39001 matches found
Windows/x86 - Null-Free WinExec Calc.exe Shellcode (195 bytes)
Title: Windows\x86 - Null-Free WinExec Calc.exe Shellcode 195 bytes Shellcode Author: Bobby Cooke Technique: PEB & Export Directory Table Tested On: Windows 10 Pro x86 10.0.18363 Build 18363 start: ; Create a new stack frame mov ebp, esp ; Set base stack pointer for new stack-frame sub esp, 0x20 ...
PhpIX 2012 Professional - (id) SQL Injection Vulnerability
Exploit for php platform in category web applications Title: PhpIX 2012 Professional - 'id' SQL Injection Author: indoushka Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 69.032-bit Vendor : http://www.allhandsmarketing.com/ poc : + Dorking İn Google Or Other Search Enggine. +...
SpotFTP-FTP Password Recover 2.4.8 - Denial of Service Exploit
Exploit Title: SpotFTP-FTP Password Recover 2.4.8 - Denial of Service PoC Exploit Author: Ismael Nava Vendor Homepage: http://www.nsauditor.com/ Software Link: http://www.nsauditor.com/spotftp.html Version: 2.4.8 Tested on: Windows 10 Home x64 CVE : n/a STEPS Open the program SpotFTP-FTP Password...
aSc TimeTables 2020.11.4 - Denial of Service Exploit
Exploit Title: aSc TimeTables 2020.11.4 - Denial of Service PoC Exploit Author: Ismael Nava Vendor Homepage: https://www.asctimetables.com/!/home Software Link: https://www.asctimetables.com/!/home/download Version: 2020.11.4 Tested on: Windows 10 Home x64 CVE : n/a STEPS Open the program aSc...
CandidATS 2.1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
Exploit for php platform in category web applications Title: CandidATS 2.1.0 - Cross-Site Request Forgery Add Admin Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/u/auieo/profile/ Software Link: https://sourceforge.net/projects/candidats/files/Version 2.1.0 Tested on Ubuntu...
ManageEngine EventLog Analyzer 10.0 - Information Disclosure Vulnerability
Exploit for java platform in category web applications Exploit Title: ManageEngine EventLog Analyzer 10.0 - Information Disclosure Author: Scott Goodwin Vendor: https://www.manageengine.com/ Software Link: https://www.manageengine.com/products/eventlog/ CVE: CVE-2019-19774 Vulnerability Name:...
ATutor 2.2.4 - (id) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: ATutor 2.2.4 - 'id' SQL Injection Exploit Author: Andrey Stoykov Vendor Homepage: https://atutor.github.io/ Software Link: https://sourceforge.net/projects/atutor/files/latest/download Version: ATutor 2.2.4 Tested on: LAMP on...
Android Binder - Use-After-Free Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Android Binder Use-After-Free Exploit", 'Description' = %q , 'License' = MSFLICENSE, 'Author' = 'Jann Horn', discovery and exploit 'Maddie Stone'...
I6032B-P POE 2.0MP Outdoor Camera - Remote Configuration Disclosure Exploit
Exploit for hardware platform in category web applications Exploit Title: I6032B-P POE 2.0MP Outdoor Camera - Remote Configuration Disclosure Author: Todor Donev Vendor: https://www.revotec.com/ Product Link: CVE: N/A !/usr/bin/perl Revotech I6032B-P POE 1920x1080P 2.0MP Outdoor Camera Remote...
ESCAM QD-900 WIFI HD Camera - Remote Configuration Disclosure Vulnerability
Exploit for hardware platform in category web applications Title: ESCAM QD-900 WIFI HD Camera - Remote Configuration Disclosure Author: Todor Donev Vendor: www.escam.cn Product Link: http://www.escam.cn/search/?class1=&class2=&class3=&searchtype=0&searchword=qd-900&lang=en CVE: N/A !/usr/bin/perl...
Avaya IP Office Application Server 11.0.0.0 - Reflective Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Avaya IP Office Application Server 11.0.0.0 - Reflective Cross-Site Scripting Exploit Authors: Dan Bohan, Scott Goodwin, OCD Tech Vendor Homepage: https://www.avaya.com/en/ Software Link:...
AMSS++ 4.7 - Backdoor Admin Account
Exploit for php platform in category web applications Title: AMSS++ 4.7 - Backdoor Admin Account Author: indoushka Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 65.032-bit Vendor : http://amssplus.ubn4.go.th/amssplusdownload/amssplus431install.rar Dork : แนะนำให้ใช้บราวเซอร์...
