39001 matches found
Bus Pass Management System 1.0 Cross Site Scripting Vulnerability
Exploit Title: Bus Pass Management System 1.0 - 'searchdata' Cross-Site Scripting XSS Exploit Author: Ali Alipour Vendor Homepage: https://phpgurukul.com/bus-pass-management-system-using-php-and-mysql Software Link:...
mbDrive Lite WiFi Flash Disk 1.4.0 Cross Site Scripting Vulnerability
Exploit Title: mbDrive Lite - WiFi flash disk 1.4.0 Reflected XSS Exploit Author: Chokri Hammedi Vendor Homepage: https://apps.apple.com/us/developer/haw-yuan-yang/id291212805 Software Link: https://apps.apple.com/us/app/mbdrive-lite-wifi-flash-disk/id343254033 Version: 1.4.0 Tested on: iPhone io...
Small HTTP Server 3.06 Remote Buffer Overflow Exploit
Exploit Title: Small HTTP Server Remote Buffer Overflow Discovered by: Yehia Elghaly Vendor Homepage: http://smallsrv.com/ Software Link : http://smallsrv.com/shttpsmgi.exe Tested Version: 3.06 Vulnerability Type: Buffer Overflow Remote Tested on OS: Windows XP SP3 - Windows 7 Professional x86 SP...
Covid-19 Directory On Vaccination System 1.0 SQL Injection Vulnerability
Title: Covid-19 Directory on Vaccination System 1.0 Blind boolean SQLi To Rce Author: Hejap Zairy Vendor: https://www.sourcecodester.com/php/15244/design-and-implementation-covid-19-directory-vacination.html Software:...
Inventory Management System 1.0 Cross Site Scripting Vulnerability
Title: Inventory Management System 1.0 XSS Stored Author: Hejap Zairy Vendor: https://www.vetbossel.in/inventory-management-system-php/ Software: https://cutt.ly/lOZ8lrr Reference: https://github.com/Matrix07ksa Tested on: ArchLinux, MySQL, Apache Description: Stored XSS, also known as persistent...
Emerson PAC Machine Edition 9.80 Build 8695 - (TrapiServer) Unquoted Service Path Vulnerability
Exploit Title: Emerson PAC Machine Edition 9.80 Build 8695 - 'TrapiServer' Unquoted Service Path Discovery by: Luis Martinez Vendor Homepage: https://www.emerson.com/en-us Software Link : https://www.opertek.com/descargar-software/?prc=326 Tested Version: 9.80 Build 8695 Vulnerability Type:...
Engineers Online Portal 1.0 - (id) SQL Injection Vulnerability
Exploit Title: Engineers Online Portal 1.0 - 'id' SQL Injection Exploit Author: Alon Leviev Category: Web application Vendor Homepage: https://www.sourcecodester.com/php/13115/engineers-online-portal-php.html Software Link:...
Android RSSI Broadcast Information Disclosure Vulnerability
Android OS suffers from a sensitive data exposure vulnerability in its RSSI broadcasts. Android RSSI Broadcast Information Disclosure Blog post here: https://wwws.nightwatchcybersecurity.com/2018/11/11/cve-2018-9581/ NOTE: This bug is part of a series of three related Android bugs with the same...
PHP Login Script v 2.3 SQL Injection vulnerability
Exploit for php platform in category web applications ================================================== PHP Login Script v 2.3 SQL Injection vulnerability ================================================== Exploit Title: PHP Login Script v 2.3 SQL Injection vulnerability. Date: 23/7 2010 Author:...
Ubuntu PAM MOTD File Tampering (Privilege Escalation)
Exploit for linux platform in category local exploits ===================================================== Ubuntu PAM MOTD File Tampering Privilege Escalation ===================================================== !/bin/sh Exploit Title: Ubuntu PAM MOTD file tampering privilege escalation Date:...
OBS 1.0 Shell Upload Vulnerability
Titles: OBS by: oretnom23 v1.0 -Copyright © 2025. All rights reserved. File Upload-FU and Remote Code Execution-RCE Vulnerabilities Author: nu11secur1ty Vendor: https://github.com/oretnom23 Software:...
Acronis Cyber Protect/Backup Remote Code Execution Exploit
The Acronis Cyber Protect appliance, in its default configuration, allows the anonymous registration of new protect/backup agents on new endpoints. This API endpoint also generates bearer tokens which the agent then uses to authenticate to the appliance. As the management web console is running o...
