39001 matches found
Metform Elementor Contact Form Builder v3.1.2 - Unauthenticated Stored Cross-Site Scripting Vulnerab
Exploit Title: Metform Elementor Contact Form Builder v3.1.2 - Unauthenticated Stored Cross-Site Scripting XSS Google Dork: inurl:metform-form intext:textarea|message Exploit Author: Mohammed Chemouri https://de.linkedin.com/in/chemouri Vendor Homepage: https://wpmet.com/plugin/metform/ Software...
GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion Vulnerability
ADVISORY INFORMATION Exploit Title: GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion Date of found: 11 Jun 2022 Application: GLPI Glpiinventory = 1.0.1 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link:...
Lavasoft web companion 4.1.0.409 - (DCIservice) Unquoted Service Path Vulnerability
Exploit Title: Lavasoft web companion 4.1.0.409 - 'DCIservice' Unquoted Service Path Author: P4p4 M4n3 Vendor Homepage: https://webcompanion.com/en/ Version 4.1.0.409 Tested on: Microsoft Windows Server 2019 Datacenter x64 Description: Lavasoft 4.1.0.409 install DCIservice as a service with an...
101news By Mayuri K 1.0 SQL Injection Vulnerability
Title: 101news-by-Mayuri-K-1.0 Multiple-SQLi Author: nu11secur1ty Vendor: https://mayurik.com/ Software: https://mayurik.com/source-code/P4030/news-portal-project-in-php Reference: https://portswigger.net/web-security/sql-injection Description: The comment parameter appears to be vulnerable to SQ...
Open Web Analytics 1.7.3 - Remote Code Execution Exploit
Exploit Title: Open Web Analytics 1.7.3 - Remote Code Execution RCE Exploit Author: Jacob Ebben Vendor Homepage: https://www.openwebanalytics.com/ Software Link: https://github.com/Open-Web-Analytics Version: 1.7.4 Tested on: Linux CVE : CVE-2022-24637 import argparse import requests import base6...
News247 News Magazine 1.0 Cross Site Scripting Vulnerability
Exploit Title: News247 - News Magazine CMS v1.0 – Stored Cross Site Scripting XSS Exploit Author: Ravinder Verma Vendor Homepage: https://www.sourcecodester.com/php/14952/news247-news-magazine-php-script.html Software Link:...
Online Fire Reporting System 1.0 SQL injection Vulnerability
Title: Online Fire Reporting System 1.0 SQLi Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15346/online-fire-reporting-system-phpoop-free-source-code.html Reference:...
Home Owners Collection Management System 1.0 - Remote Code Execution Vulnerability
Exploit Title: Home Owners Collection Management System 1.0 - Remote Code Execution RCE Authenticated Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link:...
FLAME II MODEM USB - Unquoted Service Path Vulnerability
Exploit Title: FLAME II MODEM USB - Unquoted Service Path Discovery by: Ismael Nava Vendor Homepage: https://www.telcel.com/personas/equipos/modems-usb/alcatel/x602a Software Links : N/A Is a BAM Tested Version: N/A Vulnerability Type: Unquoted Service Path Tested on OS: Windows 10 64 BITS C:wmic...
AWebServer GhostBuilding 18 - Denial of Service Exploit
Exploit Title: AWebServer GhostBuilding 18 - Denial of Service DoS Exploit Author: Andres Ramos Invertebrado Vendor Homepage: http://sylkat-tools.rf.gd/awebserver.htm Software Link: https://play.google.com/store/apps/details?id=com.sylkat.apache&hl=en Version: AWebServer GhostBuilding 18 Tested o...
OpenVPN Monitor 1.1.3 Cross Site Request Forgery Vulnerability
OpenVPN Monitor versions 1.1.3 and below suffer from a cross site request forgery vulnerability that allows an attacker to disconnect arbitrary VPN clients. Product: openvpn-monitor Vendor: https://github.com/furlongm/openvpn-monitor CSNC ID: CSNC-2021-011 CVE ID: CVE-2021-31604 Subject: Cross-Si...
BSCW Server XML Injection Vulnerability
BSCW Server versions 7.4.2 and below, 7.3.2 and below, 5.2.3 and below, 5.1.9 and below, and 5.0.11 and below suffer from an XML tag injection vulnerability. ======================================================================= title: XML Tag injection product: BSCW Server vulnerable version:...
