Lucene search
K

39001 matches found

0day.today
0day.today
added 2018/12/27 12:0 a.m.43 views

Craft CMS 3.0.25 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications...

3.5CVSS5.7AI score0.03702EPSS
Exploits5
0day.today
0day.today
added 2018/12/27 12:0 a.m.62 views

PLC Wireless Router GPN2.4P21-C-CN Cross Site Scripting Vulnerability

Exploit for cgi platform in category web applications Exploit Title: PLC Wireless Router GPN2.4P21-C-CN -Reflected XSS Exploit Author: Kumar Saurav Vendor: ChinaMobile Category: Hardware Version: GPN2.4P21-C-CN Firmware: W2001EN-00 Tested on: Multiple CVE : CVE-2018-20326 Description: PLC Wireles...

4.3CVSS6.3AI score0.04822EPSS
Exploits7
0day.today
0day.today
added 2018/12/27 12:0 a.m.48 views

WordPress Baggage Freight Shipping Australia 0.1.0 Plugin - Arbitrary File Upload

Exploit for php platform in category web applications Exploit Title: WordPress Plugin Baggage Freight Shipping Australia 0.1.0 - Arbitrary File Upload Software Link: https://wordpress.org/plugins/baggage-freight/ Exploit Author: Kaimi Website: https://kaimi.io Version: 0.1.0 Category: webapps...

Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.33 views

MAGIX Music Editor 3.1 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: MAGIX Music Editor 3.1 - Buffer Overflow SEH Exploit Author: bzyo Twitter: @bzyo Vulnerable Software: MAGIX Music Editor 3.1 Vendor Homepage: https://www.magix.com/us/ Version: 3.1 Software Link:...

0.1AI score
Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.64 views

WordPress Audio Record 1.0 Plugin - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Plugin Audio Record 1.0 - Arbitrary File Upload Software Link: https://wordpress.org/plugins/audio-record/ Exploit Author: Kaimi Website: https://kaimi.io Version: 1.0 Category: webapps Unrestricted file upload in reco...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.28 views

bludit Pages Editor 3.0.0 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: bludit Pages Editor 3.0.0 - Arbitrary File Upload Exploit Author: BouSalman Vendor Homepage: https://www.bludit.com/ Software Link: N/A Version: 3.0.0 Tested on: Ubuntu 18.04 CVE : 2018-1000811 POST /admin/ajax/upload-files...

6.9AI score
Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.23 views

ShareAlarmPro 2.1.4 - Denial of Service Exploit

Exploit Title:ShareAlarmPro 2.1.4 - Denial of Service PoC Exploit Author: T3jv1l Vendor Homepage: :http://www.nsauditor.com Software: http://sharealarm.nsauditor.com/downloads/sharealarmprosetup.exe Contact: https://twitter.com/T3jv1l Version:ShareAlarmPro 2.1.4 Tested on: Windows 7 SP1 x86 PoC: ...

Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.14 views

Terminal Services Manager 3.1 - Local Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: Terminal Services Manager 3.1 - Buffer Overflow SEH Exploit Author: bzyo Twitter: @bzyo Vulnerable Software: Terminal Services Manager 3.1 Vendor Homepage: https://lizardsystems.com Version: 3.1 Software Link:...

7.2AI score
Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.24 views

NetShareWatcher 1.5.8 - Denial of Service Exploit

Exploit Title: NetShareWatcher 1.5.8 - Denial of Service PoC Exploit Author: T3jv1l Vendor Homepage: :http://www.nsauditor.com Software: http://netsharewatcher.nsauditor.com/downloads/NetShareWatchersetup.exe Contact: https://twitter.com/T3jv1l Version: NetShareWatcher 1.5.8 Tested on: Windows 7...

0.1AI score
Exploits0
0day.today
0day.today
added 2018/12/27 12:0 a.m.64 views

Product Key Explorer 4.0.9 - Denial of Service Exploit

Exploit Title: Product Key Explorer 4.0.9 - Denial of Service PoC Exploit Author: T3jv1l Vendor Homepage: :http://www.nsauditor.com Software: http://www.nsauditor.com/downloads/productkeyexplorersetup.exe Contact: https://twitter.com/T3jv1l Version: Product Key Explorer 4.0.9 Tested on: Windows 7...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/12/26 12:0 a.m.18 views

Linux/x64 - Disable ASLR Security Shellcode (93 Bytes)

/ ASLR Address Space Layout Randomization Disable Shellcode Language C & ASM - Linux/x8664 Author : Kağan Çapar contact: email protected shellcode len : 93 bytes compilation: gcc -fno-stack-protector -z execstack .c -o Test: run shellcode ./aslr etc. check : cat /proc/sys/kernel/randomizevaspace...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/12/24 12:0 a.m.31 views

Microsoft Windows - MsiAdvertiseProduct Arbitrary File Copy/Read Exploit

Exploit for windows platform in category local exploits The bug is in “MsiAdvertiseProduct” Calling this function will result in a file copy by the installer service. This will copy an arbitrary file that we can control with the first parameter into c:\windows\installer … a check gets done while...

