Lucene search
K
PacketstormRecent

50784 matches found

Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.543 views

Company's Recruitment Management System SQL Injection

Description of vulnerability: The Company's Recruitment Management System by: oretnom23 in id=2 of the parameter from viewvacancy app on-page appears to be vulnerable to SQL Injection - Stealing the Password Hashes attacks. The payloads 19424269' or '1309'='1309 and 39476597' or '2917'='2923 were...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.359 views

Open Game Panel Remote Code Execution

Exploit Title: Open Game Panel - Remote Code Execution RCE Authenticated Google Dork: intext:"Open Game Panel 2021" Date: 08/14/2021 Exploit Author: prey Vendor Homepage: https://www.opengamepanel.org/ Software Link: https://github.com/OpenGamePanel/OGP-Website Version: before 14 Aug patch...

0.01311EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.336 views

Local Offices Contact Directory Site SQL Injection

https://www.sourcecodester.com/php/14973/local-offices-contact-directory-site-using-php-and-sqlite-free-source-code.html Vendor: href Description: The search parameter appears to be vulnerable to time-based blind SQL injection attacks, on the web app "Local Offices Contact Directories Site" by...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.261 views

Vehicle Service Managment System 1.0 Shell Upload

Exploit Title: Vehicle Service Managment 1.0 - RCE Unauthenticated Date: 2021-10-02 Exploit Author: RICHARD JONES Vendor Homepage: https://www.sourcecodester.com/php/14972/vehicle-service-management-system-php-free-source-code.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.257 views

College Management System 1.0 Insecure Direct Object Reference

Exploit Title: college management system - Add admin Unauthenticated Date: 01/10/2021 Exploit Author: Abdulrahman https://twitter.com/infosec90 Vendor Homepage: https://www.eedunext.com/ Software Link: https://code-projects.org/college-management-system-in-php-with-source-code/ Version: 1.0 Teste...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.268 views

Lifestyle Store 1.0 Cross Site Scripting

Exploit Title: Lifestyle Store Online Shop Store 1.0 - Reflected Cross-Site Scripting XSS Date: 2021-09-30 Author: Abdulrahman https://twitter.com/infosec90 Software Link: https://download-media.code-projects.org/2021/07/OnlineShopStoreInPHPWithSourceCode.zip Version: 1.0.0 Tested on: Kali Linux ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.255 views

College Management System 1.0 Cross Site Scripting

Exploit Title: college management system - Stored Cross-Site Scripting XSS Unauthenticated Date: 01/10/2021 Exploit Author: Abdulrahman https://twitter.com/infosec90 Vendor Homepage: https://www.eedunext.com/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/04 12:0 a.m.257 views

Young Entrepreneur E-Negosyo System 1.0 SQL Injection

Exploit Title: Young Entrepreneur E-Negosyo System 1.0 - SQL Injection Authentication Bypass Date: 2021-10-02 Exploit Author: Jordan Glover Vendor Homepage: https://www.sourcecodester.com/php/12684/young-entrepreneur-e-negosyo-system.html Software Link:...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/03 12:0 a.m.243 views

Lodging Reservation Management System 1.0 SQL Injection

Exploit Title: Lodging Reservation Management System 1.0 - SQL Injection / Authentication Bypass Date: 2021-09-20 Exploit Author: Nitin Sharmavidvansh Vendor Homepage: https://www.sourcecodester.com/php/14883/lodging-reservation-management-system-php-free-source-code.html Software Link:...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/02 12:0 a.m.283 views

Payara Micro Community 5.2021.6 Directory Traversal

Exploit Title: Payara Micro Community 5.2021.6 - Directory Traversal Date: 01/10/2021 Exploit Author: Yasser Khan N3Thunt3r Vendor Homepage: https://docs.payara.fish/community/docs/release-notes/release-notes-2021-6.html Software Link:...

5CVSS0.2AI score0.52926EPSS
Exploits6
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.312 views

Exam Form Submission System 1.0 SQL Injection

Exploit Title: Exam Form Submission System 1.0 - SQL Injection Authentication Bypass Date: 30-09-2021 Exploit Author: Nitin Sharma Vidvansh Vendor Homepage: https://code-projects.org Product link: https://code-projects.org/exam-form-submission-in-php-with-source-code/ Version: 1.0 Tested on: XAMP...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.403 views

WhatsUpGold 21.0.3 Cross Site Scripting

Exploit Title: WhatsUpGold 21.0.3 - Stored Cross-Site Scripting XSS Date: 09.17.2021 Exploit Author: Andreas Finstad 4ndr34z Vendor Homepage: https://www.whatsupgold.com Version: v.21.0.3, Build 188 Tested on: Windows 2019 Server CVE : CVE-2021-41318 Reference:...

