Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.261 views

LBT-T300-mini1 Buffer Overflow

include include define MAXLEN 256 define BUFFEROVERRUNLENGTH 50 define SHELLCODELENGTH 32 // NOP sled to increase the chance of successful shellcode execution char nopsledSHELLCODELENGTH =...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.257 views

Insurance Management System PHP And MySQL 1.0 Cross Site Scripting

Exploit Title:Insurance Management System PHP and MySQL 1.0 - Multiple Stored XSS Date: 2024-02-08 Exploit Author: Hakkı TOKLU Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/16995/insurance-management-system-php-mysql.html Version: 1.0 Tested on:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.280 views

LimeSurvey Community 5.3.32 Cross Site Scripting

Exploit Title: Stored Cross-Site Scripting XSS in LimeSurvey Community Edition Version 5.3.32+220817 Exploit Author: Subhankar Singh Date: 2024-02-03 Vendor: LimeSurvey Software Link: https://community.limesurvey.org/releases/ Version: LimeSurvey Community Edition Version 5.3.32+220817 Tested on:...

7.2AI score0.00677EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.298 views

Orange Station 1.0 Shell Upload

Title: ORANGE STATION-1.0 File Upload Remote Code Execution Vulnerability Author: nu11secur1ty Date: 03/26/2024 Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/15485/garage-management-system-using-phpmysql-source-code.html Reference:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.330 views

Craft CMS 4.4.14 Remote Code Execution

!/usr/bin/env python3 coding: utf-8 Exploit Title: Craft CMS unauthenticated Remote Code Execution RCE Date: 2023-12-26 Version: 4.0.0-RC1 - 4.4.14 Vendor Homepage: https://craftcms.com/ Software Link: https://github.com/craftcms/cms/releases/tag/4.4.14 Tested on: Ubuntu 22.04.3 LTS Tested on:...

10CVSS7AI score0.92918EPSS
Exploits10
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.282 views

MobileShop Master 1.0 SQL Injection

Exploit Title: MobileShop master v1.0 - SQL Injection Vuln. + Date: 2024-13-03 + Exploit Author: "HAZIM ARBAŞ" from EMA Security LTD - Siber Güvenlik ve Bilişim Hizmetleri https://emasecurity.com + Vendor Homepage:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.369 views

Bludit 3.13.0 Cross Site Scripting

Exploit Title: Bludit 3.13.0 - Cross Site Scripting XSS Exploit Author: Gökhan ŞENŞÜKÜR Date: 29/02/2024 Vendor Homepage: https://www.bludit.com Software Link: https://www.bludit.com/releases/bludit-3-13-0.zip Version: bludit-3-13-0 Tested on: Windows TECHNICAL DETAILS & POC...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.362 views

Nagios XI 2024R1.01 SQL Injection

Exploit Title: NAGIOS XI SQLI Google Dork: if applicable Date: 02/26/2024 Exploit Author: Jarod Jaslow MAWK https://www.linkedin.com/in/jarod-jaslow-codename-mawk-265144201/ Vendor Homepage: https://www.nagios.com/changelog/nagios-xi Software Link: https://github.com/MAWK0235/CVE-2024-24401...

7.1AI score0.45884EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/03/22 12:0 a.m.361 views

Win32.STOP.Ransomware (Smokeloader) MVID-2024-0676 Remote Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/3b9e9e130d52fe95c8be82aa4b8feb74.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Win32.STOP.Ransomware smokeloader Vulnerability: Remote Code Execution MITM Family: Stop...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/22 12:0 a.m.315 views

Task Management System 1.0 SQL Injection

Exploit Title: SourceCodester PHP Task Management System 1.0 update-employee.php - SQL Injection Date: 22 March 2024 Exploit Author: Gnanaraj Mauviel @0xm3m Vendor Homepage: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html Software Link:...

7.4AI score0.0093EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/21 12:0 a.m.598 views

OpenNMS Horizon 31.0.7 Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenNMS Horizon Authenticated RCE', 'Description' = %q This module exploits built-in functionality in OpenNMS Horizon in order to execute arbitra...

