Lucene search
K
ZdtMost viewed

39001 matches found

0day.today
0day.today
added 2023/07/10 12:0 a.m.270 views

Piwigo v13.7.0 - Stored Cross-Site Scripting (Authenticated) Vulnerability

Exploit Title: Piwigo v13.7.0 - Stored Cross-Site Scripting XSS Authenticated Exploit Author: Okan Kurtulus Vendor Homepage: https://piwigo.org Version: 13.7.0 Tested on: Ubuntu 22.04 CVE : N/A Proof of Concept: 1– Install the system through the website and log in with any user authorized to uplo...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/06/12 12:0 a.m.270 views

Anevia Flamingo XL/XS 3.6.x Default / Hardcoded Credentials Vulnerability

Anevia Flamingo XL/XS versions 3.6.20 and 3.2.9 have a weak set of default and hardcoded administrative credentials that can be easily guessed in remote password attacks and gain full control of the system. Anevia Flamingo XL/XS 3.6.x Default/Hard-coded Credentials Vendor: Ateme Product web page:...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/03/30 12:0 a.m.270 views

ZTE-H108NS Router - Authentication Bypass Vulnerability

Exploit Title: Router ZTE-H108NS - Authentication Bypass Exploit Author: George Tsimpidas Vendor: https://www.zte.com.cn/global/ Firmware: H108NSV1.0.7uZRDGR2A68 CVE: N/A Tested on: Debian 5.18.5 Description : When specific http methods are listed within a security constraint, then only those...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/01/10 12:0 a.m.270 views

Control Web Panel 7 Remote Code Execution Vulnerability

Centos Web Panel 7 Unauthenticated Remote Code Execution + Centos Web Panel 7 - 0.9.8.1147 + Affected Component ip:2031/login/index.php?login=$whoami + Discoverer: Numan Türle @ Gais Cyber Security + Vendor: https://centos-webpanel.com/ -...

9.8CVSS0.7AI score0.99995EPSS
Exploits12
0day.today
0day.today
added 2022/09/23 12:0 a.m.270 views

Wordpress 3dady real-time web stats 1.0 Plugin - Stored Cross Site Scripting Vulnerability

Exploit Title: Wordpress Plugin 3dady real-time web stats 1.0 - Stored Cross Site Scripting XSS Google Dork: inurl:/wp-content/plugins/3dady-real-time-web-stats/ Exploit Author: UnD3sc0n0c1d0 Vendor Homepage: https://profiles.wordpress.org/3dady/ Software Link:...

0.2AI score
Exploits0
0day.today
0day.today
added 2022/09/08 12:0 a.m.270 views

SACCO 2022 SQL injection Vulnerability

Title: SACCO-2022 SQLi Author: nu11secur1ty Vendor: https://www.mayurik.com/ Software: https://github.com/nu11secur1ty/CVE-nu11secur1ty/blob/main/vendors/mayurik/2022/SACCO/docs/saccoshield.zip?raw=true Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/mayurik/2022/SAC...

7.1AI score
Exploits0
0day.today
0day.today
added 2022/04/19 12:0 a.m.270 views

ManageEngine ADSelfService Plus 6.1 - User Enumeration Exploit

Exploit Title: ManageEngine ADSelfService Plus 6.1 - User Enumeration Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.manageengine.com/ Software Link: https://www.manageengine.com/products/self-service-password/download.html Version: ADSelfService 6.1 Build 6121 Tested Against:...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/02/23 12:0 a.m.270 views

WebHMI 4.1 Cross Site Scripting Vulnerability

Exploit Title: WebHMI 4.1 - Stored Cross Site Scripting XSS Authenticated Exploit Author: Antonio Cuomo arkantolo Vendor Homepage: https://webhmi.com.ua/en/ Version: WebHMI Firmware 4.1.1.7662 Tested on: WebHMI Firmware 4.1.1.7662 Steps to Reproduce 1. Login to admin account 2. Add a new register...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/02/02 12:0 a.m.270 views

WordPress Learnpress 4.1.4.1 Plugin - Arbitrary Image Renaming Vulnerability

Exploit Title: WordPress Plugin Learnpress 4.1.4.1 - Arbitrary Image Renaming Exploit Author: Ceylan Bozogullarindan Author Webpage: https://bozogullarindan.com Vendor Homepage: https://thimpress.com/ Software Link: https://thimpress.com/learnpress-plugin/ Version: 4.1.4.1 Tested on: Linux CVE:...

