41207 matches found
1 Click Audio Converter 2.3.6 - Activex Local Buffer Overflow
1 Click Audio Converter 2.3.6 - Activex Local Buffer Overflow 1 Click Audio Converter Activex Buffer Overflow Affected version=2.3.6 Vendor Homepage:http://www.dvdvideotool.com/index.htm Software Link:www.dvdvideotool.com/1ClickAudioConverter.exe The vulnerability lies in the COM component used b...
WordPress Plugin Really Simple Guest Post 1.0.6 - Local File Inclusion
WordPress Plugin Really Simple Guest Post 1.0.6 - Local File Inclusion Exploit Title: Wordpress Really Simple Guest Post File Include Google Dork: inurl:"really-simple-guest-post" intitle:"index of" Date: 04/06/2015 Exploit Author: Kuroi'SH Software Link:...
1 Click Extract Audio 2.3.6 - Activex Buffer Overflow
1 Click Extract Audio 2.3.6 - Activex Buffer Overflow 1 Click Extract Audio Activex Buffer Overflow Affected version=2.3.6 Vendor Homepage:http://www.dvdvideotool.com/index.htm Software Link:www.dvdvideotool.com/1ClickExtractAudio.exe The vulnerability lies in the COM component used by the produc...
JDownloader 2 Beta - Directory Traversal
JDownloader 2 Beta - Directory Traversal =begin Exploit Title: JDownloader 2 Beta Directory Traversal Vulnerability Zip Extraction Date: 2015-06-02 Exploit Author: PizzaHatHacker Vendor Homepage: http://jdownloader.org/home/index Software Link: http://jdownloader.org/download/offline Version: 117...
Jildi FTP Client 1.5.6 - Local Buffer Overflow (SEH)
Jildi FTP Client 1.5.6 - Local Buffer Overflow SEH !/usr/bin/python Author: Zahid Adeel Title: Jildi FTP Client 1.5.6 SEH BOF Version: 1.5.6 Build 1536 Software Link: http://usfiles.brothersoft.com/internet/ftp/jildiftp.zip Tested on: WinXP Professional SP3 Date: 2015-06-03 EDB Ref.:...
ZTE AC 3633R USB Modem - Multiple Vulnerabilities
ZTE AC 3633R USB Modem - Multiple Vulnerabilities Exploit Title: ZTE AC 3633R USB Modem Multiple Vulnerabilities Date: 4/06/2015 Exploit Author: Vishnu @dH3wK Vendor Homepage: http://zte.com.cn Version: 3633R Tested on: Windows, Linux Greetings from vishnu @dH4wk 1. Vulnerable Product Version - Z...
WordPress Plugin zM Ajax Login Register 1.0.9 - Local File Inclusion
WordPress Plugin zM Ajax Login Register 1.0.9 - Local File Inclusion Exploit Title: CVE-2015-4153 - WordPress zM Ajax Login & Register Plugin Local File Inclusion Date: 2015/06/01 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://zanematthew.com/...
WebDrive 12.2 (B4172) - Buffer Overflow (PoC)
WebDrive 12.2 B4172 - Buffer Overflow PoC Document Title: =============== WebDrive 12.2 B4172 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1500 Release Date: ============= 2015-06-01 Vulnerability Laboratory ID VL-ID:...
Seagate Central 2014.0410.0026-F - Remote Command Execution
Seagate Central 2014.0410.0026-F - Remote Command Execution !/usr/bin/python seagateftpremoteroot.py Seagate Central Remote Root Exploit Jeremy Brown jbrown3264/gmail May 2015 -Synopsis- Seagate Central by default has a passwordless root account and no option to change it. One way to exploit this...
Seagate Central 2014.0410.0026-F - Remote Facebook Access Token
Seagate Central 2014.0410.0026-F - Remote Facebook Access Token !/usr/bin/python seagatecentralfacebook.py Seagate Central Remote Facebook Access Token Exploit Jeremy Brown jbrown3264/gmail May 2015 -Synopsis- Seagate Central stores linked Facebook account access tokens in /etc/archiveaccounts.se...