SecuSTATION SC-831 HD Camera - Remote Configuration Disclosure Exploit
Exploit for hardware platform in category web applications Exploit Title: SecuSTATION SC-831 HD Camera - Remote Configuration Disclosure Author: Todor Donev Date: 2020-02-23 Vendor: https://secu.jp/ Product Link: https://secu.jp/support/831.html CVE: N/A !/usr/bin/perl SecuSTATION SC-831 HD Camer...
DotNetNuke 9.5 - Persistent Cross-Site Scripting Vulnerability
Exploit for asp platform in category web applications Exploit Title: DotNetNuke 9.5 - Persistent Cross-Site Scripting Exploit Author: Sajjad Pourali Vendor Homepage: http://dnnsoftware.com/ Software Link:...
Aptina AR0130 960P 1.3MP Camera - Remote Configuration Disclosure Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Aptina AR0130 960P 1.3MP Camera - Remote Configuration Disclosure Author: Todor Donev Date: 2020-02-23 Vendor: https://acesecurity.jp Product Link: https://acesecurity.jp/support/top/wipseries/wip-90113 CVE: N/A...
DotNetNuke 9.5 - File Upload Restrictions Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: DotNetNuke 9.5 - File Upload Restrictions Bypass Exploit Author: Sajjad Pourali Vendor Homepage: http://dnnsoftware.com/ Software Link:...
SecuSTATION IPCAM-130 HD Camera - Remote Configuration Disclosure Vulnerability
Exploit for hardware platform in category web applications Exploit Title: SecuSTATION IPCAM-130 HD Camera - Remote Configuration Disclosure Author: Todor Donev Vendor: https://secu.jp/ Product Link: https://secu.jp/support/831nh1.html CVE: N/A SecuSTATION IPCAM-130 HD Camera Remote Configuration...
Cacti 1.2.8 - Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: Cacti 1.2.8 - Remote Code Execution Exploit Author: Askar @mohammadaskar2 CVE: CVE-2020-8813 Vendor Homepage: https://cacti.net/ Version: v1.2.8 Tested on: CentOS 7.3 / PHP 7.1.33 !/usr/bin/python3 import requests import sys...
Go SSH servers 0.0.2 - Denial of Service Exploit
Exploit Title: Go SSH servers 0.0.2 - Denial of Service PoC Author: Mark Adams Link: https://github.com/mark-adams/exploits/blob/master/CVE-2020-9283/poc.py CVE: CVE-2020-9283 Running this script may crash the remote SSH server if it is vulnerable. The GitHub repository contains a vulnerable and...
Apache James Server 2.3.2 - Insecure User Creation Arbitrary File Write Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Apache James Server 2.3.2 Insecure User Creation Arbitrary File Write", 'Description' = %q This module exploits a vulnerability that exists due t...
AMSS++ v 4.31 - (id) SQL Injection Vulnerability
Exploit for php platform in category web applications Title : AMSS++ v 4.31 - 'id' SQL Injection Author : indoushka Tested on: windows 10 Français V.Pro / browser : Mozilla firefox 65.032-bit Vendor: http://amssplus.ubn4.go.th/amssplusdownload/amssplus431install.rar Dork: แนะนำให้ใช้บราวเซอร์...
eLection 2.0 - (id) SQL Injection Vulnerability
Exploit for php platform in category web applications Title: eLection 2.0 - 'id' SQL Injection Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/projects/election-by-tripath/ Software Link: https://sourceforge.net/projects/election-by-tripath/files/Version 2.0 Tested on Ubuntu...
Quick N Easy Web Server 3.3.8 - Denial of Service Exploit
Title: Quick N Easy Web Server 3.3.8 - Denial of Service PoC Author: Cody Winkler Vendor Homepage: https://www.pablosoftwaresolutions.com/ Software Link: https://www.pablosoftwaresolutions.com/html/quickneasywebserver.html Version: $ python exploit.py 127.0.0.1 80 """ from future import...
OpenNetAdmin Ping Command Injection Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenNetAdmin Ping Command Injection', 'Description' = %q This module exploits a command injection in OpenNetAdmin between 8.5.14 and 18.1.1. ,...
D-Link DGS-1250 Header Injection Vulnerability
Exploit for hardware platform in category web applications D-Link DGS-1250 header injection vulnerability ============================================== The latest version of this advisory is available at: https://sintonen.fi/advisories/d-link-dgs-1250-header-injection.txt Overview -------- D-Lin...
Diamorphine Rootkit Signal Privilege Escalation Exploit
This Metasploit module uses Diamorphine rootkit's privesc feature using signal 64 to elevate the privileges of arbitrary processes to UID 0 root. This module has been tested successfully with Diamorphine from master branch 2019-10-04 on Linux Mint 19 kernel 4.15.0-20-generic x64. This module...
