39001 matches found
Microfinance Management System 1.0 SQL Injection Vulnerability
Microfinance Management System version suffers from multiple remote SQL injection vulnerabilities including one that allows for authentication bypass. Original discovery of SQL injection in this version is attributed to Hejap Zairy in March of 2022. Exploit Title: Microfinance Management System 1...
Home Owners Collection Management System 1.0 - Account Takeover Vulnerability
Exploit Title: Home Owners Collection Management System 1.0 - Account Takeover Unauthenticated Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15162/home-owners-collection-management-system-phpoop-free-source-code.htm...
uBidAuction 2.0.1 Cross Site Scripting Vulnerability
Document Title: =============== uBidAuction v2.0.1 - Multiple XSS Web Vulnerabilities Product & Service Introduction: =============================== uBidAuction is a powerful, scalable & fully-featured classic and bid auction software that lets create the ultimate profitable online auctions...
Cyber Cafe Management System Project (CCMS) 1.0 - SQL Injection Authentication Bypass Vulnerability
Exploit Title: Cyber Cafe Management System Project CCMS 1.0 - SQL Injection Authentication Bypass Exploit Author: sudoninja Vendor Homepage: https://phpgurukul.com Product link: https://phpgurukul.com/cyber-cafe-management-system-using-php-mysql/ Version: 1.0 Tested on: XAMPP / Windows 10...
SyncBreeze 10.0.28 - (login) Denial of Service Exploit
Exploit Title: SyncBreeze 10.0.28 - 'login' Denial of Service Poc Exploit Author: Ahmed Elkhressy Vendor Homepage: http://www.syncbreeze.com Software Link: http://www.syncbreeze.com/setups/syncbreezeentsetupv10.0.28.exe Version: 10.0.28 Tested on: Windows 7, Windows 10 !/usr/bin/python import...
CodeMeter 6.60 - (CodeMeter.exe) Unquoted Service Path Vulnerability
Exploit Title: CodeMeter 6.60 - 'CodeMeter.exe' Unquoted Service Path Discovery by: Luis Martinez Vendor Homepage: https://www.wibu.com/us/products/codemeter/runtime.html Tested Version: 6.60 Vulnerability Type: Unquoted Service Path Tested on OS: Windows 10 Pro x64 es Step to discover Unquoted...
Serv-U FTP Server 15.1.7 Persistent Cross Site Scripting Vulnerability
Exploit for windows platform in category web applications Issue: Serv-U FTP Server 15.1.7 Persistent Cross Site Scripting Vulnerability CVE: CVE-2019-13182 Security researcher: Richard Tan @ The Missing Link Security Product name: Serv-U FTP Server Product version: Tested on 15.1.7 Fixed in: Serv...
Microsoft Internet Explorer Windows 10 1809 17763.316 - Scripting Engine Memory Corruption Exploit
Content Dim ar1&h3000000 Dim ar21000 Dim gremlin addressOfGremlin = &h28281000 Class MyClass Private mValue Public Property Let Valuev mValue = v End Property Public Default Property Get P P = mValue ' Where to write End Property End Class Sub TriggerWritewhere, val Dim v1 Set v1 =...
Mozilla Firefox < 17.0.1 - Flash Privileged Code Injection Exploit
Exploit for multiple platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule HttpClients::FF, :uaminver = "17.0", :uamaxver = "17.0.1", :javascript ...
Android Stagefright MP4 tx3g Integer Overflow Exploit
This Metasploit module exploits a integer overflow vulnerability in the Stagefright Library libstagefright.so. The vulnerability occurs when parsing specially crafted MP4 files. While a wide variety of remote attack vectors exist, this particular exploit is designed to work within an HTML5...
Jedox 2022.4.2 - Code Execution via RPC Interfaces Vulnerability
Exploit Title: Jedox 2022.4.2 - Code Execution via RPC Interfaces Exploit Author: Team Syslifters / Christoph MAHRL, Aron MOLNAR, Patrick PIRKER and Michael WEDL Vendor Homepage: https://jedox.com Version: Jedox 2022.4 22.4.2 and older CVE : CVE-2022-47879 Introduction ================= A Remote...
Microsoft Excel 365 MSO (v 2302 Build 16.0.16130.20186) 64-bit - Remote Code Execution Vulnerability
Exploit Title: Microsoft Excel 365 MSO Version 2302 Build 16.0.16130.20186 64-bit - Remote Code Execution RCE Exploit Author: nu11secur1ty Date: 03.16.2023 Vendor: https://www.microsoft.com/en-us/microsoft-365/excel Software: https://www.microsoft.com/en-us/microsoft-365/excel Reference:...
