39001 matches found
MTGAS MOGG Web Simulator Script - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: MOGG web simulator Script - SQL Injection Exploit Author: Meisam Monsef - email protected - @meisamrce - @dorsateam Vendor Homepage: https://github.com/spider312/mtgas Version: All Version Exploit :...
School Event Management System 1.0 - Cross-Site Request Forgery (Update Admin) Vulnerability
Exploit for php platform in category web applications Exploit Title: School Event Management System 1.0 - Cross-Site Request Forgery Update Admin Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
Exploit for php platform in category web applications Exploit Title: University Application System 1.0 - SQL Injection / Cross-Site Request Forgery Add Admin Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/pamzey Software Link:...
Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Bakeshop Inventory System in VB.Net and MS Access Database 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 Hard-Coded Credentails Vulnerability
Exploit for hardware platform in category web applications EE 4GEE HH70 Home Router Hardcoded Root SSH Credentials Advisory Hardware Version/Model: 4GEE Router HH70VB-2BE8GB3 HH70VB Vulnerable Software Version: HH70E102.0019 Patched Software Version: HH70E102.0021 Vulnerability CVEs: CVE-2018-105...
CI User Login and Management 1.0 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: CI User Login and Management 1.0 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage 1: http://www.webprojectbuilder.com/item/user-login-and-management Vendor Homepage 2:...
Card Payment 1.0 - Cross-Site Request Forgery (Update Admin) Vulnerability
Exploit for php platform in category web applications Exploit Title: Card Payment 1.0 - Cross-Site Request Forgery Update Admin Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
SaltOS Erp Crm 3.1 r8126 - Database File Download Vulnerability
Exploit for php platform in category web applications Exploit Title: SaltOS Erp, Crm 3.1 r8126 - Database File Download Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: http://download.saltos.org/?app=saltos&format=xul&arch=win32 Version: 3.1 r0 / 3.x Category:...
School Attendance Monitoring System 1.0 - Cross-Site Request Forgery (Update Admin) Vulnerability
Exploit for php platform in category web applications Exploit Title: School Attendance Monitoring System 1.0 - Cross-Site Request Forgery Update Admin Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
Electricks eCommerce 1.0 - prodid SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Electricks eCommerce 1.0 - 'prodid' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/billyblue Software Link:...
SaltOS Erp Crm 3.1 r8126 - SQL Injection Vulnerability (2)
Exploit for php platform in category web applications Exploit Title: SaltOS Erp, Crm 3.1 r8126 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: https://excellmedia.dl.sourceforge.net/project/saltos/stable/SaltOS-3.1-8126.linux-i686.tgz Version: 3...
School Event Management System 1.0 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: School Event Management System 1.0 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
Grapixel New Media 2 - pageref SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Grapixel New Media 2 - 'pageref' SQL Injection Exploit Author: Berk Dusunur Vendor Homepage: http://www.grapixel.com Software Link: http://www.grapixel.com Affected Version: v2 Tested on: MacosX CVE : N/A Proof Of Concept...
Webiness Inventory 2.9 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: Webiness Inventory 2.9 - Arbitrary File Upload Exploit Author: Boumediene KADDOUR Unit: Algerie Telecom R&D Unit Software Link: https://github.com/webiness/webinessinventory Version: 2.9 3145728 61 continue; 62 63 64 // remove o...
RhinOS CMS 3.x - Arbitrary File Download Vulnerability
Exploit for php platform in category web applications Exploit Title: RhinOS CMS 3.x - Arbitrary File Download Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: https://netix.dl.sourceforge.net/project/rhinos/archived/r1190/RhinOS-en-3.0-1190.win32.exe Version: 3....
Open Faculty Evaluation System 7 - batch_name SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Open Faculty Evaluation System 7 - 'batchname' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://openfacultyeval.sourceforge.io/ Software Link:...
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Simple PHP Shopping Cart 0.9 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage: https://asaancart.wordpress.com/ Software Link:...
