39001 matches found
Mozilla Arbitrary Code Execution / Privilege Escalation Vulnerability
Hi @ll, back in 2015 and 2016, I disclosed several BLOODY beginner's errors alias epic failures in Mozilla's PERMANENTLY vulnerable executable installers for Windows, built by completely incompetent tinkerers: Defense in depth -- the Mozilla way: return and exit codes are dispensable alias and...
Sticky Notes Apps Using JavaScript 1.0 Cross Site Scripting Vulnerability
Exploit Title: Sticky Note Apps using JavaScript | Stored Cross Site Scripting Exploit Author: Richard Jones Vendor Homepage: https://www.sourcecodester.com/javascript/14742/sticky-note-apps-using-javascript-source-code.html Software Link:...
FreeLAN 2.2 - (FreeLAN Service) Unquoted Service Path Vulnerability
Exploit Title: FreeLAN 2.2 - 'FreeLAN Service' Unquoted Service Path Exploit Author: Mohammed Alshehri Vendor Homepage: www.freelan.org Software Link: https://github.com/freelan-developers/freelan/releases/download/2.2/freelan-2.2.0-x86-install.exe Version: Version 2.2 Tested on: Microsoft Window...
Golden FTP Server 4.70 - (PASS) Buffer Overflow Exploit(2)
Golden FTP Server 4.70 - 'PASS' Buffer Overflow 2 Author: 1F98D Original Authors: Craig Freyman cd1zz and Gerardo Iglesias Galvan iglesiasgg Tested on Windows 10 x64 A buffer overflow exists in GoldenFTP during the authentication process. Note that the source ip address of the user performing the...
Emerson Smart Wireless Gateway 1420 4.6.59 Privilege Escalation Vulnerability
Title: Privilege Escalation Product: Emerson Smart Wireless Gateway Vendor Homepage: http://emerson.com Vulnerable Version: 1420 4.6.59 CVE Number: CVE-2020-19417 Authors: Harsha Bhat Anish Mitra and Unmesh Guragol Timeline: 2019-08-02 Disclosed to the vendor 2019-08-22 Vendor confirmed that the...
Emerson Smart Wireless Gateway 1420 4.6.59 Missing Authentication Vulnerability
Title: Missing access controls Product: Emerson Smart Wireless Gateway Vendor Homepage: http://emerson.com Vulnerable Version: 1420 4.6.59 CVE Number: CVE-2020-19419 Authors: Harsha Bhat, Anish Mitra and Unmesh Guragol Timeline: 2019-08-02 Disclosed to the vendor 2019-08-22 Vendor confirmed that...
Sandboxie Plus v0.7.2 - (SbieSvc) Unquoted Service Path Vulnerability
Exploit Title: Sandboxie Plus v0.7.2 - 'SbieSvc' Unquoted Service Path Exploit Author: Mohammed Alshehri Vendor Homepage: sandboxie-plus.com Software Link: https://github.com/sandboxie-plus/Sandboxie/releases/download/0.7.2/Sandboxie-Plus-x64-v0.7.2.exe Version: Version 0.7.2 Tested on: Microsoft...
HPE Systems Insight Manager AMF Deserialization Remote Code Execution Exploit
A remotely exploitable vulnerability exists within HPE System Insight Manager SIM version 7.6.x that can be leveraged by a remote unauthenticated attacker to execute code within the context of HPE System Insight Manager's hpsimsvc.exe process, which runs with administrative privileges. The...
OpenCMS 11.0.2 Cross Site Request Forgery / Open Redirection Vulnerability
OpenCMS v11.0.2 -------------------------------------------------------------------------------------------------------------------------------------------------- CSRF - Login page vulnerable https://vulnerablehost.com/system/login - CSRF needs valid JSESSIONID to work, maybe logged Admin user...
Froala 3.2.6-1 Cross Site Scripting Vulnerability
Exploit Title: Stored XSS and Html Code Injection Editor Froala Version 3.2.6-1 Author: Vincent666 ibn Winnie Software Link: https://froala.com/wysiwyg-editor/ Tested on: Windows 10 Web Browser: Mozilla Firefox My Youtube Channel: https://www.youtube.com/channel/UCZOWpC2dW9sipPq5z63C2rQ PoC: In t...
Print Job Accounting 4.4.10 - (OkiJaSvc) Unquoted Service Path Vulnerability
Exploit Title: Print Job Accounting 4.4.10 - 'OkiJaSvc' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://www.oki.com Software Links:...
VMware vCenter Server File Upload / Remote Code Execution Exploit
This Metasploit module exploits an unauthenticated OVA file upload and path traversal in VMware vCenter Server to write a JSP payload to a web-accessible directory. Fixed versions are 6.5 Update 3n, 6.7 Update 3l, and 7.0 Update 1c. Note that later vulnerable versions of the Linux appliance aren'...
