39001 matches found
perfexcrm 1.10 - (State) Stored Cross-site scripting Vulnerability
Exploit Title: perfexcrm 1.10 - 'State' Stored Cross-site scripting XSS Exploit Author: Alhasan Abbas exploit.msf Vendor Homepage: https://www.perfexcrm.com/ Version: 1.10 Tested on: windows 10 Vunlerable page: /clients/profile POC: ---- POST /clients/profile HTTP/1.1 Host: localhost User-Agent:...
NSClient++ 0.5.2.35 Privilege Escalation Exploit
This Metasploit module allows an attacker with an unprivileged windows account to gain admin access on windows system and start a shell. For this module to work, both the NSClient++ web interface and ExternalScripts features must be enabled. You must also know where the NSClient config file is, a...
Billing System Project 1.0 - Remote Code Execution (Unauthenticated) Exploit
Exploit Title: Billing System Project 1.0 - Remote Code Execution RCE Unauthenticated Exploit Author: Talha DEMİRSOY Software Link: https://www.sourcecodester.com/php/14831/billing-system-project-php-source-code-free-download.html Version: V 1.0 Tested on: Linux & Windows import requests import...
Visual Tools DVR VX16 4.2.28.0 - OS Command Injection (Unauthenticated) Vulnerability
Exploit Title: Visual Tools DVR VX16 4.2.28.0 - OS Command Injection Unauthenticated Exploit Author: Andrea D'Ubaldo Vendor Homepage: https://visual-tools.com/ Version: Visual Tools VX16 v4.2.28.0 Tested on: VX16 Embedded Linux 2.6.35.4. An unauthenticated remote attacker can inject arbitrary...
Black Box Kvm Extender 3.4.31307 - Local File Inclusion Exploit
Exploit Title: Black Box Kvm Extender 3.4.31307 - Local File Inclusion Exploit Author: Ferhat Çil Vendor Homepage: http://www.blackbox.com/ Software Link: https://www.blackbox.com/en-us/products/black-box-brand-products/kvm Version: 3.4.31307 Category: Webapps Tested on: Linux Description: Any us...
WordPress Anti-Malware Security and Bruteforce Firewall 4.20.59 Plugin - Directory Traversal
Exploit Title: WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 - Directory Traversal Exploit Author: TheSmuggler Vendor Homepage: https://gotmls.net/ Software Link: https://gotmls.net/downloads/ Version: = 4.20.72 Tested on: Windows import requests...
Phone Shop Sales Managements System 1.0 - (Multiple) Arbitrary File Upload to Remote Code Execution
Exploit Title: Phone Shop Sales Managements System 1.0 - 'Multiple' Arbitrary File Upload to Remote Code Execution Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://www.sourcecodester.com/ Software Link:...
Exam Hall Management System 1.0 - Unrestricted File Upload (Unauthenticated) Exploit
Exploit Title: Exam Hall Management System 1.0 - Unrestricted File Upload Unauthenticated Exploit Author: Thamer Almohammadi @Thamerz88 Vendor Homepage: https://www.sourcecodester.com Software Link:...
Pallets Werkzeug 0.15.4 - Path Traversal Exploit
Exploit Title: Pallets Werkzeug 0.15.4 - Path Traversal Original Author: Emre ÖVÜNÇ Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://palletsprojects.com/ Software Link: https://github.com/pallets/werkzeug Version: Prior to 0.15.5 Tested on: Windows Server CVE:...
Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Vulnerability
Exploit Title: Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Exploit Author: Andrea D'Ubaldo Vendor Homepage: https://visual-tools.com/ Version: Visual Tools VX16 v4.2.28.0 Tested on: VX16 Embedded Linux 2.6.35.4. An attacker can perform a system-level root local privilege escalation...
Church Management System 1.0 - (password) SQL Injection (Authentication Bypass) Vulnerability
Exploit Title: Church Management System 1.0 - 'password' SQL Injection Authentication Bypass Exploit Author: Murat DEMIRCI @butterflyhunt3r Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/11206/church-management-system.html Version: 1.0 Tested on:...
Church Management System 1.0 - (Multiple) Stored Cross-Site Scripting Vulnerability
Exploit Title: Church Management System 1.0 - 'Multiple' Stored Cross-Site Scripting XSS Exploit Author: Murat DEMIRCI @butterflyhunt3r Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/11206/church-management-system.html Version: 1.0 Tested on:...
Church Management System 1.0 - Unrestricted File Upload to Remote Code Execution Vulnerability
Exploit Title: Church Management System 1.0 - Unrestricted File Upload to Remote Code Execution Authenticated Exploit Author: Murat DEMIRCI @butterflyhunt3r Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/11206/church-management-system.html Versio...