4.3CVSS4.7AI score0.03205EPSS
Exploits5
0day.today
0day.today
added 2021/10/08 12:0 a.m.270 views

Cmder Console Emulator 1.3.18 - (Cmder.exe) Denial of Service Exploit

Exploit Title: Cmder Console Emulator 1.3.18 - 'Cmder.exe' Denial-of-Service PoC Exploit Author: Aryan Chehreghani Vendor Homepage: https://cmder.net Software Link: https://github.com/cmderdev/cmder/releases/download/v1.3.18/cmder.zip Version: v1.3.18 Tested on: Windows 10 About - Cmder Console...

0.1AI score
Exploits0
0day.today
0day.today
added 2021/09/30 12:0 a.m.270 views

Pharmacy Point of Sale System 1.0 - (Multiple) SQL Injection Vulnerability

Exploit Title: Pharmacy Point of Sale System 1.0 - 'Multiple' SQL Injection SQLi Exploit Author: Murat Vendor Homepage: https://www.sourcecodester.com/php/14957/pharmacy-point-sale-system-using-php-and-sqlite-free-source-code.html Software Link:...

0.3AI score
Exploits0
0day.today
0day.today
added 2021/09/29 12:0 a.m.270 views

WordPress Redirect 404 to Parent 1.3.0 Plugin - Reflected Cross-Site Scripting Vulnerability

Exploit Title: WordPress Plugin Redirect 404 to Parent 1.3.0 - Reflected Cross-Site Scripting XSS Author: 0xB9 Software Link: https://downloads.wordpress.org/plugin/redirect-404-to-parent.1.3.0.zip Version: 1.3.0 Tested on: Windows 10 CVE: CVE-2021-24286 1. Description: This plugin redirects any...

6.1CVSS0.4AI score0.13942EPSS
Exploits5
0day.today
0day.today
added 2021/09/24 12:0 a.m.270 views

Microsoft Windows cmd.exe - Stack Buffer Overflow Vulnerability

Title: Microsoft Windows cmd.exe - Stack Buffer Overflow Author: John Page aka hyp3rlinx Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-CMD.EXE-STACK-BUFFER-OVERFLOW.txt ISR: ApparitionSec Vendor www.microsoft.com Product cmd.exe is the default command-line interpreter for t...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/07/13 12:0 a.m.270 views

Apache Tomcat 9.0.0.M1 - Open Redirect Vulnerability

Exploit Title: Apache Tomcat 9.0.0.M1 - Open Redirect Exploit Author: Central InfoSec Version: Apache Tomcat 9.0.0.M1 to 9.0.0.11, 8.5.0 to 8.5.33, and 7.0.23 to 7.0.90 CVE : CVE-2018-11784 Proof of Concept: Identify a subfolder within your application http://example.com/test/ Modify the URL to...

4.3CVSS5.7AI score0.94494EPSS
Exploits3
0day.today
0day.today
added 2020/08/03 12:0 a.m.270 views

October CMS Build 465 XSS / File Read / File Deletion / CSV Injection Vulnerabilities

October CMS builds 465 and below suffer from arbitrary file read, arbitrary file deletion, file uploading to arbitrary locations, persistent and reflective cross site scripting, and CSV injection vulnerabilities. October CMS = Build 465 Multiple Vulnerabilities Author - Sivanesh Ashok |...

4.6CVSS0.1AI score0.07371EPSS
Exploits8
0day.today
0day.today
added 2019/07/05 12:0 a.m.270 views

Microsoft Exchange 2003 - base64-MIME Remote Code Execution Exploit

Python 2.7 included with ImmunityDBG Exchange 2003 SP0 base64-MIME memory corruption NSA's ENGLISHMANSDENTIST Platform: Windows Server 2003 R2 Shout out to the Equation Group, NSA Tailored Access Operations Author: Charles Truscott @r0ss1n1 Shout out to Offensive Security, from Australia with Lov...

