Lucene search
K
ExploitpackRecent

41207 matches found

exploitpack
exploitpack
added 2019/06/17 12:0 a.m.18 views

AROX School-ERP Pro - Unauthenticated Remote Command Execution (Metasploit)

AROX School-ERP Pro - Unauthenticated Remote Command Execution Metasploit This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "AROX School-ERP Pro Unauthenticated Remote Code Execution", 'Descriptio...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2019/06/17 12:0 a.m.22 views

Netperf 2.6.0 - Stack-Based Buffer Overflow

Netperf 2.6.0 - Stack-Based Buffer Overflow Exploit Author: Juan Sacco - http://exploitpack.com Tested on: Kali i686 GNU/Linux Description: Netperf 2.6.0 s a benchmark tool than developed by Helett Packard that can be used to measure the performance of many different types of networking. It...

1AI score
Exploits0
exploitpack
exploitpack
added 2019/06/17 12:0 a.m.230 views

Exim 4.87 - 4.91 - Local Privilege Escalation

Exim 4.87 - 4.91 - Local Privilege Escalation !/bin/bash raptoreximwiz - "The Return of the WIZard" LPE exploit Copyright c 2019 Marco Ivaldi A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to...

7.5CVSS1AI score0.99961EPSS
Exploits27
exploitpack
exploitpack
added 2019/06/17 12:0 a.m.62 views

Spring Security OAuth - Open Redirector

Spring Security OAuth - Open Redirector Exploit Title: Open Redirector in spring-security-oauth2 Date: 17 June 2019 Exploit Author: Riemann Vendor Homepage: https://spring.io/projects/spring-security-oauth Software Link: https://spring.io Version: Spring Security OAuth versions 2.3 prior to 2.3.6...

6.4CVSS0.15621EPSS
Exploits4
exploitpack
exploitpack
added 2019/06/17 12:0 a.m.48 views

Thunderbird ESR 60.7.XXX - icalmemorystrdupanddequote Heap-Based Buffer Overflow

Thunderbird ESR 60.7.XXX - icalmemorystrdupanddequote Heap-Based Buffer Overflow X41 D-Sec GmbH Security Advisory: X41-2019-001 Heap-based buffer overflow in Thunderbird ========================================= Severity Rating: High Confirmed Affected Versions: All versions affected Confirmed...

7.5CVSS0.3AI score0.10527EPSS
Exploits4
exploitpack
exploitpack
added 2019/06/17 12:0 a.m.19 views

RedwoodHQ 2.5.5 - Authentication Bypass

RedwoodHQ 2.5.5 - Authentication Bypass -- encoding: utf-8 -- !/usr/bin/python3 Exploit Title: RedxploitHQ Create Admin User by missing authentication on db Date: 14-june-2019 Exploit Author: EthicalHCOP Version: 2.0 / 2.5.5 Vendor Homepage: https://redwoodhq.com/ Software Link:...

1AI score
Exploits0
exploitpack
exploitpack
added 2019/06/14 12:0 a.m.19 views

CentOS 7.6 - ptrace_scope Privilege Escalation

CentOS 7.6 - ptracescope Privilege Escalation !/usr/bin/env bash 'ptracescope' misconfiguration Local Privilege Escalation Affected operating systems TESTED: Parrot Home/Workstation 4.6 Latest Version Parrot Security 4.6 Latest Version CentOS / RedHat 7.6 Latest Version Kali Linux 2018.4 Latest...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2019/06/14 12:0 a.m.27 views

Aida64 6.00.5100 - Log to CSV File Local SEH Buffer Overflow

Aida64 6.00.5100 - Log to CSV File Local SEH Buffer Overflow !/usr/bin/python Exploit : Aida64 6.00.5100 'Log to CSV File' Local SEH Buffer Overflow Exploit Author : Nipun Jaswal Tested On : Windows 7 Home Basicx86 Version : 6.00.5100 Release Date : 31/May/2019 Build : 21/May/2019 Vendor Homepage...

