Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
added 2025/09/29 12:0 a.m.270 views

📄 Windows Silent Process Exit Persistence

Windows allows you to set up a debug process when a process exits. This Metasploit module uploads a payload and declares that it is the debug process to launch when a specified process exits. This module requires Metasploit: https://metasploit.com/download Current source:...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/26 12:0 a.m.195 views

📄 JS Archive List 6.1.5 SQL Injection

JS Archive List versions 6.1.5 and below suffer from a remote SQL injection vulnerability. CVE-2025-54726 JS Archive List = 6.1.5 - Unauthenticated SQL Injection Description The JS Archive List plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 6.1.5 due to...

9.3CVSS7.8AI score0.01425EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/09/23 12:0 a.m.188 views

📄 Summer Employee Portal SQL Injection

Summer Employee Portal versions prior to 3.98.0 suffer from an authenticated remote SQL injection vulnerability. Exploit Title: Summar Employee Portal Prior to 3.98.0 Authenticated SQL Injection - CVE-2025-40677 Google Dork: inurl:"/MemberPages/quienesquien.aspx" Date: 09/22/2025 Exploit Author:...

8.7CVSS7.9AI score0.00588EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/09/23 12:0 a.m.354 views

📄 FreePBX SQL Injection / Remote Code Execution

This Metasploit module exploits an unauthenticated SQL injection flaw in FreePBX prior to versions 15.0.66, 16.0.89, and 17.0.3. The vulnerability lies in the /admin/ajax.php endpoint, which is accessible without authentication. Additionally, the database user created by FreePBX can schedule...

10CVSS9.2AI score0.93286EPSS
Exploits20
Packet Storm
Packet Storm
added 2025/09/19 12:0 a.m.360 views

📄 aaPanel 7.x.x Remote Command Execution

aaPanel version 7.x.x suffers from an authenticated remote command execution vulnerability. This was discovered prior and noted in CVE-2020-14421 where it states that it affects versions 6.6.6 and below. The developers claim it is patched but it still affects the 7.x.x version. This is...

9CVSS7.3AI score0.0597EPSS
Exploits5
Packet Storm
Packet Storm
added 2025/09/17 12:0 a.m.180 views

📄 Commvault CLI Argument Injection / Traversal / Remote Code Execution

This Metasploit module exploits an unauthenticated remote code execution exploit chain for Commvault, tracked as CVE-2025-57790 and CVE-2025-57791. A command-line injection permits unauthenticated access to the localadmin account, which then facilitates code execution via expression language...

8.8CVSS8.7AI score0.83641EPSS
Exploits12
Packet Storm
Packet Storm
added 2025/09/16 12:0 a.m.163 views

📄 Node.JS 4.1.1 Directory Listing

Node.JS versions 4.1.1 and below suffer from a Range header issue that results in a directory listing. !/bin/bash Exploit Title: Node.JS -u \n" exit else echo -e "\n+ TARGET: $TARGET$URI\n" curl -s -H "Range: 99999" $TARGET$URI | html2text | sed '1d;$d' fi...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/16 12:0 a.m.170 views

📄 Init OpenRC Persistence

This Metasploit module will create a service on the box via OpenRC, and mark it for auto-restart. We need enough access to write service files and potentially restart services. Verified against alpine 3.21.2. This module requires Metasploit: https://metasploit.com/download Current source:...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/15 12:0 a.m.100 views

📄 namrb.bg SQL Injection

namrb.bg suffers from a remote SQL injection vulnerability. The owner of the site has been unresponsive to the researcher so this is being posted to encourage them to address their issues for the safety of their users. Titles: namrb.bg app-Multiple-SQLi Author: nu11secur1ty Date: 09/15/2025 Vendo...

8.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/12 12:0 a.m.304 views

📄 Sitecore XP Post-Authentication File Upload

This Metasploit module exploits Sitecore XP with a file upload vulnerability in PowerShell extensions and a hardcoded credential vulnerability with the ServicesAPI account to gain a foothold. This module requires Metasploit: https://metasploit.com/download Current source:...