SecZetta NEProfile 3.3.11 Remote Code Execution Vulnerability
Exploit Title: NEProfile - Remote Code Execution Date: 5/13/2020 Vendor Homepage: https://seczetta.com Software Link: https://seczetta.com/product/ne-profile Version: 3.3.11 Tested on: 3.3.11 Exploit Author: Josh Sheppard Exploit Contact: ghost a t undervurse dotcom Exploit Technique: Remote CVE...
Freelance Cockpit CRM 3.3.1 SQL Injection Vulnerability
Exploit for php platform in category web applications =========================================================================================== Exploit Title: Freelance Cockpit CRM - SQL Inj. Dork: N/A Date: 17-05-2019 Exploit Author: Mehmet EMIROGLU Vendor Homepage:...
D-Link DWL-2600AP Authenticated OS Command Injection Vulnerability
D-Link DWL-2600AP suffers from an authentication OS command injection vulnerability via the tftp restore functionality. Document Title: =============== D-Link DWL-2600AP - Authenticated OS Command Injection Restore Configuration Product & Service Introduction: =============================== The...
Adobe ColdFusion 2018 - Arbitrary File Upload Vulnerability
Exploit for multiple platform in category web applications Exploit Title: Unrestricted file upload in Adobe ColdFusion 2018 Google Dork: ext:cfm Exploit Author: Pete Freitag of Foundeo Reversed: Vahagn vah13 Vardanian Vendor Homepage: adobe.com Version: 2018 Tested on: Adobe ColdFusion 2018 CVE :...
Pedidos 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Pedidos 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://obedalvarado.pw/ Software Link: https://netcologne.dl.sourceforge.net/project/sistema-web-de-pedidos-php/pedidos.zip Version: 1.0 Category: Webapps...
Linux Kernel 2.6.x / 3.10.x / 4.14.x (x64) - Mutagen Astronomy Local Privilege Escalation Exploit
Exploit for linux platform in category local exploits / EDB-Note: Systems with less than 32GB of RAM are unlikely to be affected by this issue, due to memory demands during exploitation. EDB Note: poc-exploit.c / / poc-exploit.c for CVE-2018-14634 Copyright C 2018 Qualys, Inc. This program is fre...
ElasticSearch Remote Code Execution Exploit
Exploit for multiple platform in category web applications body padding-top: 50px; .starter-template padding: 40px 15px; text-align: center; function esinject var readfile; var writefile; readfile = functionfilename return "import java.util.;\nimport java.io.;\nnew Scannernew File"" + filename +...
SyncBreeze 15.2.24 - (login) Denial of Service Exploit
Exploit Title: SyncBreeze 15.2.24 -'login' Denial of Service Exploit Author: mohamed youssef Vendor Homepage: https://www.syncbreeze.com/ Software Link: https://www.syncbreeze.com/setups/syncbreezesetupv15.4.32.exe Version: 15.2.24 Tested on: windows 10 64-bit import socket import time...
ZTE-H108NS Router - Stack Buffer Overflow Exploit
Exploit Title: ZTE-H108NS - Stack Buffer Overflow DoS Exploit Author: George Tsimpidas Vendor: https://www.zte.com.cn/global/ Firmware: H108NSV1.0.7uZRDGR2A68 Usage: python zte-exploit.py CVE: N/A Tested on: Debian 5.18.5 !/usr/bin/python3 import sys import socket from time import sleep host =...
Senayan Library Management System 9.2.1 SQL Injection Vulnerability
Title: Senayan Library Management System v9.2.1 a.k.a SLIMS 9 SQLi Author: nu11secur1ty Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/tag/v9.2.1 Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/slims.web.id/SLIMS-9.2.1/SQLi...
Senayan Library Management System 9.1.1 Cross Site Scripting Vulnerability
Title: Senayan Library Management System v9.1.1 a.k.a SLIMS 9 XSS-Reflected - PHPSESSID Hijacking + inserting webp image Author: nu11secur1ty Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/tag/v9.1.1 Reference:...
Automotive Shop Management System 1.0 SQL Injection Vulnerability
Title: ASMS - PHP by: oretnom23 v1.0 SQLi Author: nu11secur1ty Vendor: https://github.com/oretnom23, https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/download-code?nid=15312&title=Automotive+Shop+Management+System+in+PHP%2FOOP+Free+Source+Code Reference:...
pfBlockerNG 2.1.4_26 Shell Upload Exploit
!/usr/bin/env python3 Original Advisory: https://www.ihteam.net/advisory/pfblockerng-unauth-rce-vulnerability/ import argparse import requests import time import sys import urllib.parse from requests.packages.urllib3.exceptions import InsecureRequestWarning...