Jildi FTP Client - Buffer Overflow (PoC)
Jildi FTP Client - Buffer Overflow PoC !/usr/bin/python Exploit Title:Jildi FTP Client Buffer Overflow Poc Version:1.5.2 Build 1138 Homepage:http://de.download.cnet.com/Jildi-FTP-Client/3000-21604-10562942.html Software...
VFront 0.99.2 - Cross-Site Request Forgery Persistent Cross-Site Scripting
VFront 0.99.2 - Cross-Site Request Forgery Persistent Cross-Site Scripting Exploit Title: CSRF & Persistent XSS Google Dork: intitle: CSRF & Persistent XSS Date: 2015-06-02 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org/ Vendor Homepage: www.vfront.org Software Link:...
Linux Kernel (PonyOS 3.0) - TTY ioctl() Local Privilege Escalation
Linux Kernel PonyOS 3.0 - TTY ioctl Local Privilege Escalation / Exploit Title: PonyOS include include int main struct winsize ws; printf"+ PonyOS = 3.0 ioctl local root exploit\n"; memcpy&ws,"\x90\x90\x90\x90\x8b\x45\x08\x89",8; ioctl0, TIOCSWINSZ, &ws; ioctl0, TIOCGWINSZ, void 0x0010f101;...
WordPress Plugin LeagueManager 3.9.11 - SQL Injection
WordPress Plugin LeagueManager 3.9.11 - SQL Injection Exploit Title: WordPress LeagueManager SQLi Version: 3.9.11 Vendor: https://wordpress.org/plugins/leaguemanager Software Link: https://downloads.wordpress.org/plugin/leaguemanager.3.9.1.1.zip Author: javabudd Date: 06/01/2015 Tested on: Linux ...
Linux Kernel (PonyOS 3.0) - VFS Permissions Local Privilege Escalation
Linux Kernel PonyOS 3.0 - VFS Permissions Local Privilege Escalation / MyLittleUnix include include include include include char pwnystr = "root:07821d2459368443042007bf1c7cdf3c55284" "29a65f8f10ce388d301b47865a283147bfd290545b" "0b9b12ae622a8eb359497cb3635506f99d2f5e4c4e"...
WebDrive 12.2 (Build #4172) - Remote Buffer Overflow
WebDrive 12.2 Build 4172 - Remote Buffer Overflow !/usr/bin/python Exploit Title:WebDrive Buffer OverFlow PoC Author: metacom Vendor Homepage: http://www.webdrive.com/products/webdrive/ Software Link: https://www.webdrive.com/products/webdrive/download/ Version: 12.2 build 4172 32 bit Date found:...
Aruba ClearPass Policy Manager - Persistent Cross-Site Scripting
Aruba ClearPass Policy Manager - Persistent Cross-Site Scripting =============================================================================== title: ClearPass Policy Manager Stored XSS case id: CM-2014-01 product: Aruba ClearPass Policy Manager vulnerability type: Stored cross-site script...
Linux Kernel (PonyOS 3.0) - ELF Loader Local Privilege Escalation
Linux Kernel PonyOS 3.0 - ELF Loader Local Privilege Escalation Exploit Title: PonyOS = 3.0 ELF loader privilege escalation Google Dork: if applicable Date: 29th May 2015 Exploit Author: Hacker Fantastic Vendor Homepage: www.ponyos.org Software Link: download link if available Version: 3.0 Tested...
WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload
WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google...
IBM Security AppScan Standard 9.0.2 - OLE Automation Array Remote Code Execution
IBM Security AppScan Standard 9.0.2 - OLE Automation Array Remote Code Execution !/usr/bin/python import BaseHTTPServer, socket IBM Security AppScan Standard OLE Automation Array Remote Code Execution Author: Naser Farhadi Linkedin: http://ir.linkedin.com/pub/naser-farhadi/85/b3b/909 Date: 1 June...
