39001 matches found
AbsoluteTelnet 11.12 - (SSH2/username) Denial of Service Exploit
Exploit Title: AbsoluteTelnet 11.12 - 'SSH2/username' Denial of Service PoC Discovery by: chuyreds Vendor Homepage: https://www.celestialsoftware.net/ Software Link : https://www.celestialsoftware.net/telnet/AbsoluteTelnet11.12.exe Tested Version: 11.12 Vulnerability Type: Denial of Service DoS...
AbsoluteTelnet 11.12 - (license name) Denial of Service Exploit
Exploit Title: AbsoluteTelnet 11.12 - "license name" Denial of Service PoC Discovery by: chuyreds Vendor Homepage: https://www.celestialsoftware.net/ Software Link : https://www.celestialsoftware.net/telnet/AbsoluteTelnet11.12.exe Tested Version: 11.12 Vulnerability Type: Denial of Service DoS...
VIM 8.2 - Denial of Service Exploit
Exploit Title: VIM 8.2 - Denial of Service PoC Vulnerability: DoS Vulnerability Discovery: Dhiraj Mishra Vulnerable Version: VIM - Vi IMproved 8.2 Included patches: 1-131 Vendor Homepage: https://www.vim.org/ References: https://github.com/vim/vim/commit/98a336dd497d3422e7efeef9f24cc9e25aeb8a49...
Online Job Portal 1.0 - Remote Code Execution Vulnerability
Exploit for php platform in category web applications Exploit Title: Online Job Portal 1.0 - Remote Code Execution Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/php/13850/online-job-portal-phppdo.html Software Link:...
Cisco Data Center Network Manager 11.2.1 - (getVmHostData) SQL Injection Exploit
Exploit for java platform in category web applications !/usr/bin/python """ Cisco Data Center Network Manager HostEnclHandler getVmHostData SQL Injection Remote Code Execution Vulnerability Tested on: Cisco DCNM 11.2.1 Installer for Windows 64-bit - Release: 11.21 - Release Date: 18-Jun-2019 -...
Cisco Data Center Network Manager 11.2.1 - (LanFabricImpl) Command Injection Exploit
Exploit for java platform in category web applications !/usr/bin/python """ Cisco Data Center Network Manager LanFabricImpl createLanFabric Command Injection Remote Code Execution Vulnerability Tested on: Cisco DCNM 11.2.1 ISO Virtual Appliance for VMWare, KVM and Bare-metal servers - Release:...
RarmaRadio 2.72.4 - (server) Denial of Service Exploit
Exploit Title: RarmaRadio 2.72.4 - 'server' Denial of Service PoC Discovery by: chuyreds Vendor Homepage: http://www.raimersoft.com/rarmaradio.html Software Link : http://www.raimersoft.com/downloads/rarmaradiosetup.exe Tested Version: 2.72.4 Vulnerability Type: Denial of Service DoS Local Tested...
TapinRadio 2.12.3 - (username) Denial of Service Exploit
Exploit Title: TapinRadio 2.12.3 - 'username' Denial of Service PoC Discovery by: chuyreds Vendor Homepage: http://www.raimersoft.com/rarmaradio.html Software Link : http://www.raimersoft.com/downloads/tapinradiosetupx64.exe Tested Version: 2.12.3 Vulnerability Type: Denial of Service DoS Local...
Ecommerce Systempay 1.0 - Production KEY Brute Force Exploit
Exploit for php platform in category web applications Exploit Title: Ecommerce Systempay 1.0 - Production KEY Brute Force Author: live3 Vendor Homepage: https://paiement.systempay.fr/doc/fr-FR/ Software Link: https://paiement.systempay.fr/doc/fr-FR/module-de-paiement-gratuit/ Tested on: MacOs...
Cisco Data Center Network Manager 11.2 - Remote Code Execution Exploit
Exploit for java platform in category web applications !/usr/bin/python """ Cisco Data Center Network Manager SanWS importTS Command Injection Remote Code Execution Vulnerability Tested on: Cisco DCNM 11.2.1 Installer for Windows 64-bit - Release: 11.21 - Release Date: 18-Jun-2019 - FileName:...
Online Job Portal 1.0 - Cross Site Request Forgery (Add User) Vulnerability
Exploit for php platform in category web applications Exploit Title: Online Job Portal 1.0 - Cross Site Request Forgery Add User Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/php/13850/online-job-portal-phppdo.html Software Link:...