Joomla Matukio Events 7.0.5 Cross Site Scripting Vulnerability
Exploit Title:Joomla Matukio Events 7.0.5 Stored XSS Author: Vincent666 ibn Winnie Software Link: https://matukio.compojoom.com/ Tested on: Windows 10 Web Browser: Mozilla Firefox My Youtube Channel : https://www.youtube.com/channel/UCZOWpC2dW9sipPq5z63C2rQ Google Dorks: inurl:option=commatukio...
Joomla JCK Editor 6.4.4 - (parent) SQL Injection Exploit (2)
Exploit Title: Joomla JCK Editor 6.4.4 - 'parent' SQL Injection 2 Googke Dork: inurl:/plugins/editors/jckeditor/plugins/jtreelink/ Exploit Author: Nicholas Ferreira Vendor Homepage: http://docs.arkextensions.com/downloads/jck-editor Version: 6.4.4 Tested on: Debian 10 CVE : CVE-2018-17254 PHP...
Configuration Tool 1.6.53 - (OpLclSrv) Unquoted Service Path Vulnerability
Exploit Title: Configuration Tool 1.6.53 - 'OpLclSrv' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://www.oki.com Software Links:...
Hotel and Lodge Management System 1.0 - Remote Code Execution (Unauthenticated) Exploit
Exploit Title: Hotel and Lodge Management System 1.0 - Remote Code Execution Unauthenticated Exploit Author: Christian Vierschilling Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/13707/hotel-and-lodge-management-system.html Version: 1.0 Tested o...
WordPress SuperStoreFinder / SuperInteractiveMaps 6.3 SQL Injection Vulnerability
?php Title : SuperStoreFinder & SuperInteractiveMaps Wordpress Plugin SQL Injection Researcher : Eagle Eye Exploit Name : SSF & SIM SQL Injection Request type : POST Plugin Author : Joe lz Plugin Website : https://superstorefinder.net/ Version Affected : All version include latest 6.3 Tested on :...
Microsoft Windows RRAS Service MIBEntryGet Overflow Exploit
This Metasploit module exploits an overflow in the Windows Routing and Remote Access Service RRAS to execute code as SYSTEM. The RRAS DCERPC endpoint is accessible to unauthenticated users via SMBv1 browser named pipe on Windows Server 2003 and Windows XP hosts; however, this module targets Windo...
Pingzapper 2.3.1 - (PingzapperSvc) Unquoted Service Path Vulnerability
Exploit Title: Pingzapper 2.3.1 - 'PingzapperSvc' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://pingzapper.com Software Links: https://pingzapper.com/download Tested Version: 2.3.1 Vulnerability Type: Unquoted Service Path Tested on: Windows 8.1 Pro 64 bits Step to...
GLPI 9.5.3 - (fromtype) Unsafe Reflection Vulnerability
Exploit Title: GLPI 9.5.3 - 'fromtype' Unsafe Reflection Exploit Author: Vadym Soroka @Iterasec https://iterasec.com Vendor Homepage: https://glpi-project.org Software Link: https://github.com/glpi-project/glpi/releases Version: =9.5.3 Tested on:v9.5.3, 2021-02-13 Technical advisories:...
CatDV 9.2 - RMI Authentication Bypass Exploit
Exploit Title: CatDV 9.2 - RMI Authentication Bypass Exploit Author: Christopher Ellis, Nick Gonella, Workday Inc. Vendor Homepage: https://catdv.com/ Software Link: https://www.squarebox.com/download/CatDVServer9.2.0.exe Version: 9.2 and lower Tested on: Windows, Mac import org.h2.engine.User;...
Fluig 1.7.0 - Path Traversal Exploit
Exploit Title: Fluig 1.7.0 - Path Traversal Exploit Author: Lucas Souza Vendor Homepage: https://www.totvs.com/fluig/ Version: payload.txt curl -s https://raw.githubusercontent.com/lucxssouza/banners/main/xFluig/banner banner -- FUNCTIONS -- function create-payload wordlist.txt count=1 while $cou...
Online Ordering System 1.0 - Arbitrary File Upload to Remote Code Execution Vulnerability
Exploit Title: Online Ordering System 1.0 - Arbitrary File Upload to Remote Code Execution Exploit Author: Suraj Bhosale Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/5125/online-ordering-system-using-phpmysql.html Version: 1.0 Tested on Windows...