WordPress Forminator 1.11.2 Remote File Upload Exploit
Exploit for php platform in category web applications - Title : word press plugin forminator 1.11.2 - RFU - Author : MEHRANFEIZI - Vendor : https://wordpress.org/plugins/forminator/ - Category : Webapps ==============================================================================================...
Windows/10 Pro - Dynamic Null-Free PopCalc Shellcode (223 bytes)
; Shellcode Title: Dynamic, Null-Free PopCalc Shellcode 223 Bytes ; Shellcode Author: Bobby Cooke ; Technique: PEB & Export Directory Table ; Tested On: Windows 10 Pro x86 10.0.18363 Build 18363 Create a new stack frame push ebp ; push current base pointer to the stack mov ebp, esp ; Set Base Sta...
Apache James Server 2.3.2 Insecure User Creation / Arbitrary File Write Exploit
This Metasploit module exploits a vulnerability that exists due to a lack of input validation when creating a user. Messages for a given user are stored in a directory partially defined by the username. By creating a user with a directory traversal payload as the username, commands can be written...
Core FTP Lite 1.3 - Denial of Service Exploit
Exploit Title : Core FTP Lite 1.3 - Denial of Service PoC Exploit Author: Berat Isler Vendor Homepage: http://www.coreftp.com/ Software Link Download:http://tr.oldversion.com/windows/core-ftp-le-1-3cbuild1437 Version: Core FTP 1.3cBuild1437 Tested on : Windows 7 32-bit First step , Run exploit...
Easy2Pilot 7 - Cross-Site Request Forgery (Add User) Vulnerability
Exploit for php platform in category web applications Exploit Title: Easy2Pilot 7 - Cross-Site Request Forgery Add User Author: indoushka Tested on: windows 10 Français V.Pro / browser : Mozilla firefox 69.032-bit Vendor: http://easy2pilot-v7.com/ CVE: N/A poc : + Dorking İn Google Or Other Searc...
Virtual Freer 1.58 - Remote Command Execution Exploit
Exploit for php platform in category web applications Exploit title : Virtual Freer 1.58 - Remote Command Execution Exploit Author : SajjadBnd Vendor Homepage : http://freer.ir/virtual/ Software Link : http://www.freer.ir/virtual/download.php?action=get Software Linkmirror :...
DBPower C300 HD Camera - Remote Configuration Disclosure Exploit
Exploit for hardware platform in category web applications Exploit Title: DBPower C300 HD Camera - Remote Configuration Disclosure Author: Todor Donev Vendor: https://donev.eu/ CVE: N/A Copyright 2020 c Todor Donev https://donev.eu/ https://donev.eu/blog/dbpower-c300-multiple-vulnerabilities...
Nanometrics Centaur 4.3.23 - Unauthenticated Remote Memory Leak Exploit
Exploit for hardware platform in category web applications Exploit Title: Nanometrics Centaur 4.3.23 - Unauthenticated Remote Memory Leak Author: byteGoblin Vendor: https://www.nanometrics.ca Product: https://www.nanometrics.ca/products/accelerometers/titan-sma Product:...
WordPress WP Sitemap Page 1.6.2 Plugin - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Plugin WP Sitemap Page 1.6.2 - Persistent Cross-Site Scripting Exploit Author: UltraSecurityTeam Team Member = Ashkan Moghaddas , AmirMohammad Safari , Behzad khalife , Milad Ranjbar Vendor Homepage: UltraSec.Org...
Wordpress Strong Testimonials 2.40.1 Plugin - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Strong Testimonials 2.40.0 - Persistent Cross-Site Scripting Vendor Homepage: https://strongtestimonials.com Vendor Changelog: https://github.com/MachoThemes/strong-testimonials/blob/master/changelog.txt Exploit...
WordPress Theme Fruitful 3.8 - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Theme Fruitful 3.8 - Persistent Cross-Site Scripting Dork: intext:"Fruitful theme by fruitfulcode Powered by: WordPress" intext:"Comment" intext:"Leave a Reply" Category : Webapps Software Link:...
Anviz CrossChex - Buffer Overflow Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anviz CrossChex Buffer Overflow', 'Description' = %q Waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom...
SOPlanning 1.45 - Cross-Site Request Forgery (Add User) Vulnerability
Exploit for php platform in category web applications Exploit Title: SOPlanning 1.45 - Cross-Site Request Forgery Add User Exploit Author: J3rryBl4nks Vendor Homepage: https://www.soplanning.org/en/ Software Link: https://sourceforge.net/projects/soplanning/files/soplanning/ Version 1.45 Tested o...