8.8CVSS7.2AI score0.38428EPSS
Exploits7
Packet Storm
Packet Storm
added 2025/09/12 12:0 a.m.272 views

📄 Sitecore XP Post-Authentication Remote Code Execution

This Metasploit module exploits Sitecore XP with a path traversal that leads to remote code execution as well as a hardcoded credential vulnerability in the ServicesAPI account to gain a foothold. This module requires Metasploit: https://metasploit.com/download Current source:...

8.8CVSS8.3AI score0.38428EPSS
Exploits7
Packet Storm
Packet Storm
added 2025/09/10 12:0 a.m.168 views

📄 Shenzhen Aitemi M300 Wi-Fi Repeater Unauthenticated Remote Code Execution

This Metasploit module exploits an unauthenticated remote command injection vulnerability in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02. The vulnerability lies in the time parameter of the time configuration endpoint, which is passed unsanitized to a shell command executed via th...

9.4CVSS7.9AI score0.61676EPSS
Exploits5
Packet Storm
Packet Storm
added 2025/09/09 12:0 a.m.224 views

📄 Rupee Invoice 1.0 SQL Injection

Rupee Invoice version 1.0 suffers from a remote SQL injection vulnerability. Titles: RUPEE-INVOICE-1.0-Multiple-SQLi Author: nu11secur1ty Date: 09/09/2025 Vendor: https://www.mayurik.com/ Software:...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/09 12:0 a.m.241 views

📄 Sawtooth Software Lighthouse Studios Template Injection

This Metasploit module exploits a template injection vulnerability in the Sawtooth Software Lighthouse Studios ciwweb.pl web application. The application fails to properly sanitize user input within survey templates, allowing unauthenticated attackers to inject and execute arbitrary Perl commands...

10CVSS8.9AI score0.4942EPSS
Exploits4
Packet Storm
Packet Storm
added 2025/09/05 12:0 a.m.166 views

📄 Ilevia EVE X1/X5 Server 4.7.18.0.eden Reverse Rootshell

Ilevia EVE X1/X5 Server version 4.7.18.0.eden reverse rootshell exploit. A misconfiguration in the sudoers file permits passwordless execution of specific Bash shell scripts via sudo, exposing a critical privilege escalation vulnerability. When such scripts are writable by a web-facing user...

8.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/04 12:0 a.m.246 views

📄 Sudo Chroot 1.9.17 Privilege Escalation

This Metasploit module exploits the chroot vulnerability in Sudo versions prior to 1.9.17p1. It allows the attacker to trick Sudo into loading an arbitrary shared object, thus resulting in a privilege escalation. This module requires Metasploit: https://metasploit.com/download Current source:...

9.3CVSS7AI score0.47467EPSS
Exploits77
Packet Storm
Packet Storm
added 2025/09/02 12:0 a.m.154 views

📄 Concrete CMS 9.4.3 Cross Site Scripting

Concrete CMS version 9.4.3 suffers from a persistent cross site scripting vulnerability. Exploit Title: Concrete CMS version 9.4.3 - Stored XSS Date: 2/09/2025 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.concretecms.org/ Software Link:...

6.5AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/01 12:0 a.m.659 views

📄 XWiki Platform Remote Code Execution

This Metasploit module exploits a template injection vulnerability in the the XWiki Platform. XWiki includes a macro called SolrSearch defined in Main.SolrSearchMacros that enables full-text search through the embedded Solr engine. The vulnerability stems from the way this macro evaluates search...