OpenEMR 5.0.1.7 - (fileName) Path Traversal (Authenticated) Exploit (2)
Title: OpenEMR 5.0.1.7 - 'fileName' Path Traversal Authenticated 2 Exploit author: noraj Alexandre ZANNI for SEC-IT http://secit.fr Exploit source: https://github.com/sec-it/exploit-CVE-2019-14530 Vendor Homepage: https://www.open-emr.org/ Software Link:...
Ricon Industrial Cellular Router S9922XL - Remote Command Execution Exploit
Exploit Title: Ricon Industrial Cellular Router S9922XL - Remote Command Execution RCE Exploit Author: LiquidWorm Vendor Homepage: https://www.riconmobile.com !/usr/bin/env python3 -- coding: utf-8 -- Ricon Industrial Cellular Router S9922XL Remote Command Execution Vendor: Ricon Mobile Inc...
Online Voting System 1.0 - SQL injection (Authentication Bypass) / Remote Code Execution Exploit
Exploit Title: Online Voting System 1.0 - SQLi Authentication Bypass + Remote Code Execution RCE Exploit Author: Geiseric Date 02.07.2021 Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/4808/voting-system-php.html Version 1.0 Tested on: Ubuntu...
Simple Client Management System 1.0 - Remote Code Execution Exploit
Exploit Title: Simple Client Management System 1.0 - Remote Code Execution RCE Exploit Author: Ishan Saha Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/client-details.zip Version: 1.0 Tested on: Windows 10 Hom...
Online Birth Certificate System 1.1 - (Multiple) Stored Cross-Site Scripting Vulnerability
Exploit Title: Online Birth Certificate System 1.1 - 'Multiple' Stored Cross-Site Scripting XSS Exploit Author: Subhadip Nag Author Linkedin: www.linkedin.com/in/subhadip-nag-09/ Vendor Homepage: https://phpgurukul.com Software Link: https://phpgurukul.com/client-management-system-using-php-mysql...
TextPattern CMS 4.9.0-dev - Remote Command Execution (Authenticated) Exploit
Exploit Title: TextPattern CMS 4.9.0-dev - Remote Command Execution RCE Authenticated Exploit Author: Mevlüt Akçam Software Link: https://github.com/textpattern/textpattern Vendor Homepage: https://textpattern.com/ Version: 4.9.0-dev Tested on: 20.04.1-Ubuntu !/usr/bin/python3 import requests fro...
WordPress WP Learn Manager 1.1.2 Plugin - Stored Cross-Site Scripting Vulnerability
Exploit Title: WordPress Plugin WP Learn Manager 1.1.2 - Stored Cross-Site Scripting XSS Exploit Author: Mohammed Adam Vendor Homepage: https://wplearnmanager.com/ Software Link: https://wordpress.org/plugins/learn-manager/ Version: 1.1.2 References link:...
Wordpress Backup Guard 1.5.8 Plugin - Remote Code Execution (Authenticated) Exploit
Exploit Title: Wordpress Plugin Backup Guard 1.5.8 - Remote Code Execution Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://backup-guard.com/products/backup-wordpress Software Link: https://downloads.wordpress.org/plugin/backup.1.5.8.zip Version: Before 1.6.0 Tested on...
Garbage Collection Management System 1.0 - SQL Injection (Unauthenticated) Vulnerability
Exploit Title: Garbage Collection Management System 1.0 - SQL Injection Unauthenticated Exploit Author: ircashem Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/14854/garbage-collection-management-system-php.html Version 1.0 Tested on: Ubuntu 20....
AKCP sensorProbe SPX476 - (Multiple) Cross-Site Scripting Vulnerability
Exploit Title: AKCP sensorProbe SPX476 - 'Multiple' Cross-Site Scripting XSS Exploit Author: Tyler Butler Vendor Homepage: https://www.akcp.com/ Software Link: https://www.akcp.com/support-center/customer-login/sensorprobe-series-firmware-download/ Advisory:...
Scratch Desktop 3.17 - Cross-Site Scripting/Remote Code Execution Vulnerabilities
Exploit Title: Scratch Desktop 3.17 - Cross-Site Scripting/Remote Code Execution XSS/RCE Google Dork: 'inurl:"/projects/editor/?tutorial=getStarted" -mit.edu' not foolproof on versioning Exploit Author: Stig Magnus Baugstø Vendor Homepage: https://scratch.mit.edu/ Software Link:...
Wordpress Modern Events Calendar 5.16.2 Plugin - Remote Code Execution (Authenticated) Exploit
Exploit Title: Wordpress Plugin Modern Events Calendar 5.16.2 - Remote Code Execution Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://webnus.net/modern-events-calendar/ Software Link: https://downloads.wordpress.org/plugin/modern-events-calendar-lite.5.16.2.zip Versio...
b2evolution 7.2.2 - (edit account details) Cross-Site Request Forgery Vulnerability
Exploit Title: b2evolution 7.2.2 - 'edit account details' Cross-Site Request Forgery CSRF Exploit Author: Alperen Ergel @alpernae Vendor Homepage: https://b2evolution.net/ Software Link: https://b2evolution.net/downloads/7-2-2 Version : 7.2.2 Tested on: Kali Linux Category: WebApp Description...
