39001 matches found
Axway SecureTransport 5 - Unauthenticated XML Injection Vulnerability
Exploit for linux platform in category web applications Title: Axway SecureTransport 5 - Unauthenticated XML Injection Google Dork: intitle:"Axway SecureTransport" "Login" Date: 2019-07-20 Author: Dominik Penner / zer0pwn of Underdog Security Vendor Homepage: https://www.axway.com/en Software Lin...
fuelCMS 1.4.1 - Remote Code Execution Exploit
Exploit for linux platform in category web applications Exploit Title: fuelCMS 1.4.1 - Remote Code Execution Exploit Author: 0xd0ff9 Vendor Homepage: https://www.getfuelcms.com/ Software Link: https://github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.1 Version: = 0 and n 1: start =...
Web Ofisi Firma Rehberi 1 - (il) SQL Injection Vulnerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi Firma Rehberi 1 - 'il' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/firma-rehberi-scripti-v1.html Demo Site: http://demobul.net/firma-rehberi-v1/ Version: v...
Web Ofisi Firma 13 - (oz) SQL Injection Vulnerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi Firma 13 - 'oz' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/kurumsal-firma-v13-sinirsiz-dil.html Demo Site: http://demobul.net/firmav13/ Version: v13 Teste...
Web Ofisi Emlak 2 - (ara) SQL Injection Vulnerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi Emlak 2 - 'ara' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/emlak-scripti-v2.html Demo Site: http://demobul.net/emlakv2/ Version: v2 Tested on: Kali Linux CVE: N/A ----- Po...
Web Ofisi Emlak 3 - (emlak_durumu) SQL Injection Vulnerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi Emlak 3 - 'emlakdurumu' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/emlak-scripti-v3.html Demo Site: http://demobul.net/emlakv3/ Version: V2 Tested on: Kali Linux CVE: N/A...
Web Ofisi E-Ticaret 3 - (a) SQL Injection Vunerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi E-Ticaret 3 - 'a' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/e-ticaret-v3-sanal-pos.html Demo Site: http://demobul.net/eticaretv3/ Version: v3 Tested on: Kali Linux CVE: N...
REDCap < 9.1.2 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: REDCap - Details: Since it is an onkeypress event, it is triggered whenever the user touch any key and since the XSS payload is stored in the project name it appears in several pages. - Privileges: It requires admin privileges t...
BACnet Stack 0.8.6 - Denial of Service Exploit
Exploit Title: BACnet Stack 0.8.6 - Denial of Service Google Dork: if applicable Date: 2019-07-19 Exploit Author: mmorillo Vendor Homepage: https://sourceforge.net/p/bacnet/ Software Link: https://sourceforge.net/projects/bacnet/files/bacnet-stack/bacnet-stack-0.8.6/ Version: bacnet-stack-0.8.6...
Web Ofisi Platinum E-Ticaret 5 - (q) SQL Injection Vulnerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi Platinum E-Ticaret 5 - 'q' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/platinum-e-ticaret-v5.html Demo Site: http://demobul.net/eticaretv5/ Version: v5 Tested on: Kali Linu...
Web Ofisi Rent a Car 3 - (klima) SQL Injection Vulnerability
Exploit for linux platform in category web applications Exploit Title: Web Ofisi Rent a Car 3 - 'klima' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/rent-a-car-v3.html Demo Site: http://demobul.net/rentacarv3/ Version: v3 Tested on: Kali...
Microsoft Windows 10 1903/1809 RPCSS Activation Kernel Security Callback Privilege Escalation
Exploit for windows platform in category local exploits Microsoft Windows 10 1903/1809 - RPCSS Activation Kernel Security Callback Privilege Escalation Windows: RPCSS Activation Kernel Security Callback EoP Platform: Windows 10 1903/1809 not tested earlier Class: Elevation of Privilege Security...
WordPress OneSignal 1.17.5 Plugin (subdomain) Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Plugin OneSignal 1.17.5 - Persistent Cross-Site Scripting Date: 2019-07-18 Vendor Homepage: https://www.onesignal.com Software Link: https://wordpress.org/plugins/onesignal-free-web-push-notifications/ Affected version...
MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow Exploit
Exploit Title: MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow Author: hyp3rlinx Vendor Homepage: www.computerlab.com Software Link: https://www.computerlab.com/index.php/downloads/category/27-device-manager Software Link:...