9.8CVSS9.7AI score0.99898EPSS
Exploits50
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.181 views

📄 Generic Payload Handler

This Metasploit module is a stub that provides all of the features of the Metasploit payload system to exploits that have been launched outside of the framework. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.137 views

📄 Beakon Privilege Escalation

Beakon versions prior to 5.4.3 have an incorrect access control that allows authenticated attackers with low-level privileges to escalate privileges and execute commands with Administrator rights. Title: Privilege Escalation in Beakon Application versions prior to 5.4.3 Description: Incorrect...

5.3CVSS7.4AI score0.00491EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.147 views

📄 Beakon Cross Site Scripting

Beakon versions prior to 5.4.3 suffer from a cross site scripting vulnerability via a malicious file upload. Title: Cross Site Scripting/Phishing Delivery through File upload in Beakon versions prior to 5.4.3 Description: The vulnerability exists due to insufficient validation of uploaded file...

5.3CVSS6.3AI score0.00265EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.167 views

📄 Update-motd.d Persistence

This Metasploit module will add a script in /etc/update-motd.d/ in order to persist a payload. The payload will be executed with root privileges every time a user logs in. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewo...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.141 views

📄 Kubernetes Authenticated Code Execution

This Metasploit module executes a payload within a Kubernetes pod. -- coding: binary -- This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Kubernetes authenticated code execution', 'Description' =...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.163 views

📄 Remote for Mac 2025.6 Remote Code Execution

This Metasploit module exploits an unauthenticated remote code execution vulnerability in Remote for Mac 2025.6. When the "Allow unknown devices" setting is enabled, it is possible to simulate keyboard input via UDP packets without authentication. By sending a sequence of key presses, an attacker...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.226 views

📄 Pretalx Limited File Write / Remote Code Execution

This Metasploit module exploits CVE-2023-28458, a limited file write in Pretalx, up to version 2.3.1. The module will use the vulnerability to write a malicious site-specific configuration hook for Python. Once hook is written, payload will be executed every time Pretalx user runs any Python code...

4.3CVSS4.8AI score0.03429EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.176 views

📄 Script Web Delivery

This Metasploit module quickly fires up a web server that serves a payload. The module will provide a command to be run on the target machine based on the selected target. The provided command will download and execute a payload using either a specified scripting language interpreter or...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/28 12:0 a.m.332 views

📄 Coolify 4.0.0-beta.420.6 Command Injection

Coolify versions prior to and including v4.0.0-beta.420.6 are vulnerable to a critical remote code execution flaw in the project deployment workflow. The platform allows authenticated users, with low-level privileges, to inject arbitrary shell commands via the Git Repository URL field during...

9.4CVSS8.9AI score0.03691EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.134 views

📄 Lingdang CRM 8.6.4.7 SQL Injection

Lingdang CRM versions 8.6.4.7 and below suffer from a remote SQL injection vulnerability. Exploit Title: Lingdang CRM 8.6.4.7 - SQL Injection Google Dork: N/A Date: 2025-08-19 Exploit Author: Beatriz Fresno Naumova Vendor: Shanghai Lingdang Information Technology Software Link: N/A – commercial...

8.8CVSS8.5AI score0.00448EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.155 views

📄 GeoVision ASManager Windows Application 6.1.2.0 Credential Disclosure

GeoVision ASManager Windows Application version 6.1.2.0 suffers from a credential disclosure vulnerability. Exploit Title: GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure Date: 19-MAR-2025 Exploit Author: Giorgi Dograshvili DRAGOWN Vendor Homepage:...

5.1CVSS7.2AI score0.01278EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.167 views

📄 Pharmacy Product Management System 1.0 Cross Site Scripting

Pharmacy Product Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Exploit Title: Pharmacy Product Management System - Persistent XSS Date: 25.08.2025 Exploit Author: Ömer Ahmet Yılmaz Vendor Homepage:...

6.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.192 views

📄 Ilevia EVE X1/X5 Server 4.7.18.0.eden Authentication Bypass

Ilevia EVE X1/X5 Server versions 4.7.18.0.eden and below construct a shell command using unsanitized user input passed to the system function, calling an external binary for authentication. Due to improper input handling and reliance on the binary's return value for access control, an attacker ca...

