Lucene search
K
PacketstormRecent

50653 matches found

Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’267 views

WinterCMS 1.2.2 Cross Site Scripting

Exploit Title: WinterCMS alertdocument.cookie; //P...

4.8CVSS7.1AI score0.01317EPSS
Exploits4
Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’231 views

Montage 1.0 Cross Site Scripting

Exploit Title: Montage 1.0 Hotel Booking & Property Selling - Stored XSS Exploit Author: CraCkEr Date: 13/07/2023 Vendor: Bug Finder Vendor Homepage: https://bugfinder.net/ Software Link: https://bugfinder.net/product/montage-a-complete-solution-for-hotel-booking-property-selling/16 Tested on:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’243 views

WordPress Force Images Download 1.8 CSRF / SSRF

Exploit Author : Etharus Vulnerability : Cross Site Request Forgery to Server Side Request Forgery Impact : internal ip disclosure , file extension bypass, internal port scan. Product Vendor : Nazakat Ali Version Tested : 1.8 Date : 14/07/2023 Fofa Dork :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’281 views

SASS BILLER 1.0 Cross Site Scripting

Exploit Title: SASS BILLER 1.0 - Stored XSS Exploit Author: CraCkEr Date: 12/07/2023 Vendor: Bug Finder Vendor Homepage: https://bugfinder.net/ Software Link: https://bugfinder.net/product/sass-biller-a-sass-based-invoicing-and-billing-platform/19 Tested on: Windows 10 Pro Impact: Manipulate the...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’320 views

ProjeQtOr Project Management System 10.4.1 Cross Site Scripting

Exploit Title: ProjeQtOr Project Management System V10.4.1 - Multiple XSS Version: V10.4.1 Bugs: Multiple XSS Technology: PHP Vendor URL: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV10.4.1.zip/download Date of found: 09.07.2023 Author:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’279 views

Pluck 4.7.18 Remote Code Execution

Exploit Title: Pluck v4.7.18 - Remote Code Execution RCE Application: pluck Version: 4.7.18 Bugs: RCE Technology: PHP Vendor URL: https://github.com/pluck-cms/pluck Software Link: https://github.com/pluck-cms/pluck Date of found: 10-07-2023 Author: Mirabbas Ağalarov Tested on: Linux import reques...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/17 12:0 a.m.β€’220 views

ChainCity Real Estate Investment Platform 1.0 SQL Injection

Exploit Title: ChainCity Real Estate Investment Platform 1.0 - SQL Injection Exploit Author: CraCkEr Date: 12/07/2023 Vendor: Bug Finder Vendor Homepage: https://bugfinder.net/ Software Link: https://script.bugfinder.net/chaincity/ Tested on: Windows 10 Pro Impact: Database Access Description SQL...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/16 12:0 a.m.β€’169 views

Buzzy News Viral Lists Polls And Videos 1.3.1 Insecure Settings

====================================================================================================================================== | Title : Buzzy - News Viral Lists Polls and Videos V 1.3.1 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro /...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/16 12:0 a.m.β€’159 views

BrightCube LMS 2.0.1 SQL Injection

==================================================================================================================================== | Title : BrightCube LMS v2.0.1 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 69.0.332-bi...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/16 12:0 a.m.β€’180 views

brsisCMS 1.0.2 SQL Injection

==================================================================================================================================== | Title : brsisCMS v1.0.2 sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/15 12:0 a.m.β€’139 views

BWD Calendar Manager CMS 0.1.1 SQL Injection

==================================================================================================================================== | Title : bwd calender manager CMS v0.1.1 Auth by pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/15 12:0 a.m.β€’151 views

Bluelaat 1.0 Beta Insecure Direct Object Reference

==================================================================================================================================== | Title : Bluelat V0.1 beta Insecure Direct Object Reference Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/15 12:0 a.m.β€’176 views

Boomchat 3.0 Shell Upload

==================================================================================================================================== | Title : boomchat-v3.0 remote shell upload vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit ...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/15 12:0 a.m.β€’170 views

Business Directory Store Finder Local 1.6.4 Information Disclosure

==================================================================================================================================== | Title : Business Directory Store Finder Local v1.6.4 information disclosure Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / brows...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/15 12:0 a.m.β€’145 views

Brigadasoft CMS 2.1 SQL Injection

==================================================================================================================================== | Title : Brigadasoft CMS v2.1 Auth Bypass Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 63.0.3 32-bit ...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/14 12:0 a.m.β€’257 views

BloodBank 1.0 Cross Site Scripting

====================================================================================================================================== | Title : BloodBank v1.0 - Blood Donor Directory CMS with PayPal Integration XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro /...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/14 12:0 a.m.β€’301 views

