50748 matches found
Net-Worm.Win32.Kibuv.c Authentication Bypass
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/4243911d5ca5655d04de8895704fcae6.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Net-Worm.Win32.Kibuv.c Vulnerability: Authentication Bypass Description: The malware listens on TCP...
Zepp 6.1.4-play User Account Enumeration
Trovent Security Advisory 2108-02 User account enumeration in password reset function Overview Advisory ID: TRSA-2108-02 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2108-02 Affected product: Zepp Android mobile application...
Trojan-Downloader.Win32.Small.ahlq Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/d859ba54086fd0313dc34b73b5b1eccb.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Downloader.Win32.Small.ahlq Vulnerability: Insecure Permissions Description: the malware...
Prime95 30.7 Build 9 Buffer Overflow
Exploit Title: Prime95 Version 30.7 build 9 Buffer Overflow RCE Discovered by: Yehia Elghaly Discovered Date: 2022-04-25 Vendor Homepage: https://www.mersenne.org/ Software Link : https://www.mersenne.org/ftproot/gimps/p95v307b9.win32.zip Tested Version: 30.7 build 9 Vulnerability Type: Buffer...
Trojan-Downloader.Win32.Agent Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/fb3ac3c9d808de7f4b5ede68715f658f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Downloader.Win32.Agent Vulnerability: Insecure Permissions Description: The malware writes a ...
Backdoor.Win32.Cafeini.b Hardcoded Credential
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/851f8945d1b5923990f4722d627156a0.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Cafeini.b Vulnerability: Weak Hardcoded Credentials Description: The malware listens ...
WordPress Curtain 1.0.2 Cross Site Scripting
Exploit Title: Multiple Stored Cross-Site Scripting vulnerabilities in WordPress curtain plugin 1.0.2 Date: 29-03-2022 Exploit Author: Hassan Khan Yusufzai - Splint3r7 Vendor Homepage: https://wordpress.org/plugins/curtain/ Version: 1.0.2 Tested on: Firefox Contact me: h at spidersilk.com...
Backdoor.Win32.Agent.aegg Hardcoded Credential
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/58be35e792476d1c015df7853112d200.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.aegg Vulnerability: Weak Hardcoded Credentials Description: The malware listens...
Email-Worm.Win32.Sidex Remote Command Execution
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/a98cdaa89da57bf269873db63e22a939.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Email-Worm.Win32.Sidex Vulnerability: Unauthenticated Remote Command Execution Description: The...
Trojan-Banker.Win32.Banker.heq Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/f15d05f74899324ecb61ee29ad162fad.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Banker.Win32.Banker.heq Vulnerability: Insecure Permissions Description: The malware writes a...
Miele Benchmark Programming Tool 1.1.49 / 1.2.71 Privilege Escalation
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Privilege Escalation product: Miele Benchmark Programming Tool vulnerable version: at least 1.1.49 and 1.2.71 fixed version: 1.2.72 CVE number: CVE-2022-22521 impact:...
Backdoor.Win32.Jokerdoor Buffer Overflow
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/94d1b2510bf96fa6190cd65876bf4c38.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Jokerdoor Vulnerability: Remote Stack Buffer Overflow Description: The malware listen...
Redis Lua Sandbox Escape
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Redis Lua Sandbox Escape', 'Description' = %q This module exploits CVE-2022-0543, a Lua-based Redis sandbox escape. The vulnerability was...
Backdoor.Win32.Cafeini.b Man-In-The-Middle
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/851f8945d1b5923990f4722d627156a0B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Cafeini.b Vulnerability: Port Bounce Scan Description: The malware runs an FTP serve...
Virus.Win32.Qvod.b Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/c44a9580e17bad0aa27329e51b7d0ae0.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Virus.Win32.Qvod.b Vulnerability: Insecure Permissions Description: The malware writes a PE file wit...
