39001 matches found
Online Birth Certificate System 1.0 SQL Injection / Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: Online Birth Certificate System - RCE Through SQLi Date: 2020-07-08 Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Park Ticketing Management System 1.0 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: Park Ticketing Management System 1.0 - Authentication Bypass Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Curfew e-Pass Management System 1.0 SQL Injection Exploit
Exploit for php platform in category web applications Exploit Title: Curfew e-Pass Management System - 'searchdata' SQL Injection Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Pandora FMS 7.0 NG 7XX Remote Command Execution Exploit
This Metasploit module exploits a vulnerability CVE-2020-13851 in Pandora FMS versions 7.0 NG 742, 7.0 NG 743, and 7.0 NG 744 and perhaps older versions in order to execute arbitrary commands. This module takes advantage of a command injection vulnerability in th e Events feature of Pandora FMS...
Responsive Online Blog 1.0 SQL Injection Vulnerability (2)
Exploit for php platform in category web applications Exploit Title: Responsive Online Blog 1.0 - 'single.php?id=' SQL Injection Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Liferay Portal Remote Code Execution Exploit
Liferay Portal versions prior to 7.2.1 CE GA2 exploit that gains code execution due to deserialization of untrusted data sent to the JSON web services interface. Exploit Title: Data in Liferay Portal prior to 7.2.1 CE GA2 - Remote code execution Author: nu11secur1ty Vendor: Link:...
Pandora FMS 7.0 NG 746 Script Insertion / Code Execution Vulnerability
Pandora FMS 7.0 NG versions 746 and below remote code execution exploit that leverages cross site scripting. Requires administrator to perform an snmp scan with a cross site scripting payload. Exploit Title: PandoraFMS 7.0 NG ≤ 746 Remote Code Execution Date: July 2020 Author: AppleBois Version:...
Online DJ Booking Management System Project Report 1.0 SQL Injection / Code Execution Vulnerabilitie
Exploit for php platform in category web applications Exploit Title: Online DJ Booking Management System Project Report - RCE Through SQLi Authenticated User - admin Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
Rittal Products Bypass / Command Injection / Privilege Escalation Vulnerabilities
Multiple Rittal Products based on the same software suffer from CLI menu bypass, insecure configuration, hard-coded backdoor account, outdated component, command injection, and privilege escalation vulnerabilities. Products include but are not limited to CMC III PU Compact, CMC III PU 7030.000 PD...
Savsoft Quiz 5 - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Savsoft Quiz 5 - Persistent Cross-Site Scripting Exploit Author: Ogulcan Unverenth3d1gger Vendor Homepage: https://savsoftquiz.com/ Software Link: https://github.com/savsofts/savsoftquizv5.git Version: 5.0 Tested on: Kali Linux...
HelloWeb 2.0 - Arbitrary File Download Vulnerability
Exploit for asp platform in category web applications Exploit Title: HelloWeb 2.0 - Arbitrary File Download Vendor Homepage: https://helloweb.co.kr/ Version: 2.0 Latest and previous versions Exploit Author: bRpsd Contact Author: cyatlive.no Google Dork: inurl:exec/file/download.asp Type: WebApps ...
Aruba ClearPass Policy Manager 6.7.0 - Unauthenticated Remote Command Execution Exploit
Exploit Title: Aruba ClearPass Policy Manager 6.7.0 - Unauthenticated Remote Command Execution Exploit Author: SpicyItalian Vendor Homepage: https://www.arubanetworks.com/products/security/network-access-control/ Version: ClearPass 6.7.x prior to 6.7.13-HF, ClearPass 6.8.x prior to 6.8.5-HF,...
Impress CMS 1.4.0 Code Execution / SQL Injection Vulnerabilities
Impress CMS version 1.4.0 has an issue where an authenticated user can make use of the AutoTask feature to execute php code, allowing for remote SQL injection and remote code execution. Author: AppleBois Homepage: https://sourceforge.net/projects/impresscms/ Affected Version: 1.4.0 Remote Code...
Barangay Management System 1.0 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: Barangay Management System 1.0 - Authentication Bypass Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/13484/barangay-management-system.html Software Link:...
PHP 7.4 FFI - (disable_functions) Bypass Exploit
Exploit for php platform in category web applications ?php / FFI Exploit - uses 3 potential BUGS. PHP was contacted and said nothing in FFI is a security issue. Able to call system$cmd without using FFI::load or FFI::cdefs BUG 1 maybe intended, but why have any size checks then? no bounds check f...
