Rmedia SMS 1.0 - SQL Injection

Rmedia SMS 1.0 - SQL Injection Exploit Title: Rmedia SMS 1.0 - SQL Injection Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: http://sms.rmediaindia.com/ Software Link: https://master.dl.sourceforge.net/project/rmediasms/rmediasms.rar Version: 1.0 Category: Webapps Tested...

AMPPS 2.7 - Denial of Service (PoC)

AMPPS 2.7 - Denial of Service PoC Exploit Title: AMPPS 2.7 - Denial of Service PoC Dork: N/A Date: 2018-11-12 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.ampps.com/ Software Link: https://kent.dl.sourceforge.net/project/ampps/2.7/Ampps-2.7-setup.exe Version: 2.7 Category: Dos Tested...

EdTv 2 - id SQL Injection

EdTv 2 - id SQL Injection Exploit Title: EdTv 2 - 'id' SQL Injection Dork: N/A Date: 2018-11-12 Exploit Author: Ihsan Sencan Vendor Homepage: http://edtv.edsup.org/ Software Link: https://ayera.dl.sourceforge.net/project/edtv/beta/edtv2go.zip Version: 2 Category: Webapps Tested on:...

PHP 5.2.3 imap (Debian Based) - imap_open Disable Functions Bypass

PHP 5.2.3 imap Debian Based - imapopen Disable Functions Bypass /tmp/test0001 $server = "x -oProxyCommand=echo\tZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64\t-d|sh"; imapopen''.$server.':143/imapINBOX', '', '' or die"\n\nError: ".imaplasterror;...

ntpd 4.2.8p10 - Out-of-Bounds Read (PoC)

ntpd 4.2.8p10 - Out-of-Bounds Read PoC Exploit Title: ntpd 4.2.8p10 - Out-of-Bounds Read PoC Bug Discovery: Yihan Lian, a security researcher of Qihoo 360 GearTeam Exploit Author: Magnus Klaaborg Stubman @magnusstubman Website: https://dumpco.re/blog/cve-2018-7182 Vendor Homepage:...

Advanced Comment System 1.0 - SQL Injection

Advanced Comment System 1.0 - SQL Injection Exploit Title: SQL injection in Advanced comment system v1.0 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: http://www.plohni.com Software Link: http://www.plohni.com/wb/content/php/download/Advancedcommentsystem1-0.zip,...

Helpdezk 1.1.1 - query SQL Injection

Helpdezk 1.1.1 - query SQL Injection Exploit Title: Helpdezk 1.1.1 - 'query' SQL Injection Dork: N/A Date: 2018-11-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.helpdezk.org/ Software Link: https://netcologne.dl.sourceforge.net/project/helpdezk/helpdezk-1.1.1.zip Version: 1.1.1...

DoceboLMS 1.2 - SQL Injection Arbitrary File Upload

DoceboLMS 1.2 - SQL Injection Arbitrary File Upload Exploit Title: DoceboLMS 1.2 - SQL Injection Dork: N/A Date: 2018-11-12 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.spaghettilearning.com/ Software Link:...

PHP 5.2.3 imap (Debian Based) - imap_open disable_functions Bypass

PHP 5.2.3 imap Debian Based - imapopen disablefunctions Bypass /tmp/test0001 $server = "x -oProxyCommand=echo\tZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64\t-d|sh"; imapopen''.$server.':143/imapINBOX', '', '' or die"\n\nError: ".imaplasterror;...

SwitchVPN for macOS 2.1012.03 - Privilege Escalation

SwitchVPN for macOS 2.1012.03 - Privilege Escalation ======================================================================= Title: Privilege Escalation Vulnerability Product: SwitchVPN for MacOS Vulnerable version: 2.1012.03 CVE ID: CVE-2018-18860 Impact: Critical Homepage: https://switchvpn.net...

Electricks eCommerce 1.0 - Persistent Cross-Site Scripting

Electricks eCommerce 1.0 - Persistent Cross-Site Scripting Exploit Title: Electricks eCommerce 1.0 - Cross-Site Scripting Date: 2018-11-12 Exploit Author: Nawaf Alkeraithe Software Link: https://www.sourcecodester.com/sites/default/files/download/billyblue/electricks.zip Version: 1.0 When a user...