Bazaar Social Listing Shopping Web PHP Template 2.3.2 Cross Site Scripting

==================================================================================================================================== | Title : Bazaar Social Listing Shopping Web PHP Template v2.3.2 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/14 12:0 a.m.β€’303 views

Blogator 0.93 Cross Site Scripting

==================================================================================================================================== | Title : Blogator script v 0.93 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/14 12:0 a.m.β€’293 views

Bigware Shop 2.3 Cross Site Scripting

==================================================================================================================================== | Title : Bigware Shop v2.3 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | | Vendor :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’311 views

Bazaar Social Listing Shopping Web PHP Template 2.3.2 Privilege Escalation

==================================================================================================================================== | Title : Bazaar | Social Listing Shopping Web PHP Template v2.3.2 Privilege Escalation Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.P...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’296 views

Blogator Script 0.93 Insecure Settings

==================================================================================================================================== | Title : Blogator script v 0.93 Reinstall default Password Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firef...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’365 views

pfSense Restore RRD Data Command Injection

class MetasploitModule 'pfSense Restore RRD Data Command Injection', 'Description' = %q This module exploits an authenticated command injection vulnerabilty in the "restorerrddata" function of pfSense prior to version 2.7.0 which allows an authenticated attacker with the "WebCfg - Diagnostics:...

8.8CVSS7.1AI score0.79155EPSS
Exploits4
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’299 views

Bayfront CMS 1.0 SQL Injection

==================================================================================================================================== | Title : Bayfront-CMS v1.0 Auth by pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 108.032-bit | |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’266 views

BBAM 1.1 Insecure Direct Object Reference

==================================================================================================================================== | Title : bbam CMS v1.1 unauthorized administrative access Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefo...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’311 views

Bigware-Shop CMS 2.1 Insecure Direct Object Reference

==================================================================================================================================== | Title : Bigware-Shop CMS v2.1 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’302 views

BD-Schools LMS 1.0.2 Cross Site Scripting

==================================================================================================================================== | Title : BD-Schools LMS v1.0.2 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | | Vend...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’316 views

Bloly 1.3 Add Administrator

==================================================================================================================================== | Title : Bloly v1.3 Add admin Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | | Vendor :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’400 views

Blackboard 2.0.2 Database Disclosure

==================================================================================================================================== | Title : blackboard v 2.0.2 Database Disclosure Exploit | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 108.032-bit | ...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’328 views

BBook 5.7 Shell Upload

==================================================================================================================================== | Title : BBook - BookStore Script System with website v5.7 Unrestricted File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro ...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’257 views

BloodBank 1.0 Insecure Direct Object Reference

====================================================================================================================================== | Title : BloodBank v1.0 - Blood Donor Directory CMS with PayPal Integration unauthorized administrative access Vulnerability | | Author : indoushka | | Tested on...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’316 views

Vaidya-Mitra 1.0 SQL Injection

Title: Vaidya-Mitra 1.0 Multiple - SQLi Author: nu11secur1ty Date: 07.12.2023 Vendor: https://mayurik.com/ Software: free: https://www.sourcecodester.com/php/16720/free-hospital-management-system-small-practices.html, https://mayurik.com/source-code/P5890/best-hospital-management-system-in-php...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’286 views

BKMobile CMS 1.5.0 SQL Injection

==================================================================================================================================== | Title : BKMobile-CMS V1.5.0 Blind SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/13 12:0 a.m.β€’286 views

ARTISTRY LIMITED LMS 0.5 SQL Injection

==================================================================================================================================== | Title : ARTISTRY LIMITED LMS v 0.5 Sql Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro | | Vendor :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’290 views

Nedal CMS 1.2 SQL Injection

==================================================================================================================================== | Title : Nedal CMS 1.2 Sql injection vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 63.0.3 32-bit | |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’320 views

Atom CMS 2.0 Directory Traversal

==================================================================================================================================== | Title : AtomCMS 2.0 Directory traversal Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 63.0.3 32-bit |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’310 views

Frappe Framework 13.4.0 Remote Code Execution

Exploit Title: Frappe Framework ERPNext 13.4.0 - Remote Code Execution Authenticated Exploit Author: Sander Ferdinand Date: 2023-06-07 Version: 13.4.0 Vendor Homepage: http://erpnext.org Software Link: https://github.com/frappe/frappe/ Tested on: Ubuntu 22.04 CVE : none Silly sandbox escape. Frap...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’275 views

Asanhamayesh CMS 3.4.6 Directory Traversal

================================================================================================= | Title : Asanhamayesh CMS 3.4.6 Directory traversal Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 63.0.3 32-bit | | Dork : Ψ·Ψ±Ψ§Ψ­ و ΩΎΨ΄ΨͺΫŒΨ¨Ψ§Ω†...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’414 views

Spring Cloud 3.2.2 Remote Command Execution

Exploit Title: Spring Cloud 3.2.2 - Remote Command Execution RCE Date: 07/07/2023 Exploit Author: GatoGamer1155, 0bfxgh0st Vendor Homepage: https://spring.io/projects/spring-cloud-function/ Description: Exploit to execute commands exploiting CVE-2022-22963 Software Link:...