CrushFTP < 11.1.0 - Directory Traversal Exploit
Exploit Title: CrushFTP Directory Traversal Exploit Author: Abdualhadi khalifa https://twitter.com/absholily Vendor Homepage: https://www.crushftp.com/ Software Link: https://www.crushftp.com/download/ Version: below 10.7.1 and 11.1.0 as well as legacy 9.x Tested on: Windows10 import requests...
Enrollment System v1.0 - SQL Injection Exploit
Exploit Title: Enrollment System v1.0 - SQL Injection Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: Obi08 Vendor Homepage: https://github.com/Obi08/EnrollmentSystem Software Link: https://github.com/Obi08/EnrollmentSystem Version: v1.0 Tested on: Mac OSX, XAMPP, Apache, MySQL...
Jedox 2020.2.5 - Remote Code Execution via Executable Groovy-Scripts Vulnerability
Exploit Title: Jedox 2020.2.5 - Remote Code Execution via Executable Groovy-Scripts Exploit Author: Syslifters - Christoph Mahrl, Aron Molnar, Patrick Pirker and Michael Wedl Vendor Homepage: https://jedox.com Version: Jedox 2020.2 20.2.5 and older CVE : CVE-2022-47876 Introduction...
Bus Pass Management System 1.0 - Stored Cross-Site Scripting Vulnerability
Exploit Title: Bus Pass Management System 1.0 - Stored Cross-Site Scripting XSS Exploit Author: Matteo Conti - https://deltaspike.io Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/wp-content/uploads/2021/07/Bus-Pass-Management-System-Using-PHP-MySQL.zip Version: 1....
Beauty salon v1.0 - Remote Code Execution Exploit
Exploit Title: Beauty-salon v1.0 - Remote Code Execution RCE Exploit Author: nu11secur1ty Vendor: https://code4berry.com/projects/beautysalon.php Software: https://code4berry.com/project%20downloads/beautysalondownload.php Reference:...
Online Food Ordering System 2.0 SQL Injection Vulnerability
Exploit Title: Online Food Ordering System v2 - Sql Injection Time-Based Blind Exploit Author: Anıl Kızıltan Vendor Homepage: https://www.sourcecodester.com/php/16022/online-food-ordering-system-v2-using-php8-and-mysql-free-source-code.html Software Link:...
Online Diagnostic Lab Management System 1.0 SQL Injection / Shell Upload Exploit
Exploit Title: Online Diagnostic Lab Management System - Remote Code Execution RCE Unauthenticated Exploit Author: yousef alraddadi - https://twitter.com/y0usef11 Vendor Homepage: https://www.sourcecodester.com/php/15667/online-diagnostic-lab-management-system-using-php-and-mysql-free-download.ht...
KLiK Social Media Website 1.0 - Multiple SQL injection Vulnerability
Exploit Title: KLiK Social Media Website 1.0 - 'Multiple' SQLi Exploit Author: corpse Vendor Homepage: https://github.com/msaad1999/KLiK-SocialMediaWebsite Software Link: https://github.com/msaad1999/KLiK-SocialMediaWebsite Version: 1.0 Tested on: Debian 11 Parameter: poll GET Type: time-based...
Drupal avatar_uploader v7.x-1.0-beta8 - Cross Site Scripting Vulnerability
Exploit Title: Drupal avataruploader v7.x-1.0-beta8 - Cross Site Scripting XSS Author: Milad karimi Software Link: https://www.drupal.org/project/avataruploader Version: v7.x-1.0-beta8 Tested on: Windows 10 CVE: N/A 1. Description: This plugin creates a avataruploader from any post types. The...
College Website Management System 1.0 SQL Injection Vulnerability
Exploit Title: College Website Management System 1.0 - SQL Injection Exploit Author: Mr Empy Software Link: https://www.sourcecodester.com/php/15203/college-website-content-management-system-phpoop-free-source-code.html Version: 1.0 Tested on: Linux Title: ================ College Website...
WordPress RegistrationMagic V 5.0.1.5 Plugin- SQL Injection Exploit
Exploit Title: WordPress Plugin RegistrationMagic V 5.0.1.5 - SQL Injection Authenticated Date 23.01.2022 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://registrationmagic.com/ Software Link:...
AgentTesla Builder Web Panel Cross Site Scripting Vulnerability
Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/db9629508fda139f71f625d764c7eff7.txt Contact: email protected Media: twitter.com/malvuln Threat: AgentTesla Builder Web Panel Vulnerability: Cross Site Scripting XSS Description: AgentTeslaBuilder WebU...