Backdoor.Win32.GF.j Remote Command Execution
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/fa00524d7289cdba327d5c34ab3d9bd7.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.GF.j Vulnerability: Unauthenticated Remote Command Execution Description: The malware...
WordPress WP-Invoice 4.3.1 Cross Site Scripting
Exploit Title: WordPress Plugin WP-Invoice - Stored Cross Site Scripting Date: 25-04-2022 Exploit Author: Mariam Tariq - HunterSherlock Vendor Homepage: https://wordpress.org/plugins/WP-Invoice/ Version: 4.3.1 Tested on: Firefox Contact me: [email protected] Vulnerable Code: wpi.businessna...
Gitlab 14.9 Authentication Bypass
Exploit Title: Gitlab 14.9 - Authentication Bypass Date: 12/04/2022 Exploit Authors: Greenwolf & stacksmashing Vendor Homepage: https://about.gitlab.com/ Software Link: https://about.gitlab.com/install Version: GitLab CE/EE versions 14.7 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to...
Gitlab 14.9 Cross Site Scripting
Exploit Title: Gitlab Stored XSS Date: 12/04/2022 Exploit Authors: Greenwolf & stacksmashing Vendor Homepage: https://about.gitlab.com/ Software Link: https://about.gitlab.com/install Version: GitLab CE/EE versions 14.4 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions...
WordPress Coru LFMember 1.0.2 Cross Site Scripting
Exploit Title: WordPress Plugin Coru LFMember - Stored Cross Site Scripting Date: 26-04-2022 Exploit Author: Mariam Tariq - HunterSherlock Vendor Homepage: https://wordpress.org/plugins/Coru LFMember/ Version: 1.0.2 Tested on: Firefox Contact me: [email protected] Vulnerable Code: "...
Joomla Sexy Polling 2.1.7 SQL Injection
SexyPolling SQL Injection ==================== | Identifier: | AIT-SA-20220208-01| | Target: | Sexy Polling Joomla Extension | | Vendor: | 2glux | | Version: | all versions below version 2.1.8 | | CVE: | Not yet | | Accessibility: | Remote | | Severity: | Critical | | Author: | Wolfgang Hotwagner...
WordPress ScrollReveal.js Effects 1.1.1 Cross Site Scripting
Exploit Title: WordPress Plugin ScrollReveal.js Effects - Stored Cross Site Scripting Date: 25-04-2022 Exploit Author: Mariam Tariq - Hunt3rsherlock Vendor Homepage: https://wordpress.org/plugins/scrollrevealjs-effects/ Version: 1.1.1 Tested on: Firefox Contact me: [email protected]...
ManageEngine ADSelfService Plus Custom Script Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine ADSelfService Plus Custom Script Execution', 'Description' = %q This module exploits the "custom script" feature of ADSelfService...
USR IOT 4G LTE Industrial Cellular VPN Router 1.0.36 Remote Root Backdoor
!/usr/bin/env python3 USR IOT 4G LTE Industrial Cellular VPN Router 1.0.36 Remote Root Backdoor Vendor: Jinan USR IOT Technology Limited Product web page: https://www.pusr.com | https://www.usriot.com Affected version: 1.0.36 USR-G800V2, USR-G806, USR-G807, USR-G808 1.2.7 USR-LG220-L Summary:...
Watch Queue Out-Of-Bounds Write
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Watch Queue Out of Bounds Write', 'Description' = %q This module exploits a vulnerability in the Linux Kernel's watchqueue event notification...
Pharmacy Management System 1.0 Shell Upload
Exploit Title: Pharmacy management system - Remote Code Execution RCE Date: 19/04/2022 Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15281/multi-language-pharmacy-management-system-project-source-code.html Version:...
Pharmacy Management System 1.0 SQL Injection
Exploit Title: Pharmacy management system - 'email' SQL injection Date: 19/04/2022 Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15281/multi-language-pharmacy-management-system-project-source-code.html Version: 1.0...
