39001 matches found
changedetection 0.45.20 Remote Code Execution Exploit
Exploit Title: changedetection = 0.45.20 Remote Code Execution RCE Exploit Author: Zach Crosman zcrosman Vendor Homepage: changedetection.io Software Link: https://github.com/dgtlmoon/changedetection.io Version: = 0.45.20 Tested on: Linux CVE : CVE-2024-32651 from pwn import import requests from...
Academy LMS 6.1 Cross Site Scripting / File Upload Vulnerabilities
Exploit Title: Academy LMS 6.1 - Arbitrary File Upload Exploit Author: CraCkEr Vendor: Creativeitem Vendor Homepage: https://academylms.net/ Software Link: https://demo.academylms.net/ Tested on: Windows 10 Pro Impact: Allows User to upload files to the web server CWE: CWE-79 - CWE-74 - CWE-707...
Global Multi School Management System Express v1.0 - SQL Injection Vulnerability
Exploit Title: Global - Multi School Management System Express v1.0- SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/global-multi-school-management-system-express/21975378 Tested on: Kali Linux & MacOS CVE: N/A Request POST /report/balance HTTP/1.1 Content-Type...
Shelly PRO 4PM v0.11.0 - Authentication Bypass Exploit
!/bin/bash Exploit Title: Shelly PRO 4PM v0.11.0 - Authentication Bypass Google Dork: NA Date: 2nd August 2023 Exploit Author: The Security Team exploitsecurity.io Exploit Blog: https://www.exploitsecurity.io/post/cve-2023-33383-authentication-bypass-via-an-out-of-bounds-read-vulnerability Vendor...
Blackcat Cms v1.4 - Remote Code Execution Vulnerability
Exploit Title: Blackcat Cms v1.4 - Remote Code Execution RCE Application: blackcat Cms Version: v1.4 Bugs: RCE Technology: PHP Vendor URL: https://blackcat-cms.org/ Software Link: https://github.com/BlackCatDevelopment/BlackCatCMS Date of found: 13.07.2023 Author: Mirabbas Ağalarov Tested on: Lin...
ChurchCRM 4.5.1 - Authenticated SQL Injection Exploit
Exploit Title: ChurchCRM 4.5.1 - Authenticated SQL Injection Exploit Author: Arvandy Blog Post: https://github.com/arvandy/CVE/blob/main/CVE-2023-24787/CVE-2023-24787.md Software Link: https://github.com/ChurchCRM/CRM/releases Vendor Homepage: http://churchcrm.io/ Version: 4.5.1 Tested on: Window...
TP-Link TL-WR902AC firmware 210730 (V3) - Remote Code Execution (Authenticated) Exploit
!/usr/bin/python3 Exploit Title: TP-Link TL-WR902AC firmware 210730 V3 - Remote Code Execution RCE Authenticated Exploit Author: Tobias Müller Date: 2022-12-01 Version: TL-WR902ACEUV30.9.1 Build 220329 Vendor Homepage: https://www.tp-link.com/ Tested On: TP-Link TL-WR902AC Vulnerability...
System Mechanic v15.5.0.61 - Arbitrary Read/Write Exploit
/ Exploit Title: System Mechanic v15.5.0.61 - Arbitrary Read/Write Exploit Author: Brandon Marshall Vendor Homepage: https://www.iolo.com/ Tested Version - System Mechanic version 15.5.0.61 Driver Version - 5.4.11 - amp.sys Tested on OS - 64 bit Windows 10 18362 Fixed Version - System Mechanic...
WordPress dzs-zoomsounds 6.60 Plugin - Remote Code Execution (Unauthenticated) Exploit
Exploit Title: WordPress Plugin dzs-zoomsounds - Remote Code Execution RCE Unauthenticated Google Dork: inurl:wp-content/plugins/dzs-zoomsounds Exploit Author: Overthinker1877 1877 Team Vendor Homepage: https://digitalzoomstudio.net/docs/wpzoomsounds/ Version: 6.60 Tested on: Windows / Linux impo...
Budget and Expense Tracker System 1.0 - Arbitrary File Upload Vulnerability
Exploit Title: Budget and Expense Tracker System 1.0 - Arbitrary File Upload Exploit Author: t//\1 Vendor Homepage: https://www.sourcecodester.com/php/14893/budget-and-expense-tracker-system-php-free-source-code.html Tested on: Linux Version: 2.0 Exploit Description: The application is prone to a...
