Lucene search
K
PacketstormRecent

50748 matches found

Packet Storm
Packet Storm
added 2023/01/13 12:0 a.m.242 views

Academy LMS 5.11 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Exploits0
Packet Storm
Packet Storm
added 2023/01/13 12:0 a.m.224 views

WordPress Slider Revolution 4.6.5 Directory Traversal

==================================================================================================================================== | Title : WordPress - Slider Revolution 4.6.5 UpdateCaptionsCSS Directory Traversal Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro /...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/13 12:0 a.m.224 views

WordPress Slider Revolution 3.0.8 Directory Traversal

==================================================================================================================================== | Title : WordPress - Slider Revolution 3.0.8 Directory Traversal Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla...

Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.260 views

eCart Web 5.0.0 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.200 views

Gold Filled CRM 2.0 Arbitrary File Upload

==================================================================================================================================== | Title : Gold Filled CRM v 2.0 Remote File Upload vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.250 views

Foloosi Shopping 5.5.7 Insecure Settings

==================================================================================================================================== | Title : Foloosi Shopping v5.5.7 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.246 views

Blesta 5.4.1 Insecure Settings

==================================================================================================================================== | Title : blesta 5.4.1 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 102.0.164-bit | ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.237 views

Deprixa Pro 7.5 Insecure Settings

==================================================================================================================================== | Title : DEPRIXA Pro V7.5 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 103.064-bit ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.501 views

Online Food Ordering System 2.0 SQL Injection

Exploit Title: Online Food Ordering System v2 - Sql Injection Time-Based Blind Date: 01/11/2023 Exploit Author: Hasan Baskın Vendor Homepage: https://www.sourcecodester.com/php/16022/online-food-ordering-system-v2-using-php8-and-mysql-free-source-code.html Software Link:...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.208 views

Online Food Ordering System 2.0 Shell Upload

Exploit Title: Online Food Ordering System v2 - Remote Code Execution RCE Unauthenticated Date: 01/11/2023 Exploit Author: Onurcan Alcan Vendor Homepage: https://www.sourcecodester.com/php/16022/online-food-ordering-system-v2-using-php8-and-mysql-free-source-code.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.248 views

Flex 5.22 Insecure Settings

==================================================================================================================================== | Title : Flex Version: 5.22 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 103.064-bi...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.890 views

2ad Guestbook 2.0 Database Disclosure

==================================================================================================================================== | Title : 2ad guestbook version 2.0 Database Disclosure Exploit | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/12 12:0 a.m.278 views

ChiKoi 1.0 SQL Injection

Title: ChiKoi-1.0 SQLi Author: nu11secur1ty Date: 01.12.2023 Vendor: https://chikoiquan.tanhongit.com/ Software: https://github.com/tanhongit/new-mvc-shop/releases/tag/v1.0 Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/tanhongit/2023/ChiKoi Description: The...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.208 views

CMS Global-PC Technology 1.0 Insecure Settings

==================================================================================================================================== | Title : CMS Global-PC Technology v 1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefo...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.266 views

Medisense-Healthcare Solutions CRM 2.0 Cross Site Request Forgery

==================================================================================================================================== | Title : Medisense-Healthcare Solutions CRM v2.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.234 views

Online Food Ordering System 2.0 Cross Site Scripting

Exploit Title: Online Food Ordering System v2 - Stored Cross Site Scripting XSS Date: 01/11/2023 Exploit Author: Alaeddin Berksoy Vendor Homepage: https://www.sourcecodester.com/php/16022/online-food-ordering-system-v2-using-php8-and-mysql-free-source-code.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.182 views

eCart Multi Vendor eCommerce System 1.x Insecure Settings

==================================================================================================================================== | Title : eCart – Multi Vendor eCommerce System 1.x Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser :...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.197 views

eCart Web 4.0.0 Insecure Settings

==================================================================================================================================== | Title : eCart Web v4.0.0- Multi Vendor eCommerce Marketplace Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro /...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.219 views

Concepts Informatics CMS 7 SQL Injection

==================================================================================================================================== | Title : Concepts Informatics cms v 7 Sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.310 views

Tiki Wiki CMS Groupware 25.0 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.262 views

ERPGo SaaS CRM 3.3 Arbitrary File Upload

==================================================================================================================================== | Title : ERPGo SaaS CRM v3.3 Arbitrary File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/11 12:0 a.m.288 views

WordPress Royal Elementor 1.3.59 XSS / CSRF / Insufficient Access Controls

On December 23, 2022, the Wordfence Threat Intelligence team initiated the responsible disclosure process for a set of 11 vulnerabilities in Royal Elementor Addons, a WordPress plugin with over 100,000 installations. The plugin developers responded on December 26, and we sent over the full...

