39001 matches found
ADM 3.1.2RHG1 - Remote Code Execution Exploit
Exploit for hardware platform in category web applications Title: Asustor ADM 3.1.2RHG1 - Remote Code Execution Author: Matthew Fulton & Kyle Lovett Vendor Homepage: https://www.asustor.com/ Software Link: http://download.asustor.com/download/adm/X64G33.1.2.RHG1.img Version: = ADM 3.1.2RHG1 Teste...
Microsoft Edge Chakra JIT - ImplicitCallFlags Check Bypass with Intl Exploit
Exploit for windows platform in category dos / poc / If the Intl object hasn't been initialized, access to any property of it will trigger the initialization process which will run Intl.js. The problem is that it runs Intl.js without caring about the ImplicitCallFlags flag. In the PoC, it redefin...
Microsoft Edge Chakra JIT - Scope Parsing Type Confusion Exploit
Exploit for windows platform in category dos / poc // PoC: async function triggera = class b await 1 let spray = ; for let i = 0; i 0016 SetHomeObj R13 R14 001b NewScObjectSimple R9 001d ProfiledStFld R9.value = R2 1 0021 ProfiledStFld R9.done = R4 2 0025 Yield R9 R9...
Linux PAM 0.6.9 Authentication Replay Vulnerability
Exploit for linux platform in category local exploits Multiple Vulnerabilities in pampkcs11 ====================================== Overview - -------- Confirmed Affected Versions: 0.6.9 Confirmed Patched Versions: - Vendor: Unmaintained Vendor URL: https://github.com/OpenSC/pampkcs11 Credit: X41...
ownCloud iOS Application 3.7.3 Cross Site Scripting Vulnerability
Exploit for iOS platform in category web applications COMPASS SECURITY ADVISORY https://www.compass-security.com/research/advisories/ Product: ownCloud iOS Application owncloud.iosapp 1 Vendor: ownCloud Gmbh CSNC ID: CSNC-2018-016 CVE ID: N/A Subject: Cross-Site Scripting in ownCloud iOS...
ObserverIP Scan Tool 1.4.0.1 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: ObserverIP Scan Tool 1.4.0.1 - Denial of Service PoC Author: Gionathan "John" Reale Homepage: https://www.ambientweather.com Software Link: https://p10.secure.hostingprod.com/@site.ambientweatherstore.com/ssl/iptools/IPTools64bit.e...
CentralManagement Software 1.4.13 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Central Management Software v1.4.13 - Denial of Service PoC Author: Gionathan "John" Reale Homepage: https://www.ambientweather.com Software Link:...
TP-Link WR840N 0.9.1 3.16 - Denial of Service Exploit
Exploit for hardware platform in category dos / poc Exploit Title: TP-Link WR840N 0.9.1 3.16 - Denial of Service PoC Exploit Author: Aniket Dinda Vendor Homepage: https://www.tp-link.com/ Hardware Link: https://www.amazon.in/TP-LINK-TL-WR840N-300Mbps-Wireless-External/dp/B01A0G1J7Q Version: TP-Li...
cPanel Filename Based Stored XSS < v76 Exploit
Usage Info Create a file as named with your payload in /home/user/logs directory or run the php exploit. + Title: cPanel Filename Based Stored XSS http://ip:2082/cpsessXXXXXXXXXX/frontend/THEME/raw/index.html '; else die'An error occured.'; else echo 'Enter your payload: " "...
WebkitGTK+ 2.20.3 - ImageBufferCairo::getImageData() Buffer Overflow Exploit
Exploit for linux platform in category local exploits Exploit Title: WebkitGTK+ 2.20.3 - 'ImageBufferCairo::getImageData' Buffer Overflow PoC Exploit Author: PeregrineX Vendor Homepage: https://webkitgtk.org/ & https://webkit.org/wpe/ Software Link: https://webkitgtk.org/releases/ &...
Wordpress Export Users to CSV 1.1.1 Plugin - CSV Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Export Users to CSV 1.1.1 - CSV Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Vendor: Matt Cromwell Software Link: https://wordpress.org/plugins/export-users-to-csv/ Affected Version:...
Atmosphere 1.x / 2.x Cross Site Scripting Vulnerability
Async-IO.org Atmosphere suffers from a cross site scripting vulnerability. Versions affected include 2.4.0 through 2.4.28, 2.3.0 through 2.3.9, 2.2.0 through 2.2.12, 2.1.0 through 2.1.13, 2.0.0 through 2.0.11, and 1.0.0 through 1.0.20. COMPASS SECURITY ADVISORY...