8.2CVSS7.4AI score0.02951EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.281 views

Lektor Static CMS 3.3.10 Arbitrary File Upload / Remote Code Execution

Exploit Title: Lektor static content management system Version: 3.3.10 Arbitrary File upload Date: 20/03/2024 Exploit Author: kai6u Vendor Homepage: https://www.getlektor.com/ Software Link: https://github.com/lektor/lektor/releases/tag/v3.3.10 Version: 3.3.10 Tested on: Ubuntu 22.04 Summary:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.416 views

Hitachi NAS SMU 14.8.7825 Information Disclosure

Exploit Title: Hitachi NAS HNAS System Management Unit SMU 14.8.7825 - Information Disclosure CVE: CVE-2023-6538 Date: 2023-12-13 Exploit Author: Arslan Masood @arszilla Vendor: https://www.hitachivantara.com/ Version: --id --sso " Create --host argument: parser.addargument "--host", required=Tru...

7.6CVSS7.4AI score0.01583EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.465 views

Simple Task List 1.0 SQL Injection

Exploit Title: Simple Task List 1.0 - 'status' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/simple-task-list-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/12/SimpleTaskListInPHPWithSourceCode.zip Version: 1.0...

6.5CVSS7.4AI score0.00583EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.418 views

Blood Bank 1.0 SQL Injection

Exploit Title: Blood Bank 1.0 - 'bid' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/11/BloodBankInPHPWithSourcecode.zip Version: 1.0 Tested on:...

7.8CVSS7.4AI score0.00795EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.484 views

Teacher Subject Allocation Management System 1.0 SQL Injection

Exploit Title: Teacher Subject Allocation Management System 1.0 - 'searchdata' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://phpgurukul.com/teacher-subject-allocation-system-using-php-and-mysql Software Link:...

7.5CVSS7.4AI score0.01079EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.453 views

Employee Management System 1.0 SQL Injection

Exploit Title: SQL Injection vulnerability in Employee Management System. Date: 20-03-2024 Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html Version: 1....

7.4AI score0.01229EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.230 views

WEBIGniter 28.7.23 Cross Site Scripting

Title: WEBIGniter v28.7.23 XSS Author: RedTeamer IT Security, Mesut Cetin Date: 09/04/2023 Vendor: https://webigniter.net/ Software: https://webigniter.net/demo Reference: https://portswigger.net/web-security/cross-site-scripting/stored Description: During the user creation process, the 'yourname...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.308 views

SurveyJS Survey Creator 1.9.132 Cross Site Scripting

Details: Cross Site Scripting vulnerability in Survey JS Survey Creator v.1.9.132 and before allows an attacker to execute arbitrary code via the input field parameters of the creator survey section. ------------------------------------------ Vulnerability Type Cross Site Scripting XSS...

7.4AI score0.00508EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.305 views

Quick.CMS 6.7 SQL Injection

Exploit Title: Quick.CMS 6.7 SQL Injection Login Bypass Google Dork: N/A Date: 02-03-2024 Exploit Author: ./H4X.Forensics - Diyar Vendor Homepage: https://www.opensolution.org Software Link: https://opensolution.org/download/home.html?sFile=Quick.Cmsv6.7-en.zip Version: 6.7 Tested on: Windows CVE...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.271 views

Tramyardg Autoexpress 1.3.0 Authentication Bypass

Exploit Title: tramyardg autoexpress - Authentication Bypass Google Dork: N/A Date: 11/28/2023 Exploit Author: Scott White Vendor Homepage: https://github.com/tramyardg/autoexpress Version: v1.3.0 Tested on: Ubuntu 22.04.3 LTS + Apache/2.4.52 CVE : CVE-2023-48902 References:...

7.4AI score0.01277EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.253 views

Tramyardg Autoexpress 1.3.0 Cross Site Scripting

Exploit Title: tramyardg autoexpress - Stored Cross-Site Scripting XSS Google Dork: N/A Date: 11/28/2023 Exploit Author: Scott White Vendor Homepage: https://github.com/tramyardg/autoexpress Version: v1.3.0 Tested on: Ubuntu 22.04.3 LTS + Apache/2.4.52 CVE : CVE-2023-48903 References:...