10CVSS0.3AI score0.6616EPSS
Exploits2
0day.today
0day.today
added 2018/11/07 12:0 a.m.270 views

eToolz 3.4.8.0 - Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: eToolz 3.4.8.0 - Denial of Service PoC Exploit Author: Ihsan Sencan Vendor Homepage: https://www.gaijin.at Software Link: https://www.gaijin.at/de/software/etoolz Version: 3.4.8.0 Category: Dos Tested on: WiN7x64/KaLiLinuXx64 CVE:...

7.4AI score
Exploits0
0day.today
0day.today
added 2025/01/16 12:0 a.m.269 views

Cleo LexiCom / VLTrader / Harmony 5.8.0.23 Remote Code Execution Exploit

This Metasploit module exploits an unauthenticated file write vulnerability in Cleo LexiCom, VLTrader, and Harmony versions 5.8.0.23 and below. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...

9.8CVSS7.1AI score0.98529EPSS
Exploits8
0day.today
0day.today
added 2024/04/08 12:0 a.m.269 views

UP-RESULT 0.1 2024 SQL Injection Vulnerability

Title: upresult0.1-2024 Multiple-SQLi Author: nu11secur1ty Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/15653/best-student-result-management-system-project-source-code-php-and-mysql-free-download Reference: https://portswigger.net/web-security/sql-injection...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/03/27 12:0 a.m.269 views

SPA-CART CMS - Stored XSS Vulnerability

Exploit Title: SPA-CART CMS - Stored XSS Exploit Author: Eren Sen Vendor: SPA-Cart Vendor Homepage: https://spa-cart.com/ Software Link: https://demo.spa-cart.com/ Version: 1.9.0.3 CVE-ID: N/A Tested on: Kali Linux / Windows 10 Vulnerabilities Discovered Date : 2024/01/03 Vulnerability Type: Stor...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/03/11 12:0 a.m.269 views

Ladder v0.0.21 - Server-side request forgery Vulnerability

Exploit Title: Ladder v0.0.21 - Server-side request forgery SSRF Date: 2024-01-20 Exploit Author: @chebuya Software Link: https://github.com/everywall/ladder Version: v0.0.1 - v0.0.21 Tested on: Ubuntu 20.04.6 LTS on AWS EC2 ami-0fd63e471b04e22d0 CVE: CVE-2024-27620 Description: Ladder fails to...

7.5CVSS7.2AI score0.02325EPSS
Exploits3
0day.today
0day.today
added 2024/02/26 12:0 a.m.269 views

Online Shopping System Advanced - Sql Injection Vulnerability

Exploit Title: Online Shopping System Advanced Exploit Author: Furkan Gedik Vendor Homepage: https://github.com/PuneethReddyHC/online-shopping-system-advanced Software Link: https://github.com/PuneethReddyHC/online-shopping-system-advanced Version: 1.0 Tested on: Kali Linux 2020.3 Description...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/04/03 12:0 a.m.269 views

GLPI 4.0.2 - Unauthenticated Local File Inclusion on Manageentities plugin Vulnerability

ADVISORY INFORMATION Exploit Title: GLPI 4.0.2 - Unauthenticated Local File Inclusion on Manageentities plugin Date of found: 11 Jun 2022 Application: GLPI Manageentities 4.0.2 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link:...

7.5CVSS7.6AI score0.06715EPSS
Exploits3
0day.today
0day.today
added 2023/04/03 12:0 a.m.269 views

Linux/x86 - Polymorphic linux x86 Shellcode (92 Bytes)

Exploit Title: Polymorphic linux x86 nc -lvve/bin/sh -p13377 shellcode 92 Bytes Exploit Author: Eduardo Silva Tested on: Linux x8664 SMP Debian 4.19.260-1 SLAE/Student ID: PA-31319 Webpage: https://0xnibbles.github.io/ Description: This shellcode is a polymorphic version of...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/03/29 12:0 a.m.269 views