Curriculum Evaluation System 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Curriculum Evaluation System 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
NETGEAR WiFi Router R6120 - Credential Disclosure Vulnerability
Exploit for hardware platform in category web applications Exploit Title: NETGEAR WiFi Router R6120 - Credential Disclosure Exploit Author: Wadeek Hardware Version: R6120 Firmware Version: 1.0.0.30 Vendor Homepage: https://www.netgear.com/support/product/R6120.aspx Firmware Link:...
E-Negosyo System 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: E-Negosyo System 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
Library Management System 1.0 - frmListBooks SQL Injection Vulnerability
Exploit for asp platform in category web applications Exploit Title: Library Management System 1.0 - 'frmListBooks' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
South Gate Inn Online Reservation System 1.0 - q SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: South Gate Inn Online Reservation System 1.0 - 'q' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
MyBB Downloads 2.0.3 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: MyBB Downloads 2.0.3 - SQL Injection Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://github.com/vintagedaddyo/MyBBPlugin-Downloads...
K-iwi Framework 1775 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: K-iwi Framework 1775 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.k-iwi.com/ Software Link: https://sourceforge.net/projects/k-iwi/files/latest/download Version: 1775 Category: Webapps Tested on:...
School Event Management System 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: School Event Management System 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
SaltOS Erp Crm 3.1 r8126 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: SaltOS Erp, Crm 3.1 r8126 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.saltos.org/ Software Link: http://download.saltos.org/?app=saltos&format=xul&arch=win32 Version: 3.1 r0 / 3.x Category: Webapps...
Point of Sales (POS) in VB.Net MySQL Database 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Point of Sales POS in VB.Net MySQL Database 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.loadbalancer.org/ Version: . Such JavaScript is stored in "Apache User Log". This way attacker can...
phptpoint Pharmacy Management System 1.0 - username SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: phptpoint Pharmacy Management System 1.0 - 'username' SQL injection Exploit Author: Boumediene KADDOUR Unit: Algerie Telecom R&D Unit Vendor Homepage: https://www.phptpoint.com/ Software Link:...
School Attendance Monitoring System 1.0 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: School Attendance Monitoring System 1.0 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
Instagram Clone 1.0 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: Instagram Clone 1.0 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/justinwilliam Software Link:...
SmartFTP Client 9.0.2615.0 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: SmartFTP Client 9.0.2615.0 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-10-30 Vendor Homepage: https://www.smartftp.com/en-us/ Software Link: https://www.smartftp.com/en-us/download Tested Version:...
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal Vulnerabilities
Exploit for jsp platform in category web applications...
Instagram Clone 1.0 - Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title: Instagram Clone 1.0 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/justinwilliam Software Link:...
PayPal / Credit Card / Debit Card Payment 1.0 SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: PayPal/Credit Card/Debit Card Payment 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
QNAP NetBak Replicator 4.5.6.0607 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: QNAP NetBak Replicator 4.5.6.0607 Denial of Service PoC Exploit Author: Yair Rodríguez Aparicio Vendor Homepage: https://www.qnap.com/en/ Software Link: https://www.qnap.com/en/download Version: 4.5.6.0607 Tested on: Windows XP...
SIPp 3.3.990 - Local Buffer Overflow Exploit
Exploit for linux platform in category dos / poc Exploit Title: SIPp 3.3.990 - Local Buffer Overflow PoC Exploit Author: Nawaf Alkeraithe Vendor Homepage: http://sipp.sourceforge.net/ Software Link: https://sourceforge.net/projects/sipp/files/sipp/3.4/sipp-3.3.990.tar.gz/download Version: SIPp...
Windows/x64 - Remote (Bind TCP) Keylogger Shellcode (Generator) 864 bytes
/ Title : Windows x64 Remote Keylogger UDP size : 864 bytes Author : Roziul Hasan Khan Shifat Tested On : Windows 10 x64 pro Date : 26-10-2018 Email: email protected / / keyl.obj: file format pe-x86-64 Disassembly of section .text: 0000000000000000 : 0: eb 1d jmp 1f 0000000000000002 : 2: 48 31 d2...
ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure Exploit
Exploit for hardware platform in category dos / poc Exploit Title: ZyXEL VMG3312-B10B - Leak Credentials "; else continue; else echo "pfff"; ftpclose$ftpconn; ? 0day.today 2018-10-31...
AnySoundRecorder 2.93 - Buffer Overflow Local (SEH) Exploit
Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Any Sound Recorder 2.93 Buffer Overflow SEH', 'Description' = %q This module...
R 3.4.4 ( #Windows10 x64) - Buffer Overflow (DEP/ASLR Bypass) Exploit
Exploit for windows platform in category local exploits !/usr/bin/python R 3.4.4 Win10 x86 Buffer Overflow discovered by: bzyo author: Charles Truscott I love you Alison Thompson OAM tested on: Windows 10 x86 rebooted for practice defeating ASLR/DEP -------------------------------------------- GU...
Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) SFTP Authentication Bypass Vulnerability
Exploit Title: Nutanix AOS & Prism - SFTP Authentication Bypass Exploit Author: Adam Brown Vendor Homepage: https://www.nutanix.org Software Link: https://www.nutanix.com/products/software-options/ Version: 5.5.5 LTS, 5.8.1 STS Tested on: Acropolis Operating System CVE : Related to CVE-2018-7750...
xorg #x11 #server 1.20.3 - Privilege Escalation Exploit (3)
Exploit for multiple platform in category local exploits Exploit Title: xorg-x11-server 1.20.3 - Privilege Escalation Exploit Author: Marco Ivaldi Vendor Homepage: https://www.x.org/ Version: xorg-x11-server 1.19.0 - 1.20.2 Tested on: OpenBSD 6.3 and 6.4 CVE : CVE-2018-14665 raptorxorgasm !/bin/s...
Navicat 12.0.29 - SSH Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Navicat 12.0.29 - 'SSH' Denial of Service PoC Author: Rafael Alfaro Vendor Homepage: https://www.navicat.com/es/ Software Link : https://www.navicat.com/es/download/navicat-premium Vulnerability Type: Denial of Service DoS Local...
systemd - chown_one() can Dereference Symlinks Exploit
Exploit for linux platform in category dos / poc I am sending this bug report to Ubuntu, even though it's an upstream bug, as requested at https://github.com/systemd/systemd/blob/master/docs/CONTRIBUTING.mdsecurity-vulnerability-reports . When chownone in the recursive chown logic decides that it...
AlienIP 2.41 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: AlienIP 2.41 - Denial of Service PoC Author: Arturo de la Cruz Tellez Vendor Homepage: http://www.armcode.com Tested Version: 2.41 Tested on OS: Microsoft Windows 10 Home Single Language x64 Versión 10.0.10240 compilación 10240 PoC...
School Equipment Monitoring System 1.0 - login SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: School Equipment Monitoring System 1.0 - 'login' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://www.sourcecodester.com/users/janobe Software Link:...
systemd - reexec State Injection Exploit
Exploit for linux platform in category dos / poc / I am sending this bug report to Ubuntu, even though it's an upstream bug, as requested at https://github.com/systemd/systemd/blob/master/docs/CONTRIBUTING.mdsecurity-vulnerability-reports . When systemd re-executes e.g. during a package upgrade,...
LocalServer 1.0.9 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Local Server 1.0.9 - Denial of Service PoC Exploit Author: Ihsan Sencan Vendor Homepage: http://www.ujang-rohidin.blogspot.com/ Software Link: https://sourceforge.net/projects/local-server/files/latest/download Version: 1.0.9...
Modbus Slave 7.0.0 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Modbus Slave 7.0.0 - Denial of Service PoC Exploit Author: Ihsan Sencan Vendor Homepage: https://www.modbustools.com/ Software Link: https://www.modbustools.com/download/ModbusSlaveSetup32Bit.exe Software Link:...