Pedidos 1.0 - SQL Injection

Pedidos 1.0 - SQL Injection Exploit Title: Pedidos 1.0 - SQL Injection Dork: N/A Date: 2018-11-12 Exploit Author: Ihsan Sencan Vendor Homepage: http://obedalvarado.pw/ Software Link: https://netcologne.dl.sourceforge.net/project/sistema-web-de-pedidos-php/pedidos.zip Version: 1.0 Category: Webapp...

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities

Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities ''' KL-001-2018-009 : Dell OpenManage Network Manager Multiple Vulnerabilities Title: Dell OpenManage Network Manager Multiple Vulnerabilities Advisory ID: KL-001-2018-009 Publication Date: 2018.11.05 Publication URL:...

Electricks eCommerce 1.0 - Cross-Site Request Forgery (Change Admin Password)

Electricks eCommerce 1.0 - Cross-Site Request Forgery Change Admin Password Exploit Title: Electricks eCommerce 1.0 - Cross-Site Request Forgery Change Admin Password Date: 2018-11-12 Exploit Author: Nawaf Alkeraithe Software Link:...

Bosch Video Management System 8.0 - Configuration Client Denial of Service (PoC)

Bosch Video Management System 8.0 - Configuration Client Denial of Service PoC Exploit Title: Bosch Video Management System 8.0-Configuration Client-Denial of Service Poc Discovery by: Daniel Discovery Date: 2018-11-12 Software Name: Bosch Video Management System Software Version: 8.0 Vendor...

Easyndexer 1.0 - Arbitrary File Download

Easyndexer 1.0 - Arbitrary File Download Exploit Title: Easyndexer 1.0 - Arbitrary File Download Dork: N/A Date: 2018-11-10 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/easyndexer/ Software Link:...

Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)

Data Center Audit 2.6.2 - Cross-Site Request Forgery Update Admin Exploit Title: Data Center Audit 2.6.2 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/datacenteraudit/ Software Link:...

Musicco 2.0.0 - Arbitrary Directory Download

Musicco 2.0.0 - Arbitrary Directory Download Exploit Title: Musicco 2.0.0 - Arbitrary Directory Download Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.musicco.app/ Software Link: https://codeload.github.com/micser/musicco/zip/master Version: 2.0.0 Category:...

xorg-x11-server 1.20.1 - Local Privilege Escalation

xorg-x11-server 1.20.1 - Local Privilege Escalation Exploit Title: xorg-x11-server bolo console opened Building root shell wait 2 minutes crontab overwritten ... cut Xorg output ... Xorg killed II Server terminated successfully 0. Closing log file. Don't forget to cleanup /etc/crontab and /tmp di...

CuteFTP Mac 3.1 - Denial of Service (PoC)

CuteFTP Mac 3.1 - Denial of Service PoC Exploit Title: CuteFTP Mac 3.1 Denial of Service PoC Date: 2018-11-06 Exploit Author: Yair Rodríguez Aparicio Vendor Homepage: https://www.globalscape.com/cuteftp Software Link: http://go.globalscape.com/download/cuteftp-macosx Version: 3.1 Tested on: macOS...

ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin)

ABC ERP 0.6.4 - Cross-Site Request Forgery Update Admin Exploit Title: ABC ERP 0.6.4 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.abc-erp.com/ Software Link:...

Evince 3.24.0 - Command Injection

Evince 3.24.0 - Command Injection Exploit Title: evince command line injection Date: 2017-09-05 Exploit Author: Matlink Vendor Homepage: https://wiki.gnome.org/Apps/Evince Software Link: https://wiki.gnome.org/Apps/Evince Version: 3.24.0 Tested on: Debian sid CVE : CVE-2017-1000083 Can be tested ...

Maitra Mail Tracking System 1.7.2 - SQL Injection Database File Download

Maitra Mail Tracking System 1.7.2 - SQL Injection Database File Download Exploit Title: Maitra - Mail Tracking System 1.7.2 - SQL Injection / Database File Download Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: http://salzertechnologies.com/ Software Link:...

Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin)

Tina4 Stack 1.0.3 - Cross-Site Request Forgery Update Admin Exploit Title: Tina4 Stack 1.0.3 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: http://tina4.com/ Software Link:...