Windows/x86 - XOR/DEC/NOT/ROR encrypted / encoded + null free reverse tcp Shellcode (840 bytes)
Windows/x86 - XOR/DEC/NOT/ROR XDNR encrypted / encoded + null free reverse tcp 192.168.201.11:4444 Shellcode 840 bytes / \ / /\ \ \ \ \ \ / | | \ / | | / / \ | / | \ | \ //\ / /| /| / / / / / X0R Cryptor with DEC/N0T/R0R encoder plus random byte insertion Author: @xen0vas / include...
Private Internet Access 3.3 - (pia-service) Unquoted Service Path Vulnerability
Exploit Title: Private Internet Access 3.3 - 'pia-service' Unquoted Service Path Exploit Author: Saud Alenazi Vendor Homepage: https://www.privateinternetaccess.com Software Link: https://www.privateinternetaccess.com/download Version: 3.3.0.100 Tested: Windows 10 x64 Contact:...
10-Strike Network Inventory Explorer Pro 9.31 - (srvInventoryWebServer) Unquoted Service Path
Exploit Title: 10-Strike Network Inventory Explorer Pro 9.31 - 'srvInventoryWebServer' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://www.10-strike.com/ Software Link: https://www.10-strike.com/networkinventoryexplorer/network-inventory-pro-setup.exe Tested Version:...
Directory Management System 1.0 - SQL Injection Authentication Bypass Vulnerability
Exploit Title: Directory Management System 1.0 - SQL Injection Authentication Bypass Exploit Author: SUDONINJA Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/directory-management-system-using-php-and-mysql/ Version: v1.0 Tested on: Windows 10 Steps-To-Reproduce: St...
Windows/x86 - Null-Free WinExec Calc.exe Shellcode (195 bytes)
Title: Windows\x86 - Null-Free WinExec Calc.exe Shellcode 195 bytes Shellcode Author: Bobby Cooke Technique: PEB & Export Directory Table Tested On: Windows 10 Pro x86 10.0.18363 Build 18363 start: ; Create a new stack frame mov ebp, esp ; Set base stack pointer for new stack-frame sub esp, 0x20 ...
Sony Playstation 4 (PS4) < 6.72 - WebKit Code Execution Exploit
Exploit for hardware platform in category web applications / Sony Playstation 4 PS4 6.72 - WebKit Code Execution Exploit badhoist ============ Exploit implementation of CVE-2018-4386. Obtains addrof/fakeobj and arbitrary read/write primitives. Supports PS4 consoles on 6.XX. May also work on older...
Atlassian Fisheye / Crucible 4.5.2 Code Execution Vulnerability
Atlassian Fisheye and Crucible versions 4.5.0 through 4.5.2 suffer from a code execution vulnerability. This email refers to the advisory found at https://confluence.atlassian.com/x/aS5sO and https://confluence.atlassian.com/x/Zi5sO . CVE ID: CVE-2018-5223. Product: Fisheye and Crucible. Affected...
Ubiquiti Networks UniFi Cloud Key Firmware 0.6.1 Command Injection Vulnerability
Exploit for hardware platform in category web applications ======================================================================= title: Authenticated Command Injection product: Ubiquiti Networks UniFi Cloud Key vulnerable version: Firmware v0.6.1 fixed version: Firmware v0.6.4 CVE number: impac...
View Photo (viewphoto.php) SQL Injection Vulnerability
Exploit for php platform in category web applications ====================================================== View Photo viewphoto.php SQL Injection Vulnerability ====================================================== + Title:View Photo viewphoto.php? SQL-i Vulnerability + Author: RoAdKiLlEr +...
DoceboLMS <= 2.0.4 connector.php Shell Upload Exploit
Exploit for unknown platform in category web applications ===================================================== DoceboLMS DoceboLMS body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR: crosshair; color: 1CB081; img background-color: FFFFFF !important...
Kemp LoadMaster Local sudo Privilege Escalation Exploit
This Metasploit module abuses a feature of the sudo command on Progress Kemp LoadMaster. Certain binary files are allowed to automatically elevate with the sudo command. This is based off of the file name. Some files have this permission are not write-protected from the default bal user. As such,...
Companymaps 8.0 SQL Injection Vulnerability
Exploit Title: Unauthenticated SQL injection - Exploit Author: Lucas Noki 0xPrototype - Vendor Homepage: https://github.com/vogtmh - Software Link: https://github.com/vogtmh/cmaps - Version: 8.0 - Tested on: Mac, Windows, Linux - CVE : CVE-2023-29809 Description: The vulnerability found is an SQL...