BOOTP Turbo 2.0.1214 - (BOOTP Turbo) Unquoted Service Path Vulnerability
Exploit Title: BOOTP Turbo 2.0.1214 - 'BOOTP Turbo' Unquoted Service Path Exploit Author: boku Vendor Homepage: https://www.weird-solutions.com Software Link: https://www.weird-solutions.com/download/products/bootptdemoIA32.exe Version: 2.0.1214 Tested On: Windows 10 32-bit C:\Users\userwmic...
Ice HRM 26.2.0 - Cross-Site Request Forgery (Add User) Vulnerability
Exploit for php platform in category web applications Exploit Title: Ice HRM 26.2.0 - Cross-Site Request Forgery Add User Exploit Author: J3rryBl4nks Vendor Homepage: https://icehrm.com/ Software Link: https://sourceforge.net/projects/icehrm/Version 26.2.0 Tested on Windows 10/Kali Rolling The Ic...
DHCP Turbo 4.61298 - (DHCP Turbo 4) Unquoted Service Path Vulnerability
Exploit Title: DHCP Turbo 4.61298 - 'DHCP Turbo 4' Unquoted Service Path Exploit Author: boku Vendor Homepage: https://www.weird-solutions.com Software Link: https://www.weird-solutions.com/download/products/dhcptv4retailIA32.exe Version: 4.6.1298 Tested On: Windows 10 32-bit C:\Users\usersc qc...
MSI Packages Symbolic Links Processing - Windows 10 Privilege Escalation Vulnerability
Exploit Title: MSI Packages Symbolic Links Processing - Windows 10 Privilege Escalation Author: nu11secur1ty Vendor: Microsoft Link: https://github.com/nu11secur1ty/Windows10Exploits/tree/master/Undefined/CVE-2020-0683/nu11secur1ty CVE: CVE-2020-0683 + Credits: Ventsislav Varbanovski @ nu11secur1...
SOPlanning 1.45 - (users) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: SOPlanning 1.45 - 'users' SQL Injection Exploit Author: J3rryBl4nks, Homebrewer Vendor Homepage: https://www.soplanning.org/en/ Software Link: https://sourceforge.net/projects/soplanning/files/soplanning/ Version 1.45 Tested on...
HP System Event 1.2.9.0 - (HPWMISVC) Unquoted Service Path Vulnerability
Exploit Title: HP System Event 1.2.9.0 - 'HPWMISVC' Unquoted Service Path Discovery by: Roberto Piña Vendor Homepage:https://www8.hp.com/mx/es/home.html Software Link:ftp://ftp.hp.com/pub/softpaq/sp70001-70500/sp70439.exe HP Development Company, L.P. Tested Version: 1.2.9.0 Vulnerability Type:...
Cuckoo Clock v5.0 - Buffer Overflow Exploit
Exploit Title: Cuckoo Clock 5.0 - Buffer Overflow Exploit Author: boku Vendor Homepage: https://en.softonic.com/author/pxcompany Software Link: https://en.softonic.com/download/parallaxis-cuckoo-clock/windows/post-download Version: 5.0 Tested On: Windows 10 32-bit Recreate: 1 Install & Open Cucko...
SOPlanning 1.45 - (by) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: SOPlanning 1.45 - 'by' SQL Injection Exploit Author: J3rryBl4nks Vendor Homepage: https://www.soplanning.org/en/ Software Link: https://sourceforge.net/projects/soplanning/files/soplanning/ Version 1.45 Tested on Windows 10/Kali...
TFTP Turbo 4.6.1273 - (TFTP Turbo 4) Unquoted Service Path Vulnerability
Exploit Title: TFTP Turbo 4.6.1273 - 'TFTP Turbo 4' Unquoted Service Path Exploit Author: boku Vendor Homepage: https://www.weird-solutions.com Software Link: https://www.weird-solutions.com/download/products/tftptv4retailIA32.exe Version: 4.6.1273 Tested On: Windows 10 32-bit C:\Users\nightelfwm...
LabVantage 8.3 - Information Disclosure Exploit
Exploit for java platform in category web applications Exploit Title: LabVantage 8.3 - Information Disclosure Exploit Author: Joel Aviad Ossi Vendor Homepage: labvantage.com Software Link: N/A Version: LabVantage 8.3 Tested on: CVE : N/A import requests import operator def exploittarget: print"+...
Avaya Aura Communication Manager 5.2 - Remote Code Execution Exploit
Exploit for hardware platform in category web applications Exploit Title: Avaya Aura Communication Manager 5.2 - Remote Code Execution Exploit Author: Sarang Tumne a.k.a SarT Confirmed on release 5.2 Vendor: https://www.avaya.com/en/ Avaya's advisory:...