Compro Technology IP Camera - (mjpegStreamer.cgi) Screenshot Disclosure Vulnerability
Exploit Title: Compro Technology IP Camera - ' mjpegStreamer.cgi' Screenshot Disclosure Exploit Author: icekam,xiao13,Rainbow,tfsec Software Link: http://www.comprotech.com.hk/ Version: Compro IP70 2.087130218, IP570 2.087130520, IP60, TN540 CVE : CVE-2021-40382 There is an unauthorized access...
Park Ticketing Management System 1.0 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: Park Ticketing Management System 1.0 - Authentication Bypass Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Sony Playstation 4 (PS4) < 7.02 / FreeBSD 9 / FreeBSD 12 - Kernel Local Privilege Escalation
Sony Playstation 4 PS4 include include include include include include include define KERNEL include undef KERNEL define WANTFILE include include include include include define WANTSOCKET include include define WANTINPCB include include include // define FBSD12 define ELFMAGIC 0x464c457f define...
Barco / AWIND OEM Presentation Platform Unauthenticated Remote Command Injection Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Barco/AWIND OEM Presentation Platform Unauthenticated Remote Command Injection Exploit Author: Jacob Baines Tested on: Crestron AM-100 1.6.0.2 CVE : CVE-2019-3929 PoC Video: https://www.youtube.com/watch?v=q-PIjnPcu2k...
WordPress WP User Manager 2.0.8 SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: WP User Manager v2.0.8 WordPress Plugin - Time-Based SQL Injection Author: Socket0x03 Alvaro J. Gene Software Link: https://wordpress.org/plugins/wp-user-manager Plugin: WP User Manager Version: v2.0.8 last version File: login...
Microsoft Windows 2003 SP2 - RRAS SMB Remote Code Execution Exploit
Exploit for windows platform in category remote exploits !/usr/bin/env python -- coding: utf-8 -- Tested in Windows Server 2003 SP2 ES - Only works when RRAS service is enabled. The exploited vulnerability is an arbitraty pointer deference affecting the dwVarID field of the MIBOPAQUEQUERY...
pChart 2.1.3 - Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: pChart 2.1.3 Directory Traversal and Reflected XSS Date: 2014-01-24 Exploit Author: Balazs Makany Vendor Homepage: www.pchart.net Software Link: www.pchart.net/download Google Dork: intitle:"pChart 2.x - examples" intext:"2.1.3"...
TPC-110W - Missing Authentication for Critical Function Exploit
include include include include include include int mainint argc, char argv int sock; struct sockaddrin servaddr; char command512; sock = socketAFINET, SOCKSTREAM, 0; if sock 0 perror"socket"; exit1; memset&servaddr, '0', sizeofservaddr; servaddr.sinfamily = AFINET; servaddr.sinport = htons8888; ...
TELSAT marKoni FM Transmitter 1.9.5 Insecure Access Control Vulnerability
TELSAT marKoni FM Transmitter 1.9.5 Insecure Access Control Change Password Vendor: TELSAT Srl Product web page: https://www.markoni.it Affected version: Markoni-D Compact FM Transmitters Markoni-DH Exciter+Amplifiers FM Transmitters Markoni-A Analogue Modulator FM Transmitters Firmware: 1.9.5...
Oracle RMAN Missing Auditing Vulnerability
Proof of concept exploit for Oracle RMAN on Oracle database versions 19c, 18c, 12.2.0.1, and 12.1.0.2 where an RMAN controlfile operation is not adequately logged. Title: CVE-2021-2207 - RMAN Controlfile Operation Not Audited Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2,...
PnPSCADA v2.x - Unauthenticated PostgreSQL Injection Vulnerability
Exploit Title: PnPSCADA v2.x - Unauthenticated PostgreSQL Injection Exploit Author: Momen Eldawakhly Cyber Guy at Samurai Digital Security Ltd Vendor Homepage: https://pnpscada.com/ Version: PnPSCADA cross platforms: v2.x Tested on: Unix CVE : CVE-2023-1934 Proof-of-Concept:...
Dell EMC Networking PC5500 firmware versions 4.1.0.22 and Cisco Sx / SMB - Information Disclosure
Exploit Title: Dell EMC Networking PC5500 firmware versions 4.1.0.22 and Cisco Sx / SMB - Information Disclosure DSA-2020-042: Dell Networking Security Update for an Information Disclosure Vulnerability | Dell US...
Senayan Library Management System v9.5.0 - SQL Injection Vulnerability
Title: Senayan Library Management System v9.5.0 - SQL Injection Author: nu11secur1ty Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/slims.web.id/SLIMS-9.5.0 Description: The...
Joomla JKassa ShoppingCart 2.0.0 SQL Injection Vulnerability
┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐ ┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ┌┘ Exploits ┌┘ └───────────────────────────────────────────────────────────────────────────────────────┘┘ : Author : CraCkEr : │ Website :...
