Lucene search
K
PacketstormRecent

50748 matches found

Packet Storm
Packet Storm
added 2022/08/05 12:0 a.m.262 views

Online Admission System 1.0 SQL Injection

Exploit Title: online-admission-system 1.0 - unauthenticated SQL Injection Date: 5-08-2022 Exploit Author: syad Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/15514/online-admission-system-php-and-mysql.html Version: 1.0 Tested on: Windows 10 +...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/05 12:0 a.m.377 views

WordPress Ecwid Ecommerce Shopping Cart 6.10.23 Cross Site Request Forgery

Description: Cross-Site Request Forgery to Settings/Options Update Affected Plugin: Ecwid Ecommerce Shopping Cart Plugin Slug: ecwid-shopping-cart Affected Versions: = 6.10.23 CVE ID: CVE-2022-2432 CVSS Score: 8.8 High CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Researcher/s: Marco...

5.2AI score0.00454EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/08/05 12:0 a.m.413 views

Zimbra UnRAR Path Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'UnRAR Path Traversal in Zimbra CVE-2022-30333', 'Description' = %q This module creates a RAR file that can be emailed to a Zimbra server to explo...

7.5CVSS0.1AI score0.98975EPSS
Exploits12
Packet Storm
Packet Storm
added 2022/08/05 12:0 a.m.282 views

WordPress Testimonial Slider And Showcase 2.2.6 Cross Site Scripting

Exploit Title: Stored XSS in posttitle parameter in WordPress Plugin "Testimonial Slider and Showcase" 2.2.6 Date: 05/08/2022 Exploit Author: saitamang , yunaranyancat , amdsyad Vendor Homepage: wordpress Software Link: https://wordpress.org/plugins/testimonial-slider-and-showcase/ Version: 2.2.6...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/05 12:0 a.m.290 views

Backdoor.Win32.Bushtrommel.122 MVID-2022-0630 Remote Command Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/76c09bc82984c7f7ef55eb13018e0d87B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Bushtrommel.122 Vulnerability: Unauthenticated Remote Command Execution...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/04 12:0 a.m.304 views

Backdoor.Win32.Jokerdoor MVID-2022-0628 Buffer Overflow

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/783a191e7944e1af84ec0fa96d933f30.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Jokerdoor Vulnerability: Remote Stack Buffer Overflow Description: The...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/04 12:0 a.m.504 views

VMware Workspace ONE Access Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMware Workspace ONE Access CVE-2022-31660', 'Description' = %q VMware Workspace ONE Access contains a vulnerability whereby the horizon user can...

0.7AI score0.01062EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/08/04 12:0 a.m.496 views

WordPress Duplicator 1.4.7 Unauthenticated Backup Download

Title: WordPress Plugin Duplicator 1.4.7 - Unauthenticated Backup Download Author: nu11secur1ty Date: 08.03.2022 Vendor: https://wordpress.org/ Software: https://wordpress.org/plugins/duplicator/ Reference:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/04 12:0 a.m.427 views

WordPress Download Manager 3.2.50 Arbitrary File Deletion

Description: Authenticated Contributor+ Arbitrary File Deletion Affected Plugin: Download Manager Plugin Slug: download-manager Plugin Developer: W3 Eden, Inc. Affected Versions: = 3.2.50 CVE ID: CVE-2022-2431 CVSS Score: 8.8 High CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H...

8.6AI score0.02527EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/08/03 12:0 a.m.321 views

Multi-Language Hotel Management 2022 1.0 SQL Injection

Title: Multi-Language-Hotel-Management-2022 1.0 SQLi Author: nu11secur1ty Date: 08.03.2022 Vendor: https://www.nikhilbhalerao.com/ Software: https://github.com/nu11secur1ty/CVE-nu11secur1ty/blob/main/vendors/Nikhil%20Bhalerao/2022/Multi-Language-Hotel-Management-2022/Docs/sparkz.zip Reference:...

Exploits0
Packet Storm
Packet Storm
added 2022/08/03 12:0 a.m.419 views

IObit Malware Fighter 9.2 Tampering / Privilege Escalation

Credits: Yehia Elghaly aka Mrvar0x + Website: https://mrvar0x.com/ + Source: "https://mrvar0x.com/2022/08/02/multiple-endpoints-security-tampering-exploit/" Vendor: ============= www.iobit.com Product: =========== IObit Malware Fighter 9.2 IObit Malware Fighter is an advanced malware & spyware...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/03 12:0 a.m.418 views

Zoho Password Manager Pro XML-RPC Java Deserialization

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Zoho Password Manager Pro XML-RPC Java Deserialization', 'Description' = %q This module exploits a Java deserialization vulnerability in Zoho...

