned Williamsons's fuzzer I took a look at the netkey code. keygetsastat handles SADBGETSASTAT messages: It allocates a buffer based on the number of SAs there currently...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2019/01/28 12:0 a.m.34 views

Care2x 2.7 (HIS) Hospital Information System - Multiple SQL Injection

Care2x 2.7 HIS Hospital Information System - Multiple SQL Injection Exploit Title: Care2x 2.7 HIS Hospital Information system - Multiples SQL Injection Date: 01/17/2019 Software Links/Project: https://github.com/care2x/care2x | http://www.care2x.org/ Version: Care2x 2.7 Exploit Author: Carlos Avi...

8.7AI score
Exploits0
exploitpack
exploitpack
added 2019/01/17 12:0 a.m.34 views

Oracle Reports Developer Component 12.2.1.3 - Cross-site Scripting

Oracle Reports Developer Component 12.2.1.3 - Cross-site Scripting Exploit Title: Cross-site Scripting XSS Date: 2019-01-15 Exploit Author: Mohamed M.Fouad - From SecureMisr Company Vendor Homepage: https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html Version: 12.2.1.3...

5.8CVSS6.5AI score0.06466EPSS
Exploits5
exploitpack
exploitpack
added 2019/01/14 12:0 a.m.34 views

Across DR-810 ROM-0 - Backup File Disclosure

Across DR-810 ROM-0 - Backup File Disclosure Exploit Title: Across DR-810 ROM-0 Backup - File DisclosureSensitive Information Date: 2019-01-11 Exploit Author: SajjadBnd My Email: [email protected] Vendor Homepage: http://www.ac.i8i.ir/ Version: DR-810 Tested on: DR-810 RomPager/4.07 UPnP/1.0 +...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/12/11 12:0 a.m.34 views

GNU inetutils 1.9.4 - telnet.c Multiple Overflows (PoC)

GNU inetutils 1.9.4 - telnet.c Multiple Overflows PoC GNU inetutils = 1.9.4 telnet.c multiple overflows ================================================== GNU inetutils is vulnerable to a stack overflow vulnerability in the client-side environment variable handling which can be exploited to escap...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/11/14 12:0 a.m.34 views

Bosch Video Management System 8.0 - Configuration Client Denial of Service (PoC)

Bosch Video Management System 8.0 - Configuration Client Denial of Service PoC Exploit Title: Bosch Video Management System 8.0-Configuration Client-Denial of Service Poc Discovery by: Daniel Discovery Date: 2018-11-12 Software Name: Bosch Video Management System Software Version: 8.0 Vendor...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2018/10/29 12:0 a.m.34 views

School Attendance Monitoring System 1.0 - Cross-Site Request Forgery (Update Admin)

School Attendance Monitoring System 1.0 - Cross-Site Request Forgery Update Admin Exploit Title: School Attendance Monitoring System 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe...

6.8CVSS8.9AI score0.02385EPSS
Exploits5
exploitpack
exploitpack
added 2018/09/21 12:0 a.m.34 views

WebRTC - FEC Out-of-Bounds Read

WebRTC - FEC Out-of-Bounds Read There is an out-of-bounds read in FEC processing in WebRTC. If a very short RTP packet is received, FEC will assume the packet is longer and process data outside of the allocated buffer. This bug causes the following ASAN crash: ==109993==ERROR: AddressSanitizer:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/09/19 12:0 a.m.34 views

WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion

WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion Exploit Title: WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion Author: Manuel Garcia Cardenas Date: 2018-09-19 Software link: https://es.wordpress.org/plugins/wechat-broadcast/ CVE: CVE-2018-16283 Description This bug w...

7.5CVSS9.6AI score0.6307EPSS
Exploits4
exploitpack
exploitpack
added 2018/08/27 12:0 a.m.34 views

RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin)

RICOH MP C4504ex Printer - Cross-Site Request Forgery Add Admin Exploit Title: RICOH MP C4504ex Printer - Cross-Site Request Forgery Add Admin Date: 2018-08-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...

