Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
added 2025/07/29 12:0 a.m.99 views

📄 Xorux LPAR2RRD 8.04 Information Disclosure

Xorux LPAR2RRD versions 8.04 and below have an API endpoint that should be limited to web application administrators. It is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration, exposing sensitive...

5.3CVSS6.2AI score0.03976EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/29 12:0 a.m.108 views

📄 Xorux LPAR2RRD 8.04 File Upload / Directory Traversal

Xorux LPAR2RRD versions 8.04 and below allow an authenticated, read-only user to upload a file and perform a directory traversal to have the uploaded file placed in a location of their choosing. This can be used to overwrite existing PERL modules within the application to achieve remote code...

8.8CVSS9.7AI score0.03038EPSS
Exploits4
Packet Storm
Packet Storm
added 2025/07/29 12:0 a.m.153 views

📄 Xorux XorMon-NG 1.8 Privilege Escalation

Xorux XorMon-NG versions 1.8 and below has an API endpoint that should be limited to web application administrators. It is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to import the appliance configuration, allowing an attacker to control t...

5.3CVSS6.3AI score0.06894EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/29 12:0 a.m.96 views

📄 FullControl: Remote for Mac 4.0.5 Unauthenticated Screen Capture

FullControl: Remote for Mac version 4.0.5 is vulnerable to an unauthenticated remote screenshot capture and live screen streaming due to a lack of authentication on TCP port 2846. This exploit allows attackers to silently capture screenshots or continuously stream the victim's screen in real-time...

7.9AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/28 12:0 a.m.103 views

📄 Malicious Windows Script Host VBScript File

This Metasploit module creates a Windows Script Host WSH VBScript .vbs file. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Malicious Windows Script Host VBScript .vbs File', 'Description' = %...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/28 12:0 a.m.99 views

📄 Xlight FTP 1.1 Denial of Service

Xlight FTP version 1.1 suffers from a denial of service vulnerability. Exploit Title: Xlight FTP 1.1 - Denial Of Service DOS Google Dork: N/A Date: 22 July 2025 Exploit Author: Fernando Mengali LinkedIn: https://www.linkedin.com/in/fernando-mengali/ Vendor Homepage: https://www.xlightftpd.com...

7.5CVSS5.6AI score0.04195EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/28 12:0 a.m.101 views

📄 Malicious Windows Script Host JScript File

This Metasploit module creates a Windows Script Host WSH JScript .js file. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Malicious Windows Script Host JScript .js File', 'Description' = %q Th...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/25 12:0 a.m.98 views

📄 Remote Trackpad: Virtual Tool 1.5.7 Remote Code Execution

Remote Trackpad: Virtual Tool version 1.5.7 is vulnerable to unauthenticated remote code execution via TCP port 9999. An attacker on the same network can inject simulated keyboard input, allowing arbitrary command execution without user interaction or authentication. Exploit Title: Remote Trackpa...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/25 12:0 a.m.133 views

📄 FullControl: Remote for Mac 4.0.5 Remote Code Execution

FullControl: Remote for Mac version 4.0.5 for macOS is vulnerable to unauthenticated remote code execution via TCP port 2846. An attacker on the same network can inject simulated keyboard input, allowing arbitrary command execution without user interaction or authentication. Exploit Title:...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/24 12:0 a.m.99 views

📄 SharePoint Remote Code Execution

This payload is an HTTP request example of the SharePoint remote code execution vulnerability being exploited in the wild. POST /layouts/15/ToolPane.aspx?DisplayMode=Edit&a=/ToolPane.aspx HTTP/1.1 Host: x.x.x.x User-Agent: Mozilla/5.0 Windows NT 10.0; Win64; x64; rv:120.0 Gecko/20100101...