Exploits0
exploitpack
exploitpack
added 2019/06/13 12:0 a.m.19 views

Pronestor Health Monitoring 8.1.11.0 - Privilege Escalation

Pronestor Health Monitoring 8.1.11.0 - Privilege Escalation Summary The Pronestor service "PNHM" aka Health Monitoring or HealthMonitor before 8.1.12.0 has "BUILTIN\Users:IF" permissions for the "%PROGRAMFILESX86%\proNestor\Outlook add-in for Pronestor\PronestorHealthMonitor.exe" file, which allo...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2019/06/13 12:0 a.m.25 views

Sitecore 8.x - Deserialization Remote Code Execution

Sitecore 8.x - Deserialization Remote Code Execution Exploit Title: Sitecore v 8.x Deserialization RCE Date: Reported to vendor October 2018, fix released April 2019. Exploit Author: Jarad Kopf Vendor Homepage: https://www.sitecore.com/ Software Link: Sitecore downloads:...

9CVSS0.14196EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/12 12:0 a.m.28 views

FusionPBX 4.4.3 - Remote Command Execution

FusionPBX 4.4.3 - Remote Command Execution Exploit Title: FusionPBX = 4.4.3 Command Injection RCE via XSS Date: 06-11-2019 Exploit Author: Dustin Cobb Vendor Homepage: https://www.fusionpbx.com Software Link: https://https://github.com/fusionpbx/fusionpbx Version: = 4.4.3 Tested on: Debian 8.11 C...

6.5CVSS7.7AI score0.8748EPSS
Exploits10
exploitpack
exploitpack
added 2019/06/11 12:0 a.m.131 views

Liferay Portal 7.1 CE GA3 SimpleCaptcha API - Cross-Site Scripting

Liferay Portal 7.1 CE GA3 SimpleCaptcha API - Cross-Site Scripting Exploit Title: Liferay Portal ” / or ” /. A customized Liferay portlet which directly calls the Simple Captcha API without sanitizing the input could be susceptible to this vulnerability. Poc In a sample scenario of custom code...

2.6CVSS0.2AI score0.02283EPSS
Exploits4
exploitpack
exploitpack
added 2019/06/11 12:0 a.m.26 views

ProShow 9.0.3797 - Local Privilege Escalation

ProShow 9.0.3797 - Local Privilege Escalation !/usr/bin/python coding:utf-8 Exploit Title: ProShow v9.0.3797 Local Exploit Exploit Author: @YonatanCorrea website with details: https://risataim.blogspot.com/2019/06/exploit-local-para-proshow.html Vendor Homepage: http://www.photodex.com/ProShow...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2019/06/11 12:0 a.m.11 views

WordPress Plugin Insert or Embed Articulate Content into WordPress - Remote Code Execution

WordPress Plugin Insert or Embed Articulate Content into WordPress - Remote Code Execution Exploit Title: Authenticated code execution in insert-or-embed-articulate-content-into-wordpress Wordpress plugin Description: It is possible to upload and execute a PHP file using the plugin option to uplo...

Exploits0
exploitpack
exploitpack
added 2019/06/11 12:0 a.m.80 views

Webmin 1.910 - Package Updates Remote Command Execution (Metasploit)

Webmin 1.910 - Package Updates Remote Command Execution Metasploit This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Webmin Package Updates Remote Command Execution', 'Description' = %q This modu...

0.6AI score0.77813EPSS
Exploits9
exploitpack
exploitpack
added 2019/06/11 12:0 a.m.45 views

phpMyAdmin 4.8 - Cross-Site Request Forgery

phpMyAdmin 4.8 - Cross-Site Request Forgery Exploit Title: Cross Site Request Forgery CSRF Date: 11 June 2019 Exploit Author: Riemann Vendor Homepage: https://www.phpmyadmin.net/ Software Link: https://www.phpmyadmin.net/downloads/ Version: 4.8 Tested on: UBUNTU 16.04 LTS -Installed Docker image ...