9.8CVSS0.6AI score0.9994EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/08/03 12:0 a.m.913 views

MobileIron Log4Shell Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MobileIron Core Unauthenticated JNDI Injection RCE via Log4Shell', 'Description' = %q MobileIron Core is affected by the Log4Shell vulnerability...

10CVSS0.3AI score0.99999EPSS
Exploits351
Packet Storm
Packet Storm
added 2022/08/02 12:0 a.m.519 views

uftpd 2.10 Directory Traversal

Exploit Title: uftpd 2.10 - Directory Traversal Authenticated Google Dork: N/A Exploit Author: Aaron Esau arinerron Vendor Homepage: https://github.com/troglobit/uftpd Software Link: https://github.com/troglobit/uftpd Version: 2.7 to 2.10 Tested on: Linux CVE : CVE-2020-20277 Reference:...

9.8CVSS0.1AI score0.25249EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.410 views

WordPress Duplicator 1.4.6 Backup Disclosure

Exploit Title: WordPress Plugin Duplicator 1.4.6 - Unauthenticated Backup Download Google Dork: N/A Date: 07.27.2022 Exploit Author: SecuriTrust Vendor Homepage: https://snapcreek.com/ Software Link: https://wordpress.org/plugins/duplicator/ Version: 1.4.7 Tested on: Linux, Windows CVE :...

7.6AI score0.12485EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.450 views

CodeIgniter CMS 4.2.0 SQL Injection

+++++++++++++++++++++++++++++++++ + +Exploit Title : CodeIgniter CMS Version 4.2.0 Sql Injection Vulnerability + +Exploit Author : E1.Coders + +Vendor Homepage : https://www.codeigniter.com/ + +Google Dork ONE : searchResult/?title= + +Google Dork Two : Job/searchResult/?title= + +Date : 15 / 05 ...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.398 views

Crime Reporting System 1.0 SQL Injection

Exploit Title: Crime Reporting System - Blind SQL Injection on Login email parameter Date: 31/07/2022 Exploit Author: saitamang Vendor Homepage: code-projects.org Software Link:...

Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.382 views

Wavlink WN533A8 Cross Site Scripting

Exploit Title: Wavlink WN533A8 - Cross-Site Scripting XSS Exploit Author: Ahmed Alroky Author Company : AIactive Version: M33A8.V5030.190716 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34048 Tested on: Windows Poc code history.pushState'', '', '/'...

6.1CVSS6.4AI score0.0509EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.371 views

NanoCMS 0.4 Remote Code Execution

Exploit Title: NanoCMS v0.4 - Remote Code Execution RCE Authenticated Date: 2022-07-26 Exploit Auuthor: p1ckzi Vendor Homepage: https://github.com/kalyan02/NanoCMS Version: NanoCMS v0.4 Tested on: Linux Mint 20.3 CVE: N/A Description: this script uploads a php reverse shell to the target. NanoCMS...

Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.435 views

Wavlink WN530HG4 Password Disclosure

Exploit Title: Wavlink WN530HG4 - Password Disclosure Date: 2022-06-12 Exploit Author: Ahmed Alroky Author Company : AIactive Version: M30HG4.V5030.191116 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34047 Tested on: Windows Exploit...

7.5CVSS7.6AI score0.17444EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.329 views

Webmin 1.996 Remote Code Execution

Exploit Title: Webmin 1.996 - Remote Code Execution RCE Authenticated Date: 2022-07-25 Exploit Author: Emir Polat Technical analysis: https://medium.com/@emirpolat/cve-2022-36446-webmin-1-997-7a9225af3165 Vendor Homepage: https://www.webmin.com/ Software Link: https://www.webmin.com/download.html...

9.6AI score0.96049EPSS
Exploits8
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.403 views

Backdoor.Win32.Destrukor.20 MVID-2022-0627 Remote Command Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/c790749f851d48e66e7d59cc2e451956B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Destrukor.20 Vulnerability: Unauthenticated Remote Command Execution...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.373 views

WordPress Duplicator 1.4.7 Information Disclosure

Exploit Title: WordPress Plugin Duplicator 1.4.7 - Information Disclosure Google Dork: N/A Date: 07.27.2022 Exploit Author: SecuriTrust Vendor Homepage: https://snapcreek.com/ Software Link: https://wordpress.org/plugins/duplicator/ Version: = 1.4.7 Tested on: Linux, Windows CVE : CVE-2022-2552...