TapinRadio 2.12.3 - (address) Denial of Service Exploit
Exploit Title: TapinRadio 2.12.3 - 'address' Denial of Service PoC Discovery by: chuyreds Vendor Homepage: http://www.raimersoft.com/rarmaradio.html Software Link : http://www.raimersoft.com/downloads/tapinradiosetupx64.exe Tested Version: 2.12.3 Vulnerability Type: Denial of Service DoS Local...
RarmaRadio 2.72.4 - (username) Denial of Service Exploit
Exploit Title: RarmaRadio 2.72.4 - 'username' Denial of Service PoC Discovery by: chuyreds Vendor Homepage: http://www.raimersoft.com/rarmaradio.html Software Link : http://www.raimersoft.com/downloads/rarmaradiosetup.exe Tested Version: 2.72.4 Vulnerability Type: Denial of Service DoS Local Test...
Online Job Portal 1.0 - (user_email) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Online Job Portal 1.0 - 'useremail' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/php/13850/online-job-portal-phppdo.html Software Link:...
AVideo Platform 8.1 - Cross Site Request Forgery (Password Reset) Vulnerability
Exploit for jsp platform in category web applications Exploit Title: AVideo Platform 8.1 - Cross Site Request Forgery Password Reset Exploit Author: Ihsan Sencan Vendor Homepage: https://avideo.com Software Link: https://github.com/WWBN/AVideo Version: 8.1 Tested on: Linux CVE: N/A POC: 1...
Windscribe VPN WindscribeService Named Pipe Privilege Escalation Exploit
The Windscribe VPN client application for Windows makes use of a Windows service WindscribeService.exe which exposes a named pipe \.\pipe\WindscribeService allowing execution of programs with elevated privileges. Windscribe versions prior to 1.82 do not validate user-supplied program names,...
Verodin Director Web Console 3.5.4.0 - Remote Authenticated Password Disclosure Exploit
Exploit for jsp platform in category web applications Exploit Title: Verodin Director Web Console 3.5.4.0 - Remote Authenticated Password Disclosure PoC Discovery Date: 2019-01-31 Exploit Author: Nolan B. Kennedy nxkennedy Vendor Homepage: https://www.verodin.com/ Software Link :...
HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account Exploit
Exploit Title: HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account Exploit Author: Snawoot Vendor Homepage: http://www.hisilicon.com Product Link: http://www.hisilicon.com/en/Products Version: hi3520d Tested on: Linux CVE: N/A References: https://habr.com/en/post/486856/ References:...
Wago PFC200 - Authenticated Remote Code Execution Exploit
Exploit for hardware platform in category web applications Exploit Title: Wago PFC200 - Authenticated Remote Code Execution Metasploit Exploit Author: Nico Jansen 0x483d Vendor Homepage: https://www.wago.com/ Version: 'Wago PFC200 authenticated remote code execution', 'Description' = %q The Wago...
Sudo 1.8.25p - (pwfeedback) Buffer Overflow Exploit
!/bin/bash We will need socat to run this. if ! -f socat ; then wget https://raw.githubusercontent.com/andrew-d/static-binaries/master/binaries/linux/x8664/socat chmod +x socat fi cat xpl.pl $bufsz = 256; $askpasssz = 32; $signosz = 465; $tgetpassflag = "\x04\x00\x00\x00" . "\x00"x24;...
Socat 1.7.3.4 - Heap-Based Overflow Vulnerability
Exploit Title: Socat 1.7.3.4 - Heap Based Overflow PoC Exploit Author: hieubl from HPT Cyber Security Vendor Homepage: http://www.dest-unreach.org/ Software Link: http://www.dest-unreach.org/socat/ Version: 1.7.3.4 Tested on: Ubuntu 16.04.6 LTS CVE : Heap-Based Overflow due to Integer Overflow an...
Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Exploit
Exploit for java platform in category web applications Exploit Title: Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Discovered by: Elwood Buck & Nolan B. Kennedy of Mindpoint Group Exploit Author: Nolan B. Kennedy nxkennedy Discovery date: 2019-09-20 Vendor Homepage:...
xglance-bin 11.00 - Privilege Escalation Exploit
Exploit Title: xglance-bin 11.00 - Privilege Escalation Exploit Author: Robert Jaroszuk and Marco Ortisi RedTimmy Security Tested on: RHEL 5.x/6.x/7.x/8.x CVE: CVE-2014-2630 Disclamer: This exploit is for educational purpose only More details on...
AVideo Platform 8.1 - Information Disclosure (User Enumeration) Vulnerability
Exploit for jsp platform in category web applications Exploit Title: AVideo Platform 8.1 - Information Disclosure User Enumeration Exploit Author: Ihsan Sencan Vendor Homepage: https://avideo.com Software Link: https://github.com/WWBN/AVideo Version: 8.1 Tested on: Linux CVE: N/A POC: 1...