4.3CVSS0.9AI score0.19184EPSS
Exploits4
exploitpack
exploitpack
added 2019/06/10 12:0 a.m.31 views

UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting

UliCMS 2019.1 Spitting Lama - Persistent Cross-Site Scripting Exploit Title: UliCMS 2019.1 "Spitting Lama" - Stored Cross-Site Scripting Google Dork: intext:"by UliCMS" Date: 2019-05-12 Exploit Author: Unk9vvN Vendor Homepage: https://en.ulicms.de Software Link:...

4.3CVSS6.1AI score0.03473EPSS
Exploits9
exploitpack
exploitpack
added 2019/06/10 12:0 a.m.30 views

Ubuntu 18.04 - lxd Privilege Escalation

Ubuntu 18.04 - lxd Privilege Escalation !/usr/bin/env bash ---------------------------------- Authors: Marcelo Vazquez S4vitar Victor Lasa vowkin ---------------------------------- Step 1: Download build-alpine = wget https://raw.githubusercontent.com/saghul/lxd-alpine-builder/master/build-alpine...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2019/06/07 12:0 a.m.128 views

Microsoft Windows - AppX Deployment Service Local Privilege Escalation (3)

Microsoft Windows - AppX Deployment Service Local Privilege Escalation 3 CVE-2019-0841 BYPASS 2 There is a second bypass for CVE-2019-0841. This can be triggered as following: Delete all files and subfolders within "c:\users%username%\appdata\local\packages\Microsoft.MicrosoftEdge8wekyb3d8bbwe"...

7.2CVSS0.4AI score0.41667EPSS
Exploits19
exploitpack
exploitpack
added 2019/06/06 12:0 a.m.60 views

VMware WorkStation 12.5.3 - Virtual Machine Escape

VMware WorkStation 12.5.3 - Virtual Machine Escape VMware Escape Exploit VMware Escape Exploit before VMware WorkStation 12.5.3 Host Target: Win10 x64 Compiler: VS2013 Test on VMware 12.5.2 build-4638234 Known issues Failing to heap manipulation causes host process crash. About 50% successful rat...

7.5CVSS0.6AI score0.1994EPSS
Exploits6
exploitpack
exploitpack
added 2019/06/06 12:0 a.m.40 views

Supra Smart Cloud TV - openLiveURL() Remote File Inclusion

Supra Smart Cloud TV - openLiveURL Remote File Inclusion Exploit Title: Remote file inclusion Date: 03-06-2019 Exploit Author: Dhiraj Mishra Vendor Homepage: https://supra.ru Software Link: https://supra.ru/catalog/televizory/televizorsuprastvlc40lt0020f/ CVE: CVE-2019-12477 References:...

2.1CVSS0.1AI score0.13318EPSS
Exploits7
exploitpack
exploitpack
added 2019/06/05 12:0 a.m.40 views

Zimbra 8.8.11 - XML External Entity Injection Server-Side Request Forgery

Zimbra 8.8.11 - XML External Entity Injection Server-Side Request Forgery coding=utf8 import requests import sys from requests.packages.urllib3.exceptions import InsecureRequestWarning requests.packages.urllib3.disablewarningsInsecureRequestWarning baseurl=sys.argv1 baseurl=baseurl.rstrip"/" uplo...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2019/06/05 12:0 a.m.15 views

Google Chrome 73.0.3683.103 - WasmMemoryObject::Grow Use-After-Free

Google Chrome 73.0.3683.103 - WasmMemoryObject::Grow Use-After-Free memoryobject, uint32t pages ... Handle newbuffer; if oldbuffer-isshared // Adjust protections for the buffer. if !AdjustBufferPermissionsisolate, oldbuffer, newsize return -1; void backingstore = oldbuffer-backingstore; if...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2019/06/05 12:0 a.m.929 views

Exim 4.87 4.91 - (Local Remote) Command Execution

Exim 4.87 4.91 - Local Remote Command Execution Qualys Security Advisory The Return of the WIZard: RCE in Exim CVE-2019-10149 ======================================================================== Contents ======================================================================== Summary Local...