7.2AI score
Exploits0
0day.today
0day.today
added 2018/12/24 12:0 a.m.50 views

Linux/x86 - Kill All Processes Shellcode (14 bytes)

Exploit Title: Linux/x86 - Kill All Processes Shellcode 14 bytes Exploit Author: strider Vendor Homepage: None Software Link: None Tested on: Debian 9 Stretch i386/ Kali Linux i386 CVE : None Shellcode Length: 14 Description: Linux/x86 kill 9 -1 14 bytes...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/12/24 12:0 a.m.65 views

WSTMart 2.0.8 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WSTMart 2.0.8 - Cross-Site Scripting Exploit Author: linfeng Vendor Homepage: https://github.com/wstmall/wstmart/ Software Link: http://www.wstmart.net/ Version: WSTMart 2.0.8181212 CVE: CVE-2018-20367 0x01 stored XSS PoC Functi...

6.4AI score0.00707EPSS
Exploits5
0day.today
0day.today
added 2018/12/24 12:0 a.m.46 views

FrontAccounting 2.4.5 - SubmitUser SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: FrontAccounting 2.4.5 - 'SubmitUser' SQL Injection Exploit Author: Sainadh Jamalpur Vendor Homepage: http://frontaccounting.com/ Software Link: https://sourceforge.net/projects/frontaccounting/ Version: 2.4.5 Tested on: XAMPP...

Exploits0
0day.today
0day.today
added 2018/12/24 12:0 a.m.75 views

Google Chrome 70 - SQLite Magellan Crash Exploit

This proof-of-concept crashes the Chrome renderer process using Tencent Blade Team's Magellan SQLite3 bug. It's based on a SQLite test case from the commit that fixed the bug. If you're using Chrome 70 or below, tap the button below to crash this page: Crash this page Your browser's user agent is...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/12/24 12:0 a.m.354 views

Keybase keybase-redirector - ($PATH) Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits keybase-redirector is a setuid root binary. keybase-redirector calls the fusermount binary using a relative path and the application trusts the value of $PATH. This allows a local, unprivileged user to trick the application to executing a cust...

7.4AI score0.01493EPSS
Exploits2
0day.today
0day.today
added 2018/12/24 12:0 a.m.191 views

Adobe Flash ActiveX Plugin 28.0.0.137 - Remote Code Execution Exploit

Exploit for windows platform in category local exploits Download: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/46051.zip Password: infected 0day.today 2018-12-27...

1.3AI score0.81971EPSS
Exploits13
0day.today
0day.today
added 2018/12/24 12:0 a.m.74 views

phpMyAdmin 4.8.4 - AllowArbitraryServer Arbitrary File Read Exploit

Exploit for php platform in category web applications !/usr/bin/env python coding: utf8 import socket import asyncore import asynchat import struct import random import logging import logging.handlers PORT = 3306 log = logging.getLoggername log.setLevellogging.DEBUG tmpformat =...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/12/24 12:0 a.m.141 views

PhpSpreadsheet < 1.5.0 - XML External Entity (XXE) Vulnerability

Exploit for php platform in category web applications Product Description PhpSpreadsheet is a library written in pure PHP that provides a set of classes allowing users to read from and write to different spreadsheet file formats, such as Excel and LibreOffice Calc. Vulnerabilities List One...

6.8CVSS0.2AI score0.07791EPSS
Exploits4
0day.today
0day.today
added 2018/12/24 12:0 a.m.79 views

WSTMart 2.0.8 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: WSTMart 2.0.8 - Cross-Site Request Forgery Add Admin Exploit Author: linfeng Vendor Homepage:https://github.com/wstmall/wstmart/ Software Link:http://www.wstmart.net/ Version: WSTMart 2.0.8181212 CVE :CVE-2018-19138 0x02 CSRF Po...