Dolibarr ERP/CRM 10.0.6 - Login Brute Force Exploit
Exploit Title: Dolibarr ERP/CRM 10.0.6 - Login Brute Force Exploit Author: Creamy Chicken Soup Vendor Homepage: https://www.dolibarr.org Software Link: https://sourceforge.net/projects/dolibarr/ Version: 10.0.6 Tested on: Windows 10 - 64bit CVE: CVE-2020-7995 function brute$url,$username,$passwd...
Aruba Instant (IAP) - Remote Code Execution Exploit
Aruba Instant IAP - Remote Code Execution Exploit import socket import sys import struct import time import threading import urllib3 import re import telnetlib import xml.etree.ElementTree as ET import requests urllib3.disablewarnings CONTINUERACE = True SNPRINTFCREATEFILEMAXLENGTH = 245 def...
Gitea 1.12.5 - Remote Code Execution (Authenticated) Exploit
Exploit Title: Gitea 1.12.5 - Remote Code Execution Authenticated Exploit Author: Podalirius PoC demonstration article: https://podalirius.net/articles/exploiting-cve-2020-14144-gitea-authenticated-remote-code-execution/ Vendor Homepage: https://gitea.io/ Software Link: https://dl.gitea.io/...
QiHang Media Web Digital Signage 3.0.9 Password Disclosure Vulnerability
QiHang Media Web Digital Signage version 3.0.9 suffers from a cleartext transmission/storage of sensitive information in a cookie. This allows a remote attacker to intercept the HTTP Cookie authentication credentials via a man-in-the-middle attack. QiHang Media Web QH.aspx Digital Signage 3.0.9...
BarracudaDrive 6.5 Local Privilege Escalation Vulnerability
Exploit Title: BarracudaDrive v6.5 - User-System - Local Privilege Escalation Exploit Author: Bobby Cooke boku & Adeeb Shah @hyd3sec Date: 08-08-2020 Vendor Homepage: https://barracudaserver.com/ Software Link: https://download.cnet.com/BarracudaDrive/3001-185064-10723210.html Version: v6.5 Teste...
Responsive Online Blog 1.0 SQL Injection Vulnerability (2)
Exploit for php platform in category web applications Exploit Title: Responsive Online Blog 1.0 - 'single.php?id=' SQL Injection Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Code Blocks 20.03 - Denial Of Service Exploit
Exploit Title: Code Blocks 20.03 - Denial Of Service PoC Vendor Homepage: http://www.codeblocks.org/ Software Link Download: https://sourceforge.net/projects/codeblocks/files/Binaries/20.03/Windows/codeblocks-20.03-setup.exe/download Exploit Author: Paras Bhatia Vulnerable Software: Code Blocks...
Easy RM to MP3 Converter 2.7.3.700 - (Input) Local Buffer Overflow (SEH) Exploit
Exploit Title: Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow SEH Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/707414955696c57b71c7f160c720bed5-EasyRMtoMP3Converter.exe Version: 2.7.3.700 Tested on: Windows 7 x86 Proof of Concept: 1.- Run the python...
HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account Exploit
Exploit Title: HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account Exploit Author: Snawoot Vendor Homepage: http://www.hisilicon.com Product Link: http://www.hisilicon.com/en/Products Version: hi3520d Tested on: Linux CVE: N/A References: https://habr.com/en/post/486856/ References:...
Microsoft Windows Kernel - win32k Denial of Service (MS16-135) Exploit
Exploit for windows platform in category dos / poc / Source: https://github.com/tinysec/public/tree/master/CVE-2016-7255 Full Proof of Concept: https://github.com/tinysec/public/tree/master/CVE-2016-7255 https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40745.z...
WysGui <= 2.3 (FCKeditor) Multiple Upload Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
PageDirector CMS Sql Injection Vulnerability
Exploit for php platform in category web applications ============================================ PageDirector CMS Sql Injection Vulnerability ============================================ Author: Pokeng Software Link: http://www.customerparadigm.com/product.php?proid=2 buy $675.00 Platform /...
Joomla Artlinks Component <= 1.0b4 Remote Include Vulnerability
Exploit for unknown platform in category web applications =============================================================== Joomla Artlinks Component \ \ .: .:.. .. ./ .:/:. ./. .:/: . ...:. .advisory. .:... :..................: 18.o8.2oo6 .. Affected Application: Artlinks v1.0 Beta 4...
Mambo <= 4.5.2 Globals Overwrite / Remote Command Exection Exploit
Exploit for unknown platform in category web applications ================================================================== Mambo Mambo body bac...
dhtmlxFileExplorer 8.4.6 Directory Traversal Vulnerability
Exploit Title: dhtmlxFileExplorer 8.4.6 - Access Sensitive Floder via Directory Traversal in DHX File Exlploer Exploit Author: Nutchaya Augkanavitayakul, Nattachai Wanmak, Pongtorn Angsuchotmetee Vendor Homepage: https://dhtmlx.com Software Link: https://dhtmlx.com Version: 8.4.6 Tested on: macOS...