9.8CVSS7.1AI score0.94462EPSS
Exploits36
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’229 views

ArabInfotech L.L.C CMS 2.0 Cross Site Scripting

==================================================================================================================================== | Title : ArabInfotech L.L.C CMS v2.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 66.0.264-bit | ...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’235 views

AtTestimonials CMS 1.2 Missing Authentication

==================================================================================================================================== | Title : AtTestimonials CMS v1.2 Missing Authentication Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’256 views

Avidi Media 2.0 Insecure Settings

==================================================================================================================================== | Title : Avidi Media v2.0 - Ultimate Video, Music, Photo and Gif Sharing Script - nulled Insecure Settings Vulnerability | | Author : indoushka | | Tested on :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’340 views

Architect HTML And Site Builder 2.2.3 File Upload

==================================================================================================================================== | Title : Architect - HTML and Site Builder V 2.2.3 Remote File Upload vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’293 views

XAMPP 8.2.4 Unquoted Service Path

Exploit Title: XAMPP 8.2.4 - Unquoted Path Date: 07/2023 Exploit Author: Andrey Stoykov Version: 8.2.4 Software Link: https://sourceforge.net/projects/xampp/files/XAMPP%20Windows/8.2.4/xampp-windows-x64-8.2.4-0-VS16-installer.exe Tested on: Windows Server 2022 Blog: http://msecureltd.blogspot.com...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’216 views

Banner RotatorCMS 1.0 Database Disclosure

==================================================================================================================================== | Title : Banner RotatorCMS v1.0 Database Disclosure Exploit | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro / browser : Mozilla firefox 108.032-bi...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’297 views

WordPress User Registration 3.0.2 Arbitrary File Upload

Description: User Registration = 3.0.2 – Authenticated Subscriber+ Arbitrary File Upload Affected Plugin: User Registration – Custom Registration Form, Login Form And User Profile For WordPress Plugin Slug: user-registration Affected Versions: = 3.0.2 CVE ID: CVE-2023-3342 CVSS Score: 9.9 Critica...

7.1AI score0.06786EPSS
Exploits2
Packet Storm
Packet Storm
β€’added 2023/07/12 12:0 a.m.β€’219 views

ARTISTRY LIMITED LMS 0.5 Insecure Settings

==================================================================================================================================== | Title : ARTISTRY LIMITED LMS v 0.5 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FranΓ§ais V.Pro | | Vendor :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/11 12:0 a.m.β€’268 views

Articart 2.0.1 Cross Site Scripting / Open Redirection

β”Œβ”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β” β”‚β”‚ C r a C k E r β”Œβ”˜ β”Œβ”˜ T H E C R A C K O F E T E R N A L M I G H T β”‚β”‚ β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜β”˜ β”Œβ”€β”€β”€β”€ From The Ashes and Dust Rises An...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/11 12:0 a.m.β€’270 views

AVG Anti Spyware 7.5 Unquoted Service Path

Exploit Title: AVG Anti Spyware 7.5 - Unquoted Service Path Date: 06/07/2023 Exploit Author: Idan Malihi Vendor Homepage: https://www.avg.com Software Link: https://www.avg.com/en-ww/homepagepc Version: 7.5 Tested on: Microsoft Windows 10 Pro CVE : CVE-2023-36167 PoC C:\Userswmic service get...

7.1AI score
Exploits3
Packet Storm
Packet Storm
β€’added 2023/07/11 12:0 a.m.β€’359 views

ILIAS eLearning Platform XSS / Remote Code Execution

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple high risk vulnerabilities product: ILIAS eLearning platform vulnerable version: see section "Vulnerable version" below fixed version: see section "Solution" belo...

7.1AI score
Exploits0
Packet Storm
Packet Storm
β€’added 2023/07/11 12:0 a.m.β€’587 views

Boomerang Parental Control App Cross Site Scripting / Privilege Escalation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Stored XSS & Privilege Escalation product: Boomerang Parental Control App vulnerable version: =13.83 only issue 1, rest not fixed CVE number: CVE-2023-36620, CVE-2023-366...

7.1AI score0.00104EPSS
Exploits2
Total number of security vulnerabilities50653