6.8CVSS0.5AI score0.02505EPSS
Exploits5
exploitpack
exploitpack
added 2018/08/13 12:0 a.m.34 views

Android - Directory Traversal over USB via Injection in blkid Output

Android - Directory Traversal over USB via Injection in blkid Output When a USB mass storage device is inserted into an Android phone even if the phone is locked!, vold will attempt to automatically mount partitions from the inserted device. For this purpose, vold has to identify the partitions o...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2018/08/06 12:0 a.m.34 views

Sitecore.Net 8.1 - Directory Traversal

Sitecore.Net 8.1 - Directory Traversal Exploit Title: Sitecore.Net 8.1 - Directory Traversal Date: 2018-04-23 CVE: CVE-2018-7669 Researcher: Chris Moberly at The Missing Link Security Vendor: Sitecore Version: CMS - 8.1 and up earlier versions untested Authentication required: Yes An issue was...

7.8CVSS0.17482EPSS
Exploits5
exploitpack
exploitpack
added 2018/07/16 12:0 a.m.34 views

PrestaShop 1.6.1.19 - BlowFish ECD Privilege Escalation

PrestaShop 1.6.1.19 - BlowFish ECD Privilege Escalation !/usr/bin/env python3 PrestaShop = 1.6.1.19 Privilege Escalation Charles Fol 2018-07-10 See https://ambionics.io/blog/prestashop-privilege-escalation The condition for this exploit to work is for an employee to have the same password as a...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2018/07/11 12:0 a.m.34 views

Instagram-Clone Script 2.0 - Cross-Site Scripting

Instagram-Clone Script 2.0 - Cross-Site Scripting Exploit Title: Instagram-clone Script 2.0 - Cross-Site Scripting Date: 2018-07-10 Exploit Author: L0RD Vendor Homepage: https://github.com/yTakkar/Instagram-clone Version: 2.0 CVE: CVE-2018-13849 Tested on: Kali linux POC : Persistent Cross site...

4.3CVSS6.1AI score0.02273EPSS
Exploits5
exploitpack
exploitpack
added 2018/07/10 12:0 a.m.34 views

Elektronischer Leitz-Ordner 10 - SQL Injection

Elektronischer Leitz-Ordner 10 - SQL Injection Title: Elektronischer Leitz-Ordner 10 - SQL Injection Author: Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG Software: https://www.elo.com/en-de/ CVE: N/A Affected Products: ELOenterprise 10 ELO Access Manager = 10.17.120 ELOenterprise 9 ELO...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2018/06/28 12:0 a.m.34 views

DIGISOL DG-HR3400 Wireless Router - Cross-Site Scripting

DIGISOL DG-HR3400 Wireless Router - Cross-Site Scripting Exploit Title: DIGISOL DG-HR3400 Wireless Router - Cross-Site Scripting Date: 2018-06-25 Vendor Homepage: http://www.digisol.com Hardware Link: https://www.amazon.in/Digisol-DG-HR3400-300Mbps-Wireless-Broadband/dp/B00IL8DR6W Category:...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2018/04/24 12:0 a.m.34 views

WUZHI CMS 4.1.0 - Cross-Site Request Forgery

WUZHI CMS 4.1.0 - Cross-Site Request Forgery Exploit Title: WUZHI CMS 4.1.0 - Cross-Site Request Forgery Date: 2018-04-23 Exploit Author: jiguang [email protected] Vendor Homepage: https://github.com/wuzhicms/wuzhicms Software Link: https://github.com/wuzhicms/wuzhicms Version: 4.1.0 CVE:...

6.8CVSS0.6AI score0.0248EPSS
Exploits5
exploitpack
exploitpack
added 2018/04/18 12:0 a.m.34 views

Geist WatchDog Console 3.2.2 - Multiple Vulnerabilities

Geist WatchDog Console 3.2.2 - Multiple Vulnerabilities Exploit Author: bzyo CVE: CVE-2018-10077, CVE-2018-10078, CVE-2018-10079 Twitter: @bzyo Exploit Title: Geist WatchDog Console 3.2.2 - Multiple Vulnerabilities Date: 04-17-18 Vulnerable Software: WatchDog Console - 3.2.2 Vendor Homepage:...