Webiness Inventory 2.3 - Arbitrary File Upload Cross-Site Request Forgery (Add Admin)

Webiness Inventory 2.3 - Arbitrary File Upload Cross-Site Request Forgery Add Admin Exploit Title: Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage:...

Silurus Classifieds Script 2.0 - wcategory SQL Injection

Silurus Classifieds Script 2.0 - wcategory SQL Injection Exploit Title: Silurus Classifieds Script 2.0 - SQL Injection Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: http://snowhall.com/store/silurus/ Software Link:...

Surreal ToDo 0.6.1.2 - Local File Inclusion

Surreal ToDo 0.6.1.2 - Local File Inclusion Exploit Title: Surreal ToDo 0.6.1.2 - Local File Inclusion Dork: N/A Date: 2018-11-08 Exploit Author: Ihsan Sencan Vendor Homepage: http://getsurreal.com/surrealtodo Software Link:...

XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)

XAMPP Control Panel 3.2.2 - Buffer Overflow SEH Unicode Exploit Title: XAMPP Control Panel 3.2.2 - Buffer Overflow SEH Unicode Exploit Author: Gionathan "John" Reale 0-day DoS exploit, Semen Alexandrovich Lyhin 1-day fully working exploit. Shellcode Author: Giuseppe D'Amore EDB:28996 Date:...

Tina4 Stack 1.0.3 - SQL Injection Database File Download

Tina4 Stack 1.0.3 - SQL Injection Database File Download Exploit Title: Tina4 Stack 1.0.3 - SQL Injection / Database File Download Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: http://tina4.com/ Software Link:...

Webiness Inventory 2.3 - order SQL Injection

Webiness Inventory 2.3 - order SQL Injection Exploit Title: Webiness Inventory 2.3 - SQL Injection Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: https://github.com/webiness/webinessinventory Software Link:...

Alienor Web Libre 2.0 - SQL Injection

Alienor Web Libre 2.0 - SQL Injection Exploit Title: Alienor Web Libre 2.0 - SQL Injection Dork: N/A Date: 2018-11-08 Exploit Author: Ihsan Sencan Vendor Homepage: http://alienor.org/ Software Link: https://excellmedia.dl.sourceforge.net/project/alienorweblibre/alienorweblibre.zip Version: 2.0...

ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload)

ClipperCMS 1.3.3 - Cross-Site Request Forgery File Upload Exploit Title: ClipperCMS 1.3.3 File Upload CSRF Vulnerability Date: 2018-11-11 Exploit Author: Ameer Pornillos Website: http://ethicalhackers.club Vendor Homepage: http://www.clippercms.com/ Software Link:...

CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery Cross-Site Scripting

CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery Cross-Site Scripting Title: CentOS Web Panel Root Account Takeover + Remote Command Execution var url = "http://targetserver:2030/admin/index.php?module=rootpwd"; var params = "ifpost=yes&password1=newpassword&password2=newpassword"; var vul...

Alive Parish 2.0.4 - SQL Injection Arbitrary File Upload

Alive Parish 2.0.4 - SQL Injection Arbitrary File Upload Exploit Title: Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: https://demo.aliveparish.com Software Link:...

Cisco Immunet 6.2.0 Cisco AMP For Endpoints 6.2.0 - Denial of Service

Cisco Immunet 6.2.0 Cisco AMP For Endpoints 6.2.0 - Denial of Service / + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/CISCO-IMMUNET-AND-CISCO-AMP-FOR-ENDPOINTS-SYSTEM-SCAN-DENIAL-OF-SERVICE.txt + ISR: ApparitionSec...

Gumbo CMS 0.99 - SQL Injection

Gumbo CMS 0.99 - SQL Injection Exploit Title: Gumbo CMS 0.99 - SQL Injection Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: http://gumbo-cms.net/ Software Link: https://netix.dl.sourceforge.net/project/gumbo-cms/0.99%20beta/gumbo-0.99beta.zip Version: 0.99 Category:...

SIPve 0.0.2-R19 - SQL Injection

SIPve 0.0.2-R19 - SQL Injection Exploit Title: SIPve 0.0.2-R19 - SQL Injection Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/sipve/ Software Link: https://datapacket.dl.sourceforge.net/project/sipve/sipve-v0.0.2-R19.tar.gz Version:...