9.8CVSS8.2AI score0.99982EPSS
Exploits41
Packet Storm
Packet Storm
added 2025/07/24 12:0 a.m.106 views

📄 Malicious Windows Registration Entries (.reg) File

This Metasploit module creates a Windows Registration Entries .reg file which adds the specified payload to the Windows Registry. The payload runs upon Windows login for the current user. If the user has elevated privileges when opening the file, the payload will run upon login when any user logs...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/24 12:0 a.m.181 views

📄 Computer Mouse: Remote Control 1.1.6 Remote Code Execution

Computer Mouse: Remote Control version 1.1.6 for macOS is vulnerable to unauthenticated remote code execution via TCP port 9999. An attacker on the same network can inject simulated keyboard input, allowing arbitrary command execution without user interaction or authentication. Exploit Title:...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/24 12:0 a.m.138 views

📄 Remote Mouse 3.303 Unauthenticated Remote System Control

Remote Mouse version 3.303 for macOS is vulnerable to unauthenticated remote power control due to weak access restrictions on UDP port 1978. An attacker on the same local network can send crafted packets to remotely shut down, restart, or log off the target system without requiring authentication...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/23 12:0 a.m.104 views

📄 Invision Community 5.0.7 Cross Site Scripting

Invision Community versions 5.0.7 and below have an issue where user input passed through the state POST parameter to the /oauth/callback/index.php script is not properly sanitized before being used to generate HTML output. This can be exploited by attackers to perform reflected cross site...

6.4AI score
Exploits1
Packet Storm
Packet Storm
added 2025/07/23 12:0 a.m.265 views

📄 Invision Community 4.7.20 SQL Injection

Invision Community versions 4.7.20 and below have a vulnerability located within the /applications/calendar/modules/front/calendar/view.php script. Specifically, in the IPS\calendar\modules\front\calendar\view::search method: user input passed through the location request parameter is not properl...

8.2AI score
Exploits2
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.122 views

📄 WordPress Pie Register 3.7.1.4 Shell Upload

WordPress Pie Register plugin versions 3.7.1.4 and below suffer from a bypass vulnerability that enables an attacker to upload a shell. Exploit Title: Pie Register WordPress Plugin 3.7.1.4 - Authentication Bypass to RCE Google Dork: inurl:/wp-content/plugins/pie-register/ Date: 2025-07-09 Exploit...

10CVSS7.3AI score0.09903EPSS
Exploits7
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.149 views

📄 WordPress Simple File List 4.2.2 Shell Upload

WordPress Simple File List plugin versions 4.2.2 and below proof of concept remote shell upload exploit. Exploit Title: Simple File List WordPress Plugin 4.2.2 - File Upload to RCE Google Dork: inurl:/wp-content/plugins/simple-file-list/ Date: 2025-07-15 Exploit Author: Md Amanat Ullah xSwads...

9.8CVSS7.5AI score0.12633EPSS
Exploits5
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.115 views

📄 Xorcom CompletePBX Authenticated Command Injection Via Task Scheduler

This Metasploit module exploits an authenticated command injection vulnerability in Xorcom CompletePBX versions less than or equal to 5.2.35. The issue resides in the task scheduler functionality, where user-controlled input is improperly sanitized, allowing arbitrary command execution with web...

9.1CVSS7.8AI score0.03853EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.120 views

📄 Joomla JS Jobs 1.4.2 SQL Injection

Joomla JS Jobs plugin version 1.4.2 suffers from a remote SQL injection vulnerability. Exploit Title: Joomla JS Jobs plugin 1.4.2 - SQL injection Google Dork: n/a Date: 07/07/2025 Exploit Author: Adam Wallwork Vendor Homepage: https://joomsky.com/ Demo: https://demo.joomsky.com/js-jobs/jm/free/...

8.7CVSS8.5AI score0.03081EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.90 views

📄 Tenda FH451 1.0.0.9 Buffer Overflow

Tenda FH451 routers version 1.0.0.9 suffer from a stack-based buffer overflow vulnerability. / Title : Tenda FH451 1.0.0.9 Router - Stack-based Buffer Overflow Author : Byte Reaper Telegram : @ByteReaper0 CVE : CVE-2025-7795 Vulnerability : Buffer Overflow Description : A buffer overflow...

9CVSS7.8AI score0.02792EPSS
Exploits4
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.84 views

📄 Discourse 3.1.1 Unauthenticated Chat Message Access

Proof of concept exploit for Discourse version 3.1.1 that provides unauthenticated chat message access. !/usr/bin/env ruby Title : Discourse 3.1.1 - Unauthenticated Chat Message Access CVE-2023-45131 CVSS: 7.5 High Affected: Discourse 3.1.1 stable, 3.2.0.beta2 Author ibrahimsql @...