R 3.4.4 (Windows 10 x64) - Buffer Overflow SEH (DEP/ASLR Bypass) Exploit
Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: R 3.4.4 Windows 10 x64 - Buffer Overflow SEHDEP/ASLR Bypass Exploit Author: blackleitus Vendor Homepage: https://www.r-project.org/ Tested on: Windows 10 Home Single Language 64-bit Social:...
Linux - Broken Permission and Object Lifetime Handling for PTRACE_TRACEME Exploit
Exploit for linux platform in category local exploits Linux - Broken Permission and Object Lifetime Handling for PTRACETRACEME Exploit == Summary == This bug report describes two issues introduced by commit 64b875f7ac8a "ptrace: Capture the ptracer's creds not PTPTRACECAP", introduced in v4.10 bu...
CentOS Control Web Panel 0.9.8.838 - User Enumeration Vulnerability
Exploit for linux platform in category web applications Exploit Title: CWP CentOS Control Web Panel 0.9.8.848 User Enumeration via HTTP Response Message Exploit Author: Pongtorn Angsuchotmetee, Nissana Sirijirakal, Narin Boonwasanarak Vendor Homepage: https://control-webpanel.com/changelog Softwa...
Oracle Siebel CRM 19.0 - Persistent Cross-Site Scripting Vulnerability
Exploit for linux platform in category web applications Exploit Title: Oracle Siebel CRM 19.0 - Persistent Cross-Site Scripting Exploit Author: Sarath Nair aka AceNeon13 Contact: @AceNeon13 Vendor Homepage: www.oracle.com Software Link: https://www.oracle.com/applications/siebel/ Version: Siebel...
FANUC Robotics Virtual Robot Controller 8.23 Buffer Overflow Vulnerability
Exploit for multiple platform in category web applications Product: FANUC Robotics Virtual Robot Controller Manufacturer: FANUC Robotics America, Inc. Affected Versions: V8.23 Tested Versions: V8.23 Vulnerability Type: Stack-based Buffer Overflow CWE-121 Risk Level: High CVE Reference:...
DameWare Remote Support 12.0.0.509 - (Host) Buffer Overflow (SEH) Exploit
Exploit for windows platform in category local exploits !/usr/bin/env python Author: Xavi Beltran Description: SEH based Buffer Overflow DameWare Remote Support V. 12.0.0.509 CVE-2018-12897 Contact: email protected Webpage: https://xavibel.com Tested on: Windows XP SP3 ESP Credit for Adam Jeffrey...
CentOS Control Web Panel 0.9.8.836 - Authentication Bypass Vulnerability
Exploit for linux platform in category web applications Exploit Title: CWP CentOS Control Web Panel ||/us...
Microsoft Windows NtUserSetWindowFNID Win32k User Callback Exploit
An elevation of privilege vulnerability exists in Microsoft Windows when the Win32k component fails to properly handle objects in memory. This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016...
CentOS Control Web Panel 0.9.8.836 - Privilege Escalation Vulnerability
Exploit for linux platform in category web applications //====================================================================\ || || || CWP Control Web Panel 0.9.8.836 - 0.9.8.839 || || Root Privilege Escalation || || || \====================================================================//...
FANUC Robotics Virtual Robot Controller 8.23 Path Traversal Vulnerability
Exploit for multiple platform in category web applications Product: FANUC Robotics Virtual Robot Controller Manufacturer: FANUC Robotics America, Inc. Affected Versions: V8.23 Tested Versions: V8.23 Vulnerability Type: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal'...
ExpressVPN Unquoted Service Path Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Exploit Title : ExpressVPN - Unquoted Service Path Privilege Escalation Vendor Homepage : www.expressvpn.com Exploit Author: Iran Cyber Security Group Date : 2019-07-14 Tested on : Win10 Discovered By : Und3rgr0und Our Team :...
WinMPG iPod Convert 3.0 Denial of Service Exploit
Exploit Title: WinMPG iPod Convert 3.0 Denial of Service Exploit Date: 16.07.2019 Vendor Homepage:http://www.winmpg.com Software Link: https://www.techspot.com/downloads/downloadnow/6192/?evp=d62142990e9320a4e811b283fdcc4060&file= Exploit Author: Achilles Tested Version: 3.0 Tested on: Windows XP...