Wifi HD Wireless Disk Drive 11 Local File Inclusion Vulnerability
Exploit Title: Wifi HD Wireless Disk Drive Local File Inclusion Date: Aug 13, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: http://www.savysoda.com Software Link: https://apps.apple.com/us/app/wifi-hd-wireless-disk-drive/ id311170976 Version: 11 Tested on: iPhone OS 155 GET...
CMSimple 5.4 - Cross Site Scripting Vulnerability
Exploit Title: CMSimple 5.4 - Cross Site Scripting XSS Exploit Author: heinjame Vendor Homepage: https://www.cmsimple.org/en/ Software Link: https://www.cmsimple.org/en/?Downloads Version: images Upload a file Attack vector '-alert1// need to encode ' When the victim clicks the delete button,an...
Simple Online College Entrance Exam System 1.0 - (Multiple) SQL injection Vulnerability
Exploit Title: Simple Online College Entrance Exam System 1.0 - 'Multiple' SQL injection Exploit Author: Amine ismail @aminei Vendor Homepage: https://www.sourcecodester.com/php/14976/simple-online-college-entrance-exam-system-php-and-sqlite-free-source-code.html Software Link:...
QiHang Media Web Digital Signage 3.0.9 Arbitrary File Disclosure Vulnerability
Exploit for hardware platform in category web applications QiHang Media Web QH.aspx Digital Signage 3.0.9 Arbitrary File Disclosure Vulnerability Vendor: Shenzhen Xingmeng Qihang Media Co., Ltd. Guangzhou Hefeng Automation Technology Co., Ltd. Product web page: http://www.howfor.com Affected...
Curfew e-Pass Management System 1.0 SQL Injection Vulnerability
Curfew e-Pass Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to gh1mau. Exploit Title: Curfew e-Pass Management System 1.0 Multiple SQL Injection Vulnerabilities Exploit Author: Mucahit...
Infor Storefront B2B 1.0 - (usr_name) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Infor Storefront B2B 1.0 - 'usrname' SQL Injection Google Dork: inurl:storefrontb2bweb Exploit Author: ratboy Vendor Homepage: https://www.insitesoft.com/infor-storefront/ Version: Infor Storefront Tested on: Windows All Version...
NetEase(163,126) Mail Persistent XSS Vulnerability
This ia a 0day XSS vulnerability. The vulnerability for Netease email163,126 that works on all operating systems and browsers. Android and iPhone sometimes don't work You can easily obtain the users session and password with this XSS. Also, QQ-XSS vulnerability will be uploaded soon. Thank you...
10-Strike Network Inventory Explorer 9.03 - (Read from File) Buffer Overflow (SEH) (ROP) Exploit
Exploit Title: 10-Strike Network Inventory Explorer 9.03 - 'Read from File' Buffer Overflow SEHROP Exploit Author: Hodorsec Version: 9.03 Software Link: https://www.10-strike.com/networkinventoryexplorer/network-inventory-setup.exe Vendor Homepage: https://www.10-strike.com Tested on: Win8.1 x64 ...
Linux/ARM64 - Egghunter (PWN!PWN!) + execve("/bin/sh", NULL, NULL) + mprotect() Shellcod
/ Title: Linux/ARM64 - Egghunter PWN!PWN! + execve"/bin/sh", NULL, NULL + mprotect Shellcode 88 Bytes Date: 2019-06-30 Tested: Ubuntu 16.04 aarch64 Author: Ken Kitahara Compilation: gcc -o loader loader.c ubuntu@ubuntu:/works$ lsbrelease -a No LSB modules are available. Distributor ID: Ubuntu...
JavaScript V8 Turbofan Out-Of-Bounds Read Exploit
V8: Turbofan may read a Map pointer out-of-bounds when optimizing Reflect.construct The following JavaScript program found through fuzzing triggers an assertion failure in debug builds of the latest v8 and the current release branch, 7.2.502.28: function farg const o =...
Zervit Webserver 0.4 Directory Traversal / Memory Corruption PoC
Exploit for windows platform in category remote exploits ================================================================ Zervit Webserver 0.4 Directory Traversal / Memory Corruption PoC ================================================================ Zervit webserver 0.4 Directory Traversal &...
ABB Cylon Aspect 3.08.00 sslCertAjax.php Remote Command Execution Vulnerability
ABB Cylon Aspect version 3.08.00 suffers from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands through the country, state, locality, organization, and hostname HTTP POST parameters called by the sslCertAjax.php script. ABB...