0.9AI score0.00945EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.193 views

Online Food Ordering System 2.0 SQL Injection

Exploit Title: Online Food Ordering System v2 - Sql Injection Time-Based Blind Date: 01/10/2023 Exploit Author: Anıl Kızıltan Vendor Homepage: https://www.sourcecodester.com/php/16022/online-food-ordering-system-v2-using-php8-and-mysql-free-source-code.html Software Link:...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.217 views

AdminSeg 2.15 Insecure Direct Object Reference

==================================================================================================================================== | Title : AdminSeg v2.15 Unauthorized administrative access Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firef...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.196 views

Online Food Ordering System 2.0 Shell Upload

Exploit Title: Online Food Ordering System v2 - Remote Code Execution RCE Unauthenticated Date: 01/10/2023 Exploit Author: Hakan Sonay Vendor Homepage: https://www.sourcecodester.com/php/16022/online-food-ordering-system-v2-using-php8-and-mysql-free-source-code.html Software Link:...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.260 views

Tiki Wiki CMS Groupware 24.0 structlib.php Code Execution

-------------------------------------------------------------------------------- Tiki Wiki CMS Groupware = 24.0 structlib.php PHP Code Injection Vulnerability -------------------------------------------------------------------------------- - Software Link: https://tiki.org - Affected Versions:...

0.2AI score0.00938EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.216 views

Dcastalia CMS 1.2 Insecure Direct Object Reference

==================================================================================================================================== | Title : Dcastalia CMS v1.2 Unauthorized administrative access Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.235 views

BDWeb-Link LMS 1.11.5 Insecure Direct Object Reference

==================================================================================================================================== | Title : BDWeb-Link Lms v1.11.5 Unauthorized administrative access Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozil...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.236 views

Tiki Wiki CMS Groupware 24.1 tikiimporter_blog_wordpress.php PHP Object Injection

---------------------------------------------------------------------------------------------------- Tiki Wiki CMS Groupware input type="...

7.2AI score0.01048EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.200 views

Deprixa Pro CMS 3.2.5 Insecure Settings

==================================================================================================================================== | Title : Deprixa Pro CMS 3.2.5 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.230 views

WordPress Mega Main Menu 2.2.2 Information Disclosure

==================================================================================================================================== | Title : WordPress Menu Plugin - Mega Main Menu v2.2.2 unauthorized backup download Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.290 views

Tiki Wiki CMS Groupware 24.0 grid.php PHP Object Injection

----------------------------------------------------------------------------- Tiki Wiki CMS Groupware const popChain = 'O:25:"SearchElasticConnection":1:S:31:"\0...

0.1AI score0.01168EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.244 views

Corpatech CMS 2 SQL Injection

==================================================================================================================================== | Title : Corpatech cms v2 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 108.032-bit | |...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.212 views

ADMINA BULGARIA Ltd 1.0 SQL Injection

==================================================================================================================================== | Title : ADMINA BULGARIA Ltd v 1.0 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.949 views

Tiki Wiki CMS Groupware 25.0 Cross Site Request Forgery

------------------------------------------------------------------------------ Tiki Wiki CMS Groupware = 25.0 Two Cross-Site Request Forgery Vulnerabilities ------------------------------------------------------------------------------ - Software Link: https://tiki.org - Affected Versions: Versio...

0.1AI score0.00315EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/01/10 12:0 a.m.499 views

WordPress Slider Revolution 4.6.5 Shell Upload

==================================================================================================================================== | Title : WordPress - Slider Revolution 4.6.5 WordPress - Slider Revolution 4.6.5 shell upload 0-day exploit | | Author : indoushka | | Tested on : windows 10...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/09 12:0 a.m.219 views

Control Web Panel 7 Remote Code Execution

Centos Web Panel 7 Unauthenticated Remote Code Execution + Centos Web Panel 7 - 0.9.8.1147 + Affected Component ip:2031/login/index.php?login=$whoami + Discoverer: Numan Türle @ Gais Cyber Security + Vendor: https://centos-webpanel.com/ -...