OpenEMR 5.0.1.3 - Arbitrary File Actions Vulnerability
Exploit for linux platform in category web applications Exploit Title: OpenEMR 5.0.1.3 - Arbitrary File Actions Exploit Author: Joshua Fam Twitter : @Insecurity Vendor Homepage: https://www.open-emr.org/ Software Link: https://github.com/openemr/openemr/archive/v5013.tar.gz Version: 5.0.1.3 Teste...
Pimcore 5.2.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities
Exploit for php platform in category web applications ======================================================================= title: SQL Injection, XSS & CSRF vulnerabilities product: Pimcore vulnerable version: 5.2.3 and below fixed version: 5.3.0 CVE number: CVE-2018-14057, CVE-2018-14058,...
ASUSTOR ADM 3.1.0.RFQ3 - Remote Command Execution / SQL Injection Vulnerabilities
Exploit for cgi platform in category web applications Product - ASUSTOR ADM - 3.1.0.RFQ3 and all previous builds Vendor - https://www.asustor.com/ Patch Notes - http://download.asustor.com/download/docs/releasenotes/RNADM3.1.3.RHU2.pdf Issue: The Asustor NAS appliance on ADM 3.1.0 and before suff...
ASUS-DSL N10 1.1.2.2_17 - Authentication Bypass Vulnerability
Exploit for hardware platform in category web applications Title: ASUS-DSL N10 1.1.2.217 - Authentication Bypass Author: AmnBAN team Vendor Homepage: https://www.asus.com/Networking/DSLN10C1with5dBiantenna/ Sofrware version: 1.1.2.217 CVE: N/A 1. Description: In ASUS-DSL N10 C1 modem Firmware...
JioFi 4G M2S 1.0.2 - Denial of Service Exploit
Exploit for hardware platform in category dos / poc Exploit Title: JioFi 4G M2S 1.0.2 - Denial of Service PoC Exploit Author: Vikas Chaudhary Vendor Homepage: https://www.jio.com/ Hardware Link:...
Cloudme 1.9 - Buffer Overflow (DEP) Учздщше
Exploit for windows platform in category local exploits Exploit Title: Cloudme 1.9 - Buffer Overflow DEP Metasploit Date: 2018-08-13 Exploit Author: Raymond Wellnitz Vendor Homepage: https://www.cloudme.com Version: 1.8.x/1.9.x Tested on: Windows 7 x64 CVE : 2018-6892 This module requires...
Wansview 1.0.2 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: Wansview 1.0.2 - Denial of Service PoC Author: Gionathan "John" Reale Software Link: http://www.wansview.com/uploads/soft/Wansviewv1.0.2.exe Tested Version: 1.0.2 Tested on OS: Windows 10 Steps to Reproduce: Run the python exploit...
Android - Directory Traversal over USB via Injection in blkid Output Exploit
Exploit for Android platform in category local exploits When a USB mass storage device is inserted into an Android phone even if the phone is locked!, vold will attempt to automatically mount partitions from the inserted device. For this purpose, vold has to identify the partitions on the connect...
Oracle GlassFish Server Open Source Edition 4.1 - Path Traversal Exploit
Exploit for windows platform in category remote exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Path Traversal in Oracle GlassFish Server Open Source Edition', 'Description' = %q This...
cgit 1.2.1 - Directory Traversal Exploit
Exploit for linux platform in category local exploits Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory...
PLC Wireless Router GPN2.4P21-C-CN - Denial of Service
Exploit for hardware platform in category dos / poc Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC CVE: None...
Linux/x64 - Add Root User (toor/toor) Shellcode (99 bytes)
; Title: add root user toor:toor ; Date: 20180811 ; Author: epi ; https://epi052.gitlab.io/notes-to-self/ ; Tested on: linux/x8664 SMP CentOS-7 3.10.0-862.2.3.el7.x8664 GNU/Linux ; ; Shellcode Length: 99 bytes ; Action: Adds a user into /etc/passwd with the following information ; username: toor ...
IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 - Cross-Site Scripting Vulnerability
Exploit for multiple platform in category web applications Exploit Title: IBM Sterling B2B Integrator persistent cross-site scripting Exploit Author: Vikas Khanna https://www.linkedin.com/in/leetvikaskhanna/ https://twitter.com/MRSHANUKHANNA Vendor Homepage:...
iSmartViewPro 1.5 - SavePath for ScreenShots Buffer Overflow Exploit
Exploit for windows platform in category local exploits Exploit Title: iSmartViewPro 1.5 - 'SavePath for ScreenShots' Local Buffer Overflow Author: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Software Link:...