FrootVPN 4.8 - (frootvpn) Unquoted Service Path Vulnerability
Exploit : FrootVPN 4.8 - 'frootvpn' Unquoted Service Path Author : v3n0m Vendor : https://frootvpn.com/ App Link : https://frootvpn.com/en/download-client?platform=win Version : 4.8 Tested on : Windows 10 Pro build 19041.329 Credits : YOGYACARDERLINK, bejo6, Ika Atikasari PoC: Microsoft Windows...
Webtareas 2.1 / 2.1p File Upload / Information Disclosure Vulnerabilities
Exploit for php platform in category web applications Authenticated File Upload vulnerability Author: AppleBois Homepage: https://sourceforge.net/projects/webtareas/ Affected Version: 2.1 && 2.1p Vendors Claim there's a patch on 2.1p but it's vulnerable and been few weeks without response. ".exe"...
Wordpress Powie WHOIS Domain Check 0.9.31 Plugin - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Powie's WHOIS Domain Check 0.9.31 - Persistent Cross-Site Scripting Vendor Homepage: https://powie.de Vendor Changelog: https://wordpress.org/plugins/powies-whois/developers Software Link:...
Savsoft Quiz 5 - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Savsoft Quiz 5 - Persistent Cross-Site Scripting Exploit Author: Ogulcan Unverenth3d1gger Vendor Homepage: https://savsoftquiz.com/ Software Link: https://github.com/savsofts/savsoftquizv5.git Version: 5.0 Tested on: Kali Linux...
ClearPass Policy Manager Unauthenticated Remote Command Execution Exploit
!/usr/bin/env bash ClearPass Policy Manager Unauthenticated Remote Command Execution in the WebUI CVE-2020-7115 For best results use OpenSSL/libcrypto shipped with RHEL/CentOS 7.x. Questions? Contact email protected. if "$" -ne 4 ; then echo "Usage: basename $0 remote host remote port local host...
SuperMicro IPMI 03.40 - Cross-Site Request Forgery (Add Admin) Vulnerability
Exploit for hardware platform in category web applications Exploit Title: SuperMicro IPMI 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Software Link:...
BSA Radar 1.6.7234.24750 - Cross-Site Request Forgery (Change Password) Vulnerability
Exploit for hardware platform in category web applications Exploit title: BSA Radar 1.6.7234.24750 - Cross-Site Request Forgery Change Password Exploit Author: William Summerhill Vendor Homepage:bhttps://www.globalradar.com/ Version: BSA Radar - Version 1.6.7234.24750 and lower CVE: CVE-2020-1494...
RiteCMS 2.2.1 - Authenticated Remote Code Execution Vulnerability
Exploit for php platform in category web applications Exploit Title: RiteCMS 2.2.1 - Authenticated Remote Code Execution Exploit Author: Enes Özeser Vendor Homepage: http://ritecms.com/ Version: 2.2.1 Tested on: Linux 1- Go to following url. http://HOST/cms/ 2- Default username and password is...
Fire Web Server 0.1 - Remote Denial of Service Exploit
Exploit Title: Fire Web Server 0.1 - Remote Denial of Service PoC Exploit Author: Saeed reza Zamanian Vendor Homepage: https://sourceforge.net/projects/firewebserver/ Software Link: https://sourceforge.net/projects/firewebserver/files/ Version: Pre-Alpha Tested on: Windows 7 , Windows Vista...
BIG-IP 15.0.0 < 15.1.0.3 - Traffic Management User Interface (TMUI) Remote Code Execution Exploit
Exploit for linux platform in category web applications BIG-IP 15.0.0 " echo exit 1 fi server=$1?hostname argument required localip=$2?Locaip argument required port=$3?Port argument required if ! -f $server.der then echo "$server.der does not exist - extracting cert" openssl sclient \ -showcerts ...
BIG-IP 15.0.0 < 15.1.0.3 - Traffic Management User Interface (TMUI) Remote Code Execution (2)
Exploit for linux platform in category web applications BIG-IP 15.0.0 15.1.0.3 / 14.1.0 14.1.2.5 / 13.1.0 13.1.3.3 / 12.1.0 12.1.5.1 / 11.6.1 11.6.5.1 - Traffic Management User Interface 'TMUI' Remote Code Execution RCE: curl -v -k 'https://F5...
openSIS 7.4 Unauthenticated PHP Code Execution Exploit
This Metasploit module exploits multiple vulnerabilities in openSIS 7.4 and prior versions which could be abused by unauthenticated attackers to execute arbitrary PHP code with the permissions of the webserver. The exploit chain abuses an incorrect access control issue which allows access to...