NETGEAR WiFi Router JWNR2010v5 / R6080 - Authentication Bypass Vulnerability
Exploit for hardware platform in category web applications Exploit Title: NETGEAR WiFi Router R6080 - Security Questions Answers Disclosure Exploit Author: Wadeek Hardware Version: R6080-100PES Firmware Version: 1.0.0.34 / 1.0.0.40 Vendor Homepage: https://www.netgear.com/support/product/R6080.as...
Streamripper 2.6 - Song Pattern Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: StreamRipper32 Buffer Overflow Exploit Author: Andrey Stoykov OSCP Tested On: Win7 SP1 x64 Software Link: http://streamripper.sourceforge.net/sr32/StreamRipper3226.exe Version: 2.6 Steps To Reproduce: Double...
FlightPath < 4.8.2 / < 5.0-rc2 - Local File Inclusion Vulnerability
Exploit for php platform in category web applications Exploit Title: FlightPath 4.8.2 & 5.0-rc2 - Local File Inclusion Exploit Author: Mohammed Althibyani Vendor Homepage: http://getflightpath.com Software Link: http://getflightpath.com/project/9/releases Version: 4.8.2 & 5.0-rc2 Tested on: Kali...
Microsoft Windows 10 < build 17763 - AppXSvc Hard Link Privilege Escalation Exploit
There exists a privilege escalation vulnerability for Windows 10 builds prior to build 17763. Due to the AppXSvc's improper handling of hard links, a user can gain full privileges over a SYSTEM-owned file. The user can then utilize the new file to execute code as SYSTEM. This Metasploit module...
Microsoft Windows Remote Desktop - (BlueKeep) Denial of Service Exploit
Exploit Title: Bluekeep Denial of Service metasploit module Shodan Dork: port:3389 Date: 07/14/2019 Exploit Author: RAMELLA Sebastien https://github.com/mekhalleh/ Vendor Homepage: https://microsoft.com Version: all affected RDP services by cve-2019-0708 Tested on: Windows XP 32-bits / Windows 7...
PCMan FTP Server 2 ALLO Buffer Overflow Exploit
Vulnerability Title: PCMan FTP Server 2 - 'ALLO' Remote Buffer Overflow Discovered by: Nassim Asrir Tested on: win7 x32 Thanks To : Chagi-Lagi - MY.Neggaoui !/usr/bin/python2.7 -- coding: utf-8 - import socket ret = "\xf7\xf8\xc5\x75" @ JMP ESP Kernel32.dll calc...
Microsoft Windows 10.0.17134.648 HTTP -> SMB NTLM Reflection Leads to Privilege Elevation Exploit
Exploit for windows platform in category local exploits Microsoft Windows 10.0.17134.648 - HTTP - SMB NTLM Reflection Leads to Privilege Elevation Exploit VULNERABILITY DETAILS It's possible to use the NTLM reflection attack to escape a browser sandbox in the case where the sandboxed process is...
Android 7 - 9 VideoPlayer - (ihevcd_parse_pps) Out-of-Bounds Write Exploit
CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can possibly do RCE. The codec affected is HVEC a.k.a H.265 and MPEG-...
PHP Laravel Framework Token Unserialize Remote Command Execution Exploit
This Metasploit module exploits a vulnerability in the PHP Laravel Framework for versions 5.5.40, 5.6.x up to 5.6.29. Remote command execution is possible via a correctly formatted HTTP X-XSRF-TOKEN header, due to an insecure unserialize call of the decrypt method in...
Microsoft Windows Task Scheduler Privilege Escalation Vulnerability
Microsoft Windows Task Scheduler suffers from a local privilege escalation vulnerability. The Windows MMC auto-elevates members of the 'administrators' group via the GUI and MMC snap-ins via mmc.exe automatically elevate without prompting UAC potentially leading to unintentional elevation of...
Linux/x86 - chmod 666 /etc/passwd & chmod 666 /etc/shadow Shellcode (61 bytes)
Exploit Title: Linux/x86 - chmod 666 /etc/passwd & chmod 666 /etc/shadow 61 bytes Date: 10/07/2019 Exploit Author: Xavier Invers Fornells Contact: email protected Tested on: Debian 4.19.28 Architecture: x86 Size: 61 bytes chmod.nasm global start section .text start: push byte 15 pop eax push byte...