Wordpress Modern Events Calendar 5.16.2 Plugin - Event export (Unauthenticated) Exploit
Exploit Title: Wordpress Plugin Modern Events Calendar 5.16.2 - Event export Unauthenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://webnus.net/modern-events-calendar/ Software Link: https://downloads.wordpress.org/plugin/modern-events-calendar-lite.5.16.2.zip Version: Befo...
Online Voting System 1.0 - Remote Code Execution (Authenticated) Vulnerability
Exploit Title: Online Voting System 1.0 - Remote Code Execution Authenticated Exploit Author: deathflash1411 Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/4808/voting-system-php.html Version 1.0 Tested on: Ubuntu 20.04 Proof of Concept POST...
Vianeos OctoPUS 5 - (login_user) SQL injection Vulnerability
Exploit Title: Vianeos OctoPUS 5 - 'loginuser' SQLi Exploit Author: Audencia Business SCHOOL Vendor Homepage: http://www.vianeos.com/en/home-vianeos/ Software Link: http://www.vianeos.com/en/octopus/ Version: V5 Tested on: Fedora / Apache2 / MariaDB Octopus V5 SQLi The "loginuser =" parameter...
WinWaste.NET 1.0.6183.16475 Local Privilege Escalation Vulnerability
WinWaste.NET version 1.0.6183.16475 allows a local unprivileged user to replace the executable with a malicious file that will be executed with LocalSystem privileges. Exploit Title: WinWaste.NET - Privilege Escalation due Incorrect Access Control Author: Andrea Intilangelo Vendor Homepage:...
Docker Container Escape Exploit
This Metasploit module leverages a flaw in runc to escape a Docker container and get command execution on the host as root. This vulnerability is identified as CVE-2019-5736. It overwrites the runc binary with the payload and waits for someone to use docker exec to get into the container. This wi...
Online Voting System 1.0 - Authentication Bypass Vulnerability
Exploit Title: Online Voting System 1.0 - Authentication Bypass SQLi Exploit Author: deathflash1411 Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/4808/voting-system-php.html Version 1.0 Tested on: Ubuntu 20.04 Proof of Concept POST...
Wordpress XCloner 4.2.12 Plugin - Remote Code Execution (Authenticated) Exploit
Exploit Title: Wordpress Plugin XCloner 4.2.12 - Remote Code Execution Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.xcloner.com/ Software Link: https://downloads.wordpress.org/plugin/xcloner-backup-and-restore.4.2.12.zip Version: 4.2.1 - 4.2.12 Tested on: Ubunt...
Simple Traffic Offense System 1.0 - Stored Cross Site Scripting Vulnerability
Exploit Title: Simple Traffic Offense System 1.0 - 'Multiple' Stored Cross Site Scripting XSS Exploit Author: Barış Yıldızoğlu Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/trafic.zip Version: 1.0 Tested on:...
Securepoint SSL VPN Client 2.0.30 Local Privilege Escalation Vulnerability
Securepoint SSL VPN Client version 2.0.30 suffers from a local privilege escalation vulnerability. Local Privilege Escalation in Securepoint SSL VPN Client 2.0.30 Metadata =================================================== Release Date: 29-Jun-2021 Author: Florian Bogner @...
Doctors Patients Management System 1.0 - SQL Injection (Authentication Bypass) Vulnerability
Exploit Title: Doctors Patients Management System 1.0 - SQL Injection Authentication Bypass Exploit Author: Murat DEMIRCI butterflyhunt3r Vendor Homepage: https://www.codester.com/ Software Link: https://www.codester.com/items/31349/medisol-doctors-patients-managment-system Version: 1.0 Tested on...
Apache Superset 1.1.0 - Time-Based Account Enumeration Exploit
Exploit Title: Apache Superset 1.1.0 - Time-Based Account Enumeration Author: Dolev Farhi Vendor Homepage: https://superset.apache.org/ Version: 1.1.0 Tested on: Ubuntu import sys import requests import time scheme = 'http' host = '192.168.1.1' port = 8080 change with your wordlist usernames =...
phpAbook 0.9i - SQL Injection Vulnerability
Exploit Title: phpAbook 0.9i - SQL Injection Vendor Homepage: http://sourceforge.net/projects/phpabook/ Exploit Author: Said Cortes, Alejandro Perez Version: v0.9i This was written for educational purpose. Use it at your own risk. Author will be not responsible for any damage. import requests...
