Lucene search
K
PacketstormMost viewed

50738 matches found

Packet Storm
Packet Storm
added 2021/02/10 12:0 a.m.373 views

Backdoor.Win32.Aphexdoor.LiteSock Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/a8bb1744bedf43849ed808b7dfa32da4.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Aphexdoor.LiteSock Vulnerability: Remote Stack Buffer Overflow Description:...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/28 12:0 a.m.373 views

WordPress SuperForms 4.9 Shell Upload

Exploit Title: WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote Code Execution Exploit Author: ABDO10 Date : Jan - 28 - 2021 Google Dork : inurl:"/wp-content/plugins/super-forms/" Vendor Homepage : https://renstillmann.github.io/super-forms// Version : All = 4.9.X data in http...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/15 12:0 a.m.373 views

PHP-Fusion 9.03.90 Cross Site Request Forgery

Exploit Title: PHP-Fusion CMS 9.03.90 - Cross-Site Request Forgery Delete admin shoutbox message Date: 2020-12-21 Exploit Author: Mohamed Oosman B S Vendor Homepage: https://www.php-fusion.co.uk/ Software Link: https://www.php-fusion.co.uk/phpfusion9downloads.php Version: 9.03.90 and below Tested...

0.5AI score0.01365EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/08/28 12:0 a.m.373 views

TP-Link WDR4300 Remote Code Execution

!/usr/bin/python3 import sys import hashlib import base64 import requests import binascii import socket """ RCE via stack-based overflow on TP-Link WDR4300 N750 devices, using CVE-2017-13772. Tested on Firmware versions 3.13.33, Build 130618 and 3.14.3 Build 150518, hardware WDR4300 v1 Usage: 1...

9CVSS8.8AI score0.52559EPSS
Exploits8
Packet Storm
Packet Storm
added 2020/03/15 12:0 a.m.373 views

Microsoft Windows SMB 3.1.1 Remote Code Execution

Exploit Title: Windows SMBv3 Client/Server Remote Code Execution Vulnerability - remote Author: nu11secur1ty Date: 2020-03-14 Vendor: https://smb.wsu.edu/ Link: https://github.com/nu11secur1ty/Windows10Exploits/tree/master/Undefined/CVE-2020-0796 CVE: CVE-2020-0796 + Credits: Ventsislav Varbanovs...

7.5CVSS9.2AI score0.9981EPSS
Exploits125
Packet Storm
Packet Storm
added 2020/03/02 12:0 a.m.373 views

Netis WF2419 2.2.36123 Remote Code Execution

Exploit Title: Netis WF2419 2.2.36123 - Remote Code Execution Exploit Author: Elias Issa Vendor Homepage: http://www.netis-systems.com Software Link: http://www.netis-systems.com/Suppory/downloads/dd/1/img/75 Date: 2020-02-11 Version: WF2419 V2.2.36123 = V2.2.36123 Tested on: NETIS WF2419...

8.5CVSS0.1AI score0.27962EPSS
Exploits6
Packet Storm
Packet Storm
added 2018/12/04 12:0 a.m.373 views

WordPress wpmu-dev-post-votes 2.2.5 Database Disclosure

Exploit Title : WordPress wpmu-dev-post-votes Plugins 2.2.5 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 02/12/2018 Vendor Homepage : wordpress.org premium.wpmudev.org Software Download Link :...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/10/30 12:0 a.m.372 views

ABB Cylon Aspect 3.08.01 jsonProxy.php Unauthenticated Project Download

ABB Cylon Aspect 3.08.01 jsonProxy.php Unauthenticated Project Download Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio Firmware: =3.08.01 Summary: ASPECT is an award-winning scalable building energy...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/07/17 12:0 a.m.372 views

Bonjour Service 3,0,0,10 Unquoted Service Path

Exploit Title: Bonjour Service - 'mDNSResponder.exe' Unquoted Service Path Discovery by: bios Discovery Date: 2024-15-07 Vendor Homepage: https://developer.apple.com/bonjour/ Tested Version: 3,0,0,10 Vulnerability Type: Unquoted Service Path Tested on OS: Microsoft Windows 10 Home Step to discove...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/04/15 12:0 a.m.372 views

Jenkins 2.441 Local File Inclusion

Exploit Title: Jenkins 2.441 - Local File Inclusion Date: 14/04/2024 Exploit Author: Matisse Beckandt Backendt Vendor Homepage: https://www.jenkins.io/ Software Link: https://github.com/jenkinsci/jenkins/archive/refs/tags/jenkins-2.441.zip Version: 2.441 Tested on: Debian 12 Bookworm CVE:...