7.5CVSS7.6AI score0.01814EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/22 12:0 a.m.101 views

📄 Microsoft Edge Cross Site Scripting Filter Bypass

Microsoft Edge cross site scripting filter bypass proof of concept exploit. Titles: Microsoft Edge XSS Filter Bypass PoC Author: nu11secur1ty Date: 2025-07-18 Vendor: Microsoft Software: Microsoft Edge Browser Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6176 Description Thi...

4.3CVSS6.5AI score0.10826EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.112 views

📄 Remote Mouse 3.303 Remote Code Execution

Remote Mouse version 3.303 macOS contains an unauthenticated remote code execution vulnerability. By sending crafted TCP packets that simulate keyboard input, an attacker can remotely open a terminal and execute arbitrary commands, enabling full system compromise. Exploit Title: Remote Mouse 3.30...

8.8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.103 views

📄 Mouse Agent Server 3.1 Remote Code Execution

Mouse Agent Server version 3.1 is vulnerable to unauthenticated remote code execution by simulating mouse/keyboard inputs to force the target to execute a PowerShell reverse shell. It works against default configurations by sending GUI automation commands through port 8088. Exploit Title: Mouse...

8.7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.112 views

📄 Wifi Mouse 1.9.0.8 Remote Code Execution

WiFi Mouse Server version 1.9.0.8 allows unauthenticated remote code execution by simulating keyboard input over TCP port 1978. This exploit connects to the server and simulates a keystroke to delivery a reverse shell. Exploit Title: Wifi Mouse version 1.9.0.8 - Remote Code Execution Date:...

8.4AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.123 views

📄 LiveHelperChat 4.6.1 Cross Site Scripting

LiveHelperChat versions 4.61 and below suffer from multiple persistent cross site scripting vulnerabilities. Exploit Title: LiveHelperChat Live Help Configuration Telegram Bot. 3. In the Bot Username field, enter the following payload: " 4. Save the settings. 5. Revisit the Telegram configuration...

6.5CVSS6.8AI score0.01532EPSS
Exploits19
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.172 views

📄 Intelbras RX 1500 2.2.9 / RX 3000 1.0.11 IDOR / XSS

Intelbras routers RX 1500 version 2.2.9 and RX 3000 version 1.0.11 suffer from multiple cross site scripting and insecure direct object reference vulnerabilities. =====Tempest Security Intelligence========================================== Multiple vulnerabilities in the web management interface ...

9.8CVSS6.8AI score0.01227EPSS
Exploits4
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.98 views

📄 Mouse Agent Server 3.1 Unauthenticated Remote System Control

Mouse Agent Server version 3.1 exposes a TCP control interface on port 8088 that allows remote execution of power commands shutdown, restart, sleep, logoff via unauthenticated commands. An attacker on the same network can exploit this to disrupt the system remotely without user interaction. Explo...

7.8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.110 views

📄 Wifi Mouse 1.9.0.8 Unauthenticated Remote System Control

Wifi Mouse version 1.9.0.8 exposes a TCP control interface on port 1978 that allows remote execution of power commands shutdown, restart, sleep, logoff via unauthenticated commands. An attacker on the same network can exploit this to disrupt the system remotely without user interaction. Exploit...

7.8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/21 12:0 a.m.105 views

📄 BarbarBaba 1.0 SQL Injection

BarbarBaba version 1.0 suffers from a remote SQL injection vulnerability. Titles: BarbarBaba-1.0 Copyright©2025-Multiple-SQLi Author: nu11secur1ty Date: 07/21/2025 Vendor: https://www.mayurik.com/ Software:...

8.5AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/17 12:0 a.m.103 views

📄 PandoraFMS Netflow Authenticated Remote Code Execution

This Metasploit module exploits a command injection vulnerability in Netflow component of PandoraFMS. The module requires a set of user credentials to modify Netflow settings. Also, Netflow binaries have to be present on the system. This module requires Metasploit: https://metasploit.com/download...