Medicine Tracker System v1.0 - Sql Injection Vulnerability
Exploit Title: Medicine Tracker System v1.0 - Sql Injection Exploit Author: Sanjay Singh Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/php-mts0.zip Version: V1.0.0 Tested on: Windows/Linux Proof of Concept: 1-...
SLIMSV 9.5.2 - Cross-Site Scripting Vulnerability
Exploit Title: SLIMSV 9.5.2 - Cross-Site Scripting XSS Development: nu11secur1ty Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/tag/v9.5.2 Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/slims.web.id/SLIMS-9.5.2 Description...
Online shopping system advanced 1.0 - Multiple Vulnerabilities
Exploit Title: Online shopping system advanced 1.0 - Multiple Vulnerabilities Discovery by: Rafael Pedrero Vendor Homepage: https://github.com/PuneethReddyHC/online-shopping-system-advanced Software Link : https://github.com/PuneethReddyHC/online-shopping-system-advanced/archive/master.zip Tested...
WordPress W-DALIL 2.0 Cross Site Scripting Vulnerability
Exploit Title: WordPress Plugin W-DALIL - Stored Cross Site Scripting Exploit Author: Mariam Tariq - HunterSherlock Vendor Homepage: https://wordpress.org/plugins/w-dalil/ Version: 2.0 Tested on: Firefox Contact me: email protected Vulnerable Code: " value="" / Steps To Reproduce : 1 - First...
libMeshb Buffer Overflow Exploit
libMeshb suffers from a buffer overflow vulnerability. Version 7.62 has been released to address this issue. ===== Intro ===== libMeshb is a library which supports moving between data types for the Gamma Mesh Format. A buffer overflow was found when parsing the MESH format and specially crafted...
qdPM 9.2 - Cross-site Request Forgery Vulnerability
Exploit Title: qdPM 9.2 - Cross-site Request Forgery CSRF Google Dork: NA Exploit Author: Chetanya Sharma @AggressiveUser Vendor Homepage: https://qdpm.net/ Software Link: https://sourceforge.net/projects/qdpm/files/latest/download Version: 9.2 Tested on: KALI OS CVE : CVE-2022-26180...
WordPress CleanTalk 5.173 Cross Site Scripting Vulnerability
Description: Reflected Cross-Site Scripting Affected Plugin: Spam protection, AntiSpam, FireWall by CleanTalk Plugin Slug: cleantalk-spam-protect Plugin Developer: CleanTalk Affected Versions: = 5.173 CVE ID: CVE-2022-28221 CVSS Score: 6.1 Medium CVSS Vector:...
Amazing CD Ripper 1.2 Buffer Overflow Exploit
Exploit Title: Amazing CD Ripper v1.2 - Buffer Overflow Exploit Author: Hejap Zairy Software Link: http://www.shelltoys.com/cdripper.exe Software Link: https://web.archive.org/web/20160313071152/http://www.shelltoys.com/cdripper.exe Tested Version: v1.2.1 Tested on: Windows 10 64bit 1.- Run pytho...
Simple Student Quarterly Result/Grade System 1.0 - SQL injection Authentication Bypass Vulnerability
Exploit Title: Simple Student Quarterly Result/Grade System 1.0 - SQLi Authentication Bypass Exploit Author: Saud Alenazi Vendor Homepage: https://www.sourcecodester.com/ Software Link:...
Online Railway Reservation System 1.0 - (Multiple) Stored Cross Site Scripting Vulnerability
Exploit Title: Online Railway Reservation System 1.0 - 'Multiple' Stored Cross Site Scripting XSS Unauthenticated Exploit Author: Zachary Asher Vendor Homepage: https://www.sourcecodester.com/php/15121/online-railway-reservation-system-phpoop-project-free-source-code.html Software Link:...
SuperMicro IPMI WebInterface 03.40 - Cross-Site Request Forgery (Add Admin) Vulnerability
Exploit for hardware platform in category web applications Exploit Title: SuperMicro IPMI WebInterface 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Version: X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware...
rConfig 3.9.4 - (searchField) Unauthenticated Root Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: rConfig 3.9.4 - 'searchField' Unauthenticated Root Remote Code Execution Exploit Author: vikingfr Greetz : Orange Cyberdefense - team CSR-SO https://cyberdefense.orange.com CVE-2019-19509 + CVE-2019-19585 + CVE-2020-10220 Exploi...