DSL-124 Wireless N300 ADSL2+ - Backup File Disclosure Vulnerability

Exploit Title: DSL-124 Wireless N300 ADSL2+ - Backup File Disclosure Exploit Author: Aryan Chehreghani Vendor Homepage: https://www.dlink.com Software Link: https://dlinkmea.com/index.php/product/details?det=dU1iNFc4cWRsdUpjWEpETFlSeFlZdz09 Firmware Version: ME1.00 Tested on: Windows 11 Details -...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/07/05 12:0 a.m.269 views

DouPHP 1.2 Release 20141027 SQL Injection Vulnerability

==================================================================================================================================== | Title : DouPHP v1.2 Release 20141027 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

0.2AI score
Exploits0
0day.today
0day.today
added 2022/04/11 12:0 a.m.269 views

Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion Vulnerability

Exploit Title: Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion LFI Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: https://www.franklinfueling.com/ Version: 1.8.19.8580 Tested on: Linux Firefox CVE : CVE-2021-46417 Proof of Concept ============ HT...

7.5CVSS0.59753EPSS
Exploits7
0day.today
0day.today
added 2022/03/22 12:0 a.m.269 views

Sysax FTP Automation 6.9.0 - Privilege Escalation Vulnerability

Exploit Author: bzyo @bzyo Exploit Title: Sysax FTP Automation 6.9.0 - Privilege Escalation Vulnerable Software: Sysax FTP Automation 6.9.0 Vendor Homepage: https://www.sysax.com/ Version: 6.9.0 Software Link: https://www.sysax.com/download/sysaxautosetup.msi Tested on: Windows 10 x64 Details:...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/02/21 12:0 a.m.269 views

Thinfinity VirtualUI 2.5.26.2 - Information Disclosure Vulnerability

Exploit Title: Thinfinity VirtualUI 2.5.26.2 - Information Disclosure Exploit Author: Daniel Morales Vendor: https://www.cybelesoft.com Software Link: https://www.cybelesoft.com/thinfinity/virtualui/ Version vulnerable: Thinfinity VirtualUI ? cmd=connect&wscompression=true&destAddr=domain.com...

7.5CVSS7.6AI score0.12785EPSS
Exploits3
0day.today
0day.today
added 2022/02/02 12:0 a.m.269 views

CONTPAQi (R) AdminPAQ 14.0.0 - Unquoted Service Path Vulnerability

Exploit Title: CONTPAQi® AdminPAQ 14.0.0 - Unquoted Service Path Discovery by: Angel Canseco Software Link: https://www.contpaqi.com/descargas Tested Version: 14.0.0 Vulnerability Type: Unquoted Service Path Tested on OS: Windows 10 pro x64 english Step to discover Unquoted Service Path:...

0.3AI score
Exploits0
0day.today
0day.today
added 2021/06/17 12:0 a.m.269 views

Microsoft SharePoint Unsafe Control And ViewState Remote Code Execution Exploit

The EditingPageParser.VerifyControlOnSafeList method fails to properly validate user supplied data. This can be leveraged by an attacker to leak sensitive information in rendered-preview content. This module will leak the ViewState validation key and then use it to sign a crafted object that will...

8.8CVSS8.6AI score0.30045EPSS
Exploits5
0day.today
0day.today
added 2020/03/26 12:0 a.m.269 views

SialWeb CMS eCommerce 1.0 / 1.1 Cross Site Scripting / SQL Injection Vulnerabilities

Exploit for php platform in category web applications Exploit Title: SialWeb CMS SQL Injection & XSS Vulnerability Google Dork: intext:" By Sial Web" +inurl:/.php?id= Exploit Author: @ThelastVvV Vendor Homepage: https://sialweb.net/ Tested on: Ubuntu...

0.2AI score
Exploits0
0day.today
0day.today
added 2019/12/06 12:0 a.m.269 views

BeeGFS 7.1.3 Privilege Escalation Vulnerability

============================================ BeeGFS Privilege Escalation CVE-2019-15897 ============================================ Software: BeeGFS Affected Versions: All versions upto and including 7.1.3 Vendor: ThinkparQ CVE: CVE-2019-15897 Severity: CVSS 9.6 Critical...