4CVSS0.3AI score0.08296EPSS
Exploits7
exploitpack
exploitpack
added 2018/04/16 12:0 a.m.34 views

Barco ClickShare CSE-200 - Remote Denial of Service

Barco ClickShare CSE-200 - Remote Denial of Service !/usr/bin/python Exploit Title: Barco ClickShare CSE-200 - Remote Denial of Service Date: 11-04-2018 Hardware Link: https://www.barco.com/de/product/clickshare-cse-200 Exploit Author: Florian Hauser Contact: florian DOT g DOT hauser AT gmail DOT...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/04/09 12:0 a.m.34 views

WordPress Plugin Background Takeover 4.1.4 - Directory Traversal

WordPress Plugin Background Takeover 4.1.4 - Directory Traversal Exploit Title: WP Background Takeover, Directory Traversal = 4.1.4 Google Dork: inurl:/plugins/wpsite-background-takeover Date: 2018-03-08 Exploit Author: Colette Chamberland, Defiant, Inc. Vendor Homepage: https://99robots.com...

5CVSS0.4AI score0.48158EPSS
Exploits4
exploitpack
exploitpack
added 2018/04/02 12:0 a.m.34 views

LifeSize ClearSea 3.1.4 - Directory Traversal

LifeSize ClearSea 3.1.4 - Directory Traversal ''' Tittle: LifeSize ClearSea 3.1.4 Directory Traversal Vulnerabilities Author: rsp3ar Impact: Remote Code Execution Post-Authentication Recommendation: Use strong password for default 'admin' user and secure management access to the device. Please...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2018/03/20 12:0 a.m.34 views

Vehicle Sales Management System - Multiple Vulnerabilities

Vehicle Sales Management System - Multiple Vulnerabilities Exploit Title: VSMS Multiple Vulnerabilities Google Dork: N/A Date: 16-3-2018 Exploit Author: Sing Vendor Homepage: https://sourceforge.net/projects/vsms-php/?source=typredirect Software Link:...

7.5CVSS0.4AI score0.02167EPSS
Exploits4
exploitpack
exploitpack
added 2018/03/12 12:0 a.m.34 views

TextPattern 4.6.2 - qty SQL Injection

TextPattern 4.6.2 - qty SQL Injection ============================================= MGC ALERT 2018-002 - Original release date: February 12, 2018 - Last revised: March 12, 2018 - Discovered by: Manuel García Cárdenas - Severity: 7,1/10 CVSS Base Score - CVE-ID: CVE-2018-7474...

7.5CVSS0.3AI score0.06588EPSS
Exploits5
exploitpack
exploitpack
added 2018/02/16 12:0 a.m.34 views

Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module 4.25 - Denial of Service

Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module 4.25 - Denial of Service Exploit Title: Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module V4.25 - Denial of Service Date: 14.02.2018 Exploit Author: M. Can Kurnaz Contact: https://twitter.com/0x43414e Vendor Homepage:...

7.8CVSS0.7AI score0.74497EPSS
Exploits7
exploitpack
exploitpack
added 2018/02/14 12:0 a.m.34 views

userSpice 4.3 - Cross-Site Scripting

userSpice 4.3 - Cross-Site Scripting Application UserSpice PHP user management Vulnerability userSpice alert"1"&csrf=8b1339546d6af1e7536da0a705302e9c&updatebio= Vulnerable code: id?" class="nounderline"id?...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2018/01/23 12:0 a.m.34 views

Blizzard Update Agent - JSON RPC DNS Rebinding

Blizzard Update Agent - JSON RPC DNS Rebinding All blizzard games are installed alongside a shared tool called "Blizzard Update Agent", investor.activision.com claims they have "500 million monthly active users", who presumably all have this utility installed. The agent utility creates an JSON RP...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/01/04 12:0 a.m.34 views

Xplico - Remote Code Execution (Metasploit)

Xplico - Remote Code Execution Metasploit This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xplico Remote Code Execution', 'Description' = %q This module exploits command injection vulnerability...