RDP DOUBLEPULSAR Remote Code Execution Exploit
This Metasploit module executes a Metasploit payload against the Equation Group's DOUBLEPULSAR implant for RDP. While this module primarily performs code execution against the implant, the "Neutralize implant" target allows you to disable the implant. This module requires Metasploit:...
PNG Silent Arbitrary Code Execution FUD Exploit
0day PNG Exploit. All Chrome, Edge, Opera, Firefox, Microsoft Internet Explorer, Yandex, tested. Running smoothly Latest version. Windows 7, Windows 8, Windows 8.1, Windows 10 Tested Works in the latest versions. All Mail services were Tested bypass, Gmail, Hotmail, Yahoo, Yandex-mail, Foxmail, Q...
Sudo 1.8.25p - Buffer Overflow Exploit
Title: Sudo 1.8.25p - Buffer Overflow Author: Joe Vennix Software: Sudo Versions: Sudo versions prior to 1.8.26 CVE: CVE-2019-18634 Reference: https://www.sudo.ws/alerts/pwfeedback.html Sudo's pwfeedback option can be used to provide visual feedback when the user is inputting their password. For...
F-Secure Internet Gatekeeper 5.40 - Heap Overflow Exploit
Exploit for linux platform in category web applications Title: F-Secure Internet Gatekeeper 5.40 - Heap Overflow PoC Author: Kevin Joensen Vendor: F-Secure Software: https://www.f-secure.com/en/business/downloads/internet-gatekeeper CVE: N/A Reference:...
SMB DOUBLEPULSAR Remote Code Execution Exploit
This Metasploit module executes a Metasploit payload against the Equation Group's DOUBLEPULSAR implant for SMB as popularly deployed by ETERNALBLUE. While this module primarily performs code execution against the implant, the "Neutralize implant" target allows you to disable the implant. This...
Centreon 19.10.5 - (Pollers) Remote Command Execution Exploit
Exploit for php platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Centreon Poller Authenticated Remote Command Execution', 'Description' = %q TODO , 'Author'...
IceWarp WebMail 11.4.4.1 - Reflective Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Title: IceWarp WebMail 11.4.4.1 - Reflective Cross-Site Scripting Author: Lutfu Mert Ceylan Vendor Homepage: www.icewarp.com Tested on: Windows 10 Versions: 11.4.4.1 and before Vulnerable Parameter: "color" Get Method Google Dork:...
School ERP System 1.0 - Cross Site Request Forgery (Add Admin) Exploit
Exploit for php platform in category web applications Title: School ERP System 1.0 - Cross Site Request Forgery Add Admin Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/projects/school-erp-ultimate/files/ Software Link:...
P2PWIFICAM2 for iOS 10.4.1 - (Camera ID) Denial of Service Exploit
Exploit Title: P2PWIFICAM2 for iOS 10.4.1 - 'Camera ID' Denial of Service PoC Discovery by: Ivan Marmolejo Vendor Homepage: https://apps.apple.com/mx/app/p2pwificam2/id663665207 Software Link: App Store for iOS devices Tested Version: 10.4.1 Vulnerability Type: Denial of Service DoS Local Tested ...
Jira 8.3.4 - Information Disclosure (Username Enumeration) Exploit
Exploit for java platform in category web applications Exploit Title: Jira 8.3.4 - Information Disclosure Username Enumeration Exploit Author: Mufeed VH Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/jira Version: 8.3.4 Tested on: Pop!OS 19.10 CVE :...
phpList 3.5.0 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: phpList 3.5.0 - Authentication Bypass Exploit Author: Suvadip Kar Author Contact: https://twitter.com/spidersec Vendor Homepage: https://www.phplist.org Software Link: https://www.phplist.org/download-phplist/ Version: 3.5.0...
Schneider Electric U.Motion Builder 1.3.4 - Authenticated Command Injection Exploit
Exploit for hardware platform in category web applications Exploit Title: Schneider Electric U.Motion Builder 1.3.4 - Authenticated Command Injection Date: 2018-08-01 Exploit Author: Cosmin Craciun Vendor Homepage: https://www.se.com Version: = 1.3.4 Tested on: Delivered Virtual Appliance running...
BearFTP 0.1.0 - (PASV) Denial of Service Exploit
Exploit Title: BearFTP 0.1.0 - 'PASV' Denial of Service Exploit Author: kolya5544 Vendor Homepage: http://iktm.me/ Software Link: https://github.com/kolya5544/BearFTP/releases Version: v0.0.1 - v0.1.0 Tested on: Ubuntu 18.04 CVE : CVE-2020-8416 static void Mainstring args Console.WriteLine"DoS...