9.8CVSS7.4AI score0.99999EPSS
Exploits46
Packet Storm
Packet Storm
added 2024/01/16 12:0 a.m.372 views

LightFTP 1.1 Denial Of Service

!/usr/bin/perl use Net::FTP; Exploit Title: LightFTP 1.1 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 15 january 2024 Vendor Homepage: N/A Notification vendor: No reported Tested Version: LightFTP 1.1 Tested on: Window XP Professional - Service Pack 2 and 3 - English...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/15 12:0 a.m.372 views

Taokeyun SQL Injection

!/bin/bash Variables url="http://example.com/path/to/taokeyun/application/index/controller/m/Drs.php" cid="1' UNION SELECT 1,2,3,4,5,6,7,8,9,email FROM users-- -" Construct the request request="POST $url HTTP/1.1\r\n" request+="Content-Type: application/x-www-form-urlencoded\r\n"...

9.8CVSS7.4AI score0.00792EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/12/04 12:0 a.m.372 views

PHPJabbers Time Slots Booking Calendar 4.0 HTML Injection

Exploit Title: PHPJabbers Time Slots Booking Calendar v4.0 - HTML Injection Date: 13/11/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/time-slots-booking-calendar/ Version: v4.0 Tested on:...

7.4AI score0.00465EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/10/16 12:0 a.m.372 views

WordPress Royal Elementor 1.3.78 Shell Upload

Today, on October 13, 2023, the Wordfence Threat Intelligence Team became aware of a vulnerability that was recently patched in Royal Elementor Addons and Templates, a WordPress plugin installed on over 200,000 sites, that makes it possible for unauthenticated attackers to upload arbitrary files ...

7.1AI score0.81695EPSS
Exploits18
Packet Storm
Packet Storm
added 2023/05/15 12:0 a.m.372 views

FLEX Denial Of Service

Exploit Title: FLEX 1080 1085 Web 1.6.0 - Denial of Service Date: 2023-05-06 Exploit Author: Mr Empy Vendor Homepage: https://www.tem.ind.br/ Software Link: https://www.tem.ind.br/?page=prod-detalhe&id=94 Version: 1.6.0 Tested on: Android CVE ID: CVE-2022-2591 !/usr/bin/env python3 import request...

7.5CVSS7.1AI score0.06409EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/05/09 12:0 a.m.372 views

ManageEngine ADAudit Plus Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine ADAudit Plus Authenticated File Write RCE', 'Description' = %q This module exploits security issues in ManageEngine ADAudit Plus pri...

9.8CVSS7.1AI score0.70325EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/03/23 12:0 a.m.372 views

WordPress Watu Quiz 3.3.9 / GN Publisher 1.5.5 / Japanized For WooComerce 2.5.4 XSS

Description: Reflected Cross-Site Scripting Affected Plugin: Watu Quiz Plugin Slug: watu Affected Versions: = 3.3.9 CVE ID: CVE-2023-0968 CVSS Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Researcher/s: Marco Wotschka Fully Patched Version: 3.3.9.1 Description:...

6.1CVSS6.7AI score0.0126EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/09/20 12:0 a.m.372 views

ProcessMaker Privilege Escalation

Exploit Title: ProcessMaker - User Profile Privilege Escalation Description: ProcessMaker before v3.5.4 was discovered to contain insecure permissions in the user profile page. This vulnerability allows attackers to escalate normal users to Administrators. Date: 20220822 Exploit Author: Sornram...

0.8AI score0.01664EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/08/10 12:0 a.m.372 views

Zimbra zmslapd Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Zimbra zmslapd arbitrary module load', 'Description' = %q This module exploits CVE-2022-37393, which is a vulnerability in Zimbra's sudo...

