39001 matches found
Linux/x86 - MMX-XOR Encoder / Decoder execve(/bin/sh) Shellcode (44 bytes)
/ ; Date: 02/03/2019 ; NOT-Encoder.py ; Author: Daniele Votta ; Description: This program encode shellcode with NOT technique. ; Tested on: i686 GNU/Linux ; Shellcode Length:25 !/usr/bin/python Python NOT Encoder Execve /bin/sh shellcode...
Linux/x86 - Polymorphic execve(/bin/sh) Shellcode (63 bytes)
/ ; Date: 09/03/2019 ; PolymorphicExecveShStack.asm ; Author: Daniele Votta ; Description: This program invoke a Polimorphic version of excve. Original ExecveShStack: file format elf32-i386 Disassembly of section .text: 08048080 : 8048080: 31 c0 xor eax,eax 8048082: 50 push eax 8048083: 68 2f 2f ...
Oracle Weblogic Server Deserialization MarshalledObject Remote Code Execution Exploit
An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object weblogic.corba.utils.MarshalledObject to the interface to execute code on vulnerable hosts. This module requires Metasploit: https://metasploit.com/download Current source:...
WordPress Ultimate Member 2.0.38 Cross Site Request Forgery Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Ultimate Member Plugin 2.0.38 CSRF Discovered By: Georg Knabl Vendor Website: https://ultimatemember.com/ Software Link: https://wordpress.org/plugins/ultimate-member/ Software Download URL :...
Classified Ad Lister 2.0 Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications =========================================================================================== Exploit Title: Classified Ad Lister v2.0 - 'uploads' Arbitrary File Upload Exploit Author: Mehmet EMIROGLU Vendor Homepage:...
Cisco RV320 / RV325 Unauthenticated Remote Code Execution Exploit
This Metasploit module combines an information disclosure CVE-2019-1653 and a command injection vulnerability CVE-2019-1652 together to gain unauthenticated remote code execution on Cisco RV320 and RV325 small business routers. Can be exploited via the WAN interface of the router. Either via HTTP...
Magento 2.3.0 SQL Injection Exploit
Magento versions 2.2.0 through 2.3.0 unauthenticated remote SQL injection exploit. !/usr/bin/env python3 Magento 2.2.0 = 2.3.0 Unauthenticated SQLi Charles Fol SOURCE & SINK The sink from-to SQL condition has been present from Magento 1.x onwards. The source...
CentOS Web Panel 0.9.8.789 - NameServer Field Persistent Cross-Site Scripting Vulnerability
Exploit for linux platform in category web applications Exploit Title: CentOS Web Panel 0.9.8.789 - NameServer Field Stored Cross-Site Scripting Vulnerability Exploit Author: DKM Vendor Homepage: http://centos-webpanel.com Software Link: http://centos-webpanel.com Version: 0.9.8.789 Tested on:...
Pydio 8 Command Execution / Cross Site Scripting Vulnerabilities
Pydio 8 suffers from cross site scripting, command injection, and various other vulnerabilities. Pydio 8 Multiple Vulnerabilities 1. Advisory Information Title: Pydio 8 Multiple Vulnerabilities Advisory ID: SAUTH-2019-0002 Advisory URL:...
Thomson Reuters Concourse & Firm Central 2.13.0097 Directory Traversal / Local File Inclusion
Exploit for windows platform in category web applications ''' Exploit Title: Thomson Reuters Concourse & Firm Central 2.13.0097 - Directory Traversal & Local File Inclusion Exploit Author: 0v3rride Vendor Homepage: https://www.thomsonreuters.com/en.html Software Link: Firm Central...
Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - arac_kategori_id SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - 'arackategoriid' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/u-4-php-hazir-rent-a-car-sitesi-scripti-v2.html Demo Site:...
gnutls 3.6.6 - verify_crt() Use-After-Free Exploit
gnutls 3.6.6 - verifycrt Use-After-Free Exploit Description of problem: This is a critical memory corruption vulnerability in any API backed by verifycrt, including gnutlsx509trustlistverifycrt and related routines. I suspect any client or server that verifies X.509 certificates with GnuTLS is...