0.4AI score0.99995EPSS
Exploits12
Packet Storm
Packet Storm
added 2023/01/09 12:0 a.m.191 views

Excel Net Computer Institute 4.1 SQL Injection

==================================================================================================================================== | Title : Excel Net Computer Institute Version 4.1 SQL injection authentication bypass Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pr...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/09 12:0 a.m.193 views

Eatself 1.1.5 SQL Injection

==================================================================================================================================== | Title : Eatself v1.1.5 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 69.032-bit | | Vend...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/05 12:0 a.m.345 views

Linear eMerge E3-Series Access Controller Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/stopwatch' class MetasploitModule 'Linear eMerge E3-Series Access Controller Command Injection', 'Description' = %q This module exploits a command injection...

10CVSS0.9AI score0.97136EPSS
Exploits16
Packet Storm
Packet Storm
added 2023/01/05 12:0 a.m.357 views

Oracle Database Vault Metadata Exposure

Title: CVE-2021-2175 – Oracle Database Vault Metadata Exposure Vulnerability Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2, 12.2.0.1, 18c, 19c Tested Versions: 19c Risk Level: low Solution Status: Fixed CVE Reference: CVE-2021-2175 Author of Advisory: Emad Al-Mousa Overview:...

4CVSS0.01654EPSS
Exploits6
Packet Storm
Packet Storm
added 2023/01/04 12:0 a.m.335 views

Nexxt Router Firmware 42.103.1.5095 Remote Code Execution

Exploit Title: Nexxt Router Firmware 42.103.1.5095 - Remote Code Execution RCE Authenticated Date: 19/10/2022 Exploit Author: Yerodin Richards Vendor Homepage: https://www.nexxtsolutions.com/ Version: 42.103.1.5095 Tested on: ARN02304U8 CVE : CVE-2022-44149 import requests import base64 routerhos...

9AI score0.64354EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/01/03 12:0 a.m.275 views

Oracle DBMS_REDACT Dynamic Data Masking Bypass

Title: ByPassing DBMSREDACT Dynamic Data Masking security feature in Oracle database system Product: Database Manufacturer: Oracle Affected Versions: 19c,21c Tested Versions: 19c,21c CVE Reference: N/A Author of Advisory: Emad Al-Mousa Overview: DBMSREDACT package provides an interface to Oracle...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/02 12:0 a.m.308 views

Oracle Unified Audit Policy Bypass

Title: CVE-2021-35576 – Oracle database system Unified Audit Policy ByPass Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2, 12.2.0.1, 19c Tested Versions: 19c Risk Level: low Solution Status: Fixed Manufacturer Notification: 2021-03-17 Solution Date: 2021-10-17 Public Disclosur...

4CVSS0.6AI score0.01381EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/12/31 12:0 a.m.879 views

SugarCRM Shell Upload

!/usr/bin/env python SugarCRM 0-day Auth Bypass + RCE Exploit Dorks: https://www.google.com/search?q=site:sugarondemand.com&filter=0 https://www.google.com/search?q=intitle:"SugarCRM"+inurl:index.php https://www.shodan.io/search?query=http.title:"SugarCRM"...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/12/30 12:0 a.m.204 views

BDWeb-Link LMS 1.11.5 SQL Injection

==================================================================================================================================== | Title : BDWeb-Link Lms v1.11.5 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 108.032-bi...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/12/29 12:0 a.m.268 views

ProLink PRS1841 Backdoor Account

Exploit Title: Router backdoor - ProLink PRS1841 PLDT Home fiber Exploit Author: Lawrence Amer @zux0x3a Vendor Homepage: https://prolink2u.com/product/prs1841/ Firmware : PRS1841 U V2 reference:...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/12/29 12:0 a.m.275 views

Hughes Satellite Router Remote File Inclusion Cross Frame Scripting

Hughes Satellite Router Remote File Inclusion Cross-Frame Scripting Vendor: Hughes Network Systems, LLC Product web page: https://www.hughes.com Affected version: HX200 v8.3.1.14 HX90 v6.11.0.5 HX50L v6.10.0.18 HN9460 v8.2.0.48 HN7000S v6.9.0.37 Summary: The HX200 is a high-performance satellite...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/12/27 12:0 a.m.229 views

Car Dealer Pro 2.01 Backdoor Account

==================================================================================================================================== | Title : Car Dealer Pro v2.01 Backdoor Account Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/12/27 12:0 a.m.432 views

Active Ecommerce CMS 6.4.0 Backdoor Account

==================================================================================================================================== | Title : Active ecommerce cms v6.4.0 Backdoor Account Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

Exploits0
Total number of security vulnerabilities50748