Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit)

Any Sound Recorder 2.93 - Buffer Overflow Local SEH Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Any Sound Recorder 2.93 Buffer Overflow SEH', 'Description' = %q This...

SIPp 3.3.990 - Local Buffer Overflow (PoC)

SIPp 3.3.990 - Local Buffer Overflow PoC Exploit Title: SIPp 3.3.990 - Local Buffer Overflow PoC Date: 2018-10-29 Exploit Author: Nawaf Alkeraithe Vendor Homepage: http://sipp.sourceforge.net/ Software Link: https://sourceforge.net/projects/sipp/files/sipp/3.4/sipp-3.3.990.tar.gz/download Version...

Electricks eCommerce 1.0 - prodid SQL Injection

Electricks eCommerce 1.0 - prodid SQL Injection Exploit Title: Electricks eCommerce 1.0 - 'prodid' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/billyblue Software Link:...

Instagram Clone 1.0 - Arbitrary File Upload

Instagram Clone 1.0 - Arbitrary File Upload Exploit Title: Instagram Clone 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/justinwilliam Software Link:...

Microstrategy Web 7 - Cross-Site Scripting Directory Traversal

Microstrategy Web 7 - Cross-Site Scripting Directory Traversal !-- Exploit Title: Cross Site Scripting in Microstrategy Web version 7 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: https://www.microstrategy.com Software Link: https://www.microstrategy.com Version: Microstrategy...

ZyXEL VMG3312-B10B 1.00(AAPP.7) - Credential Disclosure

ZyXEL VMG3312-B10B 1.00AAPP.7 - Credential Disclosure Exploit Title: ZyXEL VMG3312-B10B - Leak Credentials "; else continue; else echo "pfff"; ftpclose$ftpconn; ?...

CI User Login and Management 1.0 - Arbitrary File Upload

CI User Login and Management 1.0 - Arbitrary File Upload Exploit Title: CI User Login and Management 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage 1: http://www.webprojectbuilder.com/item/user-login-and-management Vendor Homepage 2:...

Nutanix AOS Prism 5.5.5 (LTS) 5.8.1 (STS) - SFTP Authentication Bypass

Nutanix AOS Prism 5.5.5 LTS 5.8.1 STS - SFTP Authentication Bypass Exploit Title: Nutanix AOS & Prism - SFTP Authentication Bypass Date: 2018-10-27 Exploit Author: Adam Brown Vendor Homepage: https://www.nutanix.org Software Link: https://www.nutanix.com/products/software-options/ Version: 5.5.5...

South Gate Inn Online Reservation System 1.0 - q SQL Injection

South Gate Inn Online Reservation System 1.0 - q SQL Injection Exploit Title: South Gate Inn Online Reservation System 1.0 - 'q' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

University Application System 1.0 - SQL Injection Cross-Site Request Forgery (Add Admin)

University Application System 1.0 - SQL Injection Cross-Site Request Forgery Add Admin Exploit Title: University Application System 1.0 - SQL Injection / Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage:...

NETGEAR WiFi Router R6120 - Credential Disclosure

NETGEAR WiFi Router R6120 - Credential Disclosure Exploit Title: NETGEAR WiFi Router R6120 - Credential Disclosure Date: 2018-10-28 Exploit Author: Wadeek Hardware Version: R6120 Firmware Version: 1.0.0.30 Vendor Homepage: https://www.netgear.com/support/product/R6120.aspx Firmware Link:...

R 3.4.4 (Windows 10 x64) - Buffer Overflow (DEPASLR Bypass)

R 3.4.4 Windows 10 x64 - Buffer Overflow DEPASLR Bypass !/usr/bin/python R 3.4.4 Win10 x86 Buffer Overflow discovered by: bzyo author: Charles Truscott I love you Alison Thompson OAM tested on: Windows 10 x86 rebooted for practice defeating ASLR/DEP -------------------------------------------- GU...

Webiness Inventory 2.9 - Arbitrary File Upload

Webiness Inventory 2.9 - Arbitrary File Upload Exploit Title: Webiness Inventory 2.9 - Arbitrary File Upload Date: 2018-10-27 Exploit Author: Boumediene KADDOUR Unit: Algerie Telecom R&D Unit Software Link: https://github.com/webiness/webinessinventory Version: 2.9 3145728 61 continue; 62 63 64 /...

Expense Management 1.0 - Arbitrary File Upload

Expense Management 1.0 - Arbitrary File Upload Exploit Title: Expense Management 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.webprojectbuilder.com/item/expense-management Software Link:...

QNAP NetBak Replicator 4.5.6.0607 - Denial of Service (PoC)

QNAP NetBak Replicator 4.5.6.0607 - Denial of Service PoC Exploit Title: QNAP NetBak Replicator 4.5.6.0607 Denial of Service PoC Date: 2018-10-29 Exploit Author: Yair Rodríguez Aparicio Vendor Homepage: https://www.qnap.com/en/ Software Link: https://www.qnap.com/en/download Version: 4.5.6.0607...

Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload SQL Injection

Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload SQL Injection Exploit Title: Simple PHP Shopping Cart 0.9 - Arbitrary File Upload Dork: N/A Date: 2018-10-30 Exploit Author: Ihsan Sencan Vendor Homepage: https://asaancart.wordpress.com/ Software Link:...

MyBB Downloads 2.0.3 - SQL Injection

MyBB Downloads 2.0.3 - SQL Injection Exploit Title: MyBB Downloads 2.0.3 - SQL Injection Date: 28-10-2018 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://github.com/vintagedaddyo/MyBBPlugin-Downloads...

phptpoint Pharmacy Management System 1.0 - username SQL Injection

phptpoint Pharmacy Management System 1.0 - username SQL Injection Exploit Title: phptpoint Pharmacy Management System 1.0 - 'username' SQL injection Date: 2018-10-24 Exploit Author: Boumediene KADDOUR Unit: Algerie Telecom R&D Unit Vendor Homepage: https://www.phptpoint.com/ Software Link:...

systemd - chown_one() Dereference Symlinks

systemd - chownone Dereference Symlinks I am sending this bug report to Ubuntu, even though it's an upstream bug, as requested at https://github.com/systemd/systemd/blob/master/docs/CONTRIBUTING.mdsecurity-vulnerability-reports . When chownone in the recursive chown logic decides that it has to...

SaltOS Erp Crm 3.1 r8126 - SQL Injection (2)

SaltOS Erp Crm 3.1 r8126 - SQL Injection 2 Exploit Title: SaltOS Erp, Crm 3.1 r8126 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link:...

Local Server 1.0.9 - Denial of Service (PoC)

Local Server 1.0.9 - Denial of Service PoC Exploit Title: Local Server 1.0.9 - Denial of Service PoC Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.ujang-rohidin.blogspot.com/ Software Link: https://sourceforge.net/projects/local-server/files/latest/download...

Library Management System 1.0 - frmListBooks SQL Injection

Library Management System 1.0 - frmListBooks SQL Injection Exploit Title: Library Management System 1.0 - 'frmListBooks' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

School Event Management System 1.0 - Cross-Site Request Forgery (Update Admin)

School Event Management System 1.0 - Cross-Site Request Forgery Update Admin Exploit Title: School Event Management System 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software...

K-iwi Framework 1775 - SQL Injection

K-iwi Framework 1775 - SQL Injection Exploit Title: K-iwi Framework 1775 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.k-iwi.com/ Software Link: https://sourceforge.net/projects/k-iwi/files/latest/download Version: 1775 Category: Webapps Teste...

Card Payment 1.0 - Cross-Site Request Forgery (Update Admin)

Card Payment 1.0 - Cross-Site Request Forgery Update Admin Exploit Title: Card Payment 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

SaltOS Erp Crm 3.1 r8126 - Database File Download

SaltOS Erp Crm 3.1 r8126 - Database File Download Exploit Title: SaltOS Erp, Crm 3.1 r8126 - Database File Download Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: http://download.saltos.org/?app=saltos&format=xul&arch=win32 Version:...

Open Faculty Evaluation System 5.6 - batch_name SQL Injection

Open Faculty Evaluation System 5.6 - batchname SQL Injection Exploit Title: Open Faculty Evaluation System 5.6 - 'batchname' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://openfacultyeval.sourceforge.io/ Software Link:...

Paramiko 2.4.1 - Authentication Bypass

Paramiko 2.4.1 - Authentication Bypass Exploit Title: Paramiko 2.4.1 - Authentication Bypass Date: 2018-10-27 Exploit Author: Adam Brown Vendor Homepage: https://www.paramiko.org Software Link: https://github.com/paramiko/paramiko/tree/v1.15.2 Version: 1.17.6, 1.18.x 1.18.5, 2.0.x 2.0.8, 2.1.x...

Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection

Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection Exploit Title: Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Softwar...

MTGAS MOGG Web Simulator Script - SQL Injection

MTGAS MOGG Web Simulator Script - SQL Injection Exploit Title: MOGG web simulator Script - SQL Injection Date: 2018-10-29 Exploit Author: Meisam Monsef - [email protected] - @meisamrce - @dorsateam Vendor Homepage: https://github.com/spider312/mtgas Version: All Version Exploit :...

Open Faculty Evaluation System 7 - batch_name SQL Injection

Open Faculty Evaluation System 7 - batchname SQL Injection Exploit Title: Open Faculty Evaluation System 7 - 'batchname' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://openfacultyeval.sourceforge.io/ Software Link:...