JSPMyAdmin 1.1 - Multiple Vulnerabilities
JSPMyAdmin 1.1 - Multiple Vulnerabilities Exploit Title: JSPMyAdmin 1.1 SQL Injection, CSRF & XSS Google Dork: intitle:SQL Injection Date: 2015-05-29 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org/ Vendor Homepage: https://code.google.com/p/jsp-myadmin/ Software Link:...
TCPDF Library 5.9 - Arbitrary File Deletion
TCPDF Library 5.9 - Arbitrary File Deletion TCPDF library Universal POI Payload to Arbitrary File Deletion + Author: Filippo Roncari + Target: TCPDF library + Version: internalencoding AND !empty$this-internalencoding mbinternalencoding$this-internalencoding; // u...
ESC 8832 Data Controller - Multiple Vulnerabilities
ESC 8832 Data Controller - Multiple Vulnerabilities =begin Exploit Title: ESC 8832 Data Controller multiple vulnerabilities Date: 2014-05-29 Platform: SCADA / Web Application Exploit Author: Balazs Makany Vendor Homepage: www.envirosys.com Version: ESC 8832 Data Controller Hardware Tested on: ESC...
Private Shell SSH Client 3.3 - Crash (PoC)
Private Shell SSH Client 3.3 - Crash PoC ''' Exploit title: privateshell SSH Client v.3.3 denial of service vulnerability Date: 27-5-2015 Vendor homepage: www.privateshell.com Software Link: http://www.privateshell.com/files/pshell.exe Version: 3.3 Author: 3unnym00n Details: -------- when doing t...
Peercast 0.1211 - Format String
Peercast 0.1211 - Format String Peercast Format String Vulnerability Vendor: peercast.org Product: Peercast Version: = 0.1211 Website: http://www.peercast.org/ BID: 13808 CVE: CVE-2005-1806 OSVDB: 16906 SECUNIA: 15536 PACKETSTORM: 39355 Description: Peercast is a popular p2p streaming media serve...
WordPress Plugin Free Counter 1.1 - Persistent Cross-Site Scripting
WordPress Plugin Free Counter 1.1 - Persistent Cross-Site Scripting Exploit Title: WordPress Free Counter Plugin Stored XSS Date: 2015/05/25 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://www.free-counter.org Software Link:...
WordPress Plugin Video Gallery 2.8 - Arbitrary Mail Relay
WordPress Plugin Video Gallery 2.8 - Arbitrary Mail Relay Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage :...
ClickHeat 1.13+ - Remote Command Execution
ClickHeat 1.13+ - Remote Command Execution Clickheat 1.13+ Unauthenticated RCE ----------------------------------- The Clickheat developers have been informed, but have not responded to my email. The code has not been updated recently and the project seems to be in an abandoned state. I have...
WordPress Plugin church_admin 0.800 - Persistent Cross-Site Scripting
WordPress Plugin churchadmin 0.800 - Persistent Cross-Site Scripting Exploit Title: Wordpress churchadmin Stored XSS Date: 21-04-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/church-admin/ Version: 0.800 OSVDB ID : http://www.osvdb.org/show/osvdb/121304 WPVULNDB ID...
WordPress Plugin GigPress 2.3.8 - SQL Injection
WordPress Plugin GigPress 2.3.8 - SQL Injection Title: SQLi vulnerabilities in WordPress plugin "GigPress" Author: Adrián M. F. - adrimf85atgmaildotcom Date: 2015-05-25 Vendor Homepage: https://wordpress.org/plugins/gigpress/ Active installs: 20,000+ Vulnerable version: 2.3.8 Fixed version: 2.3.9...
Apache JackRabbit - WebDAV XML External Entity
Apache JackRabbit - WebDAV XML External Entity !/usr/bin/env python """ Exploit Title: Jackrabbit WebDAV XXE Date: 25-05-2015 Software Link: http://jackrabbit.apache.org/jcr/ Exploit Author: Mikhail Egorov Contact: 0ang3el gmail com Website: http://0ang3el.blogspot.com CVE: CVE-2015-1833 Category...