7.4AI score0.00571EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.267 views

Tramyardg Autoexpress 1.3.0 SQL Injection

Exploit Title: tramyardg autoexpress - SQL Injection Google Dork: N/A Date: 11/28/2023 Exploit Author: Scott White Vendor Homepage: https://github.com/tramyardg/autoexpress Version: v1.3.0 Tested on: Ubuntu 22.04.3 LTS + Apache/2.4.52 CVE : CVE-2023-48901 References:...

7.4AI score0.01031EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.297 views

Backdrop CMS 1.23.0 Cross Site Scripting

Exploit Title: Backdrop CMS 1.23.0 - Stored Cross-Site Scripting - Post Body Field Date: 2023-08-21 Exploit Author: Sinem Şahin Vendor Homepage: https://backdropcms.org/ Version: 1.23.0 Tested on: Windows & XAMPP == Tutorial http://HOST/backdrop/node/add/post 2- Write your xss payload in the body...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.269 views

ZoneMinder Snapshots Remote Code Execution

import re import requests from bs4 import BeautifulSoup import argparse import base64 Exploit Title: Unauthenticated RCE in ZoneMinder Snapshots Date: 12 December 2023 Discovered by : @Unblvr1 Exploit Author: Ravindu Wickramasinghe @rvizx9 Vendor Homepage: https://zoneminder.com/ Software Link:...

9.8CVSS7.4AI score0.80462EPSS
Exploits11
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.291 views

Gibbon LMS 26.0.00 PHP Deserialization / Code Execution

Exploit Title: Gibbon LMS has a PHP Deserialization vulnerability on the v26.0.00 version Date: 22.01.2024 Exploit Author: SecondX.io Research TeamAli Maharramli,Fikrat Guliev,Islam Rzayev Vendor Homepage: https://gibbonedu.org/ Software Link: https://github.com/GibbonEdu/core Version: v26.0.00...

7.4AI score0.5132EPSS
Exploits7
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.343 views

WordPress File Upload Cross Site Scripting

Exploit Title: WordPress File Upload 4.23.3 Stored XSS CVE 2023-4811 Date: 18 December 2023 Exploit Author: Faiyaz Ahmad Vendor Homepage: https://wordpress.com/ Version: 4.23.3 CVE : CVE 2023-4811 Proof Of Concept: 1. Login to the wordpress account 2. Add the following shortcode to a post in "Fil...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/19 12:0 a.m.352 views

Atlassian Confluence 8.5.3 Remote Code Execution

Exploit Title: CVE-2023-22527: Atlassian Confluence RCE Vulnerability Date: 25/1/2024 Exploit Author: MaanVader Vendor Homepage: https://www.atlassian.com/software/confluence Software Link: https://www.atlassian.com/software/confluence Version: 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x, 8.5.0-8.5.3 Teste...

10CVSS7.4AI score0.99984EPSS
Exploits32
Packet Storm
Packet Storm
added 2024/03/18 12:0 a.m.318 views

Gasmark Pro 1.0 Shell Upload

Title: GASMARK PRO-1.0 File Upload RCE Author: nu11secur1ty Date: 03/17/2024 Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/15586/gas-agency-management-system-project-php-free-download-source-code.html Reference: https://portswigger.net/web-security/file-upload...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/18 12:0 a.m.286 views

UPS Network Management Card 4 Path Traversal

Exploit Title: UPS Network Management Card 4 - Path Traversal Google Dork: inurl:nmc inurl:logon.htm Date: 2023-12-19 Exploit Author: Víctor García Vendor Homepage: https://www.apc.com/ Version: 4 Tested on: Kali Linux CVE: N/A PoC: curl -k...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/18 12:0 a.m.329 views

Nokia BMC Log Scanner 13 Command Injection

Exploit Title: Nokia BMC Log Scanner Remote Code Execution Google Dork: N/A Date: November 29, 2023 Exploit Author: Carlos Andres Gonzalez, Matthew Gregory Vendor Homepage: https://www.nokia.com/ Software Link: N/A Version: 13 Tested on: Linux CVE : CVE-2022-45899 Description The BMC Log Scanner...