WordPress Ultimate Product Catalog 4.3.11 Plugin - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Plugin ultimate-product-catalogue 4.3.11 - SQL Injection Dork: N/A Date: 13.08.2018 Vendor Homepage: http://www.etoilewebdesign.com Software Link: https://wordpress.org/plugins/ultimate-product-catalogue Version: 4.3.1...
IP Finder 1.5 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title: IP Finder 1.5 - Denial of Service PoC Author: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Discovey Date: 2018-08-12 Software Link: https://securimport.com/university/index.php/videovigilancia-ip/software/429-ip-find...
Microsoft DirectX SDK - Xact.exe Remote Code Execution Exploit
Exploit for windows platform in category remote exploits + Credits: John Page aka hyp3rlinx Vendor ============= www.microsoft.com Product =========== Microsoft DirectX SDK June 2010 Xact3.exe https://www.microsoft.com/en-us/download/details.aspx?id=6812 XACT Cross-platform audio creation tool is...
Switch Port Mapping Tool 2.81.2 - Name Field Denial of Service Exploit
Exploit for unix platform in category dos / poc Exploit Title: Switch Port Mapping Tool 2.81.2 - 'Name Field' Denial of Service PoC Discovery by: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Vendor Homepage: https://switchportmapper.com/ Software Link:...
PostgreSQL 9.4-0.5.3 - Privilege Escalation Exploit
Exploit for linux platform in category local exploits Exploit Title: PostgreSQL 9.4-0.5.3 - Privilege Escalation Exploit Author: Johannes Segitz Vendor Homepage: https://bugzilla.suse.com/showbug.cgi?id=1062722 Software Link: - Version: Before postgresql-init-9.4-0.5.3.1 Tested on: SUSE Linux...
Acunetix WVS 10.0 Build 20150623 - Denial of Service Exploit
Exploit for windows platform in category dos / poc Exploit Title : Acunetix Web Vulnerability Scanner 10.0 Build 20150623 - Denial of Service PoC Discovery by: Javier Enrique Rodriguez Gutierrez Vendor Homepage: https://www.acunetix.com Tested Version : 10.0 Vulnerability Type : Denial of Service...
Wavemaker Studio 6.6 - Server-Side Request Forgery Vulnerability
Exploit for java platform in category web applications Exploit Title: Wavemaker Studio 6.6 - Server-Side Request Forgery SSRF. Exploit Author: Gionathan "John" Reale Vendor Homepage: http://www.wavemaker.com/ Software Link:...
Dicoogle PACS 2.5.0 Web Server Directory Traversal Exploit
This module exploits an unauthenticated directory traversal vulnerability in the Dicoogle PACS Web Server v2.5.0 and possibly earlier, allowing an attacker to read arbitrary files with the web server privileges. While the application is java based, the directory traversal was only successful...
Monstra-Dev 3.0.4 - Cross-Site Request Forgery (Account Hijacking) Vulnerability
Exploit for php platform in category web applications Exploit Title: Monstra-Dev 3.0.4 - Cross-Site Request ForgeryAccount Hijacking Exploit Author: Nainsi Gupta Vendor Homepage: http://monstra.org/ Product Name: Monstra-dev Version: 3.0.4 Tested on: Windows 10 Firefox/Chrome CVE : N/A 1...
Oracle Weblogic Server Deserialization Remote Code Execution Exploit
Exploit for multiple platform in category remote exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/powershell' class MetasploitModule 'Oracle Weblogic Server Deserialization RCE',...
iSmartViewPro 1.5 - Password Buffer Overflow Exploit
Exploit for windows platform in category local exploits Exploit Title: iSmartViewPro 1.5 - 'Password' Buffer Overflow Discovery by: Javier Enrique Rodriguez Gutierrez Discovery Date: 2018-08-09 Vendor Homepage: https://securimport.com/ Software Link:...
MyBB Thank You/Like Plugin 3.0.0 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: MyBB Thank You/Like Plugin 3.0.0 - Cross-Site Scripting Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://community.mybb.com/mods.php?action=view&pid=360 Version: 3.0.0 Tested on: Ubuntu 18.04 CVE:...
MyBB Like Plugin 3.0.0 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: MyBB Like Plugin 3.0.0 - Cross-Site Scripting Author: 0xB9 Twitter: @0xB9Sec Software Link: https://community.mybb.com/mods.php?action=view&pid=360 Version: 3.0.0 Tested on: Ubuntu 18.04 CVE: N/A 1. Description: This plugin allo...