6.8CVSS0.3AI score0.02248EPSS
Exploits5
0day.today
0day.today
added 2018/12/24 12:0 a.m.183 views

Kubernetes - (Authenticated) Arbitrary Requests Exploit

!/usr/bin/env python3 import argparse from ssl import wrapsocket from socket import createconnection from secrets import base64, tokenbytes def requeststage1namespace, pod, method, target, token: stage1 = "" with open'stage1', 'r' as stage1fd: stage1 = stage1fd.read return stage1.formatnamespace,...

9.8CVSS0.8AI score0.86978EPSS
Exploits10
0day.today
0day.today
added 2018/12/24 12:0 a.m.167 views

Kubernetes - (Unauthenticated) Arbitrary Requests Exploit

!/usr/bin/env python3 import argparse from ssl import wrapsocket from json import loads, dumps from socket import createconnection def requeststage1base, version, target: stage1 = "" with open'ustage1', 'r' as stage1fd: stage1 = stage1fd.read return stage1.formatbase, version, target .encode'utf-...

9.8CVSS0.8AI score0.86978EPSS
Exploits10
0day.today
0day.today
added 2018/12/23 12:0 a.m.380 views

ASUS Aura Sync versions 1.07.22 Driver Privilege Escalation Exploit

Multiple vulnerabilities were found in the GLCKIo and Asusgio drivers installed by ASUS Aura Sync, which could allow a local attacker to elevate privileges. ASUS Aura Sync versions 1.07.22 and below are affected. ASUS Drivers Elevation of Privilege Vulnerabilities 1. Advisory Information Title:...

1AI score0.00575EPSS
Exploits5
0day.today
0day.today
added 2018/12/23 12:0 a.m.51 views

Juniper Secure Access SSL VPN Privilege Escalation Vulnerability

Certain Secure Access SA Series SSL VPN products originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 build 9627 4.2 Release build 7631. This occurs because appropriate controls...

8.9AI score0.01297EPSS
Exploits3
0day.today
0day.today
added 2018/12/22 12:0 a.m.36 views

Microsoft Edge 42.17134.1.0 - Tree::ANode::DocumentLayout Denial of Service Exploit

Exploit Title: Microsoft Edge edgehtml.dll!Tree::ANode::DocumentLayout. Denial of Service PoC Exploit Author: Bogdan Kurinnoy email protected Vendor Homepage: https://www.microsoft.com/ Version: Microsoft Edge 42.17134.1.0 Microsoft EdgeHTML 17.17134 Tested on: Windows 10 x64 CVE : N/A Descriptio...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/12/22 12:0 a.m.104 views

VBScript - MSXML Execution Policy Bypass Exploit

According to https://blogs.windows.com/msedgedev/2017/07/07/update-disabling-vbscript-internet-explorer-11/, Starting from Windows 10 Fall Creators Update, VBScript execution in IE 11 should be disabled for websites in the Internet Zone and the Restricted Sites Zone by default. However, the...

7.6CVSS0.45762EPSS
Exploits2
0day.today
0day.today
added 2018/12/22 12:0 a.m.59 views

SQLScan 1.0 - Denial of Service Exploit

Exploit Title: McAfee Foundstone SQLScan - Denial of Service PoC and EIP record overwrite Discovery by: Rafael Pedrero Vendor Homepage: http://www.mcafee.com/us/downloads/free-tools/sqlscan.aspx Software Link : http://www.mcafee.com/us/downloads/free-tools/sqlscan.aspx Tested Version: 1.0.0.0...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/12/22 12:0 a.m.22 views

AnyBurn 4.3 - Local Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits !/usr/bin/env python Exploit Title: AnyBurn 4.3 - Local Buffer Overflow SEH Unicode Exploit Author: Matteo Malvica Vendor Homepage: http://www.anyburn.com/ Software Link : http://www.anyburn.com/anyburnsetup.exe Tested Version: 4.3 32-bit...

7.2AI score
Exploits0
0day.today
0day.today
added 2018/12/22 12:0 a.m.892 views

Netatalk < 3.1.12 - Authentication Bypass Exploit

Exploit Title: Netatalk Authentication Bypass Exploit Author: Jacob Baines Vendor Homepage: http://netatalk.sourceforge.net/ Software Link: https://sourceforge.net/projects/netatalk/files/ Version: Before 3.1.12 Tested on: Seagate NAS OS x8664 CVE : CVE-2018-1160 Advisory:...