Airbnb Clone Script Homey BNB - Multiple SQL Injection Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Homey BNB Airbnb Clone Script - Multiple SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.doditsolutions.com/airbnb-clone-script/ Demo Site: http://sitedemos.in/homeybnb/ Version: V4 Tested on: Kali...
Fat Free CRM 0.19.0 - HTML Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Fat Free CRM v0.19.0 - HTML Injection Exploit Author: Ismail Tasdelen Vendor Homepage: http://www.fatfreecrm.com/ Source Code : https://github.com/fatfreecrm Software : Fat Free CRM Product Version: v0.19.0 Vulnerability Type :...
i-doit 1.12 - qr.php Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: i-doit 1.12 Cross Site Scripting on qr.php file Software Link: https://www.i-doit.org/ Version: 1.12 Exploit Author: BlackFog Team Contact: email protected Website: https://securelayer7.net Category: webapps Tested on: Firefox i...
Job Portal 3.1 - job_submit SQL Injection Vulnerability
Exploit for php platform in category web applications =========================================================================================== Exploit Title: NewJobPortal v3.1 - 'jobsubmit' SQL Inj. Exploit Author: Mehmet EMIROGLU Vendor Homepage: https://codecanyon.net/item/job-portal/1533009...
WordPress Loco Translate 2.2.1 Plugin - Local File Inclusion Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Loco Translate Version 2.2.1 Plugin LFI Exploit Author: Ali S. Ahmad S4R1N Vendor Homepage: https://localise.biz/ Software Link: https://wordpress.org/plugins/loco-translate/ Version: Version 2.2.1 Tested on: Debian...
WordPress Anti-Malware Security and Brute-Force Firewall 4.18.63 Plugin - Local File Inclusion
Exploit for php platform in category web applications Exploit Title: Wordpress Anti-Malware Security and Bruteforce Firewall - Local File Inclusion Exploit Author: Ali S. Ahmad S4R1N Vendor Homepage: N/A Software Link: https://wordpress.org/plugins/gotmls/ Version: Version 4.18.63 Tested on: Debi...
BigTree 4.3.4 CMS - Multiple SQL Injection Vulnerabilities
Exploit for php platform in category web applications =========================================================================================== Exploit Title: BigTree CMS - 'parent' SQL Inj. Exploit Author: Mehmet EMIROGLU Vendor Homepage: https://www.bigtreecms.org/ Software Link:...
Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH Egghunter) Exploit
Exploit for windows platform in category local exploits !/usr/bin/env python Exploit Title: Base64 Decoder 1.1.2 Local Buffer Overflow SEH + Egghunter Date: 28.03.2019 Exploit Author: Paolo Perego - email protected Vendor Homepage: http://4mhz.de/b64dec.html Software Link:...
Microsoft Visio 2016 16.0.4738.1000 - Log in accounts Denial of Service Exploit
-⋆- coding: utf-8 -⋆- Created on Thu Feb 21 01:32:50 2019 @author: César """ Exploit Title: Microsoft Visio 2016 16.0.4738.1000 "Log in accounts" allows go on whit email formed by one thousand A in every of its parts email protected Descovered by: César Adrián Coronado Llanos Descovered Date; Sun...
XooGallery - Multiple SQL Injection Vulnerabilities
Exploit for php platform in category web applications Exploit Title: XooGallery - Multiple SQL Injections Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://xooscripts.com/product/html5-php-photo-gallery.html Demo Site: http://xooscripts.com/demos/xoogallery/ Version: Lastest Tested on:...
WordPress article2pdf 0.24 DoS / File Deletion / Disclosure Vulnerabilities
WordPress article2pdf plugin versions 0.24 and above suffer from resource exhaustion, arbitrary file download, and file deletion vulnerabilities. Product: article2pdf Wordpress plug-in Product Website: https://wordpress.org/plugins/article2pdf/ Affected Versions: 0.24 and greater The following...