0.7AI score0.01683EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/01/21 12:0 a.m.372 views

Banco Guayaquil 8.0.0 Cross Site Scripting

Document Title: =============== Banco Guayaquil Versión 8.0.0 IOS - Cross Site Scripting Stored Credits & Authors: ================== TaurusOmar - @TaurusOmar [email protected] taurusomar.com Vendor Homepage: https://apps.apple.com/ec/app/banco-guayaquil/id624963066 =============== Release...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/17 12:0 a.m.372 views

Worm.Win32.Fasong.c Unquoted Service Path

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/bc6f4a283b6b8308c60bb70cc81edfd8.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Worm.Win32.Fasong.c Vulnerability: Insecure Service Path Description: The malware creates a service...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2021/05/19 12:0 a.m.372 views

WordPress Stop Spammers 2021.8 Cross Site Scripting

Exploit Title: WordPress Plugin Stop Spammers 2021.8 - 'log' Reflected Cross-site Scripting XSS Date: 04/08/2021 Exploit Author: Hosein Vita Vendor Homepage: https://wordpress.org/plugins/stop-spammer-registrations-plugin/ Software Link:...

4.3CVSS6.3AI score0.05721EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/04/01 12:0 a.m.372 views

Trojan-Downloader.Win32.Delf.ur Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/5b63a6e730f094d182c9030e3a57bcb8.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Downloader.Win32.Delf.ur Vulnerability: Insecure Permissions Description: Win32.Delf.ur creat...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/05 12:0 a.m.372 views

Responsive ELearning System 1.0 SQL Injection

Exploit Title: Responsive E-Learning System 1.0 – 'id' Sql Injection Date: 2020-12-24 Exploit Author: Kshitiz Rajmanitorpotterk Vendor Homepage: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/11/04 12:0 a.m.372 views

PDW File Browser 1.3 Shell Upload

Exploit Title: PDW File Browser 1.3 - Remote Code Execution Date: 24-10-2020 Exploit Author: David Bimmel Researchers: David Bimmel, Joost Vondeling, Ramòn Janssen Vendor Homepage: n/a Software Link: https://github.com/GuidoNeele/PDW-File-Browser Version: … ? Once you have uploaded your webshell...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2025/02/05 12:0 a.m.371 views

PHPJabbers Cinema Booking System 2.0 Cross Site Scripting

PHPJabbers Cinema Booking System version 2.0 suffers from both reflective and persistent cross site scripting vulnerabilities. CVE-2024-57428 A stored cross-site scripting XSS vulnerability in PHPJabbers Cinema Booking System v2.0 exists due to unsanitized input in file upload fields eventimg,...

6.8AI score0.00699EPSS
Exploits6
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.371 views

Apache Reverse Proxy Bypass Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache Reverse Proxy Bypass Vulnerability Scanner', 'Description' = %q Scan for poorly configured reverse proxy servers. By default, this module...

5CVSS7.3AI score0.90734EPSS
Exploits12
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.371 views

LibreOffice 6.03 /Apache OpenOffice 4.1.5 Malicious ODT File Generator

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'base64' require 'rex/zip' class MetasploitModule 'LibreOffice 6.03 /Apache OpenOffice 4.1.5 Malicious ODT File Generator', 'Description' = 'Generates a Maliciou...

7.5CVSS6.9AI score0.78905EPSS
Exploits6
Packet Storm
Packet Storm
added 2024/02/21 12:0 a.m.371 views

ITFlow Cross Site Request Forgery

CVE: CVE-2024-25344 CWE: CWE-352 Vendor: ITFlow.org Affected product: ITFlow - Before commit 432488eca3998c5be6b6b9e8f8ba01f54bc12378 Discoverer: stehled, WP-Pomoc.cz Attack-Type: Remote AV: Admin user has to open a page, provided by an attacker, which will then perform malicious request changing...