9.6CVSS0.7AI score0.03045EPSS
Exploits1
0day.today
0day.today
added 2018/11/14 12:0 a.m.269 views

Electricks eCommerce 1.0 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Electricks eCommerce 1.0 - Cross-Site Scripting Exploit Author: Nawaf Alkeraithe Software Link: https://www.sourcecodester.com/sites/default/files/download/billyblue/electricks.zip Version: 1.0 When a user signs up for an accoun...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/11/07 12:0 a.m.269 views

Arm Whois 3.11 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: Arm Whois 3.11 - Buffer Overflow SEH Exploit Author: Yair Rodríguez Aparicio 0-day DoS exploit, Semen Alexandrovich Lyhin 1-day fully working exploit Vendor Homepage: http://www.armcode.com/ Software Link:...

0.2AI score
Exploits0
0day.today
0day.today
added 2008/11/18 12:0 a.m.269 views

No-IP DUC <= 2.1.7 Remote Code Execution Exploit

Exploit for linux platform in category remote exploits ================================================ No-IP DUC include include include include include include include define HTTPOK "HTTP/1.1 200 OK\r\n\r\n" define NOIPPORT 8245 define uchar unsigned char / Offsets del shellcode x version ubica...

7.1AI score
Exploits0
0day.today
0day.today
added 2024/06/13 12:0 a.m.268 views

Quick CMS 6.7 Shell Upload Vulnerability

Title : Authenticated Shell Upload Product : Quick CMS Vendor : https://opensolution.org/ Affected Version : 6.7 Researcher : Eagle Eye Tested on : Window & Linux Report : Already contact the vendor but no response Affected path : admin.php , core/common-admin.php, database/config.php Affected...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/04/22 12:0 a.m.268 views

Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Insecure Direct Object Reference Vulnerability

Elber Signum DVB-S/S2 IRD for Radio Networks version 1.999 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability. Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber....

7.5AI score
Exploits0
0day.today
0day.today
added 2024/03/18 12:0 a.m.268 views

WEBIGniter v28.7.23 - Stored XSS Vulnerability

Title: WEBIGniter v28.7.23 XSS Author: RedTeamer IT Security, Mesut Cetin Vendor: https://webigniter.net/ Software: https://webigniter.net/demo Reference: https://portswigger.net/web-security/cross-site-scripting/stored Description: During the user creation process, the 'yourname' parameter fails...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/03/11 12:0 a.m.268 views

Akaunting < 3.1.3 - Remote Code Execution Exploit

Exploit Title: Akaunting 3.1.3 - RCE Exploit Author: email protected Vendor Homepage: https://akaunting.com Software Link: https://github.com/akaunting/akaunting Version: = 3.1.3 Tested on: Ubuntu 22.04 CVE : CVE-2024-22836 !/usr/bin/python3 import sys import re import requests import argparse de...

9.8CVSS9.7AI score0.30036EPSS
Exploits3
0day.today
0day.today
added 2024/01/21 12:0 a.m.268 views

MiniWeb HTTP Server 0.8.1 Denial Of Service Exploit

!/usr/bin/perl use IO::Socket; Exploit Title: MiniWeb HTTP Server 0.8.1 - Denied of Service DoS Discovery by: Fernando Mengali Discovery Date: 19 january 2024 Vendor Homepage: N/A Download to demo: https://drive.google.com/file/d/1AVHSlsYj5Ukw9co9M2Ql6RsqCTzbI038/view?usp=sharing Notification...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/10/16 12:0 a.m.268 views

NLB mKlik Makedonija 3.3.12 SQL Injection Vulnerability

NLB mKlik Makedonija 3.3.12 SQL Injection Vendor: NLB Banka AD Skopje Product web page: https://www.nlb.mk Google Play: https://play.google.com/store/apps/details?id=hr.asseco.android.jimba.tutunskamk.production Affected version: 3.3.12 Summary: NLB mKlik е мобилна апликација наменета за физички...

7.4AI score
Exploits0
0day.today
0day.today
added 2023/05/02 12:0 a.m.268 views

projectSend r1605 - Private file download Vulnerability

Exploit Title: projectSend r1605 - Private file download Application: projectSend Version: r1605 Bugs: IDOR Technology: PHP Vendor URL: https://www.projectsend.org/ Software Link: https://www.projectsend.org/ Date of found: 24-01-2023 Author: Mirabbas Ağalarov Tested on: Linux Technical Details &...