Jettweb Hazır Rent A Car Scripti V4 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Jettweb Hazır Rent A Car Scripti V4 - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/u-46-php-hazir-rent-a-car-scripti-v4.html Demo Site: http://rentv4.proemlaksitesi.net/ Version: V4 Tested...
SJS Simple Job Script - SQL Injection / Cross-Site Scripting Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Simple Job Script - Multiple Vulnerabilities Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://simplejobscript.com/ Download Link: https://github.com/niteosoft/simplejobscript/archive/master.zip Demo Site:...
Microsoft Windows 7/2008 - Win32k Denial of Service Exploit
Exploit Title: Microsoft Windows Win32k CVE-2019-0808 Local Privilege Escalation Vulnerability Exploit Author: ze0r Vendor Homepage: www.microsoft.com Version: Microsoft Windows 7/ Server 2008 CVE : CVE-2019-0808...
PCMan FTP Server 2.0 CDUP Remote Buffer Overflow Exploit
!/usr/bin/python import socket, sys, os, time print "\n===============================\n" print " PCMan FTP Server 2.0 - 'CDUP' Remote Buffer Overflow \n " print " Date: 23/03/2019 \n " print " Affected Software: PCMan 2.0 \n " print " Tested on Mincrsoft Windows XP Professional Version 2002 SP2 ...
Rukovoditel ERP & CRM 2.4.1 - path Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Rukovoditel Software Link: https://sourceforge.net/projects/rukovoditel/ Affected Version: 2.4.1 and...
Jettweb Php Hazır İlan Sitesi Scripti V2 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Jettweb Php Hazır İlan Sitesi Scripti V2 - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/c-23-ilan-Siteleri.html Demo Site: http://ilanv2.proemlaksitesi.net Version: V2 Tested on: Kali Linu...
Firefox 66.0.1 - Array.prototype.slice Buffer Overflow Exploit
Firefox let size = 64; garr = ; j = 0; function gc var tmp = ; forlet i = 0;i...
CMS Made Simple (CMSMS) Showtime2 File Upload Remote Command Execution Exploit
This Metasploit module exploits a file upload vulnerability that allows for remote command execution in Showtime2 module versions 3.6.2 and below in CMS Made Simple CMSMS. An authenticated user with "Use Showtime2" privilege could exploit the vulnerability. The vulnerability exists in the Showtim...
Oracle Weblogic Server Deserialization Remote Code Execution Exploit
This Metasploit module demonstrates that an unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object weblogic.jms.common.StreamMessag eImpl to the interface to execute code on vulnerable hosts. This module requires Metasploit:...
DASAN H660RM Information Disclosure / Hardcoded Key Vulnerability
DASAN H660RM allows for unauthenticated ping access, has a hardcoded key for encryption, and logs sensitive information into /tmp. DASAN H660RM Information Disclosure / Hardcoded Key CVE-2019-9974: diagtool.cgi on DASAN H660RM devices with firmware 1.03-0022 allows spawning ping processes without...
Titan FTP Server Version 2019 Build 3505 Directory Traversal / Local File Inclusion Vulnerabilities
Exploit for windows platform in category web applications Exploit Title: Titan FTP Server Version 2019 Build 3505 Directory Traversal/Local File Inclusion Exploit Author: Kevin Randall Vendor Homepage: https://titanftp.com/ Software Link: https://titanftp.com/download Version: Firmware: Titan FTP...
Cisco RV320 Unauthenticated Configuration Export Vulnerability
The configuration of a Cisco RV320 router can still be exported without authentication via the device's web interface due to an inadequate fix by the vendor. Cisco RV320 Unauthenticated Configuration Export Vulnerability Details ======= Product: Cisco RV320 Dual Gigabit WAN VPN Router, possibly...
Cisco RV320 Unauthenticated Diagnostic Data Retrieval Vulnerability
Cisco RV320 router still exposes sensitive diagnostic data without authentication via the device's web interface due to an inadequate fix by the vendor. Cisco RV320 Unauthenticated Diagnostic Data Retrieval Vulnerability Details ======= Product: Cisco RV320 Dual Gigabit WAN VPN Router, possibly...