7.4AI score0.00741EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/02/02 12:0 a.m.371 views

Juniper SRX Firewall / EX Switch Remote Code Execution

Exploit Title: juniper-SRX-Firewalls&EX-switches PreAuth-RCE PoC Description: This code serves as both a vulnerability detector and a proof of concept for CVE-2023-36845. It executes the phpinfo function on the login page of the target device, allowing to inspect the PHP configuration. also this...

9.8CVSS7.4AI score0.93546EPSS
Exploits25
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.371 views

PHPJabbers Event Booking Calendar 4.0 CSV Injection

Exploit Title: PHPJabbers Event Booking Calendar v4.0 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/event-booking-calendar/sectionDemo Version: v4.0 Tested on:...

7.4AI score0.0037EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/06/01 12:0 a.m.371 views

Online Security Guards Hiring System 1.0 Cross Site Scripting

Exploit Title: Online Security Guards Hiring System 1.0 – REFLECTED XSS Google Dork : NA Date: 23-01-2023 Exploit Author : AFFAN AHMED Vendor Homepage: https://phpgurukul.com Software Link: https://phpgurukul.com/projects/Online-Security-Guard-Hiring-SystemPHP.zip Version: 1.0 Tested on: Windows ...

6.1CVSS7.1AI score0.06169EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/06/01 12:0 a.m.371 views

Menorah Restaurant 1.0.0 Insecure Settings

==================================================================================================================================== | Title : Menorah Restaurant - Restaurant Food Ordering System Reinstall script Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro /...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/05/19 12:0 a.m.371 views

CiviCRM 5.59.alpha1 Cross Site Scripting

Exploit Title: CiviCRM 5.59.alpha1 - Stored XSS Cross-Site Scripting Date: 2023-02-02 Exploit Author: Andrea Intilangelo Vendor Homepage: https://civicrm.org Software Link: https://civicrm.org/download Version: 5.59.alpha1, 5.58.0 and earlier, 5.57.3 and earlier Tested on: Latest Version of Deskt...

7.1AI score0.02537EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/03/17 12:0 a.m.371 views

Open Web Analytics 1.7.3 Remote Code Execution

class MetasploitModule 'Open Web Analytics 1.7.3 - Remote Code Execution RCE', 'Description' = %q Open Web Analytics OWA before 1.7.4 allows an unauthenticated remote attacker to obtain sensitive user information, which can be used to gain admin privileges by leveraging cache hashes. This occurs...

9.8CVSS0.5AI score0.99134EPSS
Exploits14
Packet Storm
Packet Storm
added 2022/10/27 12:0 a.m.371 views

Vagrant Synced Folder Vagrantfile Breakout

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Vagrant Synced Folder Vagrantfile Breakout', 'Description' = %q This module exploits a default Vagrant synced folder shared folder to append a Ru...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/15 12:0 a.m.371 views

Gigaland NFT Marketplace 1.9 Shell Upload / Key Disclosure

Exploit Title: Gigaland NFT marketplace Shell upload and ETH private key leak Google Dork: N/A Date: 14/8/2022 Exploit Author: Sohel Yousef https://www.linkedin.com/in/sohel-yousef-50a905189/ Software Link: https://gigaland.io/ Version: 1.9 Category: webapps 1. Sell Upload after connectiong your...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.371 views

NanoCMS 0.4 Remote Code Execution

Exploit Title: NanoCMS v0.4 - Remote Code Execution RCE Authenticated Date: 2022-07-26 Exploit Auuthor: p1ckzi Vendor Homepage: https://github.com/kalyan02/NanoCMS Version: NanoCMS v0.4 Tested on: Linux Mint 20.3 CVE: N/A Description: this script uploads a php reverse shell to the target. NanoCMS...

Exploits0
Packet Storm
Packet Storm
added 2022/07/13 12:0 a.m.371 views

Sourcegraph gitserver sshCommand Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sourcegraph gitserver sshCommand RCE', 'Description' = %q A vulnerability exists within Sourcegraph's gitserver component that allows a remote...