10CVSS9.9AI score0.99961EPSS
Exploits27
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.18 views

DVD X Player 5.5 Pro - Local Buffer Overflow (SEH)

DVD X Player 5.5 Pro - Local Buffer Overflow SEH Exploit Title: DVDXPlayer 5.5 Pro Local Buffer Overflow with SEH Date: 6-3-2019 Exploit Author: Kevin Randall Vendor Homepage: http://www.dvd-x-player.com/download.htmldvdPlayer Software Link: http://www.dvd-x-player.com/download.htmldvdPlayer...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.36 views

Zoho ManageEngine ServiceDesk Plus 9.3 - SiteLookup.do Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - SiteLookup.do Cross-Site Scripting Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SiteLookup.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage:...

4.3CVSS0.2AI score0.06029EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.24 views

NUUO NVRMini 2 3.9.1 - sscanf Stack Overflow

NUUO NVRMini 2 3.9.1 - sscanf Stack Overflow !/usr/bin/python Exploit Title: NUUO NVRMini2 3.9.1 'sscanf' stack overflow Google Dork: n/a Date: Advisory Published: Nov 18 Exploit Author: @0x00string Vendor Homepage: nuuo.com Software Link: https://www.nuuo.com/ProductNode.php?node=2 Version: 3.9....

10CVSS0.4AI score0.24808EPSS
Exploits4
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.54 views

Cisco RV130W 1.0.3.44 - Remote Stack Overflow

Cisco RV130W 1.0.3.44 - Remote Stack Overflow !/usr/bin/python Exploit Title: Cisco RV130W Remote Stack Overflow Google Dork: n/a Date: Advisory Published: Feb 2019 Exploit Author: @0x00string Vendor Homepage: cisco.com Software Link:...

10CVSS0.3AI score0.95707EPSS
Exploits15
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.44 views

Zoho ManageEngine ServiceDesk Plus 9.3 - SolutionSearch.do Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - SolutionSearch.do Cross-Site Scripting Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SolutionSearch.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage:...

4.3CVSS0.2AI score0.06029EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.46 views

Zoho ManageEngine ServiceDesk Plus 9.3 - SearchN.do Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - SearchN.do Cross-Site Scripting Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SearchN.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage:...

4.3CVSS0.4AI score0.06029EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.23 views

IceWarp 10.4.4 - Local File Inclusion

IceWarp 10.4.4 - Local File Inclusion Exploit Title: IceWarp =10.4.4 local file include Date: 02/06/2019 Exploit Author: JameelNabbo Website: uitsec.com Vendor Homepage: http://www.icewarp.com Software Link: https://www.icewarp.com/downloads/trial/ Version: 10.4.4 Tested on: Windows 10 CVE:...

5CVSS7.6AI score0.40965EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.50 views

Zoho ManageEngine ServiceDesk Plus 9.3 - PurchaseRequest.do Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - PurchaseRequest.do Cross-Site Scripting Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via PurchaseRequest.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage:...

4.3CVSS0.1AI score0.06056EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/04 12:0 a.m.47 views

Vim 8.1.1365 Neovim 0.3.6 - Arbitrary Code Execution

Vim 8.1.1365 Neovim 0.3.6 - Arbitrary Code Execution by Arminius @rawsec Vim/Neovim Arbitrary Code Execution via Modelines ================================================= Product: Vim 8.1.1365, Neovim 0.3.6 Type: Arbitrary Code Execution CVE: CVE-2019-12735 Date: 2019-06-04 Author: Arminius...

9.3CVSS0.4AI score0.25314EPSS
Exploits5
exploitpack
exploitpack
added 2019/06/03 12:0 a.m.47 views

Nvidia GeForce Experience Web Helper - Command Injection

Nvidia GeForce Experience Web Helper - Command Injection //Send request to local GFE server function submitRequestport,secret var xhr = new XMLHttpRequest; xhr.open"POST", "http://127.0.0.1:"+port+"/gfeupdate/autoGFEInstall/", true; xhr.setRequestHeader"Accept",...