6.4AI score0.05881EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.290 views

Phpwcms 1.9.30 Cross Site Scripting

Exploit Title: Phpwcms 1.9.30 - File Upload to XSS Date: 30/9/2021 Exploit Author: Okan Kurtulus | okankurtulus.com.tr Software Link: http://www.phpwcms.org/ Version: 1.9.30 Tested on: Ubuntu 16.04 Steps: 1- You need to login to the system. http://target.com/phpwcms/login.php 2- Creating payload...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.394 views

CMSimple_XH 1.7.4 Remote Command Execution

Exploit Title: CMSimpleXH 1.7.4 - Remote Code Execution RCE Authenticated Date: 01-10-2021 Exploit Author: Halit AKAYDIN hLtAkydn Vendor Homepage: https://www.cmsimple-xh.org/ Software Link: https://www.cmsimple-xh.org/?Downloads Version: 1.7.4 Category: Webapps Tested on: Linux/Windows CMSimpleX...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.297 views

Drupal MiniorangeSAML 8.x-2.22 Privilege Escalation

Exploit Title: Drupal Module MiniorangeSAML 8.x-2.22 - Privilege escalation via XML Signature Wrapping Date: 09/07/2021 Exploit Author: Cristian 'void' Giustini Vendor Homepage: https://www.miniorange.com/ Software Link: https://www.drupal.org/project/miniorangesaml Version: 8.x-2.22 REQUIRED...

1.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.365 views

Vehicle Service Management System 1.0 Shell Upload

Exploit Title: Vehicle Service Management System 1.0 - Remote Code Execution RCE Unauthenticated Date: 30.09.2021 Exploit Author: Fikrat Ghuliev Ghuliev Vendor Homepage: https://www.sourcecodester.com/php/14972/vehicle-service-management-system-php-free-source-code.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/01 12:0 a.m.296 views

Blood Bank System 1.0 SQL Injection

Exploit Title: Blood Bank System 1.0 - SQL Injection / Authentication Bypass Date: 30-9-2021 Exploit Author: Nitin Sharma vidvansh Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code/ Software Link :...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/30 12:0 a.m.321 views

Cmsimple 5.4 Remote Code Execution

Exploit Title: Cmsimple 5.4 - Remote Code Execution RCE Authenticated Date: 29.09.2021 Exploit Author: pussycat0x Vendor Homepage: https://www.cmsimple.org/ Version: 5.4 Tested on: ubuntu-20.04.1 import argparse from bs4 import BeautifulSoup from argparse import ArgumentParser import requests...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/30 12:0 a.m.216 views

WordPress JS Jobs Manager 1.1.7 Authorization Bypass

Exploit Title: Wordpress Plugin JS Jobs Manager 1.1.7 - Unauthenticated Plugin Install/Activation Google Dork: inurl:/wp-content/plugins/js-jobs/ Date: 22/09/2021 Exploit Author: spacehen Vendor Homepage: https://wordpress.org/plugins/js-jobs/ Version: spacehen www.github.com/spacehen" def...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/30 12:0 a.m.298 views

PlaceOS 1.2109.1 Open Redirection

Exploit Title: PlaceOS 1.2109.1 - Open Redirection Date: 29-09-2021 Exploit Author: Hamza Khedr @ Accenture Austalia AARO Team Vendor Homepage: https://place.technology/ Software Link: https://github.com/PlaceOS Version: 1.29.10 Tested on: Ubuntu 20.04 CVE: CVE-2021-41826 PoC:...

6.4AI score0.11872EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/09/30 12:0 a.m.418 views

Pharmacy Point Of Sale System 1.0 SQL Injection

Exploit Title: Pharmacy Point of Sale System 1.0 - 'Multiple' SQL Injection SQLi Date: 28.09.2021 Exploit Author: Murat Vendor Homepage: https://www.sourcecodester.com/php/14957/pharmacy-point-sale-system-using-php-and-sqlite-free-source-code.html Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.393 views

WordPress Select All Categories And Taxonomies 1.3.1 Cross Site Scripting

Exploit Title: WordPress Plugin Select All Categories and Taxonomies 1.3.1 - Reflected Cross-Site Scripting XSS Date: 2/15/2021 Author: 0xB9 Software Link: https://downloads.wordpress.org/plugin/select-all-categories-and-taxonomies-change-checkbox-to-radio-buttons.1.3.1.zip Version: 1.3.1 Tested...

6.1CVSS0.10358EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.218 views

OpenSIS 8.0 Cross Site Scripting

Exploit Title: OpenSIS 8.0 - 'cpidmissattn' Reflected Cross-Site Scripting XSS Date: 9/24/2021 Exploit Author: Eric Salario Vendor Homepage: http://www.os4ed.com/ Software Link: https://opensis.com/download Version: 8.0 Tested on: Windows, Linux CVE : CVE-2021-40310 OpenSIS Community Edition...