XooDigital - (p) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: XooDigital - 'p' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://xooscripts.com/product/digital-download-protection-script.html Demo Site: http://xooscripts.com/demos/xoodigital/ Version: Lastest Tested...
Cisco RV320 Command Injection Vulnerability
Command injection vulnerability in the web-based certificate generator feature of the Cisco RV320 router which was inadequately patched by the vendor. Cisco RV320 Command Injection Vulnerability Product: Cisco RV320 Dual Gigabit WAN VPN Router, possibly others Affected Versions: 1.4.2.15 through...
Spidermonkey - IonMonkey Type Inference is Incorrect for Constructors Entered via OSR
/ Spidermonkey - IonMonkey Type Inference is Incorrect for Constructors Entered via OSR A bug in IonMonkeys type inference system when JIT compiling and entering a constructor function via on-stack replacement OSR allows the compilation of JITed functions that cause type confusions between...
Inout Article Base CMS SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Inout Article Base CMS - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.inoutscripts.com/products/inout-article-base/ Demo Site: http://www.inoutwebportal.com Version: Lastest Tested on: Kali Linux...
Jettweb PHP Hazır Haber Sitesi Scripti V3 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Jettweb PHP Hazır Haber Sitesi Scripti V3 - Multiple Vulnerabilities Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/u-16-php-hazir-haber-sitesi-scripti-v3.html Demo Site: http://haberv3.proemlaksitesi.net...
X-NetStat Pro 5.63 - Local Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/env python --------------------------------------------------------------------------------------------------------- Exploit: X-NetStat Pro 5.63 - Local Buffer Overflow EggHunter Date: 2019-03-23 Author: Peyman Forouzan Tested...
Zeeways Matrimony CMS - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Zeeways Matrimony CMS - SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: http://www.zeeways.com/matrimony-cms/4/productdetail Demo Site: http://www.zeewayscms.com/matrimony/ Version: Lastest Tested on: Kali Linux...
Jettweb PHP Hazır Haber Sitesi Scripti V1 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Jettweb PHP Hazır Haber Sitesi Scripti V1 - Multiple Vulnerabilities Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/u-5-php-hazir-haber-sitesi-scripti-v1.html Demo Site: http://haberv1.proemlaksitesi.net...
VMware Workstation 14.1.5 / VMware Player 15 Host VMX Process COM Class Hijack Privilege Escalation
The VMX process vmware-vmx.exe process configures and hosts an instance of VM. As is common with desktop virtualization platforms the VM host usually has privileged access into the OS such as mapping physical memory which represents a security risk. To mitigate this the VMX process is created wit...
Zeeways Jobsite CMS - id SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Zeeways Jobsite CMS - 'id' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: http://www.zeeways.com/jobsite-cms/1/productdetail Demo Site: http://www.zeewayscms.com/jobsite/ Version: Lastest Tested on: Kali Linux...
Matri4Web Matrimony Web Script SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Matrimony Website Script - Multiple SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.matri4web.com Demo Site: https://www.matrimonydemo.com Version: M-Plus Tested on: Kali Linux CVE: N/A ----- PoC 1:...
Jettweb PHP Hazır Haber Sitesi Scripti V2 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Jettweb PHP Hazır Haber Sitesi Scripti V2 - Authentication Bypass Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/u-6-php-hazir-haber-sitesi-scripti-v2.html Demo Site: http://haberv2.proemlaksitesi.net...
Bootstrapy CMS SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Bootstrapy CMS - Multiple SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: http://bootstrapy.com Demo Site: http://bootstrapy.net/demo/ Version: Lastest Tested on: Kali Linux CVE: N/A ----- PoC 1: SQLi -----...
Apache CouchDB 2.3.1 - Cross-Site Request Forgery / Cross-Site Scripting Vulnerabilities
Exploit for multiple platform in category web applications Exploit Title: Apache CouchDB 2.3.1 | Cross-Site Request Forgery / Cross-Site Scripting Date: 22.03.2019 Exploit Author: Ozer Goker Vendor Homepage: http://couchdb.apache.org Software Link: http://couchdb.apache.org/download Version: 2.3....