WordPress Plugin MailChimp Subscribe Forms 1.1 - Remote Code Execution
WordPress Plugin MailChimp Subscribe Forms 1.1 - Remote Code Execution Exploit Title: Wordpress MailChimp Subscribe Forms Remote Code Execution Date: 21-04-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/mailchimp-subscribe-sm/ Software Link:...
Sendio ESP - Information Disclosure
Sendio ESP - Information Disclosure 1. Advisory Information Title: Sendio ESP Information Disclosure Vulnerability Advisory ID: CORE-2015-0010 Advisory URL: http://www.coresecurity.com/advisories/sendio-esp-information-disclosure-vulnerability Date published: 2015-05-22 Date of last update:...
WordPress Plugin Simple Photo Gallery 1.7.8 - Blind SQL Injection
WordPress Plugin Simple Photo Gallery 1.7.8 - Blind SQL Injection Exploit Title: Wordpess Simple Photo Gallery Blind SQL Injection Date: 12-05-2015 Exploit Author: woodspeed Vendor Homepage: https://wordpress.org/plugins/simple-photo-gallery/ Version: 1.7.8 Tested on: Apache 2.2.22, PHP 5.3.10...
Acoustica Pianissimo 1.0 Build 12 - Registration ID Buffer Overflow (PoC)
Acoustica Pianissimo 1.0 Build 12 - Registration ID Buffer Overflow PoC Acoustica Pianissimo 1.0 Build 12 Registration ID Buffer Overflow PoC Vendor: Acoustica, Inc. Product web page: http://www.acoustica.com Affected version: 1.0 Build 12 Summary: Pianissimo virtual piano uses a combination of...
WordPress Plugin NewStatPress 0.9.8 - Multiple Vulnerabilities
WordPress Plugin NewStatPress 0.9.8 - Multiple Vulnerabilities Title: Multiple vulnerabilities in WordPress plugin "NewStatPress" Author: Adrián M. F. - adrimf85atgmaildotcom Date: 2015-05-25 Vendor Homepage: https://wordpress.org/plugins/newstatpress/ Active installs: 20,000+ Vulnerable version:...
WordPress Plugin Landing Pages 1.8.4 - Multiple Vulnerabilities
WordPress Plugin Landing Pages 1.8.4 - Multiple Vulnerabilities Title: Multiple vulnerabilities in WordPress plugin "WordPress Landing Pages" Author: Adrián M. F. - adrimf85atgmaildotcom Date: 2015-05-25 Vendor Homepage: https://wordpress.org/plugins/landing-pages/ Active installs: 20,000+...
Microsoft Windows - Local Privilege Escalation (MS15-010)
Microsoft Windows - Local Privilege Escalation MS15-010 // ex.cpp / Windows XP/2K3/VISTA/2K8/7 WMSYSTIMER Kernel EoP CVE-2015-0003 March 2015 Public Release: May 24, 2015 Tested on: x86: Win 7 SP1 | Win 2k3 SP2 | Win XP SP3 x64: Win 2k8 SP1 | Win 2k8 R2 SP1 Author: Skylake - skylake mail com /...
FTP Media Server 3.0 - Authentication Bypass Denial of Service
FTP Media Server 3.0 - Authentication Bypass Denial of Service !/usr/bin/env python ================================================================================== Exploit Title: FTP Media Server 3.0 - Authentication Bypass and Denial of Service Date: 2015-05-25 Exploit Author: Wh1t3Rh1n0...
Fuse 2.9.3-15 - Local Privilege Escalation
Fuse 2.9.3-15 - Local Privilege Escalation Source: https://gist.github.com/taviso/ecb70eb12d461dd85cba Tweet: https://twitter.com/taviso/status/601370527437967360 Recommend Reading: http://seclists.org/oss-sec/2015/q2/520 YouTube: https://www.youtube.com/watch?v=V0i3uJJPJ88 Making a demo exploit...