ES File Explorer 4.1.9.7.4 - Arbitrary File Read Exploit
Exploit Title: ES File Explorer 4.1.9.7.4 - Arbitrary File Read Exploit Author: Nehal Zaman Version: ES File Explorer v4.1.9.7.4 Tested on: Android CVE : CVE-2019-6447 import requests import json import ast import sys if lensys.argv file to download" sys.exit1 url = 'http://' + sys.argv2 + ':5977...
WordPress wpDiscuz 7.0.4 Shell Upload Exploit
This Metasploit module exploits an arbitrary file upload in the WordPress wpDiscuz plugin versions from 7.0.0 through 7.0.4. This flaw gave unauthenticated attackers the ability to upload arbitrary files, including PHP files, and achieve remote code execution on a vulnerable server. This module...
Personnel Record Management System 1.0 Authentication Bypass / XSS Vulnerabilities
Personnel Record Management System version 1.0 unauthenticated administrator addition exploit that also adds a stored cross site scripting payload. Exploit Title: Personnel Record Management System | Unauthenticated Add Admin Account plus Stored XSS Exploit Author: Richard Jones Vendor Homepage:...
Personnel Record Management System 1.0 SQL Injection Vulnerability
Exploit Title: Personnel Record Management System | Admin Bypass sqli Exploit Author: Richard Jones Vendor Homepage: https://www.sourcecodester.com/php/5107/record-management-system.html Software Link:...
WordPress YOP Polls 6.2.7 Plugin - Stored Cross Site Scripting Vulnerability
Exploit Title: WordPress Plugin YOP Polls 6.2.7 - Stored Cross Site Scripting XSS Exploit Author: inspired - Toby Jackson Vendor Homepage: https://yop-poll.com/ Blog Post: https://www.in-spired.xyz/discovering-wordpress-plugin-yop-polls-v6-2-7-stored-xss/ Software Link:...
Netgear WNAP320 2.0.3 - (macAddress) Remote Code Execution Exploit
Exploit Title: Netgear WNAP320 2.0.3 - 'macAddress' Remote Code Execution RCE Unauthenticated Vulnerability: Remote Command Execution on /boardDataWW.php macAddress parameter Notes: The RCE doesn't need to be authenticated Exploit Author: Bryan Leong IoT Device: Netgear WNAP320 Access Point...
SAS Environment Manager 2.5 - (name) Stored Cross-Site Scripting Vulnerability
Exploit Title: SAS Environment Manager 2.5 - 'name' Stored Cross-Site Scripting XSS Exploit Author: Luqman Hakim Zahari @ Saitamang Vendor Homepage: https://support.sas.com/en/software/environment-manager-support.html Version: 2.5 Tested on: CentOS 7 CVE : CVE-2021-35475 Description SAS®...
Atlassian Jira Server/Data Center 8.16.0 - Reflected Cross-Site Scripting Vulnerability
Exploit Title: Atlassian Jira Server/Data Center 8.16.0 - Reflected Cross-Site Scripting XSS Exploit Author: CAPTAINHOOK Vendor Homepage: https://www.atlassian.com/ Software Link: https://www.atlassian.com/software/jira/download/data-center Version: versions 8.5.14, 8.6.0 ≤ version 8.13.6, 8.14.0...
VMware vCenter Server RCE 6.5 / 6.7 / 7.0 - Remote Code Execution Exploit
Exploit Title: VMware vCenter Server RCE 6.5 / 6.7 / 7.0 - Remote Code Execution RCE Unauthenticated Exploit Author: CHackA0101 Vendor Homepage: https://kb.vmware.com/s/article/82374 Software Link: https://www.vmware.com/products/vcenter-server.html Version: This affects VMware vCenter Server 7.x...
SAPSprint 7.60 - (SAPSprint) Unquoted Service Path Vulnerability
Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path: C:\wmic service get...
Seeddms 5.1.10 - Remote Command Execution (Authenticated) Exploit
Exploit Title: Seeddms 5.1.10 - Remote Command Execution RCE Authenticated Exploit Author: Bryan Leong Vendor Homepage: https://www.seeddms.org/index.php?id=2 Software Link: https://sourceforge.net/projects/seeddms/files/seeddms-5.0.11/ Version: Seeddms 5.1.10 Tested on: Windows 7 x64 CVE:...
Adobe ColdFusion 8 - Remote Command Execution Exploit
Exploit Title: Adobe ColdFusion 8 - Remote Command Execution RCE Google Dork: intext:"adobe coldfusion 8" Exploit Author: Pergyz Vendor Homepage: https://www.adobe.com/sea/products/coldfusion-family.html Version: 8 Tested on: Microsoft Windows Server 2008 R2 Standard CVE : CVE-2009-2265...