5.6AI score0.00812EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.259 views

Covid Vaccination Scheduler System 1.0 SQL Injection / Cross Site Scripting

CVE-2021-36621 Vendor Description Sourcecodester Online Covid Vaccination Scheduler System 1.0 is vulnerable to SQL Injection, XSS-STORED PHPSESSID Hijacking, and remote SQL Injection - bypass Authentication. The attacker can be hijacking the PHPSESSID by using this vulnerability and then he can...

6.8CVSS0.5AI score0.02073EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.191 views

Pet Shop Management System 1.0 Shell Upload

Title: Pet Shop Management System 1.0 - Remote Code Execution RCE Unauthenticated Date: 28.09.2021 Author: Mr.Gedik Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14962/petshop-management-system-using-phppdo-oop-full-source-code-complete.html...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.217 views

WordPress Redirect 404 To Parent 1.3.0 Cross Site Scripting

Exploit Title: WordPress Plugin Redirect 404 to Parent 1.3.0 - Reflected Cross-Site Scripting XSS Date: 2/3/2021 Author: 0xB9 Software Link: https://downloads.wordpress.org/plugin/redirect-404-to-parent.1.3.0.zip Version: 1.3.0 Tested on: Windows 10 CVE: CVE-2021-24286 1. Description: This plugin...

6.1CVSS0.1AI score0.13942EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.217 views

Storage Unit Rental Management System 1.0 Shell Upload

Exploit Title: Storage Unit Rental Management System 1.0 - Remote Code Execution RCE Unauthenticated Date: 28.09.2021 Exploit Author: Fikrat Ghuliev Ghuliev Vendor Homepage: https://www.sourcecodester.com/php/14932/storage-unit-rental-management-system-using-php-free-source-code.html Software Lin...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.204 views

Google Extensible Service Proxy Header Forgery

Extensible Service Proxy a.k.a. ESP is an open source software by Google assisting Cloud Endpoints, a product on Google Cloud Platform. ESPv1 is an nginx based proxy which enables API management capabilities for JSON/REST or gRPC API services. In a typical deployment, ESP is running and fronting...

0.8AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/29 12:0 a.m.226 views

Mitrastar GPT-2541GNAC-N1 Privilege Escalation

Exploit Title: Mitrastar GPT-2541GNAC-N1 - Privilege escalation Date: 10-08-2021 Exploit Author: Leonardo Nicolas Servalli Vendor Homepage: www.mitrastar.com Platform: Mistrastar router devices GPT-2541GNAC-N1 HGU Tested on: Firmware BRg3.5100VNZ0b33 Vulnerability analysis:...

0.8AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.197 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Privilege Escalation

!/usr/bin/env python3 FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Remote Privilege Escalation Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.533 views

WordPress Popup 1.10.4 Cross Site Scripting

Exploit Title: WordPress Plugin Popup 1.10.4 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/popup-by-supsystic/ Version: 1.10.4 Tested on: Windows 10 CVE: CVE-2021-24275 1. Description: The plugin did not sanitize the tab parameter o...

6.1CVSS0.18165EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.238 views

WordPress Contact Form 1.7.14 Cross Site Scripting

Exploit Title: WordPress Plugin Contact Form 1.7.14 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/contact-form-by-supsystic/ Version: 1.7.14 Tested on: Windows 10 CVE: CVE-2021-24276 1. Description: The Contact Form by Supsystic...

6.1CVSS6.3AI score0.16044EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.475 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Configuration Disclosure

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Unauthenticated Config Download Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58 10.1.2r60p55...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.244 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Cross Site Request Forgery

!-- FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 CSRF Add Admin Exploit Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58 10.1.2r60p55...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.257 views

Apache James Server 2.3.2 Remote Command Execution

Exploit Title: Apache James Server 2.3.2 - Remote Command Execution RCE Authenticated 2 Date: 27/09/2021 Exploit Author: shinris3n Vendor Homepage: http://james.apache.org/server/ Software Link: http://ftp.ps.pl/pub/apache/james/server/apache-james-2.3.2.zip Version: Apache James Server 2.3.2...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.232 views

WordPress Ultimate Maps 1.2.4 Cross Site Scripting

Exploit Title: WordPress Plugin Ultimate Maps 1.2.4 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/ultimate-maps-by-supsystic/ Version: 1.2.4 Tested on: Windows 10 CVE: CVE-2021-24274 1. Description: The plugin did not sanitize the t...