Acronis Cyber Infrastructure Default Password Remote Code Execution Exploit
Acronis Cyber Infrastructure ACI is an IT infrastructure solution that provides storage, compute, and network resources. Businesses and Service Providers are using it for data storage, backup storage, creating and managing virtual machines and software-defined networks, running cloud-native...
BWL Advanced FAQ Manager 2.0.3 SQL Injection Vulnerability
Exploit Title: BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection Exploit Author: Ivan Spiridonov xbz0n Software Link: https://codecanyon.net/item/bwl-advanced-faq-manager/5007135 Version: 2.0.3 Tested on: Ubuntu 20.04 CVE: CVE-2024-32136 SQL Injection SQL injection is a type of securit...
Quicklancer v1.0 - SQL Injection Vulnerability
Exploit Title: Quicklancer v1.0 - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/quicklancer-freelance-marketplace-php-script/39087135 Demo Site: https://quicklancer.bylancer.com Tested on: Kali Linux CVE: N/A Request POST /php/user-ajax.php HTTP/1.1...
Mediconta 3.7.27 - (servermedicontservice) Unquoted Service Path Vulnerability
Exploit Title: Mediconta 3.7.27 - 'servermedicontservice' Unquoted Service Path Exploit Author: Luis Martinez Vendor Homepage: https://www.infonetsoftware.com Software Link : https://www.infonetsoftware.com/soft/instalarMedicontx.exe Tested Version: 3.7.27 Vulnerability Type: Unquoted Service Pat...
Automatic Question Paper Generator System 1.0 Cross Site Scripting Vulnerability
Exploit Title: Automatic Question Paper Generator System 1.0 - Cross-site scripting stored Exploit Author: Mr Empy Software Link: https://www.sourcecodester.com/php/15190/automatic-question-paper-generator-system-phpoop-free-source-code.html Version: 1.0 Tested on: Linux Title: ================...
AHSS-PHP 1.0 Cross Site Scripting / SQL Injection Vulnerabilities
Exploit Title: AHSS-PHP by: oretnom23 v1.0 is vulnerable in the application /scheduler/classes/Login.php to remote SQL-Injection-Bypass-Authentication + XSS-Stored Hijacking PHPSESSID Author: nu11secur1ty Testing and Debugging: nu11secur1ty Date: 09.15.2021 Vendor:...
NetModule Router Software Password Handling / Session Fixation Vulnerability
NetModule Router Software versions prior to 4.3.0.113, 4.4.0.111, and 4.5.0.105 suffer from insecure password handling and session fixation vulnerabilities. ======================================================================= title: Multiple Vulnerabilities in NetModule Router Software product...
Webmin 1.973 - (run.cgi) Cross-Site Request Forgery Vulnerability
Exploit Title: Webmin 1.973 - 'run.cgi' Cross-Site Request Forgery CSRF Exploit Author: Mesh3l911 & Z0ldyck Vendor Homepage: https://www.webmin.com Repo Link: https://github.com/Mesh3l911/CVE-2021-31761 Version: Webmin 1.973 Tested on: All versions POC By \0331;m \0331;37mMesh3l\0331;m \0331;36m...
Websvn 2.6.0 - Remote Code Execution (Unauthenticated) Exploit
Exploit Title: Websvn 2.6.0 - Remote Code Execution Unauthenticated Exploit Author: g0ldm45k Vendor Homepage: https://websvnphp.github.io/ Software Link: https://github.com/websvnphp/websvn/releases/tag/2.6.0 Version: 2.6.0 Tested on: Docker + Debian GNU/Linux Buster CVE : CVE-2021-32305 import...
Stock Management System 1.0 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: Stock Management System 1.0 - Authentication Bypass Exploit Author: Adeeb Shah @hyd3sec Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/14366/stock-management-system-php.html...
Apache Tomcat - AJP Ghostcat File Read/Inclusion Exploit
Exploit for multiple platform in category web applications !/usr/bin/env python CNVD-2020-10487 Tomcat-Ajp lfi by ydhcui import struct Some references: https://tomcat.apache.org/connectors-doc/ajp/ajpv13a.html def packstrings: if s is None: return struct.pack"h", -1 l = lens return...
Mobatek MobaXterm 12.1 - Buffer Overflow (SEH) Exploit
Title: Mobatek MobaXterm 12.1 - Buffer Overflow SEH Author: Xavi Beltran Vendor: xavibel.com Vedor Page: https://mobaxterm.mobatek.net/download.html Software Link: https://download.mobatek.net/1112019010310554/MobaXtermPortablev11.1.zip Exploit Development process:...