7.4AI score0.00826EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/18 12:0 a.m.506 views

vm2 3.9.19 Sandbox Escape

/ Exploit Title: vm2 Sandbox Escape vulnerability Date: 23/12/2023 Exploit Author: Calil Khalil & Adriel Mc Roberts Vendor Homepage: https://github.com/patriksimek/vm2 Software Link: https://github.com/patriksimek/vm2 Version: vm2 = 3.9.19 Tested on: Ubuntu 22.04 CVE : CVE-2023-37466 / const VM =...

10CVSS7.4AI score0.02342EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/15 12:0 a.m.387 views

Financials By Coda Cross Site Scripting

Vulnerability type: Cross-site Scripting Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: HTTP/2 Host: TIMELINE – 30/10/2023: Vulnerability found – 02/11/2023: Vendor informed – 05/12/2023:...

7.4AI score0.01791EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/03/15 12:0 a.m.347 views

Membership Management System 1.0 SQL Injection / Shell Upload

from requeststoolbelt.multipart.encoder import MultipartEncoder import requests import string import random import os ======================================================================================================== Application: Membership Management System Bugs: SQL injection + Insecure...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/15 12:0 a.m.338 views

Financials By Coda Authorization Bypass

Vulnerability type: Incorrect Access Control Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: "user" : "", "password" : "", "company" : "", "newPassword" : "newpasswordfortargeteduser",...

7.4AI score0.0073EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/03/15 12:0 a.m.284 views

HALO 2.13.1 CORS Issue

Title: HALO-2.13.1 Cross-origin resource sharing: arbitrary origin trusted Author: nu11secur1ty Date: 03/15/2024 Vendor: https://www.halo.run/ Software: https://github.com/halo-dev/halo Reference: https://portswigger.net/web-security/cors Description: The application implements an HTML5...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.403 views

Backdoor.Win32.Emegrab.b MVID-2024-0675 Buffer Overflow

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/19a14d0414aec62ef38378de2e8b259d.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Emegrab.b Vulnerability: Remote Stack Buffer Overflow SEH Family: Emegrab...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.348 views

GitLab CE/EE Password Reset

Exploit Title: GitLab CE/EE 16.7.2 - Password Reset Exploit Author: Sebastian Kriesten 0xB455 Twitter: https://twitter.com/0xB455 Date: 2024-01-12 Vendor Homepage: gitlab.com Vulnerability disclosure: https://about.gitlab.com/releases/2024/01/11/critical-security-release-gitlab-16-7-2-released/...

10CVSS7.4AI score0.94955EPSS
Exploits16
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.1534 views

JetBrains TeamCity Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'JetBrains TeamCity Unauthenticated Remote Code Execution', 'Description' = %q This module exploits an authentication bypass vulnerability in...

9.8CVSS7.4AI score0.99991EPSS
Exploits25
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.436 views

Honeywell PM43 Remote Code Execution

Exploit Title: Honeywell PM43 ' if htmlstartindex != -1: return responsetext:htmlstartindex else: return responsetext except requests.exceptions.RequestException as e: return f"Error: e" def main: parser = argparse.ArgumentParserdescription='Command Injection PoC for Honeywell PM43 Printers'...

9.9CVSS7.4AI score0.33094EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.305 views

SolarView Compact 6.00 Command Injection

Exploit Title: SolarView Compact 6.00 - Command Injection - Shodan Dork: http.html:"solarview compact" - Exploit Author: ByteHunter - Email: [email protected] - Version: 6.00 - Tested on: 6.00 - CVE : CVE-2023-23333 import argparse import requests def vulncheckipaddress, port: url =...