7CVSS7.7AI score0.19944EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.105 views

📄 PivotX 3.0.0 RC3 Remote Code Execution / Cross Site Scripting

PivotX version 3.0.0 RC3 suffers from a persistent cross site scripting vulnerability that can assist an attacker in achieving remote code execution once privileges are escalated. Exploit Title: PivotX v3.0.0 RC3 - Stored XSS to Remote Code Execution RCE Date: July 2025 Exploit Author: HayToN...

7.4AI score0.04253EPSS
Exploits6
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.132 views

📄 Keras 2.15 Remote Code Execution

This exploit abuses insecure deserialization in Keras model loading. By embedding a malicious "function" object inside a .keras file or config.json, an attacker can execute arbitrary system commands as soon as the model is loaded using keras.models.loadmodel or modelfromjson. This proof of concep...

9.8CVSS8AI score0.02803EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.130 views

📄 MikroTik RouterOS 7.19.1 Cross Site Scripting

MikroTik RouterOS versions 7.19.1 and below suffer from a cross site scripting vulnerability. Exploit Title: MikroTik RouterOS 7.19.1 - Reflected XSS Google Dork: inurl:/login?dst= Date: 2025-07-15 Exploit Author: Prak Sokchea Vendor Homepage: https://mikrotik.com Software Link:...

4.8CVSS6.6AI score0.00642EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.95 views

📄 White Star Software Protop 4.4.2-2024-11-27 Local File Inclusion

A local file inclusion vulnerability exists in White Star Software Protop version 4.4.2. An unauthenticated remote attacker can retrieve arbitrary files via URL-encoded traversal sequences in the /pt3upd/ endpoint. Exploit Title: White Star Software Protop 4.4.2-2024-11-27 - Local File Inclusion...

8.2CVSS7.5AI score0.04173EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.99 views

📄 Beakon Cross Site Scripting / Open Redirection

Beakon versions prior to 5.4.3 suffer from cross site scripting and open redirection vulnerabilities. I am submitting a news article for publishing my recent Zero day vulnerability. I have already contacted MITRE and have CVE-2025-46102 reserved now. Please find below details: Title: Unsensitized...

5.4CVSS6.7AI score0.00254EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.105 views

📄 WordPress WP Publications 1.2 Cross Site Scripting

WordPress WP Publication plugin version 1.2 suffers from a persistent cross site scripting vulnerability. Exploit Title: WP Publications WordPress Plugin 1.2 - Stored XSS Google Dork: inurl:/wp-content/plugins/wp-publications/ Date: 2025-07-15 Exploit Author: Zeynalxan Quliyev Vendor Homepage:...

4.8CVSS6.6AI score0.0118EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/16 12:0 a.m.180 views

📄 Langflow 1.2.x Remote Code Execution

Langflow exposes a vulnerable endpoint /api/v1/validate/code that improperly evaluates arbitrary Python code via the exec function. An unauthenticated remote attacker can execute arbitrary system commands. Versions 1.2.x and below are affected. !/usr/bin/env python3 Exploit Title: Langflow 1.2.x ...

9.8CVSS8.3AI score0.99968EPSS
Exploits33
Packet Storm
Packet Storm
added 2025/07/15 12:0 a.m.96 views

📄 Remote Mouse 4.601 Unauthenticated Remote System Control

Remote Mouse version 4.601 for Windows is vulnerable to unauthenticated remote power control due to improper access controls on UDP port 1978. An attacker on the same network can send specially crafted packets to force shutdown, restart, or log off the target system without authentication. Exploi...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/14 12:0 a.m.133 views

📄 Remote Mouse 4.601 Remote Command Execution

This exploit targets Remote Mouse version 4.6.0.1 by injecting malicious UDP packets that simulate keyboard input to execute arbitrary PowerShell commands. The vulnerability exists in the way Remote Mouse processes unauthenticated UDP commands on port 1978 by sending specially crafted packets...

8.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/14 12:0 a.m.127 views

📄 SugarCRM 14.0.0 Code Injection / SSRF / File Read

SugarCRM versions 14.0.0 and below suffer from a LESS code injection vulnerability. User input passed through GET parameters to the /css/preview REST API endpoint is not properly sanitized before parsing it as LESS code. This can be exploited by remote, unauthenticated attackers to inject and...