Surreal ToDo 0.6.1.2 - SQL Injection

Surreal ToDo 0.6.1.2 - SQL Injection Exploit Title: Surreal ToDo 0.6.1.2 - SQL Injection Dork: N/A Date: 2018-11-08 Exploit Author: Ihsan Sencan Vendor Homepage: http://getsurreal.com/surrealtodo Software Link:...

CuteFTP 9.3.0.3 - Denial of Service (PoC)

CuteFTP 9.3.0.3 - Denial of Service PoC Exploit Title: CuteFTP 9.3.0.3 - Denial of Service PoC Date: 2018-11-05 Exploit Author: Ismael Nava Vendor Homepage: https://www.globalscape.com/cuteftp Software Link: https://www.globalscape.com/cuteftp Version: 9.3.0.3 Tested on: Windows 10 Home x64 CVE :...

Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Cross-Site Scripting

Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Cross-Site Scripting Exploit Title: Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Date: 2018-05-11 Exploit Author: Pasquale Turi aka boombyte Vendor Homepage: https://wordpress.org/plugins/media-file-manager/ Softwa...

Mongoose Web Server 6.9 - Denial of Service (PoC)

Mongoose Web Server 6.9 - Denial of Service PoC Exploit Title: Mongoose Web Server 6.9 - Denial of Service PoC Dork: N/A Date: 2018-11-11 Exploit Author: Ihsan Sencan Vendor Homepage: https://cesanta.com/binary.html Software Link: https://backend.cesanta.com/cgi-bin/api.cgi?act=dl&os=win Version:...

D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery

D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery Exploit Title: D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery Author: John Page aka hyp3rlinx Date: 2018-11-09 Vendor: http://us.dlink.com Product Link:...

HeidiSQL 9.5.0.5196 - Denial of Service (PoC)

HeidiSQL 9.5.0.5196 - Denial of Service PoC Exploit Title: HeidiSQL 9.5.0.5196 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-11-06 Vendor Homepage: https://www.heidisql.com/ Software Link: https://www.heidisql.com/download.php Tested Version: 9.5.0.5196 Tested on:...

Paroiciel 11.20 - tRecIdListe SQL Injection

Paroiciel 11.20 - tRecIdListe SQL Injection Exploit Title: Paroiciel 11.20 - 'tRecIdListe' SQL Injection Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.paroiciel.com/ Software Link:...

Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin)

Easyndexer 1.0 - Cross-Site Request Forgery Add Admin Exploit Title: Easyndexer 1.0 - Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-11-10 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/easyndexer/ Software Link:...

ServerZilla 1.0 - email SQL Injection

ServerZilla 1.0 - email SQL Injection Exploit Title: ServerZilla 1.0 - 'email' SQL Injection Dork: N/A Date: 2018-11-08 Exploit Author: Ihsan Sencan Vendor Homepage: https://serverzilla.sourceforge.io/ Software Link: https://ayera.dl.sourceforge.net/project/serverzilla/ServerZillasrc.zip Version:...

Data Center Audit 2.6.2 - username SQL Injection

Data Center Audit 2.6.2 - username SQL Injection Exploit Title: Data Center Audit 2.6.2 - 'username' SQL Injection Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/datacenteraudit/ Software Link:...

Facturation System 1.0 - modid SQL Injection

Facturation System 1.0 - modid SQL Injection Exploit Title: Facturation System 1.0 - 'modid' SQL Injection Dork: N/A Date: 2018-11-08 Exploit Author: Ihsan Sencan Vendor Homepage: http://obedalvarado.pw/simple-invoice/ Software Link:...

TufinOS 2.17 Build 1193 - XML External Entity Injection

TufinOS 2.17 Build 1193 - XML External Entity Injection Exploit Title: TufinOS 2.17 Build 1193 - XML External Entity Injection Exploit Author: konstantinos Alexiou Date: 2018-10-18 Vendor: https://www.tufin.com Software Link: https://www.tufin.com/tufin-orchestration-suite/securetrack CVE: N/A...

Nominas 0.27 - username SQL Injection

Nominas 0.27 - username SQL Injection Exploit Title: Nominas 0.27 - 'username' SQL Injection Dork: N/A Date: 2018-11-09 Exploit Author: Ihsan Sencan Vendor Homepage: http://arixolab.com/proyecto.html Software Link: https://netix.dl.sourceforge.net/project/nominascrm/Nominas%20v0.27.tar.gz Version...