10CVSS0.4AI score0.86539EPSS
Exploits10
0day.today
0day.today
added 2018/12/22 12:0 a.m.37 views

ZeusCart 4.0 - Cross-Site Request Forgery (Deactivate Customer Accounts) Vulnerability

Exploit for php platform in category web applications Exploit Title: ZeusCart4.0 Deactivate Customer Accounts CSRF Exploit Author: mqt Vendor Homepage: http://http://www.zeuscart.com/ Version: Zeus Cart 4.0 CSRF 1. Vulnerability Description Due to the form not being validated, ZeusCart4.0 suffers...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/12/22 12:0 a.m.39 views

XMPlay 3.8.3 - .m3u Local Stack Overflow Code Execution Exploit

Exploit for windows platform in category local exploits !/usr/bin/env python -- coding: utf-8 -- Exploit Title: XMPlay 3.8.3 - '.m3u' Code Execution PoC Exploit Author: s7acktrac3 Vendor Homepage: https://www.xmplay.com/ Software Link: https://support.xmplay.com/filesview.php?fileid=676 Version:...

7.2AI score
Exploits0
0day.today
0day.today
added 2018/12/22 12:0 a.m.76 views

VBScript - VbsErase Reference Leak Use-After-Free Exploit

There is an reference leak in Microsoft VBScript that can be turned into an use-after-free given sufficient time. The vulnerability has been confirmed in Internet Explorer on various Windows versions with the latest patches applied. Details: VbsErase function is used to reset and free the content...

7.6CVSS0.1AI score0.43761EPSS
Exploits2
0day.today
0day.today
added 2018/12/22 12:0 a.m.21 views

Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits !/usr/bin/env python Exploit Author: bzyo Twitter: @bzyo Exploit Title: Base64 Decoder 1.1.2 - Local Buffer Overflow SEH Date: 12-20-18 Vulnerable Software: Base64 Decoder 1.1.2 Vendor Homepage: http://4mhz.de/b64dec.html Version: 1.1.2...

7.2AI score
Exploits0
0day.today
0day.today
added 2018/12/22 12:0 a.m.35 views

Microsoft Windows - MsiAdvertiseProduct Arbitrary File Read Exploit

Exploit for windows platform in category local exploits The bug is in “MsiAdvertiseProduct” Calling this function will result in a file copy by the installer service. This will copy an arbitrary file that we can control with the first parameter into c:\windows\installer … a check gets done while...

0.1AI score
Exploits0
0day.today
0day.today
added 2018/12/20 12:0 a.m.31 views

Erlang Port Mapper Daemon Cookie Remote Code Execution Exploit

The erlang port mapper daemon is used to coordinate distributed erlang instances. Should an attacker get the authentication cookie, remote code execution is trivial. Usually, this cookie is named ".erlang.cookie" and varies on location. This module requires Metasploit:...

0.7AI score
Exploits0
0day.today
0day.today
added 2018/12/19 12:0 a.m.28 views

Yeswiki Cercopitheque - id SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: SQL Injection in Yeswiki Cercopitheque Exploit Author: Mickael BROUTY @ark1nar - FIDENS Vendor Homepage: https://yeswiki.net Software Link: https://repository.yeswiki.net/cercopitheque/yeswiki-cercopitheque-2018-12-07-1.zip...

7.1AI score0.03213EPSS
Exploits5
0day.today
0day.today
added 2018/12/19 12:0 a.m.122 views

Linux Kernel 4.4 - rtnetlink Stack Memory Disclosure Exploit

Exploit for linux platform in category local exploits...

2.1CVSS1.3AI score0.0171EPSS
Exploits4
0day.today
0day.today
added 2018/12/19 12:0 a.m.60 views

IBM Operational Decision Manager 8.x - XML External Entity Injection

Exploit for multiple platform in category web applications Exploit Title: XML External Entity Injection XXE Exploit Author: Mohamed M.Fouad - From SecureMisr Company Vendor Homepage: https://www-01.ibm.com/support/docview.wss?uid=ibm10744149 Version: v8.6 - v8.7 - v8.8 - v8.9 REQUIRED Tested on:...

9.1AI score0.15801EPSS
Exploits5
0day.today
0day.today
added 2018/12/19 12:0 a.m.31 views

Integria IMS 5.0.83 - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: Integria IMS 5.0.83 - Cross-Site Request Forgery Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Artica ST Software Link: https://github.com/articaST/integriaims Affected Version: 5.0.83 and possibly before...