7.2CVSS8AI score0.13248EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/14 12:0 a.m.441 views

📄 Remote Mouse 4.601 Privilege Escalation

Remote Mouse version 4.601 for Windows listens on UDP port 1978 and allows privilege escalation. An attacker on the same network can spawn a SYSTEM-level powershell.exe, resulting in full privilege escalation without authentication or user interaction. Exploit Title: Remote Mouse 4.601 - Local...

8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/11 12:0 a.m.107 views

📄 The Language Sloth Web Application 1.0 Cross Site Scripting

The Language Sloth Web Application version 1.0 suffers from a cross site scripting vulnerability. CVE-2025-45778 CVE-2025-45778: Authenticated Stored XSS. An authenticated stored cross-site scripting XSS vulnerability in The Language Sloth Web Application v1.0 allows attackers to execute arbitrar...

6.1CVSS6.6AI score0.00314EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/07/11 12:0 a.m.121 views

📄 SAP NetWeaver S/4HANA ABAP Code Execution

During nullFaktor security research into internal SAP code in SAP S/4HANA, they identified that the function module WRITEANDCALLDBPROG in function group SDB2 exposes dangerous functionality that allows users to execute arbitrary Native SQL. nullFaktor Security Advisory...

8AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/11 12:0 a.m.101 views

📄 WordPress File Provider 1.2.3 SQL Injection

WordPress File Provider plugin versions 1.2.3 and below suffer from an unauthenticated remote SQL injection vulnerability. CVE-2025-4578 File Provider = 1.2.3 - Unauthenticated SQL Injection Description The File Provider plugin for WordPress is vulnerable to SQL Injection via the 'fileId' paramet...

9.8CVSS8.6AI score0.00475EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/07/10 12:0 a.m.107 views

📄 TouchServer 2.0.0 Remote Code Execution

TouchServer version 2.0.0 has a vulnerability that allows remote attackers to execute arbitrary commands by sending specially crafted UDP packets. This exploit delivers a PowerShell reverse shell by emulating keyboard input to trigger its download and execution. Exploit Title: TouchServer 2.0.0 -...

8.4AI score
Exploits0
Packet Storm
Packet Storm
added 2025/07/10 12:0 a.m.137 views

📄 Schneider Electric EcoStruxure IT Data Center Expert 8.3 Server-Side Request Forgery

Schneider Electric EcoStruxure IT Data Center Expert versions 8.3 and below insecurely forward HTTP requests based on user-controlled values, enabling an unauthenticated user to coerce the web application into sending data to arbitrary locations, such as the SMTP service listening on localhost...

6.3CVSS7.6AI score0.00463EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/10 12:0 a.m.676 views

📄 libxslt xmlFreeID Use-After-Free

libxslt suffers from a heap use-after-free vulnerability in xmlFreeID caused by atype corruption. Vulnerability details In xsltutils.c: int xsltSetSourceNodeFlagsxsltTransformContextPtr ctxt, xmlNodePtr node, int flags if node-doc == ctxt-initialContextDoc ctxt-sourceDocDirty = 1; switch node-typ...

7.8CVSS7.4AI score0.00339EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/07/10 12:0 a.m.197 views

📄 Schneider Electric EcoStruxure IT Data Center Expert 8.3 Privilege Escalation

Schneider Electric EcoStruxure IT Data Center Expert versions 8.3 and below contain a Charon executable that can be used by a low-privileged attacker to obtain root privileges. The Charon executable and configuration appears to be a local method for adding and removing services that run within th...

7.2CVSS7AI score0.00313EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/07/10 12:0 a.m.147 views

📄 Schneider Electric EcoStruxure IT Data Center Expert 8.3 Remote Command Execution

Schneider Electric EcoStruxure IT Data Center Expert versions 8.3 and below have a configuration modification issue where sufficient input sanitization is not performed on the value provided for the hostname of the appliance. The hostname variable can include a command terminator and subsequent...

7.2CVSS7.5AI score0.00313EPSS
Exploits2
Total number of security vulnerabilities50738