F5 BIG-IP TMUI Directory Traversal / File Upload / Code Execution Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'F5 BIG-IP TMUI Directory Traversal and File Upload RCE', 'Description' = %q This module exploits a directory traversal in F5's BIG-IP Traffic...
Sony Playstation 4 (PS4) < 7.02 / FreeBSD 9 / FreeBSD 12 - Kernel Local Privilege Escalation
Sony Playstation 4 PS4 include include include include include include include define KERNEL include undef KERNEL define WANTFILE include include include include include define WANTSOCKET include include define WANTINPCB include include include // define FBSD12 define ELFMAGIC 0x464c457f define...
Sickbeard 0.1 - Remote Command Injection Exploit
Exploit for hardware platform in category web applications Exploit Title: Sickbeard 0.1 - Remote Command Injection Google Dork: https://www.shodan.io/search?query=sickbeard Exploit Author: bdrake Vendor Homepage: https://sickbeard.com/ Software Link: https://github.com/midgetspy/Sick-Beard Versio...
CDATA OLTs Backdoor / Privilege Escalation / Information Disclosure Vulnerabilities
Various CDATA OLTs suffer from backdoor access with telnet, credential leaks, shell escape with root privileges, denial of service, and weak encryption algorithm vulnerabilities. Advisory Information Title: Multiple vulnerabilities found in CDATA OLTs Advisory URL:...
Online Shopping Portal 3.1 - (email) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Online Shopping Portal 3.1 - 'email' SQL Injection Exploit Author: gh1mau Team Members: Capt'N,muzzo,chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage: https://phpgurukul.com/shopping-portal-free-download/ Softwa...
rauLink Software Domotica Web 2.0 SQL Injection Vulnerability
Exploit for php platform in category web applications rauLink Software Domotica Web 2.0 SQL Injection Authentication Bypass Vendor: rauLink Software raulsoria Product web page: N/A Affected version: 2.0 Summary: Smart home automation software. Desc: The application suffers from an SQL Injection...
Grafana 7.0.1 - Denial of Service Exploit
Exploit Title: Grafana 7.0.1 - Denial of Service PoC Exploit Author: mostwanted002 Vendor Homepage: https://grafana.com/ Software Link: https://grafana.com/grafana/download Version: 3.0.1 - 7.0.1 Tested on: Linux CVE : CVE-2020-13379 !/bin/bash if $1 != "" ; then curl -I...
BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation Vulnerability
Exploit for multiple platform in category web applications Exploit Title: BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation Exploit Author: William Summerhill Vendor homepage: https://www.globalradar.com/ Version: BSA Radar - Version 1.6.7234.24750 and lower CVE-2020-14945 - Privilege...
MikroTik RouterOS Null Pointer Dereference / Division-By-Zero Vulnerability
MikroTik RouterOS versions prior to stable 6.47 suffer from multiple null pointer dereference vulnerabilities and one division-by-zero vulnerability. MikroTik RouterOS Null Pointer Dereference / Division-By-Zero Vulnerability Details ======= Product: MikroTik's RouterOS Affected Versions: through...
Microsoft Windows MSHTA.EXE .HTA File XML Injection Vulnerability
Microsoft Windows MSHTA.EXE .HTA File XML Injection Vulnerability Vendor www.microsoft.com Product Windows MSHTA.EXE .HTA File An HTML Application HTA is a Microsoft Windows program whose source code consists of HTML, Dynamic HTML, and one or more scripting languages supported by Internet Explore...
RSA IG&L Aveksa 7.1.1 - Remote Code Execution Vulnerability
Exploit for multiple platform in category web applications Exploit Title: RSA IG&L Aveksa 7.1.1 - Remote Code Execution Exploit Author: Jakub Palaczynski, Lukasz Plonka Vendor Homepage: https://www.rsa.com/ Version: 7.1.1, prior to P02 CVE : CVE-2019-3759 all vulnerable versions can be found at...