5.3AI score0.08415EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.462 views

Omnia MPX 1.5.0+r1 Path Traversal

Exploit Title: Omnia MPX 1.5.0+r1 - Path Traversal Date: 24/7/2022 Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: https://www.telosalliance.com/ Software Link: https://support.telosalliance.com/article/934ixoaz3l-mpx-node-release-notes-and-update-instructions Version: 1.5.0+r1 Tested...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.412 views

Wavlink WN533A8 Password Disclosure

Exploit Title: Wavlink WN533A8 - Password Disclosure Date: 2022-06-12 Exploit Author: Ahmed Alroky Author Company : AIactive Version: M33A8.V5030.190716 Vendor home page : wavlink.com Authentication Required: No CVE : CVE-2022-34046 Tested on: Windows Exploit...

7.5CVSS7.6AI score0.16583EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.601 views

mPDF 7.0 Local File Inclusion

Exploit Title: mPDF 7.0 - Local File Inclusion Google Dork: N/A Date: 2022-07-23 Exploit Author: Musyoka Ian Vendor Homepage: https://mpdf.github.io/ Software Link: https://mpdf.github.io/ Version: CuteNews Tested on: Ubuntu 20.04, mPDF 7.0.x CVE: N/A !/usr/bin/env python3 from urllib.parse impor...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.421 views

CuteEditor For PHP 6.6 Directory Traversal

Exploit Title: CuteEditor for PHP 6.6 - Directory Traversal Google Dork: N/A Date: November 17th, 2021 Exploit Author: Stefan Hesselman Vendor Homepage: http://phphtmledit.com/ Software Link: http://phphtmledit.com/download/phphtmledit.zip Version: 6.6 Tested on: Windows Server 2019 CVE : N/A The...

Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.354 views

WordPress SeatReg 1.23.0 Open Redirect

Exploit Title: WordPress Plugin ‘SeatReg’ - Unauthenticated Open Redirect Date: 01-08-2022 Exploit Author: Mariam Tariq - HunterSherlock Vendor Homepage: https://wordpress.org/plugins/seatreg/ Version: 1.23.0 Tested on: Firefox Contact me: [email protected] Description: An Open Redirection...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.445 views

Backdoor.Win32.Destrukor.20 MVID-2022-0626 Authentication Bypass / Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/c790749f851d48e66e7d59cc2e451956.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Destrukor.20 Vulnerability: Authentication Bypass Description: The malware...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/01 12:0 a.m.574 views

Easy Chat Server 3.1 Buffer Overflow

Exploit Title: Easy Chat Server 3.1 - Remote Stack Buffer Overflow SEH Exploit Author: r00tpgp @ http://www.r00tpgp.com Usage: python easychat-exploit.py Spawns reverse meterpreter LHOST=192.168.0.162 LPORT=1990 CVE: CVE-2004-2466 Installer: http://www.echatserver.com/ Tested on: Microsoft Window...

5CVSS0.7AI score0.74696EPSS
Exploits9
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.272 views

Transposh WordPress Translation 1.0.7 Incorrect Authorization

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Incorrect Authorization CWE-863 Date found: 2022-07-13 Date...

0.9AI score0.03508EPSS
Exploits6
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.257 views

Geonetwork 4.2.0 XML Injection

Exploit Title: Geonetwork 4.2.0 - XML External Entity XXE Date: 2022-July-11 Exploit Author: Amel BOUZIANE-LEBLOND https://twitter.com/amellb Vendor Homepage: https://geonetwork-opensource.org/ Version: Geonetwork 3.10.X through 4.2.0 Tested on: Microsoft Windows Server & Linux Description:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.288 views

Transposh WordPress Translation 1.0.7 Cross Site Scripting

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Cross-Site Scripting CWE-79 Date found: 2021-08-19 Date published:...

6.4AI score0.01266EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.249 views

Crime Reporting System 1.0 Cross Site Scripting

Exploit Title: Crime reporting system - Stored cross-site scripting XSS Date: 29/07/2022 Exploit Author: Eslam Reda Vendor Homepage: https://sourcecodehero.com/crime-reporting-system-project-in-php-with-source-code/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.222 views

WordPress WP-UserOnline 2.87.6 Cross Site Scripting

Exploit Title: WordPress Plugin WP-UserOnline 2.87.6 - Stored Cross-Site Scripting XSS Date: 21/07/2022 Exploit Author: Steffin Stanly Vendor Homepage: https://github.com/lesterchan/wp-useronline Software Link: https://wordpress.org/plugins/wp-useronline/ Version: WP-UserOnline and enter the data...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.346 views

Transposh WordPress Translation 1.0.8.1 Information Disclosure

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Exposure of Sensitive Information to an Unauthorized Actor CWE-200...

5.3AI score0.02936EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.334 views

Transposh WordPress Translation 1.0.8.1 Remote Code Execution

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Reliance on File Name or Extension of Externally-Supplied File...