6.1CVSS0.17638EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.222 views

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Backdoor Account

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 Hidden Backdoor Account Write Access Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP / IPVPN / MPVPN 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.226 views

WordPress TranslatePress 2.0.8 Cross Site Scripting

Exploit Title: WordPress Plugin TranslatePress 2.0.8 - Stored Cross-Site Scripting XSS Authenticated Date: 06-08-2021 Exploit Author: Nosa Shandy Apapedulimu Vendor Homepage: https://translatepress.com/ Software Link: https://wordpress.org/plugins/translatepress-multilingual/ Reference:...

5.1AI score0.05432EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.164 views

FatPipe Networks WARP 10.2.2 Authorization Bypass

FatPipe Networks WARP 10.2.2 Authorization Bypass Vendor: FatPipe Networks Inc. Product web page: https://www.fatpipeinc.com Affected version: WARP 10.2.2r38 10.2.2r25 10.2.2r10 10.1.2r60p82 10.1.2r60p71 10.1.2r60p65 10.1.2r60p58s1 10.1.2r60p58 10.1.2r60p55 10.1.2r60p45 10.1.2r60p35 10.1.2r60p32...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.258 views

Backdoor.Win32.Hupigon.afjk Directory Traversal

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8dc8abc99c1e7908fe9d048a4e360960B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.afjk Vulnerability: Directory Traversal Description: The malware deploys a W...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.222 views

Backdoor.Win32.Agent.aer Insecure Transit / Password Disclosure

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9576a6a59715a69be499fa41d6383a64B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Agent.aer Vulnerability: Insecure Transit Password Disclosure Description: The malwa...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.202 views

Simple Attendance System 1.0 Authentication Bypass

Exploit Title: Simple Attendance System v1.0 - Unauthenticated Add Admin Account Exploit Author: Richard Jones Date: September 26, 2021 Vendor Homepage: https://www.sourcecodester.com/php/14948/simple-attendance-system-php-and-sqlite-free-source-code.html Software Link:...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.197 views

Backdoor.Win32.Hupigon.fjcd Unauthenticated Open Proxy

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/284f36e35db6a0aa9a493f39d834367e.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.fjcd Vulnerability: Unauthenticated Open Proxy Description: The malware liste...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.194 views

Backdoor.Win32.RmtSvc.l Denial Of Service

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/38f9ee3ce51ead0ce6bf2edcaa462611.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.RmtSvc.l Vulnerability: Remote Denial of Service Description: The malware listens on...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.247 views

PASS-PHP 1.0 SQL Injection / Cross Site Scripting

Exploit Title: PASS-PHP by: oretnom23 v1.0 is vulnerable to remote SqL-Injection bypass Authentication, XSS-Stored and PHPSESSID Hijacking. Author: nu11secur1ty Testing and Debugging: nu11secur1ty Date: 09.24.2021 Vendor: https://www.sourcecodester.com/user/257130/activity Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.196 views

Library System 1.0 SQL Injection

Exploit Title: Library System 1.0 - 'studentid' SQL injection Authenticated Google Dork: intitle: "Library System by YahooBaba" Date: 26/08/2021 Exploit Author: Vinay Bhuria Vendor Homepage: https://www.yahoobaba.net Software Link: https://www.yahoobaba.net/project/library-system-in-php Version:...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.403 views

XAMPP 7.4.3 Privilege Escalation

Exploit Title: XAMPP 7.4.3 - Local Privilege Escalation Exploit Author: Salman Asad @deathflash1411, [email protected] Original Author: Maximilian Barz @S1lkys Date: 27/09/2021 Vendor Homepage: https://www.apachefriends.org Version: XAMPP 7.2.29, 7.3.x 7.3.16 & 7.4.x 7.4.4 Tested on: Windows 10 +...

8.8CVSS0.5AI score0.2247EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.229 views

Backdoor.Win32.Hupigon.afjk Authentication Bypass / Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8dc8abc99c1e7908fe9d048a4e360960.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.afjk Vulnerability: Authentication Bypass RCE Description: The malware runs a...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.225 views

Ether MP3 CD Burner 1.3.8 Buffer Overflow

Exploit Title: EtherMP3CDBurner 1.3.8 - Buffer Overflow SEH Date: 24.09.2021 Software Link: https://mp3-avi-mpeg-wmv-rm-to-audio-cd-burner.software.informer.com/download/?caa8ec-1.2 Software Link 2: https://anonfiles.com/X2Ff36J6ue/ethercdburnerexe Exploit Author: Achilles Tested Version: 1.3.8...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.217 views

Trojan-Downloader.Win32.VB.abb Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8f81373b0f0e6f60206a1a707de2ed77.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Downloader.Win32.VB.abb Vulnerability: Insecure Permissions Description: The malware creates ...

7.4AI score
Exploits0
Total number of security vulnerabilities50784