Textpattern CMS 4.9.0-dev - (Excerpt) Persistent Cross-Site Scripting Vulnerability
Exploit Title: Textpattern CMS 4.9.0-dev - 'Excerpt' Persistent Cross-Site Scripting XSS Date: 2021-03-04 Exploit Author: Tushar Vaidya Vendor Homepage: https://textpattern.com Software Link: https://textpattern.com/start Version: v 4.9.0-dev Tested on: Windows Steps-To-Reproduce: 1. Login into...
e107 CMS 2.3.0 Cross Site Request Forgery Vulnerability
Exploit Title: e107 CMS 2.3.0 - CSRF Exploit Author: Tadjmen Vendor Homepage: https://e107.org Software Link: https://e107.org/download Version: 2.3.0 Tested on: Windows 10 CVE : CVE-2021-27885 CSRF vulnerability on e107 CMS Bug Description Hi. I found a CSRF on the e107 CMS. Hacker can change...
Textpattern 4.8.3 - Remote code execution (Authenticated) (2)
Exploit Title: Textpattern 4.8.3 - Remote code execution Authenticated 2 Exploit Author: Ricardo Ruiz @ricardojoserf Vendor Homepage: https://textpattern.com/ Software Link: https://textpattern.com/start Version: Previous to 4.8.3 Tested on: CentOS, textpattern 4.5.7 and 4.6.0 Install dependencie...
Online Ordering System 1.0 - Blind SQL Injection (Unauthenticated) Vulnerability
Exploit Title: Online Ordering System 1.0 - Blind SQL Injection Unauthenticated Exploit Author: Suraj Bhosale Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/5125/online-ordering-system-using-phpmysql.html Version: v1.0 Vulnerable endpoint:...
Textpattern CMS 4.8.4 - (Comments) Persistent Cross-Site Scripting Vulnerability
Exploit Title: Textpattern CMS 4.8.4 - 'Comments' Persistent Cross-Site Scripting XSS Exploit Author: Tushar Vaidya Vendor Homepage: https://textpattern.com Software Link: https://textpattern.com/start Version: v 4.8.4 Tested on: Windows Steps-To-Reproduce: 1. Login into Textpattern CMS admin...
Web Based Quiz System 1.0 - (eid) Union Based Sql Injection (Authenticated) Vulnerability
Exploit Title: Web Based Quiz System 1.0 - 'eid' Union Based Sql Injection Authenticated Exploit Author: Deepak Kumar Bharti Vendor Homepage: https://www.sourcecodester.com Software Download Link: https://www.sourcecodester.com/php/14727/web-based-quiz-system-phpmysqli-full-source-code.html...
jpeg-xl 0.3.1 Memory Corruption Vulnerability
Multiple Vulnerabilities in jpeg-xl =================================== CVE: CVE-2021-27804 Highest Severity Rating: High Confirmed Affected Versions: jpeg-xl v0.3.1 and earlier Vendor: Joint Photographic Experts Group JPEG Vendor URL: https://gitlab.com/wg1/jpeg-xl Summary and Impact...
Local Services Search Engine Management System (LSSMES) 1.0 - (name) XSS Vulnerability
Exploit Title: Local Services Search Engine Management System LSSMES 1.0 - 'name' Persistent Cross-Site Scripting XSS Exploit Author: Tushar Vaidya Vendor Homepage: https://phpgurukul.com/local-services-search-engine-management-system-using-php-and-mysql/ Software Link:...
Doctor Appointment System 1.0 SQL Injection Vulnerability
Exploit Title: Doctor Appointment System 1.0 Blind SQL injection in comment parameter CVE: CVE-2021-27315 Exploit Author: Soham Bakore Vendor Homepage: https://www.sourcecodester.com/php/14182/doctor-appointment-system.html Software Link:...
Doctor Appointment System 1.0 Blind SQL Injection Vulnerability
Exploit Title: Doctor Appointment System 1.0 Blind SQL injection in email parameter CVE: CVE-2021-27319 Exploit Author: Nakul Ratti Vendor Homepage: https://www.sourcecodester.com/php/14182/doctor-appointment-system.html Software Link:...
Local Services Search Engine Management System (LSSMES) 1.0 - Blind & Error based SQL injection
Exploit Title: Local Services Search Engine Management System LSSMES 1.0 - Blind & Error based SQL injection Authenticated Exploit Author: Tushar Vaidya Vendor Homepage: https://phpgurukul.com/local-services-search-engine-management-system-using-php-and-mysql/ Software Link:...
AnyDesk 5.5.2 - Remote Code Execution Exploit
Exploit Title: AnyDesk 5.5.2 - Remote Code Execution Exploit Author: scryh Vendor Homepage: https://anydesk.com/en Version: 5.5.2 Tested on: Linux Walkthrough: https://devel0pment.de/?p=1881 !/usr/bin/env python import struct import socket import sys ip = '192.168.x.x' port = 50001 def...