0.7AI score0.00932EPSS
Exploits3
exploitpack
exploitpack
added 2019/06/03 12:0 a.m.54 views

KACE System Management Appliance (SMA) 9.0.270 - Multiple Vulnerabilities

KACE System Management Appliance SMA 9.0.270 - Multiple Vulnerabilities Exploit Title: Dell Kace Appliance Multiple Vulnerabilities Date: 12/04/2018 Exploit Author: SlidingWindow, Twitter: @kapilkhot Vendor Homepage: https://www.quest.com/products/kace-systems-management-appliance/ Affected...

9.3CVSS0.5AI score0.12206EPSS
Exploits6
exploitpack
exploitpack
added 2019/06/03 12:0 a.m.37 views

WordPress Plugin Form Maker 1.13.3 - SQL Injection

WordPress Plugin Form Maker 1.13.3 - SQL Injection -- coding: utf-8 -- Exploit Title: WordPress Plugin Form Maker 1.13.3 - SQL Injection Date: 22-03-2019 Exploit Author: Daniele Scanu @ Certimeter Group Vendor Homepage: https://10web.io/plugins/ Software Link:...

7.5CVSS0.5AI score0.06214EPSS
Exploits6
exploitpack
exploitpack
added 2019/06/03 12:0 a.m.37 views

AUO Solar Data Recorder 1.3.0 - Incorrect Access Control

AUO Solar Data Recorder 1.3.0 - Incorrect Access Control Exploit Title: AUO Solar Data Recorder - Incorrect Access Control Date: 2019-04-16 Exploit Author: Luca.Chiou Vendor Homepage: https://www.auo.com/zh-TW Version: AUO Solar Data Recorder all versions prior to v1.3.0 Tested on: It is a...

7.5CVSS1.2AI score0.0282EPSS
Exploits5
exploitpack
exploitpack
added 2019/05/30 12:0 a.m.11 views

Microsoft Windows Remote Desktop - BlueKeep Denial of Service

Microsoft Windows Remote Desktop - BlueKeep Denial of Service import socket, sys, struct from OpenSSL import SSL from impacket.structure import Structure I'm not responsible for what you use this to accomplish and should only be used for education purposes Could clean these up since I don't even...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/05/29 12:0 a.m.35 views

Qualcomm Android - Kernel Use-After-Free via Incorrect set_page_dirty() in KGSL

Qualcomm Android - Kernel Use-After-Free via Incorrect setpagedirty in KGSL The following issue exists in the android-msm-wahoo-4.4-pie branch of https://android.googlesource.com/kernel/msm and possibly others: When kgslmementrydestroy in drivers/gpu/msm/kgsl.c is called for a writable entry with...

1.6AI score
Exploits0
exploitpack
exploitpack
added 2019/05/29 12:0 a.m.15 views

Free SMTP Server 2.5 - Denial of Service (PoC)

Free SMTP Server 2.5 - Denial of Service PoC Exploit Title: Free SMTP Server - Local Denial of Service Crash PoC Date: February 3, 2009 Exploit Author: Metin Kandemir kandemir Vendor Homepage: http://www.softstack.com/freesmtp.html Software Link:...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2019/05/29 12:0 a.m.16 views

Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation

Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation While fuzzing Spidermonkey, I encountered the following commented and modified JavaScript program which crashes debug builds of the latest release version of Spidermonkey from commit...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2019/05/29 12:0 a.m.80 views

Spidermonkey - IonMonkey Leaks JS_OPTIMIZED_OUT Magic Value to Script

Spidermonkey - IonMonkey Leaks JSOPTIMIZEDOUT Magic Value to Script IonMonkey can, during a bailout, leak an internal JSOPTIMIZEDOUT magic value to the running script. This magic value can then be used to achieve memory corruption. Prerequisites Magic Values Spidermonkey represents JavaScript...