8.8CVSS0.3AI score0.7431EPSS
Exploits8
Packet Storm
Packet Storm
added 2022/01/05 12:0 a.m.371 views

RiteCMS 3.1.0 Shell Upload / Remote Code Execution

Exploit Title: RiteCMS 3.1.0 - Remote Code Execution RCE Authenticated Date: 25/07/2021 Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://ritecms.com/ Software Link: https://github.com/handylulu/RiteCMS/releases/download/V3.1.0/ritecms.v3.1.0.zip Version: = 3.1.0...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/21 12:0 a.m.371 views

phpKF CMS 3.00 Beta y6 Remote Code Execution

Exploit Title: phpKF CMS 3.00 Beta y6 - Remote Code Execution RCE Unauthenticated Date: 18/12/2021 Exploit Author: Halit AKAYDIN hLtAkydn Vendor Homepage: https://www.phpkf.com/ Software Link: https://www.phpkf.com/indirme.php Version: 3.00 Category: Webapps Tested on: Linux/Windows phpKF-CMS; It...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/11/22 12:0 a.m.371 views

OX App Suite 7.10.5 Cross Site Scripting / Information Disclosure

Product: OX App Suite Vendor: OX Software GmbH Internal reference: OXUIB-872 Vulnerability type: Cross-Site Scripting CWE-80 Vulnerable version: 7.10.5 and earlier Vulnerable component: frontend Report confidence: Confirmed Solution status: Fixed by Vendor Fixed version: 7.10.3-rev30, 7.10.4-rev2...

5.6AI score0.01444EPSS
Exploits7
Packet Storm
Packet Storm
added 2021/06/24 12:0 a.m.371 views

Huawei DG8045 Authentication Bypass

Title: Huawei dg8045 - Authentication Bypass Date: 2020-06-24 Author: Abdalrahman Gamal Vendor Homepage: www.huawei.com Version: dg8045 Hardware Version: VER.A POC: The default password of this router is the last 8 characters of the device's serial number which exist in the back of the device. An...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2020/12/15 12:0 a.m.371 views

Solaris SunSSH 11.0 x86 libpam Remote Root

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit Author: Hacker Fantastic Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris11-overview.html Version: 11 Tested on: SunOS solaris 5.11 11.0 / SunSSH Solaris 10-11.0 x86 libpam remote root exploit CVE-2020-14871...

10CVSS0.5AI score0.80291EPSS
Exploits13
Packet Storm
Packet Storm
added 2020/12/15 12:0 a.m.371 views

Microsoft Windows DrawIconEx Local Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/file' require 'msf/core/exploit/exe' require 'msf/core/post/windows/priv' class MetasploitModule 'Microsoft Windows DrawIconEx OOB Write Local...

7.2CVSS0.5AI score0.52778EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/12/08 12:0 a.m.372 views

Employee Performance Evaluation System 1.0 Cross Site Scripting

Exploit Title: Employee Performance Evaluation System 1.0 - ' Task and Description' Persistent Cross Site Scripting Date: 08/12/2020 Exploit Author: Ritesh Gohil Vendor Homepage: https://www.sourcecodester.com Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/06/02 12:0 a.m.371 views

vBulletin 5.6.1 SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'vBulletin /ajax/api/contentinfraction/getIndexableContent nodeid Parameter SQL Injection', 'Description' = %q This module exploits a SQL injectio...

7.5CVSS0.2AI score0.88948EPSS
Exploits13
Packet Storm
Packet Storm
added 2016/06/09 12:0 a.m.371 views

IPFire Bash Environment Variable Injection (Shellshock)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'IPFire Bash Environment Variable Injection Shellshock', 'Description' = %q IPFire, a free linux based open source firewall...

10CVSS0.9AI score0.99999EPSS
Exploits131
Packet Storm
Packet Storm
added 2024/09/12 12:0 a.m.370 views

Maid Hiring Management System 1.0 Insecure Settings

==================================================================================================================================== | Title : Maid Hiring Management System 1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.370 views

Ruby On Rails Devise Authentication Password Reset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/element' class MetasploitModule 'Ruby on Rails Devise Authentication Password Reset', 'Description' = %q The Devise authentication gem for Ruby on Rails i...

6.8CVSS7AI score0.14126EPSS
Exploits3
Total number of security vulnerabilities5000