Apport (Ubuntu 14.0414.1015.04) - Race Condition Privilege Escalation
Apport Ubuntu 14.0414.1015.04 - Race Condition Privilege Escalation / Exploit Title: apport/ubuntu local root race condition Date: 2015-05-11 Exploit Author: rebel Version: ubuntu 14.04, 14.10, 15.04 Tested on: ubuntu 14.04, 14.10, 15.04 CVE : CVE-2015-1325 ==============================...
Forma LMS 1.3 - Multiple SQL Injections
Forma LMS 1.3 - Multiple SQL Injections Forma LMS 1.3 Multiple SQL Injections + Author: Filippo Roncari + Target: Forma LMS + Version: 1.3 and probably lower + Vendor: http://www.formalms.org + Accessibility: Remote + Severity: High + CVE: + Full Advisory:...
WordPress Plugin WP Membership 1.2.3 - Multiple Vulnerabilities
WordPress Plugin WP Membership 1.2.3 - Multiple Vulnerabilities Exploit Title: WordPress WP Membership plugin Multiple Vulnerabilities Date: 2015/05/19 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://wpmembership.e-plugins.com/ Software Link:...
WordPress Plugin WP Symposium 15.1 - show SQL Injection
WordPress Plugin WP Symposium 15.1 - show SQL Injection ======================================================================= title: SQL Injection product: WordPress WP Symposium Plugin vulnerable version: 15.1 and probably below fixed version: 15.4 CVE number: CVE-2015-3325 impact: CVSS Base...
ZOC SSH Client - Buffer Overflow (SEH) (PoC)
ZOC SSH Client - Buffer Overflow SEH PoC """ Exploit title: ZOC SSH Client v.7.03.0 Buffer overflow vulnerability SEH Date: 20-5-2015 Vendor homepage: www.emtec.com Software Link: http://www.emtec.com/cgi-local/download.cgi?what=ZOC7%20Windows&link=zoc/zoc7030.exe&ext=html Author: Dolev Farhi...
Phoenix Contact ILC 150 ETH PLC - Remote Control Script
Phoenix Contact ILC 150 ETH PLC - Remote Control Script ! /usr/bin/env python ''' Exploit Title: Phoenix Contact ILC 150 ETH PLC Remote Control script Date: 2015-05-19 Exploit Author: Photubias - tijldotdeneutathowestdotbe Vendor Homepage:...
Comodo GeekBuddy 4.18.121 - Local Privilege Escalation
Comodo GeekBuddy 4.18.121 - Local Privilege Escalation Comodo GeekBuddy Local Privilege Escalation CVE-2014-7872 Jeremy Brown jbrown3264/gmail -Synopsis- Comodo GeekBuddy, which is bundled with Comodo Anti-Virus, Comodo Firewall and Comodo Internet Security, runs a passwordless, background VNC...
WordPress Plugin FeedWordPress 2015.0426 - SQL Injection
WordPress Plugin FeedWordPress 2015.0426 - SQL Injection Exploit Title: SQLi in FeedWordPress WordPress plugin Date: 2015-05-19 Exploit Author: Adrián M. F. Vendor Homepage: https://wordpress.org/plugins/feedwordpress/ Vulnerable version: 2015.0426 Fixed version: 2015.0514 CVE : CVE-2015-4018 1...
Microsoft Windows 8.08.1 (x64) - TrackPopupMenu Local Privilege Escalation (MS14-058)
Microsoft Windows 8.08.1 x64 - TrackPopupMenu Local Privilege Escalation MS14-058 Windows 8.0 - 8.1 x64 TrackPopupMenu Privilege Escalation MS14-058 CVE-2014-4113 Privilege Escalation http://www.offensive-security.com Thx to Moritz Jodeit for the beautiful writeup...
Microsoft Internet Explorer 11 - Crash (PoC) (1)
Microsoft Internet Explorer 11 - Crash PoC 1 Exploit Title: Internet Explorer 11 - Crash PoC Google Dork: N/A Date: 19th May, 2015 Exploit Author: garage4hackers Vendor Homepage: http://garage4hackers.com/showthread.php?t=6246 Software Link: N/A Version: Tested on IE 11 Tested on: Windows 7 CVE :...