File Management System 1.1 - Persistent Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: File Management System 1.1 - Persistent Cross-Site Scripting Exploit Author: KeopssGroup0day,Inc Vendor Homepage:...
Nagios XI 5.6.12 - (export-rrd.php) Remote Code Execution Exploit
Exploit for php platform in category web applications Exploit Title: Nagios XI 5.6.12 - 'export-rrd.php' Remote Code Execution Exploit Author: Basim Alabdullah Vendor homepage: https://www.nagios.com Version: 5.6.12 Software link: https://www.nagios.com/downloads/nagios-xi/ Tested on: CentOS REDH...
Bolt CMS 3.7.0 XSS / CSRF / Shell Upload Vulnerabilities
Bolt CMS versions 3.7.0 and below suffer from cross site request forgery, cross site scripting, and remote shell upload vulnerabilities that when combined can achieve remote code execution in one click. Bolt CMS = 3.7.0 Multiple Vulnerabilities Author - Sivanesh Ashok | @sivaneshashok | stazot.co...
Froala WYSIWYG HTML Editor 3.1.1 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Product: Froala WYSIWYG HTML Editor Vendor: Froala CSNC ID: CSNC-2020-004 CVE ID: CVE-2019-19935 Subject: DOM XSS in Froala WYSIWYG HTML Editor Severity: Medium Effect: Remotely exploitable Author: Emanuel Duss Date: 2020-07-01 Introduction...
AppleiOS 13.5.1 Resource Exposure Vulnerability
Apple iOS version 13.5.1 suffers from an issue where it is possible to circumvent the copy and paste restriction from the company profile to the private profile. Thus, it is possible to extract attachments that can be previewed "Quick Look" in the native Mail client to any private app. Product:...
AnyDesk GUI Format String Write Exploit
The AnyDesk GUI is vulnerable to a remotely exploitable format string vulnerability. By sending a specially crafted discovery packet, an attacker can corrupt the frontend process when it loads or refreshes. While the discovery service is always running, the GUI frontend must be started to trigger...
OCS Inventory NG 2.7 - Remote Code Execution Exploit
Exploit for multiple platform in category web applications Exploit Title: OCS Inventory NG 2.7 - Remote Code Execution Exploit Author: Askar @mohammadaskar2 CVE: CVE-2020-14947 Vendor Homepage: https://ocsinventory-ng.org/ Version: v2.7 Tested on: Ubuntu 18.04 / PHP 7.2.24 !/usr/bin/python3 impor...
ZenTao Pro 8.8.2 - Command Injection Exploit
Exploit for php platform in category web applications Exploit Title: ZenTao Pro 8.8.2 - Command Injection Exploit Author: Daniel Monzón & Melvin Boers Vendor Homepage: https://www.zentao.pm/ Version: 8.8.2 Tested on: Windows 10 / WampServer Other versions like pro or enterprise edition could be...
EQDKP Plus CMS 2.3.29 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications ======================================================================= title: Reflected Cross-Site Scripting XSS Vulnerability product: EQDKP Plus CMS vulnerable version: = 2.3.29 fixed version: 2.3.30 CVE number: - impact: Low homepage:...
e-learning Php Script 0.1.0 - (search) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: e-learning Php Script 0.1.0 - 'search' SQL Injection Exploit Author: KeopssGroup0day,Inc Vendor Homepage: https://github.com/amitkolloldey/elearning-script Software Link: https://github.com/amitkolloldey/elearning-script Version...
FTPShell Server 6.90 Buffer Overflow Exploit
Exploit Title: FTPShell Server 6.90 ftpshelldmgr.exe- Buffer Overflow SEHPoC Exploit Author: Saeed reza Zamanian Vendor: Code Origin Vendor Homepage: https://www.ftpshell.com/ Software Link: https://www.ftpshell.com/downloadserver.htm Version: 6.90 Release Date : Jan 31, 2020 Tested On: Windows 7...
RM Downloader 2.50.60 2006.06.23 - (Load) Local Buffer Overflow (EggHunter) (SEH) Exploit
Exploit Title: RM Downloader 2.50.60 2006.06.23 - 'Load' Local Buffer Overflow EggHunter SEH PoC Exploit Author: Paras Bhatia Vulnerable Software: RM Downloader Software Link Download: https://github.com/x00x00x00x00/RMDownloader2.50.60/raw/master/RMDownloader.exe Version: 2.50.60 2006.06.23...