Siemens LOGO! 8 Missing Authentication Vulnerability
Due to storing passwords in a recoverable format on Siemens LOGO! 8 PLCs, an attacker can gain access to configured passwords as cleartext. Siemens LOGO! 8 Missing Authentication Vulnerability Product: LOGO! Manufacturer: Siemens Affected Versions: LOGO! 8 all versions Tested Versions: LOGO! 8,...
Pidgin 2.13.0 - Denial of Service Exploit
-- coding: utf-8 -- Exploit Title: Pidgin 2.13.0 - Denial of Service PoC Author: Alejandra Sánchez Vendor Homepage: https://pidgin.im/ Software https://cfhcable.dl.sourceforge.net/project/pidgin/Pidgin/2.13.0/pidgin-2.13.0.exe Version: 2.13.0 Tested on: Windows 7, Windows 10 Proof of Concept: 1.-...
Fortify Software Security Center (SSC) 17.10/17.20/18.10 - Information Disclosure
Exploit for multiple platform in category web applications Details ================ Software: Fortify SSC Software Security Center Version: 17.10, 17.20 & 18.10 Homepage: https://www.microfocus.com Advisory report: https://github.com/alt3kx/CVE-2018-7690 CVE: CVE-2018-7690 CVSS: 6.5 Medium;...
Evince 3.24.0 - Command Injection Exploit
Exploit for linux platform in category dos / poc Exploit Title: evince command line injection Exploit Author: Matlink Vendor Homepage: https://wiki.gnome.org/Apps/Evince Software Link: https://wiki.gnome.org/Apps/Evince Version: 3.24.0 Tested on: Debian sid CVE : CVE-2017-1000083 Can be tested on...
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode) Exploit
Exploit for windows platform in category local exploits Exploit Title: XAMPP Control Panel 3.2.2 - Buffer Overflow SEH Unicode Exploit Author: Gionathan "John" Reale 0-day DoS exploit, Semen Alexandrovich Lyhin 1-day fully working exploit. Shellcode Author: Giuseppe D'Amore EDB:28996 Software:...
Procps-ng - Multiple Vulnerabilities
Exploit for linux platform in category local exploits Procps-ng Audit Report ======================================================================== Contents ======================================================================== Summary 1. FUSE-backed /proc/PID/cmdline 2. Unprivileged process...
Microsoft Windows - LNK Shortcut File Code Execution Exploit
Exploit for windows platform in category local exploits !/usr/bin/python -- coding: utf-8 -- Title : CVE-2017-8464 | LNK Remote Code Execution Vulnerability CVE : 2017-8464 Authors : ykoster, nixawk Notice : Only for educational purposes. Support : python2 import struct def generateSHELLLINKHEADE...
modified eCommerce Shopsoftware 2.0.0.0 rev 9678 - Blind SQL Injection
Exploit for php platform in category web applications...
CuteNews 2.0.3 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: CuteNews 2.0.3 Remote File Upload Vulnerability Date: 02/07/2015 Exploit Author: T0x!c Facebook: https://www.facebook.com/Dz.pr0s Vendor Homepage: http://cutephp.com/ Software Link: http://cutephp.com/cutenews/cutenews.2.0.3.zip...
IFP Group SQL Injection Vulnerability
Exploit for php platform in category web applications ===================================== IFP Group SQL Injection Vulnerability ===================================== Exploit Title: IFP Group SQL Injecyion Date: 28/6/2010 Author: dev!l ghost Email: awsatlivedotit Software Link:N/A Version: Any...
WordPress Th Shop Mania Theme 1.4.9 Missing Authorization Exploit
import requests import argparse import re import time By Nxploit | Khaled alenazi, Function to check if the site is vulnerable def checkvulnerabilityurl: versionurl = f"url/wp-content/themes/th-shop-mania/readme.txt" try: response = requests.getversionurl, timeout=5 if response.statuscode == 200:...
Gleamtech FileVista 9.2.0.0 Missing Authorization Vulnerability
A vulnerability exists in Gleamtech FileVista version 9.2.0.0 that allows unauthorized access to image files, even after the HTTP cookie associated with the session is deleted. The issue arises due to insufficient validation of session or authentication tokens on the server side. Exploit Title:...
Webedition CMS v2.9.8.8 - Stored XSS Vulnerability
Exploit Title: Webedition CMS v2.9.8.8 - Stored XSS Application: Webedition CMS Version: v2.9.8.8 Bugs: Stored Xss Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 03.08.2023 Author: Mirabbas...