MyT Project Management 1.5.1 - User[username] Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: MyT Project Management - Userusername Stored Cross Site Scripting Exploit Author: Metin Yunus Kandemir kandemir Vendor Homepage: https://manageyourteam.net/index.html Software Link:...
Microsoft Font Subsetting - DLL Heap Corruption in ComputeFormat4CmapData Vulnerability
Microsoft Font Subsetting - DLL Heap Corruption in ComputeFormat4CmapData -----===== Background =====----- The Microsoft Font Subsetting DLL fontsub.dll is a default Windows helper library for subsetting TTF fonts; i.e. converting fonts to their more compact versions based on the specific glyphs...
Tenda D301 v2 Modem Router - Persistent Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: tenda D301 v2 modem router stored xss CVE-2019-13492 Exploit Author: ABDO10 Date : July, 11th 2019 Product : Tenda D301 v2 Modem Router version : v2 Vendor Homepage:...
Sahi Pro 8.0.0 - Remote Command Execution Exploit
Exploit for java platform in category web applications Exploit Title: Sahi Pro V8.0.0 - Unauthenticated Remote Command Execution Exploit Author: Özkan Mustafa Akkuş AkkuS Contact: https://pentest.com.tr Vendor Homepage: https://sahipro.com Software Link:...
Jenkins Dependency Graph View Plugin 0.13 - Persistent Cross-Site Scripting Vulnerability
Exploit for java platform in category web applications Exploit Title: Persistent XSS - Dependency Graph View Pluginv0.13 Vendor Homepage: https://wiki.jenkins.io/display/JENKINS/Dependency+Graph+View+Plugin Exploit Author: Ishaq Mohammed Contact: https://twitter.com/securityprince Website:...
Xymon 4.3.25 - useradm Command Execution Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xymon useradm Command Execution', 'Description' = %q This module exploits a command injection vulnerability in Xymon versions before 4.3.25 which...
Citrix SD-WAN Appliance 10.2.2 - Authentication Bypass / Remote Command Execution Exploit
Exploit for cgi platform in category web applications Exploit Title: Citrix SD-WAN Appliance 10.2.2 Auth Bypass and Remote Command Execution Exploit Author: Chris Lyne @lynerc Vendor Homepage: https://www.citrix.com Product: Citrix SD-WAN Software Link:...
PowerPanel Business Edition 3.4.0 Cross Site Request Forgery Vulnerability
PowerPanel Business Edition version 3.4.0 is vulnerable to cross site request forgery vulnerability. This can be exploited by tricking an authenticated user into visiting a web page controlled by a malicious person. Exploit Title: PowerPanel Business Edition 3.4.0 - Cross Site Request Forgery...
Sitecore 9.0 rev 171002 - Persistent Cross-Site Scripting Vulnerability
Exploit for asp platform in category web applications Exploit Title: Stored Cross Site Scripting XSS in Sitecore 9.0 rev 171002 Exploit Author: Owais Mehtab Vendor Homepage: http://www.sitecore.net/en Version: 9.0 rev. 171002 Tested on: Sitecore Experience Platform 8.1 Update-3 i.e.; 8.1 rev...
SNMPc Enterprise Edition 9/10 - Mapping Filename Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/python -- coding: utf-8 -- -------------------------------------------------------------------- Exploit: SNMPc Enterprise Edition 9 & 10 Mapping File Name BOF Date: 11 July 2019 Exploit Author: @xerubus | mogozobo.com Vendor...
Apache mod_ssl < 2.8.7 OpenSSL - OpenFuckV2.c Remote Buffer Overflow (2) Exploit
/ OF version r00t VERY PRIV8 spabam Version: v3.0.4 Requirements: libssl-dev Compile with: gcc -o OpenFuck OpenFuck.c -lcrypto objdump -R /usr/sbin/httpd|grep free to get more targets hackarena irc.brasnet.org Note: if required, host ptrace and replace wget target / include include include includ...
Firefox 67.0.4 - Denial of Service Exploit
Loading please wait function MyFun var text = ; forvar i=0 ;i"+ ""+ ""+ ""+ ""+ ""+ "\x7...
Mozilla Spidermonkey - Unboxed Objects Uninitialized Memory Access Exploit
/ Mozilla Spidermonkey - Unboxed Objects Uninitialized Memory Access For constructors, Spidermonkey implements a "definite property analysis" 1 to compute which properties will definitely exist on the constructed objects. Spidermonkey then directly allocates the constructed objects with the final...