Tiny Tiny RSS - Remote Code Execution Exploit
Exploit Title: Tiny Tiny RSS - Remote Code Execution Exploit Author: Daniel Neagaru & Benjamin Nadarević Blog post: https://www.digeex.de/blog/tinytinyrss/ Software Link: https://git.tt-rss.org/fox/tt-rss Version: all before 2020-09-16 Commit with the fixes:...
CASAP Automated Enrollment System 1.1 SQL Injection Exploit
Exploit Title: CASAP Automated Enrollment System 1.1 - Authentication Bypass cookie session Exploit Author: @nu11secur1ty Vendor Homepage: https://www.sourcecodester.com/php/12210/casap-automated-enrollment-system.html Software Link:...
Profiling System For Human Resource Management 1.0 Cross Site Scripting Vulnerability
Exploit Title: Profiling System For Human Resource Management | Stored XSS Exploit Author: Richard Jones Vendor Homepage: https://www.sourcecodester.com/php/11222/profiling-system-human-resource-management.html Software...
Zen Cart 1.5.7b - Remote Code Execution (Authenticated) Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This exploit write payload in database and trig to command a bug in an zencart v1.5.7b web application class MetasploitModule 'zencart authenticated remote code executio...
Concrete5 8.5.4 Cross Site Scripting Vulnerability
Exploit Title: Cross site scriptingXSS Author: nu11secur1ty Vendor: https://www.concrete5.org/download Link: https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2021-3111 CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3111 Exploit Place - Navigate to entries directory...
Web Based Quiz System 1.0 - (MCQ options) Persistent/Stored Cross-Site Scripting
Exploit Title: Web Based Quiz System 1.0 - 'MCQ options' Persistent/Stored Cross-Site Scripting Exploit Author: Praharsh Kumar Singh Vendor Homepage: https://www.sourcecodester.com Software Download Link: https://www.sourcecodester.com/php/14727/web-based-quiz-system-phpmysqli-full-source-code.ht...
Web Based Quiz System 1.0 - (name) Persistent/Stored Cross-Site Scripting
Exploit Title: Web Based Quiz System 1.0 - 'name' Persistent/Stored Cross-Site Scripting Exploit Author: P.Naveen Kumar Vendor Homepage: https://www.sourcecodester.com Software Download Link : https://www.sourcecodester.com/php/14727/web-based-quiz-system-phpmysqli-full-source-code.html Software ...
Genua GenuGate High Resistance Firewall Authentication Bypass Vulnerability
Genua GenuGate High Resistance Firewall versions prior to 10.1 p4, 9.6 p7, and 9.0 Z p19 suffer from an authentication bypass vulnerability. ======================================================================= title: Authentication bypass vulnerability product: Genua GenuGate High Resistance...
Online Catering Reservation System 1.0 - Remote Code Execution Exploit
Exploit Title: Online Catering Reservation System 1.0 - Unauthenticated Remote Code Execution Exploit Author: Christian Vierschilling Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/11355/online-catering-reservation.html Version: 1.0 Tested on: PH...
Covid-19 Contact Tracing System 1.0 - Remote Code Execution Exploit
Exploit Title: Covid-19 Contact Tracing System 1.0 - Remote Code Execution Unauthenticated Exploit Author: Christian Vierschilling Vendor Homepage: https://www.sourcecodester.com Software Link:...
FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...
VMware vCenter Server 7.0 - Unauthenticated File Upload Exploit
Exploit Title: VMware vCenter Server 7.0 - Unauthenticated File Upload Exploit Author: Photubias Vendor Advisory: 1 https://www.vmware.com/security/advisories/VMSA-2021-0002.html Version: vCenter Server 6.5 7515524. File name CVE-2021-21972.py written by tijldotdeneutathowestdotbe for www.ic4.be...
WiFi Mouse 1.7.8.5 - Remote Code Execution Exploit
Exploit Title: WiFi Mouse 1.7.8.5 - Remote Code Execution Author: H4rk3nz0 Vendor Homepage: http://necta.us/ Software Link: http://wifimouse.necta.us/download Version: 1.7.8.5 Tested on: Windows Enterprise Build 17763 Desktop Server software used by mobile app has PIN option which does not to...
VisualWare MyConnection Server 11.x Remote Code Execution Vulnerability
Document Title: =============== VisualWare MyConnection Server 11.x Remote Code Execution Vulnerability References Source: ==================== https://www.securifera.com/advisories/cve-2021-27198/ https://myconnectionserver.visualware.com/download.html Release Date: ============= 2020-02-25...
Simple Employee Records System 1.0 - File Upload RCE (Unauthenticated) Exploit
Exploit Title: Simple Employee Records System 1.0 - File Upload RCE Unauthenticated Exploit Author: email protected Vendor Homepage: https://www.sourcecodester.com/php/11393/employee-records-system.html Software Link:...