0.1AI score0.01441EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.332 views

Transposh WordPress Translation 1.0.8.1 Cross Site Request Forgery

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Cross-Site Request Forgery CWE-253 Date found: 2021-08-19 Date...

0.1AI score0.00304EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.270 views

Transposh WordPress Translation 1.0.8.1 Improper Authorization

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Improper Authorization CWE-285 Date found: 2022-02-21 Date...

0.8AI score0.00891EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.336 views

Dingtian-DT-R002 3.1.276A Authentication Bypass

Exploit Title: Dingtian-DT-R002 3.1.276A - Authentication Bypass Google Dork: NA Date: 13th July 2022 Exploit Author: Victor Hanna Trustwave SpiderLabs Author Github Page: https://9lyph.github.io/CVE-2022-29593/ Vendor Homepage: https://www.dingtian-tech.com/enus/relay4.html Software Link:...

5.9CVSS0.5AI score0.10436EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.390 views

Transposh WordPress Translation 1.0.8.1 SQL Injection

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Improper Authorization CWE-285 Date found: 2022-02-21 Date...

0.2AI score0.01202EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.304 views

rpc.py 0.6.0 Remote Code Execution

Exploit Title: rpc.py 0.6.0 - Remote Code Execution RCE Google Dork: N/A Date: 2022-07-12 Exploit Author: Elias Hohl Vendor Homepage: https://github.com/abersheeran Software Link: https://github.com/abersheeran/rpc.py Version: v0.4.2 - v0.6.0 Tested on: Debian 11, Ubuntu 20.04 CVE : CVE-2022-3541...

9.8CVSS9.6AI score0.45862EPSS
Exploits7
Packet Storm
Packet Storm
added 2022/07/29 12:0 a.m.308 views

Transposh WordPress Translation 1.0.7 Cross Site Scripting

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Cross-Site Scripting CWE-79 Date found: 2021-08-19 Date published:...

5.7AI score0.03508EPSS
Exploits7
Packet Storm
Packet Storm
added 2022/07/28 12:0 a.m.199 views

Loan Management System 1.0 Cross Site Scripting

Exploit Title: Loan Management System - Stored XSS on several parameters Date: 28/07/2022 Exploit Author: saitamang Vendor Homepage: sourcecodester Software Link: https://www.sourcecodester.com/sites/default/files/download/razormist/LMS.zip Version: 1.0 Tested on: Centos 7 apache2 + MySQL There a...

Exploits0
Packet Storm
Packet Storm
added 2022/07/28 12:0 a.m.243 views

Loan Management System 1.0 SQL Injection

Exploit Title: Loan Management System - SQL Injection via login page Date: 28/07/2022 Exploit Author: saitamang Vendor Homepage: sourcecodester Software Link: https://www.sourcecodester.com/sites/default/files/download/razormist/LMS.zip Version: 1.0 Tested on: Centos 7 apache2 + MySQL The attack...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/26 12:0 a.m.250 views

Expert X Jobs Portal And Resume Builder 1.0 SQL Injection

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/26 12:0 a.m.287 views

PCProtect Endpoint 5.17.470 Tampering / Privilege Escalation

Credits: Yehia Elghaly aka Mrvar0x + Website: https://mrvar0x.com/ + Source: https://mrvar0x.com/2022/07/21/pcprotect-endpoint-tampering-exploit/ Vendor: ============= www.pcprotect.com Product: =========== PCProtect Endpoint Protection v5.17.470 PCProtect is a malware detection and antivirus...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/26 12:0 a.m.258 views

Hospital Information System 1.0 SQL Injection

Exploit Title: Hospital Information System - SQL Injection via login page Date: 25/07/2022 Exploit Author: saitamang Vendor Homepage: https://code-projects.org Software Link: https://download-media.code-projects.org/2019/11/HOSPITALINFORMATIONSYSTEMINPHPWITHSOURCECODE.zip Version: 1.0 Tested on:...

Exploits0
Packet Storm
Packet Storm
added 2022/07/26 12:0 a.m.254 views

Garage Management System 1.0 Shell Upload

Exploit Title: Garage Management System Remote Code Execution via File Upload Date: 24/07/2022 Exploit Author: saitamang Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/sites/default/files/download/mayurik/garage.zip Version: 1.0 Tested on: Centos 7 +...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/07/26 12:0 a.m.821 views

Roxy-WI Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Roxy-WI Prior to 6.1.1.0 Unauthenticated Command Injection RCE', 'Description' = %q This module exploits an unauthenticated command injection...

10CVSS0.2AI score0.90387EPSS
Exploits16
Total number of security vulnerabilities50748