9.8CVSS7.4AI score0.99273EPSS
Exploits9
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.270 views

Ruijie Switch PSG-5124 26293 Remote Code Execution

Exploit Title: Ruijie Switch PSG-5124 26293 - Remote Code Execution RCE - Shodan Dork: http.htmlhash:-1402735717 - Fofa Dork: body="img/freeloginge.gif" && body="./img/loginbg.gif" - Exploit Author: ByteHunter - Email: [email protected] - Version: PSG-5124LINK SOFTWARE RELEASE:26293 - Tested...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.224 views

Vinchin Backup And Recovery 7.2 Command Injection

CVE ID: CVE-2024-25228 Title: Authenticated Command Injection Vulnerability in ManoeuvreHandler.class.php of Vinchin Backup & Recovery Versions 7.2 and Earlier Description: A critical security vulnerability has been discovered in the getVerifydiyResult function within the ManoeuvreHandler.class.p...

7.4AI score0.25887EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.383 views

StimulusReflex 3.5.0 Arbitrary Code Execution

StimulusReflex CVE-2024-28121 Arbitrary code execution in StimulusReflex. This affects version 3.5.0 up to and including 3.5.0.rc2 and v3.5.0.pre10. Vulnerable code excerpt stimulusreflex/lib/stimulusreflex/reflex.rb Invoke the reflex action specified by name and run all callbacks def processname...

8.8CVSS7.4AI score0.01555EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.346 views

Viessmann Vitogate 300 2.1.3.0 Remote Code Execution

Exploit Title: Viessmann Vitogate 300 = 2.1.3.0 - Remote Code Execution RCE - Shodan Dork: http.title:'Vitogate 300' - Exploit Author: ByteHunter - Email: [email protected] - Version: versions up to 2.1.3.0 - Tested on: 2.1.1.0 - CVE : CVE-2023-5702 & CVE-2023-5222 import argparse import...

9.8CVSS9.8AI score0.74697EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.397 views

Checkmk Agent 2.0.0 / 2.1.0 / 2.2.0 Local Privilege Escalation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Local Privilege Escalation via writable files product: Checkmk Agent vulnerable version: 2.0.0, 2.1.0, 2.2.0 fixed version: 2.1.0p40, 2.2.0p23, 2.3.0b1, 2.4.0b1 CVE numbe...

8.8CVSS7.4AI score0.00342EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.1033 views

Fortinet FortiOS Out-Of-Bounds Write

CVE-2024-21762 out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability Vulnerability ===== FortiGate released a version update in February, fixing multiple medium- and high-risk vulnerabilities. One of the severe-level vulnerabilities is an unauthorized out-of-bounds write...

9.8CVSS7.4AI score0.85689EPSS
Exploits20
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.318 views

JetBrains TeamCity 2023.05.3 Remote Code Execution

Exploit Title: JetBrains TeamCity 2023.05.3 - Remote Code Execution RCE - Shodan Dork: http.title:TeamCity , http.favicon.hash:-1944119648 - Exploit Author: ByteHunter - Vendor: JetBrains - Email: [email protected] - vendor: JetBrains - Version: versions before 2023.05.4 - Tested on:...

9.8CVSS7.4AI score0.99979EPSS
Exploits17
Packet Storm
Packet Storm
added 2024/03/13 12:0 a.m.272 views

OSGi 3.7.2 Remote Code Execution

!/usr/bin/python Exploit Title: OSGi v3.7.2 Console RCE Date: 2023-07-28 Exploit Author: Andrzej Olchawa, Milenko Starcik, VisionSpace Technologies GmbH Exploit Repository: https://github.com/visionspacetec/offsec-osgi-exploits.git Vendor Homepage: https://eclipse.dev/equinox Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/03/13 12:0 a.m.400 views

VMware Cloud Director 10.5 Authentication Bypass

Exploit Title: VMware Cloud Director | Bypass identity verification Google Dork: non Date: 12/06/2023 Exploit Author: Abdualhadi khalifa Version: 10.5 CVE : CVE-2023-34060 import requests import paramiko import subprocess import socket import argparse import threading Define a function to check i...

9.8CVSS7.4AI score0.01345EPSS
Exploits4
Total number of security vulnerabilities50738