9CVSS0.80098EPSS
Exploits7
exploitpack
exploitpack
added 2018/01/03 12:0 a.m.34 views

WDMyCloud 2.30.165 - Multiple Vulnerabilities

WDMyCloud 2.30.165 - Multiple Vulnerabilities WDMyCloud Multiple Vulnerabilities Vendor: Western Digital Product: WDMyCloud Version: = 2.30.165 Website: https://www.wdc.com/products/network-attached-storage.html / / / / / / / / / / / / / / / / / / / / / \ / // / // / / / / / / / // / / / /,///...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2017/12/12 12:0 a.m.34 views

Accesspress Anonymous Post Pro 3.2.0 - Arbitrary File Upload

Accesspress Anonymous Post Pro 3.2.0 - Arbitrary File Upload Exploit Title: Unauthenticated Arbitrary File Upload Date: November 12, 2017 Exploit Author: Colette Chamberland Author contact: [email protected] Author homepage: https://defiant.com Vendor Homepage: https://accesspressthemes.com/...

7.5CVSS0.1AI score0.19151EPSS
Exploits6
exploitpack
exploitpack
added 2017/11/16 12:0 a.m.34 views

VX Search 10.2.14 - Proxy Local Buffer Overflow (SEH)

VX Search 10.2.14 - Proxy Local Buffer Overflow SEH !/usr/bin/env python Exploit Title : VXSearch v10.2.14 Local SEH Overflow Date : 11/16/2017 Exploit Author : wetw0rk Vendor Homepage : http://www.flexense.com/ Software link : http://www.vxsearch.com/setups/vxsearchentsetupv10.2.14.exe Version :...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2017/11/13 12:0 a.m.34 views

Ulterius Server 1.9.5.0 - Directory Traversal

Ulterius Server 1.9.5.0 - Directory Traversal Exploit Title: Ulterius Server 1.9.5.0 Directory Traversal Arbitrary File Access Date: 11/13/2017 Exploit Author: Rick Osgood Vendor Homepage: https://ulterius.io/ Software Link:...

5CVSS0.4AI score0.91496EPSS
Exploits6
exploitpack
exploitpack
added 2017/09/18 12:0 a.m.34 views

Digirez 3.4 - Cross-Site Request Forgery (Update Admin)

Digirez 3.4 - Cross-Site Request Forgery Update Admin !/usr/local/bin/python Exploit Title: Digirez 3.4 - Cross-Site Request Forgery Update User & Admin Dork: N/A Date: 18.09.2017 Vendor Homepage: http://www.digiappz.com/ Software Link: http://www.digiappz.com/index.asp Demo:...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2017/09/13 12:0 a.m.34 views

ZScada Modbus Buffer 2.0 - Stack Buffer Overflow (Metasploit)

ZScada Modbus Buffer 2.0 - Stack Buffer Overflow Metasploit require 'msf/core' class MetasploitModule 'ZScada Net Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Z-Scada Net 2.0. The vulnerability is triggered when parsing the response to a Modbus...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2017/09/07 12:0 a.m.34 views

Roteador Wireless Intelbras WRN150 - Cross-Site Scripting

Roteador Wireless Intelbras WRN150 - Cross-Site Scripting Exploit Title: XSS persistent on intelbras router with firmware WRN 250 Date: 07/09/2017 Exploit Author: Elber Tavares Vendor Homepage: http://intelbras.com.br/ Version: Intelbras Wireless N 150Mbps - WRN 240 Tested on: kali linux, windows...

4.3CVSS6.1AI score0.01438EPSS
Exploits5
exploitpack
exploitpack
added 2017/08/21 12:0 a.m.34 views

Apache2Triad 1.5.4 - Multiple Vulnerabilities

Apache2Triad 1.5.4 - Multiple Vulnerabilities + Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/APACHE2TRIAD-SERVER-STACK-v1.5.4-MULTIPLE-CVE.txt + ISR: ApparitionSec Vendor: =============== apache2triad.net...