7.5CVSS0.1AI score0.13197EPSS
Exploits5
exploitpack
exploitpack
added 2019/05/29 12:0 a.m.30 views

pfSense 2.4.4-p3 (ACME Package 0.59_14) - Persistent Cross-Site Scripting

pfSense 2.4.4-p3 ACME Package 0.5914 - Persistent Cross-Site Scripting Exploit Title: pfSense 2.4.4-p3 ACMEPackage 0.5.71 - Stored Cross-Site Scripting Date: 05.28.2019 Exploit Author: Chi Tran Vendor Homepage: https://www.pfsense.org Version: 2.4.4-p3/0.5.71 Software Link: N/A Google Dork: N/A...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2019/05/28 12:0 a.m.30 views

Phraseanet 4.0.7 - Cross-Site Scripting

Phraseanet 4.0.7 - Cross-Site Scripting Exploit title: Stored XSS vulnerability in Phraseanet DAM Open Source software Date: 10/10/2018 Exploit Author: Krzysztof Szulski Vendor Homepage: https://www.phraseanet.com Software Link also VM: https://www.phraseanet.com/en/download/ Version affected:...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2019/05/28 12:0 a.m.15 views

EquityPandit 1.0 - Password Disclosure

EquityPandit 1.0 - Password Disclosure Exploit title: EquityPandit v1.0 - Insecure Logging Date:27/05/2019 Exploit Author: ManhNho Software name: "EquityPandit" Software link: https://play.google.com/store/apps/details?id=com.yieldnotion.equitypandit Version: 1.0 Category: Android apps Descriptio...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/05/28 12:0 a.m.17 views

Petraware pTransformer ADC 2.1.7.22827 - Login Bypass

Petraware pTransformer ADC 2.1.7.22827 - Login Bypass Exploit Title: Petraware pTransformer ADC before 2.1.7.22827 allows SQL Injection via the User ID parameter to the login form. Date: 28-05-2019 Exploit Author: Faudhzan Rahman Website: https://faudhzanrahman.blogspot.com/ Vendor Homepage:...

4.6CVSS0.3AI score0.00941EPSS
Exploits5
exploitpack
exploitpack
added 2019/05/27 12:0 a.m.25 views

Deltek Maconomy 2.2.5 - Local File Inclusion

Deltek Maconomy 2.2.5 - Local File Inclusion Exploit Title: Maconomy Erp local file include Date: 22/05/2019 Exploit Author: JameelNabbo Website: jameelnabbo.com Vendor Homepage: https://www.deltek.com Software Link: https://www.deltek.com/en-gb/products/project-erp/maconomy CVE: CVE-2019-12314...

7.5CVSS9.7AI score0.8422EPSS
Exploits6
exploitpack
exploitpack
added 2019/05/27 12:0 a.m.20 views

Pidgin 2.13.0 - Denial of Service (PoC)

Pidgin 2.13.0 - Denial of Service PoC -- coding: utf-8 -- Exploit Title: Pidgin 2.13.0 - Denial of Service PoC Date: 24/05/2019 Author: Alejandra Sánchez Vendor Homepage: https://pidgin.im/ Software https://cfhcable.dl.sourceforge.net/project/pidgin/Pidgin/2.13.0/pidgin-2.13.0.exe Version: 2.13.0...

Exploits0
exploitpack
exploitpack
added 2019/05/27 12:0 a.m.38 views

Typora 0.9.9.24.6 - Directory Traversal

Typora 0.9.9.24.6 - Directory Traversal Exploit Title: Code execution via path traversal Date: 17-05-2019 Exploit Author: Dhiraj Mishra Vendor Homepage: http://typora.io Software Link: https://typora.io/download/Typora.dmg Version: 0.9.9.24.6 Tested on: macOS Mojave v10.14.4 CVE: CVE-2019-12137...

6.8CVSS0.3AI score0.06451EPSS
Exploits5
exploitpack
exploitpack
added 2019/05/24 12:0 a.m.32 views

Cyberoam General Authentication Client 2.1.2.7 - Server Address Denial of Service (PoC)

Cyberoam General Authentication Client 2.1.2.7 - Server Address Denial of Service PoC Exploit Title: Cyberoam General Authentication Client 2.1.2.7 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2019-05-23 Vendor Homepage: https://www.cyberoam.com Software Link:...

0.4AI score
Exploits0
Total number of security vulnerabilities41207