8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.259 views

📄 WordPress StoryChief 1.0.42 Shell Upload

WordPress StoryChief plugin versions 1.0.42 and below suffer from a remote shell upload vulnerability. Exploit Title: StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload Exploit Author: xpl0dec Vendor Homepage: https://www.storychief.io/wordpress-content-scheduler Software Link:...

9.8CVSS7.5AI score0.37349EPSS
Exploits8
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.161 views

📄 GeoVision ASManager Windows Application 6.1.2.0 Remote Code Execution

GeoVision ASManager Windows Application version 6.1.2.0 suffers from a remote code execution vulnerability. Exploit Title: GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution RCE Date: 19-MAR-2025 Exploit Author: Giorgi Dograshvili DRAGOWN Vendor Homepage:...

8.8CVSS8.2AI score0.19519EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.197 views

📄 Ivanti Endpoint Manager Mobile 12.5.0.0 Authentication Bypass

Ivanti Endpoint Manager Mobile version 12.5.0.0 authentication bypass proof of concept exploit. !/usr/bin/env python3 Exploit Title: Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass Google Dork: inurl:/mifs "Ivanti" OR "EPM" OR "Endpoint Manager" Date: 2025-01-21 Exploit Author: Yo...

8.8CVSS7.7AI score0.99891EPSS
Exploits10
Packet Storm
Packet Storm
added 2025/08/25 12:0 a.m.170 views

📄 Wise-Insurance Agency Insurance Management System 1.0 Cross Site Scripting

Wise-Insurance Agency Insurance Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Exploit Title: Wise-Insurance Agency - Insurance Management System 1.0 - Stored XSS Date: 25.08.2025 Exploit Author: Emir Bulutlu Vendor:...

6.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/25 12:0 a.m.299 views

📄 WordPress WP Reactions Box 1.0 SQL Injection

WordPress WP Reactions Box plugin versions 1.0 and below suffer from a remote SQL Injection vulnerability. Exploit Title: WordPress WP Reactions Box Plugin 1.0 - SQL Injection Google Dork: N/A Date: 2025-08-24 Exploit Author: bRpsd cyatlive.no Vendor Homepage:...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/22 12:0 a.m.401 views

📄 EasyApp Limited 2.5 Remote Code Execution / Deserialization / File Upload

EasyApp Limited versions 2.5 and below suffer from PHP object injection allowing for remote code execution, arbitrary file upload, and hardcoded credential vulnerabilities. It looks like it may also suffer from cross site request forgery, cross site scripting, etc. Obviously, security is hard, an...

8.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/22 12:0 a.m.299 views

📄 Student Result Management System 2.0 SQL Injection / Local File Inclusion

Student Result Management System version 2.0 suffers from unauthenticated remote SQL injection and local file inclusion vulnerabilities. Exploit Title: Student Result Management System v2.0 Unauthenticated SQL Injection / Local File Inclusion Date: 2025-08-22 Exploit Author: Mehmet Can Kadıoğlu...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/21 12:0 a.m.99 views

📄 Easy Hosting Control Panel 20.04.1.b Cross Site Scripting

Easy Hosting Control Panel version 20.04.1.b suffers from a cross site scripting vulnerability in the ftpusername parameter. This enables the attacker to inject malicious JavaScript payloads, leading to session hijacking, redirection to malicious sites, defacement, or other actions performed in t...

6.3CVSS6.3AI score0.00185EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/08/21 12:0 a.m.1328 views

📄 Netdata ndsudo 1.45.0 Privilege Escalation

ndsudo versions 1.45.0 and below have a vulnerability that allows an attacker to achieve privilege escalation. It leverages an untrusted search path, when searching for additional binary files, such as nvme. An attacker can create a malicious binary with the same name and add the directory of thi...