Curriculum Evaluation System 1.0 - SQL Injection

Curriculum Evaluation System 1.0 - SQL Injection Exploit Title: Curriculum Evaluation System 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

ASRock Drivers - Privilege Escalation

ASRock Drivers - Privilege Escalation SecureAuth - SecureAuth Labs Advisory http://www.secureauth.com/ ASRock Drivers Elevation of Privilege Vulnerabilities 1. Advisory Information Title: ASRock Drivers Elevation of Privilege Vulnerabilities Advisory ID: CORE-2018-0005 Advisory URL:...

AlienIP 2.41 - Denial of Service (PoC)

AlienIP 2.41 - Denial of Service PoC Exploit Title: AlienIP 2.41 - Denial of Service PoC Author: Arturo de la Cruz Tellez Discovery Date: 2018-10-17 Vendor Homepage: http://www.armcode.com Tested Version: 2.41 Tested on OS: Microsoft Windows 10 Home Single Language x64 Versión 10.0.10240...

systemd - reexec State Injection

systemd - reexec State Injection / I am sending this bug report to Ubuntu, even though it's an upstream bug, as requested at https://github.com/systemd/systemd/blob/master/docs/CONTRIBUTING.mdsecurity-vulnerability-reports . When systemd re-executes e.g. during a package upgrade, state is...

Grapixel New Media 2 - pageref SQL Injection

Grapixel New Media 2 - pageref SQL Injection Exploit Title: Grapixel New Media 2 - 'pageref' SQL Injection Exploit Author: Berk Dusunur Google Dork: N/A Type: Web App Date: 2018-10-26 Vendor Homepage: http://www.grapixel.com Software Link: http://www.grapixel.com Affected Version: v2 Tested on:...

School Event Management System 1.0 - Arbitrary File Upload

School Event Management System 1.0 - Arbitrary File Upload Exploit Title: School Event Management System 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

School Attendance Monitoring System 1.0 - Arbitrary File Upload

School Attendance Monitoring System 1.0 - Arbitrary File Upload Exploit Title: School Attendance Monitoring System 1.0 - Arbitrary File Upload Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

PayPal-Credit Card-Debit Card Payment 1.0 - SQL Injection

PayPal-Credit Card-Debit Card Payment 1.0 - SQL Injection Exploit Title: PayPal/Credit Card/Debit Card Payment 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

Modbus Slave PLC 7 - .msw Buffer Overflow (PoC)

Modbus Slave PLC 7 - .msw Buffer Overflow PoC...

RhinOS CMS 3.x - Arbitrary File Download

RhinOS CMS 3.x - Arbitrary File Download Exploit Title: RhinOS CMS 3.x - Arbitrary File Download Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: https://netix.dl.sourceforge.net/project/rhinos/archived/r1190/RhinOS-en-3.0-1190.win32.e...

School Attendance Monitoring System 1.0 - Cross-Site Request Forgery (Update Admin)

School Attendance Monitoring System 1.0 - Cross-Site Request Forgery Update Admin Exploit Title: School Attendance Monitoring System 1.0 - Cross-Site Request Forgery Update Admin Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe...

Aplaya Beach Resort Online Reservation System 1.0 - SQL Injection Cross-Site Request Forgery

Aplaya Beach Resort Online Reservation System 1.0 - SQL Injection Cross-Site Request Forgery Exploit Title: Aplaya Beach Resort Online Reservation System 1.0 - Multiple Vulnerabilities Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage:...

School Attendance Monitoring System 1.0 - SQL Injection

School Attendance Monitoring System 1.0 - SQL Injection Exploit Title: School Attendance Monitoring System 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

Modbus Slave 7.0.0 - Denial of Service (PoC)

Modbus Slave 7.0.0 - Denial of Service PoC Exploit Title: Modbus Slave 7.0.0 - Denial of Service PoC Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.modbustools.com/ Software Link: https://www.modbustools.com/download/ModbusSlaveSetup32Bit.exe Software Link:...

E-Negosyo System 1.0 - SQL Injection

E-Negosyo System 1.0 - SQL Injection Exploit Title: E-Negosyo System 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

Navicat 12.0.29 - SSH Denial of Service (PoC)

Navicat 12.0.29 - SSH Denial of Service PoC Exploit Title: Navicat 12.0.29 - 'SSH' Denial of Service PoC Author: Rafael Alfaro Discovery Date: 2018-10-27 Vendor Homepage: https://www.navicat.com/es/ Software Link : https://www.navicat.com/es/download/navicat-premium Vulnerability Type: Denial of...

School Event Management System 1.0 - SQL Injection

School Event Management System 1.0 - SQL Injection Exploit Title: School Event Management System 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

Point of Sales (POS) in VB.Net MySQL Database 1.0 - SQL Injection

Point of Sales POS in VB.Net MySQL Database 1.0 - SQL Injection Exploit Title: Point of Sales POS in VB.Net MySQL Database 1.0 - SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...

School Equipment Monitoring System 1.0 - login SQL Injection

School Equipment Monitoring System 1.0 - login SQL Injection Exploit Title: School Equipment Monitoring System 1.0 - 'login' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...