Zimbra 8.6.0_GA_1153 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Xss Zimbra Mail server Exploit Author: Dinbar78 Vendor Homepage: https://www.zimbra.com/ Version: 8.6.0GA1153 build 20141215151110 bug 103609 or CVE-2016-3411 Payload: es. https:// zimbrasite/h/changepass?skin="alert'hacked';...
CloudMe Sync 1.10.9 - Buffer Overflow (SEH) Exploit
Exploit for windows platform in category local exploits Exploit Title: CloudMe Sync 1.10.9 - Buffer Overflow SEHDEP Bypass Exploit Author: Manoj Ahuje Linkedin: https://www.linkedin.com/in/manojahuje/ Vendor Homepage: https://www.cloudme.com/ Software Link:...
man-cgi Local File Inclusion Vulnerability
Exploit for linux platform in category remote exploits man-cgi before 1.16 allows Local File Inclusion via absolute path traversal. If an Attacker provides a Filename as a Parameter e.g. https://example.org/cgi-bin/man-cgi?/etc/passwd the Script will read and return the local file. This is...
TP-Link Archer C50 V3 Wireless Router 3 - CSRF (Remote Reboot) Vulnerability
Exploit for hardware platform in category web applications Exploit Title: TP-Link C50 Wireless Router 3 - Cross-Site Request Forgery Remote Reboot Exploit Author: Wadeek Vendor Homepage: https://www.tp-link.com/ Hardware Version: Archer C50 v3 00000001 Firmware Link:...
Linux Kernel 4.14.7 ( Ubuntu 16.04 / CentOS 7) Arbitrary File Read Exploit
Exploit for linux platform in category local exploits // A proof-of-concept exploit for CVE-2017-18344. // Includes KASLR and SMEP bypasses. No SMAP bypass. // No support for 1 GB pages or 5 level page tables. // Tested on Ubuntu xenial 4.4.0-116-generic and 4.13.0-38-generic // and on CentOS 7...
AgataSoft Auto PingMaster 1.5 - Buffer Overflow (SEH) Exploit
Exploit for windows platform in category local exploits Exploit Title: AgataSoft Auto PingMaster 1.5 - Buffer Overflow SEH Exploit Author: bzyo Twitter: @bzyo Vulnerable Software: AgataSoft Auto PingMaster 1.5 Vendor Homepage: http://agatasoft.com/ Version: 1.5 Software Link :...
TP-Link TL-WR840N - Denial of Service Vulnerability
Exploit for hardware platform in category dos / poc Exploit Title:- TP-Link Wireless N Router WR840N - Denial of Service PoC Vendor Homepage: https://www.tp-link.com/ Hardware Link: https://www.amazon.in/TP-LINK-TL-WR840N-300Mbps-Wireless-External/dp/B01A0G1J7Q Version: TP-Link Wireless N Router...
TP-Link Archer C50 V3 Wireless Router 3 - CSRF (Information Disclosure) Vulnerability
Exploit for hardware platform in category web applications Exploit Title: TP-Link C50 Wireless Router 3 - Cross-Site Request Forgery Information Disclosure Exploit Author: Wadeek Vendor Homepage: https://www.tp-link.com/ Hardware Version: Archer C50 v3 00000001 Firmware Link:...
Sitecore.Net 8.1 - Directory Traversal Vulnerability
Exploit for asp platform in category web applications Exploit Title: Sitecore.Net 8.1 - Directory Traversal CVE: CVE-2018-7669 Researcher: Chris Moberly at The Missing Link Security Vendor: Sitecore Version: CMS - 8.1 and up earlier versions untested Authentication required: Yes An issue was...
Ericsson-LG iPECS NMS 30M - Directory Traversal Vulnerability
Exploit for linux platform in category web applications Exploit Title: LG-Ericsson iPECS NMS 30M - Directory Traversal Shodon Dork: iPECS CM Exploit Author: Safak Aslan Software Link: www.ipecs.com Version: 30M System Authentication Required: No Tested on: Linux CVE: N/A Description The directory...
reSIProcate 1.10.2 Heap Overflow Exploit
Exploit for multiple platform in category dos / poc CVE ID: CVE-2018-12584 TIMELINE Bug report with test code sent to main reSIProcate developers: 2018-06-15 Patch created by Scott Godin: 2018-06-18 CVE ID assigned: 2018-06-19 Patch committed to reSIProcate repository: 2018-06-21 Advisory first...