8.8CVSS9.1AI score0.01174EPSS
Exploits15
Packet Storm
Packet Storm
added 2025/08/20 12:0 a.m.212 views

📄 Ilevia EVE X1 Server 4.7.18.0.eden Credentials Leak

A critical vulnerability was identified in the EVE smart home and BMS/BAS controller system due to improper handling of sensitive information in server-side logging. Specifically, .log files accessible via the web server expose cleartext credentials, including username and password submitted duri...

7.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.153 views

📄 Piciorgros TMO-100 Information Disclosure

Piciorgros TMO-100 suffers from an issue where it provides unauthorized log data access. It affects versions prior to 4.20. PDF advisory: https://rt-solutions.de/piciorgros/PiciorgrosTMO-100IP-Loggeren.pdf Classification -------------- - CWE-200: Exposure of Sensitive Information to an Unauthoriz...

7.2AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.93 views

📄 liblcf 0.8.1 Integer Overflow

A crafted RPG Maker save file .lsd can trigger an integer overflow in liblcf’s lcfstrings compressed integer decoding logic LcfReader::ReadInt, resulting in an unbounded shift and accumulation loop. The overflowed value is later used in buffer size allocations and structure parsing, causing large...

7.8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.117 views

📄 iDempiere WebUI 12.0.0.202508171158 CSV Injection

A CSV injection vulnerability exists in iDempiere WebUI version 12.0.0.202508171158. A CSV Injection vulnerability exists in iDempiere WebUI v12.0.0.202508171158. The application fails to properly sanitize user-supplied input before including it in exported CSV files. An authenticated attacker ca...

7.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.215 views

📄 nopCommerce 4.10 / 4.80.3 Session Invalidation

nopCommerce versions 4.10 and 4.80.3 are vulnerable to insufficient invalidation of session cookies. The application does not properly invalidate or expire authentication cookies after logout or session termination. nopCommerce v4.10 and 4.80.3 is vulnerable to Insufficient Invalidation of Sessio...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.119 views

📄 nopCommerce 4.10 / 4.80.3 Resource Exhaustion

nopCommerce versions 4.10 and 4.80.3 are vulnerable to resource exhaustion vulnerabilities. nopCommerce is vulnerable to Insufficient Resource Allocation Limits when handling large Excel file imports. Although the application provides a warning message recommending that users avoid importing more...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.136 views

📄 nopCommerce 4.10 / 4.80.3 CSV Injection

nopCommerce versions 4.10 and 4.80.3 are vulnerable to CSV injection Formula Injection when exporting data to CSV. The application does not properly sanitize user-supplied input before including it in CSV export files. nopCommerce versions v4.10 and v4.80.3 are vulnerable to CSV Injection Formula...

7.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.108 views

📄 Piciorgros TMO-100 Configuration Change

Piciorgros TMO-100 allows for an unauthorized configuration change via TFTP. This issue affects versions prior to 4.20. Classification -------------- - CWE-306: Missing Authentication for Critical Function - CWE-940: Improper Verification of Source of a Communication Channel - CWE-200: Exposure o...

7.2AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.115 views

📄 iDempiere WebUI 12.0.0.202508171158 Session Fixation

iDempiere WebUI version 12.0.0.202508171158 suffers from a session fixation vulnerability. The application does not issue a new session identifier JSESSIONID after successful authentication. An attacker who can set or predict a victim’s session ID prior to login may hijack the victim’s...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/08/19 12:0 a.m.257 views

📄 Optimizely Episerver Content Management System 11.x / 12.x Cross Site Scripting

Optimizely Episerver Content Management System versions prior to 11.21.4 and prior to 12.22.1 suffer from multiple persistent cross site scripting vulnerabilities. Confidentiality class: Internal & Partner SEC Consult Vulnerability Lab Security Advisory...

4.8CVSS5.8AI score0.00362EPSS
Exploits1
Total number of security vulnerabilities50738