Microsoft Windows 10 (19H1 1901 x64) - ws2ifsl.sys Use After Free Local Privilege Escalation Exploit
/ The exploit works on 19H1. It was tested with ntoskrnl version 10.0.18362.295 EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47935.zip / include include include include include include include pragma commentlib, "ntdll.lib" // run cmd.exe...
Mikrotik <= 6.38.4 HTTPD Remote Root Exploit
32 MIPS version targets...
Linux 5.3 - Privilege Escalation via io_uring Offload of sendmsg() onto Kernel
Linux 5.3 - Privilege Escalation via iouring Offload of sendmsg onto Kernel Thread with Kernel Creds Since commit 0fa03c624d8f "iouring: add support for sendmsg", first in v5.3, iouring has support for asynchronously calling sendmsg. Unprivileged userspace tasks can submit IORINGOPSENDMSG...
SEL AcSELerator Architect 2.2.24 - CPU Exhaustion Denial of Service Exploit
!/usr/bin/env python coding: utf8 SEL AcSELerator Architect 2.2.24 Remote CPU Exhaustion Denial of Service Vendor: Schweitzer Engineering Laboratories, Inc. Product web page: https://www.selinc.com Affected version: 2.2.24.0 ICD package version: 2.38.0 Summary: Substation communications networks...
Easy RM to MP3 Converter 2.7.3.700 (.m3u) Universal BOF Exploit
Exploit for unknown platform in category local exploits =============================================================== Easy RM to MP3 Converter 2.7.3.700 .m3u Universal BOF Exploit =============================================================== !/usr/bin/perl Easy RM to MP3 Converter 2.7.3.700...
PHP Advanced Transfer Manager <= 1.30 Source Code Disclosure Exploit
Exploit for unknown platform in category web applications ==================================================================== PHP Advanced Transfer Manager = 1.30 Source Code Disclosure Exploit ==================================================================== ? / ::::::::: :::::::::: ::: :::...
EuroTel ETL3100 Transmitter Default Credentials Vulnerability
EuroTel ETL3100 transmitters use a weak set of default administrative credentials that can be guessed in remote password attacks and gain full control of the system. EuroTel ETL3100 Transmitter Default Credentials Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page:...
Wifi Soft Unibox Administration 3.0 & 3.1 - SQL Injection Vulnerability
Exploit Title: Wifi Soft Unibox Administration 3.0 & 3.1 Login Page - Sql Injection Google Dork: intext:"Unibox Administration 3.1", intext:"Unibox 3.0" Exploit Author: Ansh Jain @sudoark Author Contact : email protected Vendor Homepage: https://www.wifi-soft.com/ Software Link:...
Screen SFT DAB 600/C - Unauthenticated Information Disclosure Vulnerability
Exploit Title: Screen SFT DAB 600/C - Unauthenticated Information Disclosure userManager.cgx Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...
admidio v4.2.5 - CSV Injection Vulnerability
Exploit Title: admidio v4.2.5 - CSV Injection Application: admidio Version: 4.2.5 Bugs: CSV Injection Technology: PHP Vendor URL: https://www.admidio.org/ Software Link: https://www.admidio.org/download.php Date of found: 26.04.2023 Author: Mirabbas Ağalarov Tested on: Windows 2. Technical Detail...
Best pos Management System v1.0 - SQL Injection Vulnerability
Exploit Title: Best pos Management System v1.0 - SQL Injection Exploit Author: Ahmed Ismail @MrOz1l Vendor Homepage: https://www.sourcecodester.com/php/16127/best-pos-management-system-php.html Software Link: https://www.sourcecodester.com/sites/default/files/download/mayurik/kruxton.zip Version:...
Linux/x86_64 - bash Shellcode with xor encoding Shellcode (71 bytes)
Exploit Title: Linux/x8664 - bash shellcode with xor encoding Date: 05/02/2023 Exploit Author: Jeenika Anadani Contact: https://twitter.com/cyberjeeni Category: Shellcode Architectue: Linux x8664 Shellcode Length: 71 Bytes ----------------------- section .data section .text global start start: ;...
YouPHPTube <= 7.8 - Multiple Vulnerabilities
Exploit Title: YouPHPTube getLanguage; if !empty$GET'lang' $GET'lang' = striptags$GET'lang'; $SESSION'language' = $GET'lang'; @includeonce "$global'systemRootPath'locale/$SESSION'language'.php"; The parameter "lang" can be modified and load a php file in the server. In Document root: /phpinfo.php...