7-Zip 16 DLL Hijacking
Microsoft Windows Environment Variable Expansion Issue Leads To Remote DLL Hijack Attack vector: 7-ZIP v.16 7-ZIP v.16 and possibly other softwares that utilizes the HTML Help System are prone to a remote DLL hijacking issue which leads to arbitrary code execution. PoC attached. because the OS...
Online Restaurant Table Reservation System 1.0 SQL Injection
Exploit Title: Online Restaurant Table Reservation System v1.0 Exploit Author: segf0lt Date: April 20, 2022 Vendor Homepage: https://www.sourcecodester.com/php/15286/online-restaurant-table-reservation-system-phpoop-free-source-code.html Software Link:...
Backdoor.Win32.Loselove Denial Of Service
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/9a8150938bff3a17fa0169c3dc6dae85.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Loselove Vulnerability: Denial of Service Description: The malware listens on UDP por...
HackTool.Win32.Delf.vs Insecure Credential Storage
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/92f7f9495ffd56d05a5acf395c9e0097.txt Contact: [email protected] Media: twitter.com/malvuln Threat: HackTool.Win32.Delf.vs Vulnerability: Insecure Credential Storage Description: The malware credentia...
PKP Open Journals System 3.3 Cross Site Scripting
Exploit Title: PKP Open Journals System 3.3 - Cross-Site Scripting XSS Date: 31/01/2022 Exploit Author: Hemant Kashyap Vendor Homepage: https://github.com/pkp/pkp-lib/issues/7649 Version: PKP Open Journals System 2.4.8 = 3.3 Tested on: All OS CVE : CVE-2022-24181 References:...
Backdoor.Win32.GateHell.21 Authentication Bypass
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/5aa81ddc996be64116754efac0e4f55d.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.GateHell.21 Vulnerability: Authentication Bypass Description: The malware runs an FTP...
Backdoor.Win32.GateHell.21 Man-In-The-Middle
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/5aa81ddc996be64116754efac0e4f55dB.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.GateHell.21 Vulnerability: Port Bounce Scan Description: The malware runs an FTP...
Responsive Online Blog 1.0 SQL Injection
Exploit Title: Responsive Online Blog 1.0 - Blind Boolean-based SQLi Date: 2022-04-16 Exploit Author: Gideon Kamioka @w1ezl Vendor Homepage: https://www.sourcecodester.com/php/14194/responsive-online-blog-website-using-phpmysql.html Software Link:...
EaseUS Data Recovery 15.1.0.0 Unquoted Service Path
Exploit Title: EaseUS Data Recovery - 'ensserver.exe' Unquoted Service Path Discovery by: bios Discovery Date: 2022-18-04 Vendor Homepage: https://www.easeus.com/ Tested Version: 15.1.0.0 Vulnerability Type: Unquoted Service Path Tested on OS: Microsoft Windows 10 Pro x64 Step to discover Unquote...
WordPress Popup Maker 1.16.5 Cross Site Scripting
Exploit Title: WordPress Plugin Popup Maker Popup Settings Triggers Add New Cookie Add Cookie Time overwrite the default '1 month' with XSS payload Click 'Add' what triggers the XSS payload Payload examples: alert'XSS';...
Backdoor.Win32.Psychward.03.a Weak Hardcoded Password
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/4b9a42ca1e65cf0a7febbe18f397ef24.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Psychward.03.a Vulnerability: Weak Hardcoded Password Description: The malware listen...
Backdoor.Win32.Hupigon.haqj Unquoted Service Path
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/d9542df20f8df457747451dd9e16d1c0.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.haqj Vulnerability: Insecure Service Path Description: The malware creates a...
Trojan.Win32.TScash.c Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/9d18d318e017b513b9c6cd193ccdc6ff.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.TScash.c Vulnerability: Insecure Permissions Description: The malware writes a PE file...