POLR URL 2.3.0 - Shortener Admin Account Takeover Exploit
Exploit Title: POLR URL 2.3.0 - Shortener Admin Takeover Exploit Author: p4kl0nc4t Vendor Homepage: - Software Link: https://github.com/cydrobolt/polr Version: 2.3.0 Tested on: Linux CVE : CVE-2021-21276 import json import requests payload = 'acctusername': 'admin', 'acctpassword': 'password',...
Microsoft Office Project Universal Silent Builder Exploit
0day exploit is a program that injects any executable formatted file .exe into the desired project .mpp file. The exe is automatically executed when the project file is opened...
Fast Food Ordering System 1.0 SQL Injection Vulnerability
Title: Fast Food Ordering System 1.0 SQLi Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15366/fast-food-ordering-system-phpoop-free-source-code.html Reference:...
minewebcms 1.15.2 - Cross-site Scripting Vulnerability
Exploit Title: minewebcms 1.15.2 - Cross-site Scripting XSS Google Dork: NA Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://mineweb.org/ Software Link: https://github.com/mineweb/minewebcms Version: 1.15.2 Tested on: KALI OS CVE : CVE-2022-1163 --------------- Steps to...
FFS Colibri Controller Module 1.8.19.8580 Directory Traversal Vulnerability
============== Author ============== = Name: Momen Eldawakhly Cyber Guy = Company: Cypro.se ====================================== ============== Product ============== = Vendor: Franklin Fueling Systems = Product: FFS Colibri Controller Module = Version: 1.8.19.8580...
Ethercreative Logs 3.0.3 Path Traversal Vulnerability
======================================================================= title: Authenticated Path Traversal product: Ethercreative Logs plugin for Craft CMS vulnerable version: =3.0.4 CVE number: CVE-2022-23409 impact: Medium homepage: https://github.com/ethercreative/logs found: 2021-07-06 by:...
TRIGONE Remote System Monitor 3.61 Unquoted Service Path Vulnerability
Exploit Title: TRIGONE Remote System Monitor 3.61 Unquoted Service Path Discovery by: Yehia Elghaly Vendor Homepage: https://www.trigonesoft.com/ Software Link: https://www.trigonesoft.com/download/RemoteSystemmonitorServer3.61x86Setup.exe Tested Version: 3.61 Vulnerability Type: Unquoted Service...
Dairy Farm Shop Management System 1.0 - SQL Injection Authentication Bypass Vulnerability
Exploit Title: Dairy Farm Shop Management System 1.0 - SQL Injection Authentication Bypass Exploit Author: sanjay singh Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/dairy-farm-shop-management-system-using-php-and-mysql/ Version: v1.0 Tested on: Windows 10...
Blood Bank System 1.0 - SQL Injection / Authentication Bypass Vulnerabilities
Exploit Title: Blood Bank System 1.0 - SQL Injection / Authentication Bypass Exploit Author: Nitin Sharma vidvansh Vendor Homepage: https://code-projects.org/blood-bank-in-php-with-source-code/ Software Link : https://download.code-projects.org/details/f44a4ba9-bc33-48c3-b030-02f62117d230 Version...
Church Management System 1.0 - search SQL Injection (Unauthenticated) Vulnerability
Exploit Title: Church Management System 1.0 - 'search' SQL Injection Unauthenticated Exploit Author: Erwin Krazek Nero Vendor Homepage: https://www.sourcecodester.com/php/14949/church-management-system-cms-website-using-php-source-code.html Software Link:...
openSIS 7.4 Unauthenticated PHP Code Execution Exploit
This Metasploit module exploits multiple vulnerabilities in openSIS 7.4 and prior versions which could be abused by unauthenticated attackers to execute arbitrary PHP code with the permissions of the webserver. The exploit chain abuses an incorrect access control issue which allows access to...
Linux/ARM64 - Read /etc/passwd Shellcode (120 Bytes)
/ Title: Linux/ARM64 - Read /etc/passwd Shellcode 120 Bytes Date: 2019-06-30 Tested: Ubuntu 16.04 aarch64 Author: Ken Kitahara Compilation: gcc -o loader loader.c ubuntu@ubuntu:/works$ lsbrelease -a No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu Xenial Xerus development...
ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin) Vulnerability
Exploit for php platform in category web applications Exploit Title: ABC ERP 0.6.4 - Cross-Site Request Forgery Update Admin Exploit Author: Ihsan Sencan Vendor Homepage: http://www.abc-erp.com/ Software Link: https://netcologne.dl.sourceforge.net/project/abc-erp/abcv064.zip Version: 0.6.4...