Lotus Core CMS 1.0.1 - Local File Inclusion Vulnerability
Exploit for php platform in category web applications Exploit Title: Lotus Core CMS 1.0.1 - Local File Inclusion Exploit Author: Daniel Monzón stark0de Vendor Homepage: http://lotuscore.sourceforge.net/ Software Link: https://sourceforge.net/projects/lotuscore/files/latest/download Version: 1.0.1...
Intel Processor Identification Utility 6.0.0211 Privilege Escalation Vulnerability
Intel® Processor Identification Utility - Windows Version, version 6.0.0211 from 2019-02-11, available from via , and earlier versions 6.0. are vulnerable: in default installations of all supported versions of Windows really: Windows Vista and later, they allows arbitrary code execution WITH...
FlexNet Publisher 11.12.1 - Cross-Site Request Forgery (Add Local Admin) Vulnerability
Exploit for php platform in category web applications...
Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode (571 Bytes)
Shellcode Title: Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode 571 Bytes Shellcode Author: Bobby Cooke Technique: PEB & Export Directory Table Tested On: Windows 10 Pro x86 10.0.18363 Build 18363 Shellcode Function: When executed, this shellcode creates a cmd.exe bind shell, using the...
OpenSMTPD 6.6.2 - Remote Code Execution Exploit
Exploit Title: OpenSMTPD 6.6.2 - Remote Code Execution Exploit Author: 1F98D Original Author: Qualys Security Advisory Vendor Homepage: https://www.opensmtpd.org/ Software Link: https://github.com/OpenSMTPD/OpenSMTPD/releases/tag/6.6.1p1 Version: OpenSMTPD '.formatsys.argv0 print"E.g. 127.0.0.1 2...
rConfig 3.9.3 - Authenticated Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: rConfig 3.9.3 - Authenticated Remote Code Execution CVE-2019-19509 Exploit Author: vikingfr Vendor Homepage: https://rconfig.com/ see also : https://github.com/rconfig/rconfig Software Link :...
XMLBlueprint 16.191112 - XML External Entity Injection Vulnerability
Exploit Title: XMLBlueprint 16.191112 - XML External Entity Injection Exploit Author: Javier Olmedo Vendor: XMLBlueprint XML Editor Software Link: https://www.xmlblueprint.com/update/download-64bit.exe Affected Version: 16.191112 and before Patched Version: unpatched Category: Local Platform: XML...
Liferay CE Portal 6.0.2 - Remote Command Execution Vulnerability
Exploit for java platform in category web applications Exploit Title: Liferay CE Portal 6.0.2 - Remote Command Execution Exploit Author: Berk Dusunur Vendor Homepage: https://www.liferay.com/ Software Link: https://sourceforge.net/projects/lportal/files/Liferay%20Portal/6.0.2/...
Microsoft Windows 10 - Theme API (ThemePack) File Parsing Exploit
Exploit Title: Microsoft Windows 10 - Theme API 'ThemePack' File Parsing Exploit Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link: http://www.microsoft.com/ Version: 10 v.1803 17134.407 Tested on: Windows 7, 8.0, 8.1, 10, Server 2012, Server 2012 R2, Server 201...
Fifthplay S.A.M.I 2019.2_HP - Persistent Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Fifthplay S.A.M.I 2019.2HP - Persistent Cross-Site Scripting Exploit Author: LiquidWorm Vendor: Fifthplay NV Vendor Homepage: https://www.fifthplay.com Version: 2019.2HP Tested on: Linux CVE : - Fifthplay S.A.M.I - Service...
FusionAuth 1.10 Remote Command Execution Vulnerability
FusionAuth versions 1.10 and below suffer from a remote command execution vulnerability. An authenticated attacker with enough privileges to access the template editing functions either site templates or e-mail templates in the FusionAuth dashboard can execute commands on the underlying operating...
Cups Easy 1.0 - Cross Site Request Forgery (Password Reset) Vulnerability
Exploit for php platform in category web applications Title: Cups Easy 1.0 - Cross Site Request Forgery Password Reset Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/u/ajayshar76/profile/ Software Link: https://sourceforge.net/projects/cupseasy/files/cupseasylive-1.0/ Versio...
Centreon 19.10.5 - (Pollers) Remote Command Execution Exploit
Exploit for php platform in category web applications Exploit Title: Centreon 19.10.5 - 'Pollers' Remote Command Execution Exploit Author: Omri Baso, Fabien Aunay Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentOS 7.7...