0.4AI score0.01915EPSS
Exploits5
0day.today
0day.today
added 2018/12/19 12:0 a.m.19 views

Hotel Booking Script 3.4 - CSRF (Change Admin Password) Vulnerability

Exploit for php platform in category web applications Exploit Title: Admin Account take over Via CSRF Exploit Author: Sainadh Jamalpur Vendor Homepage: https://www.phpjabbers.com/hotel-booking-system/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2018/12/19 12:0 a.m.60 views

Integria IMS 5.0.83 - search_string Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Integria IMS 5.0.83 - Cross-Site Scripting Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Artica ST Software Link: https://github.com/articaST/integriaims Affected Version: 5.0.83 and possibly before Patch...

0.2AI score0.02273EPSS
Exploits5
0day.today
0day.today
added 2018/12/19 12:0 a.m.72 views

Bolt CMS < 3.6.2 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Bolt CMS https://github.com/rdincel1/Bolt-CMS-3.6.2---Cross-Site-Scripting/raw/master/bolt-v3.6.2.zip Affected Version: alert"Raif" Description Bolt CMS 3.6.2 allows XSS via text input click preview button as demonstrated by the...

0.03466EPSS
Exploits5
0day.today
0day.today
added 2018/12/19 12:0 a.m.46 views

LanSpy 2.0.1.159 - Local Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python ------------------------------------------------------------------------------------------------------------------------------------ Exploit: LanSpy 2.0.1.159 - Local Buffer Overflow RCEPoC Date: 2018-12-16 Author: Juan...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/12/19 12:0 a.m.95 views

Rukovoditel Project Management CRM 2.3.1 - Remote Code Execution Exploit

Exploit for php platform in category web applications This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'uri' class MetasploitModule 'Rukovoditel Project Management/CRM 2.3.1 - Authenticated...

0.0712EPSS
Exploits5
0day.today
0day.today
added 2018/12/18 12:0 a.m.32 views

PDF Explorer 1.5.66.2 - SEH Local Exploit

Exploit for windows platform in category local exploits Exploit Title: PDF Explorer SEH Local Exploit Original Discovery:Gionathan "John" Reale DoS exploit Exploit Author: Achilles Date: 18-12-2018 Vendor Homepage: http://www.rttsoftware.com/ Software Link:...

0.1AI score
Exploits0
0day.today
0day.today
added 2018/12/18 12:0 a.m.24 views

Nsauditor 3.0.28.0 - Local SEH Buffer Overflow Exploit

Exploit for windows platform in category local exploits Exploit Title: Nsauditor Local SEH Buffer Overflow Vendor Homepage:http://www.nsauditor.com Software Link: http://www.nsauditor.com/downloads/nsauditorsetup.exe Exploit Author: Achilles Tested Version: 3.0.28.0 Tested on: Windows XP SP3 1.-...

7.2AI score
Exploits0
0day.today
0day.today
added 2018/12/18 12:0 a.m.54 views

SDL Web Content Manager 8.5.0 - XML External Entity Injection Vulnerability

Exploit for php platform in category web applications Author Information Author : Ahmed Elhady Mohamed twitter : @AhmedELhady Company : Canon Security Date : 25/11/2018 Software Information Affected Software : SDL Web Content Manager Version: Build 8.5.0 Vendor: SDL Tridion Software website :...

6.6AI score0.06017EPSS
Exploits5
0day.today
0day.today
added 2018/12/18 12:0 a.m.106 views

Microsoft Windows - jscript!JsArrayFunctionHeapSort Out-of-Bounds Write Exploit

function f0 function f1 f2.prototype = arguments; new f2; function f2 Array.prototype.sort.callthis, f0; f11, 2, 3; !-- ========================================================= Details: JsArrayFunctionHeapSort is called when sorting an array with a provided comparison function. One of its...

7.6CVSS0.2AI score0.69214EPSS
Exploits3
0day.today
0day.today
added 2018/12/18 12:0 a.m.34 views

Excel Password Recovery 8.2.0.0 - Local Buffer Overflow Denial of Service Exploit

Exploit Title: Excel Password Recovery Professional Vendor Homepage:https://www.recoverlostpassword.com/ Software Link :https://www.recoverlostpassword.com/downloads/excelpasswordrecoveryprotrial.exe Exploit Author: Achilles Tested Version: 8.2.0.0 Tested on: Windows 7 64 Vulnerability Type: Deni...

0.2AI score
Exploits0
Total number of security vulnerabilities39001