Backdoor.Win32.Delf.zn Insecure Credential Storage
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/9acdbfc9f7c1f6e589485b30aa91bfd2.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Delf.zn Vulnerability: Insecure Credential Storage Description: The default credentia...
PTPublisher 2.3.4 Unquoted Service Path
Exploit Title: PTPublisher v2.3.4 - Unquoted Service Path Discovery by: bios Discovery Date: 2022-18-04 Vendor Homepage: https://www.primera.com/ Tested Version: 2.3.4 Vulnerability Type: Unquoted Service Path Tested on OS: Microsoft Windows 10 Pro x64 Step to discover Unquoted Service Path:...
ManageEngine ADSelfService Plus 6.1 User Enumeration
Exploit Title: ManageEngine ADSelfService Plus 6.1 - User Enumeration Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.manageengine.com/ Software Link: https://www.manageengine.com/products/self-service-password/download.html Version: ADSelfService 6.1 Build 6121 Tested Against:...
7-Zip 21.07 Code Execution / Privilege Escalation
Exploit Title: 7-zip - Code Execution / Local Privilege Escalation Exploit Author: Kagan Capar Date: 2020-04-12 Vendor homepage: https://www.7-zip.org/ Software link: https://www.7-zip.org/a/7z2107-x64.msi Version: 21.07 and all versions Tested On: Windows 10 Pro x64 References:...
WordPress Videos Sync PDF 1.7.4 Cross Site Scripting
Exploit Title: WordPress Plugin Videos sync PDF 1.7.4 - Stored Cross Site Scripting XSS Google Dork: inurl:/wp-content/plugins/video-synchro-pdf/ Date: 2022-04-13 Exploit Author: UnD3sc0n0c1d0 Vendor Homepage: http://www.a-j-evolution.com/ Software Link:...
Linux watch_queue Filter Out-Of-Bounds Write
Linux: watchqueue filter OOB write and other bugs This bug report is about things in the watchqueue subsystem, which is only enabled under CONFIGWATCHQUEUE. That seems to be disabled e.g. on Debian, but Ubuntu and Fedora enable it. The watchqueue subsystem has a bug that leads to out-of-bounds...
WordPress Elementor 3.6.2 Shell Upload
Exploit Title: WordPress Plugin Elementor 3.6.2 - Remote Code Execution RCE Authenticated Date: 04/16/2022 Exploit Author: AkuCyberSec https://github.com/AkuCyberSec Vendor Homepage: https://elementor.com/ Software Link: https://wordpress.org/plugins/elementor/advanced/ scroll down to select the...
WordPress Motopress Hotel Booking Lite 4.2.4 SQL Injection
Exploit Title: WordPress Plugin Motopress Hotel Booking Lite 4.2.4 - SQL Injection Date: 2022-04-11 Exploit Author: Mohsen Dehghani aka 0xProfessional Vendor Homepage: https://motopress.com/ Software Link: https://downloads.wordpress.org/plugin/motopress-hotel-booking-lite.4.2.4.zip Version: 4.2....
Microsoft Exchange Active Directory Topology 15.0.847.40 Unquoted Service Path
Exploit Title: Microsoft Exchange Active Directory Topology 15.0.847.40 - 'Service MSExchangeADTopology' Unquoted Service Path Exploit Author: Antonio Cuomo arkantolo Exploit Date: 2022-04-11 Vendor : Microsoft Version : 15.0.847.40 Tested on OS: Microsoft Exchange Server 2013 SP1 PoC :...
Microsoft Exchange Mailbox Assistants 15.0.847.40 Unquoted Service Path
Exploit Title: Microsoft Exchange Mailbox Assistants 15.0.847.40 - 'Service MSExchangeMailboxAssistants' Unquoted Service Path Exploit Author: Antonio Cuomo arkantolo Exploit Date: 2022-04-11 Vendor : Microsoft Version : 15.0.847.40 Tested on OS: Microsoft Exchange Server 2013 SP1 PoC :...