6.9AI score
Exploits0
0day.today
0day.today
added 2023/04/14 12:0 a.m.268 views

Sielco PolyEco Digital FM Transmitter 2.0.6 - Authorization Bypass Factory Reset Vulnerability

Exploit Title: Sielco PolyEco Digital FM Transmitter 2.0.6 - Authorization Bypass Factory Reset Exploit Author: LiquidWorm Vendor: Sielco S.r.l Product web page: https://www.sielco.org Affected version: PolyEco1000 CPU:2.0.6 FPGA:10.19 PolyEco1000 CPU:1.9.4 FPGA:10.19 PolyEco1000 CPU:1.9.3...

6.8AI score
Exploits0
0day.today
0day.today
added 2023/04/06 12:0 a.m.268 views

Music Gallery Site v1.0 - SQL Injection Vulnerability (3)

Exploit Title: Music Gallery Site v1.0 - SQL Injection on page Master.php Exploit Author: Muhammad Navaid Zafar Ansari CVE Assigned: CVE-2023-0962 mitre.org nvd.nist.org Vendor Homepage: https://www.sourcecodester.com Software Link: Music Gallery Site Version: v 1.0 Tested on: Windows 11 SQL...

8.8CVSS8.8AI score0.01741EPSS
Exploits5
0day.today
0day.today
added 2023/01/10 12:0 a.m.268 views

Tiki Wiki CMS Groupware 24.0 grid.php PHP Object Injection Vulnerability

----------------------------------------------------------------------------- Tiki Wiki CMS Groupware const popChain = 'O:25:"SearchElasticConnection":1:S:31:"\00SearchElasticConnection\00bulk";O:28:"SearchElasticBulkOper...

8.8CVSS7.8AI score0.01168EPSS
Exploits3
0day.today
0day.today
added 2022/09/02 12:0 a.m.268 views

WordPress Netroics Blog Posts Grid 1.0 Plugin - Stored XSS Vulnerability

Exploit Title: WordPress Plugin Netroics Blog Posts Grid 1.0 - Stored Cross-Site Scripting XSS Exploit Author: saitamang, syad, yunaranyancat Vendor Homepage: wordpress.org Software Link: https://downloads.wordpress.org/plugin/netroics-blog-posts-grid.zip Version: 1.0 Tested on: Centos 7 apache2 ...

0.1AI score
Exploits0
0day.today
0day.today
added 2022/06/14 12:0 a.m.268 views

Real Player v.20.0.8.310 G2 Control - DoGoToURL() Remote Code Execution Exploit

Exploit Title: Real Player v.20.0.8.310 G2 Control - 'DoGoToURL' Remote Code Execution RCE Exploit Author: Eduardo Braun Prado Vendor Homepage: http://real.com/ Software Link: http://real.com/ Version: v.20.0.8.310 Tested on: Windows 7, 8.1, 10 CVE : N/A Full PoC:...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/06/14 12:0 a.m.268 views

Marval MSM v14.19.0.12476 - Remote Code Execution (Authenticated) Vulnerability

Exploit Title: Marval MSM v14.19.0.12476 - Remote Code Execution RCE Authenticated Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: https://www.marvalnorthamerica.com/ Software Link: https://www.marvalnorthamerica.com/ Version: v14.19.0.12476 Tested on: Windows Detailed blog:...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/03/30 12:0 a.m.268 views

PostgreSQL 9.3-11.7 - Remote Code Execution (Authenticated) Exploit

Exploit Title: PostgreSQL 9.3-11.7 - Remote Code Execution RCE Authenticated Exploit Author: b4keSn4ke Github: https://github.com/b4keSn4ke Vendor Homepage: https://www.postgresql.org/ Software Link: https://www.postgresql.org/download/linux/debian/ Version: 9.3 - 11.7 Tested on: Linux x86-64 -...

7.2CVSS0.2AI score0.91877EPSS
Exploits17
Total number of security vulnerabilities5000