7.5CVSS0.15668EPSS
Exploits7
exploitpack
exploitpack
added 2017/08/09 12:0 a.m.34 views

DALIM SOFTWARE ES Core 5.0 build 7184.1 - Directory Traversal

DALIM SOFTWARE ES Core 5.0 build 7184.1 - Directory Traversal DALIM SOFTWARE ES Core 5.0 build 7184.1 Multiple Remote File Disclosures Vendor: Dalim Software GmbH Product web page: https://www.dalim.com Affected version: ES/ESPRiT 5.0 build 7184.1 build 7163.2 build 7163.0 build 7135.0 build 7114...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2017/08/01 12:0 a.m.34 views

Advantech SUSIAccess 3.0 - RecoveryMgmt File Upload

Advantech SUSIAccess 3.0 - RecoveryMgmt File Upload ! /usr/bin/env ruby =begin Exploit Title: Advantech SUSIAccess RecoveryMgmt File Upload Date: 07/31/17 Exploit Author: james fitts Vendor Homepage: http://www.advantech.com/ Version: Advantech SUSIAccess = 3.0 Tested on: Windows 7 SP1 Relavant...

6CVSS0.7AI score0.07879EPSS
Exploits8
exploitpack
exploitpack
added 2017/07/24 12:0 a.m.34 views

WebKit - WebCore::getCachedWrapper Use-After-Free

WebKit - WebCore::getCachedWrapper Use-After-Free function freememory var a; forvar i=0;i ::get const /Users/projectzero/webki...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/06/23 12:0 a.m.34 views

Microsoft Windows - USP10!MergeLigRecords Uniscribe Font Processing Heap Memory Corruption

Microsoft Windows - USP10!MergeLigRecords Uniscribe Font Processing Heap Memory Corruption Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1198 We have encountered a crash in the Windows Uniscribe user-mode library, in the memmove function called by USP10!MergeLigRecords, while...

9.3CVSS1.4AI score0.42546EPSS
Exploits5
exploitpack
exploitpack
added 2017/06/05 12:0 a.m.34 views

DNSTracer 1.8.1 - Buffer Overflow (PoC)

DNSTracer 1.8.1 - Buffer Overflow PoC Exploit Title: DNSTracer Stack-based Buffer Overflow CVE: CVE-2017-9430 CWE: CWE-119 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: http://www.mavetju.org Version : 1.8.1 Tested on: Parrot OS Date: 04-06-2017 Category: Application Author Mail :...

7.5CVSS1AI score0.1132EPSS
Exploits8
exploitpack
exploitpack
added 2017/05/30 12:0 a.m.34 views

Trend Micro Deep Security 6.5 - XML External Entity Injection Local Privilege Escalation Remote Code Execution

Trend Micro Deep Security 6.5 - XML External Entity Injection Local Privilege Escalation Remote Code Execution The following advisory describes three 3 vulnerabilities found in Trend Micro Deep Security version 6.5. “The Trend Micro Hybrid Cloud Security solution, powered by XGen security, delive...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2017/05/19 12:0 a.m.34 views

Belden Garrettcom 6K10K Switches - Authentication Bypass Memory Corruption

Belden Garrettcom 6K10K Switches - Authentication Bypass Memory Corruption Introduction ------------ Vulnerabilities were identified in the Belden GarrettCom 6K and 10KT Magnum series network switches. These were discovered during a black box assessment and therefore the vulnerability list should...

1AI score
Exploits0
exploitpack
exploitpack
added 2017/05/03 12:0 a.m.34 views

Serviio PRO 1.8 DLNA Media Streaming Server - REST API Arbitrary Password Change

Serviio PRO 1.8 DLNA Media Streaming Server - REST API Arbitrary Password Change !/usr/bin/env python Serviio PRO 1.8 DLNA Media Streaming Server REST API Arbitrary Password Change Vendor: Petr Nejedly | Six Lines Ltd Product web page: http://www.serviio.org Affected version: 1.8.0.0 PRO, 1.7.1,...

0.5AI score
Exploits0
Total number of security vulnerabilities5000