SoX 14.4.2 - Denial Of Service Vulnerability
Exploit Title: SoX 14.4.2 - Denial Of Service Exploit Author: LiquidWorm Vendor: Chris Bagwell Product web page: http://sox.sourceforge.net https://en.wikipedia.org/wiki/SoX Affected version: , buffer=, buffersize=optim...
Pay Slip PDF Generator System 1.0 SQL Injection Vulnerability
Pay Slip PDF Generator System version suffers from multiple remote SQL injection vulnerabilities that can lead to remote code execution. Title: Pay Slip PDF Generator System 1.0 Blind time SQLi To Rce Author: Hejap Zairy Vendor:...
WordPress International SMS For Contact Form 7 Integration 1.2 XSS Vulnerability
Exploit Title: WordPress Plugin International Sms For Contact Form 7 Integration V1.2 - Cross Site Scripting XSS Author: Milad karimi Software Link: https://wordpress.org/plugins/cf7-international-sms-integration/ Version: 1.2 Tested on: Windows 11 CVE: N/A 1. Description: This plugin creates a...
Online Resort Management System 1.0 SQL Injection Vulnerability
Title: Online Resort Management System 1.0 SQL - Injections Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15126/online-resort-management-system-using-phpoop-free-source-code.html Description: The id parameter appears to be...
Employees Daily Task Management System 1.0 - (username) SQL injection Authentication Bypass
Exploit Title: Employees Daily Task Management System 1.0 - 'username' SQLi Authentication Bypass Exploit Author: able403 Vendor Homepage: https://www.sourcecodester.com/php/15030/employee-daily-task-management-system-php-and-sqlite-source-code.html Software Link:...
Wordpress Download From Files 1.48 Plugin - Arbitrary File Upload Exploit
Exploit Title: Wordpress Plugin Download From Files 1.48 - Arbitrary File Upload Google Dork: inurl:/wp-content/plugins/download-from-files Exploit Author: spacehen Vendor Homepage: https://wordpress.org/plugins/download-from-files/ Version: spacehen www.github.com/spacehen" def printusage:...
Wordpress Powie WHOIS Domain Check 0.9.31 Plugin - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Powie's WHOIS Domain Check 0.9.31 - Persistent Cross-Site Scripting Vendor Homepage: https://powie.de Vendor Changelog: https://wordpress.org/plugins/powies-whois/developers Software Link:...
Grandstream UCM6200 Series CTI Interface - (user_password) SQL Injection Exploit
Exploit for hardware platform in category web applications Exploit Title: Grandstream UCM6200 Series CTI Interface - 'userpassword' SQL Injection Exploit Author: Jacob Baines Vendor Homepage: http://www.grandstream.com/ Software Link:...
BKS EBK Ethernet-Buskoppler Pro Shell Upload Vulnerability
BKS EBK Ethernet-Buskoppler Pro versions prior to 3.01 suffer from a remote shell upload vulnerability. Product: BKS EBK Ethernet-Buskoppler Pro Manufacturer: BKS GmbH Affected Versions: 3.01 Vulnerability Type: Unrestricted Upload of File with Dangerous Type CWE-434 Risk Level: High Solution...
Fortinet FCM-MB40 - Cross-Site Request Forgery / Remote Command Execution Exploit
Exploit for hardware platform in category web applications Exploit Title: FCM-MB40 Remote Command Execution as Root via CSRF Date: 2019-06-19 Exploit Author: @XORcat Vendor Homepage: https://fortinet.com/ Software Link: Customer Account Required Version: v1.2.0.0 Tested on: Linux CVE : TBA !--...
ProShow 9.0.3797 - Local Privilege Escalation Exploit
Exploit for windows platform in category local exploits !/usr/bin/python coding:utf-8 Exploit Title: ProShow v9.0.3797 Local Exploit Exploit Author: @YonatanCorrea website with details: https://risataim.blogspot.com/2019/06/exploit-local-para-proshow.html Vendor Homepage:...
Ruby On Rails DoubleTap Development Mode secret_key_base Remote Code Execution Exploit
This Metasploit module exploits a vulnerability in Ruby on Rails. In development mode, a Rails application would use its name as the secretkeybase, and can be easily extracted by visiting an invalid resource for a path. As a result, this allows a remote user to create and deliver a signed...
Android 5.0 Battery Information Broadcast Information Disclosure Vulnerability
Android OS version 5.0 suffers from a sensitive data exposure vulnerability in its battery information broadcasts. Android 5.0 Battery Information Broadcast Information Disclosure NOTE: This bug is part of a series of three related Android bugs with the same root cause: CVE-2018-9489, CVE-2018-95...