Clik here to view.
Asterisk chan_pjsip 15.2.0 - 'SUBSCRIBE' Stack Corruption
EDB-ID: 44184Author: EnableSecurityPublished: 2018-02-27CVE: CVE-2018-7284 Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: Denial of Service (DoS)Vulnerable App: # SUBSCRIBE message with...
View ArticleClik here to view.
Schools Alert Management Script 2.0.2 - Authentication Bypass
EDB-ID: 44185Author: Prasenjit Kanti PaulPublished: 2018-02-27CVE: CVE-2018-6859 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Schools Alert Management Script - 2.0.2 - Authentication...
View ArticleClik here to view.
MyBB My Arcade Plugin 1.3 - Cross-Site Scripting
EDB-ID: 44186Author: 0xB9Published: 2018-02-27CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Date: 2/21/2018 # Author: 0xB9 # Contact: luxorforums.com/User-0xB9 or 0xB9[at]protonmail.com #...
View ArticleClik here to view.
GetGo Download Manager 5.3.0.2712 - Buffer Overflow (SEH)
EDB-ID: 44187Author: bzyoPublished: 2018-02-27CVE: N/A Type: RemotePlatform: WindowsVulnerable App: # # Exploit Author: bzyo # Twitter: @bzyo_ # Exploit Title: GetGo Download Manager 5.3.0.2712 -...
View ArticleClik here to view.
Joomla! Component K2 2.8.0 - Arbitrary File Download
EDB-ID: 44188Author: Ihsan SencanPublished: 2018-02-27CVE: CVE-2018-7482 Type: WebappsPlatform: PHPVulnerable App: # Exploit Title: Joomla! Component K2 2.8.0 - Arbitrary File Download # Dork: N/A #...
View ArticleClik here to view.
Microsoft Windows Windows 8.1/2012 R2 - SMB Denial of Service
EDB-ID: 44189Author: Nabeel AhmedPublished: 2018-02-27CVE: CVE-2018-0833 Type: DosPlatform: WindowsVulnerable App: N/A # Date: 26/02/2018 # Exploit Author: Nabeel Ahmed # Version: SMBv3 # Tested on:...
View ArticleClik here to view.
School Management Script 3.0.4 - Authentication Bypass
EDB-ID: 44191Author: Samiran SantraPublished: 2018-02-27CVE: CVE-2018-7477 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 26/02/2018 # Exploit Author: Samiran Santra # Vendor Homepage:...
View ArticleClik here to view.
Concrete5 < 8.3.0 - Username / Comments Enumeration
EDB-ID: 44194Author: Chapman SchleissPublished: 2018-02-27CVE: CVE-2017-18195 Type: WebappsPlatform: PHPVulnerable App: # Concrete5 < 8.3 vulnerable to Authorization Bypass Through User-Controlled...
View ArticleClik here to view.
CMS Made Simple 2.1.6 - Remote Code Execution
EDB-ID: 44192Author: Keerati T.Published: 2018-02-27CVE: CVE-2018-7448 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-02-26 # Exploit Author: Keerati T. # Vendor Homepage:...
View ArticleClik here to view.
Sony Playstation 4 4.55 FW - 'bpf' Local Kernel Loader / Jailbreak
EDB-ID: 44196Author: SpecterPublished: 2018-02-27CVE: N/A Type: RemotePlatform: HardwareAliases: N/ATags: N/AVulnerable App: N/A --- ## Summary In this project you will find a full implementation of...
View ArticleClik here to view.
Sony Playstation 4 (PS4) 5.01 - WebKit (PoC)
EDB-ID: 44197Author: ALEXZZZ9Published: 2018-02-27CVE: N/A Type: DosPlatform: HardwareAliases: N/ATags: N/AVulnerable App: N/A =========================== Based on: -...
View ArticleClik here to view.
Laraship Form Builder 5.5 Cross Site Scripting
Laraship Form Builder version 5.5 suffers from a cross site scripting vulnerability.MD5 |...
View ArticleClik here to view.
GetGo Download Manager 5.3.0.2712 Buffer Overflow
GetGo Download Manager version 5.3.0.2712 SEH buffer overflow exploit.MD5 | 0dbe01dfc17f246308b60318b96df631Download#!/usr/bin/python## Exploit Author: bzyo# Twitter: @bzyo_# Exploit Title: GetGo...
View ArticleClik here to view.
Sony Playstation 4 (PS4) 4.55 Jailbreak
In this project you will find a full implementation of the "bpf" kernel exploit for the PlayStation 4 on 4.55. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level...
View ArticleClik here to view.
Schools Alert Management Script 2.0.2 SQL Injection
Schools Alert Management Script version 2.0.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.MD5 |...
View ArticleClik here to view.
MyBB My Arcade 1.3 Cross Site Scripting
MyBB My Arcade plugin version 1.3 suffers from a cross site scripting vulnerability.MD5 | db17a1a287de15c1f89c6789e1cf6e44Download# Exploit Title: MyBB My Arcade Plugin v1.3 - Persistent XSS# Date:...
View ArticleClik here to view.
Concrete5 Username / Comments Enumeration
Concrete5 versions prior to 8.3.0 suffers from enumeration vulnerabilities.MD5 | 7a65a55335a7d87c3dd77d770640d6deDownload#!/usr/bin/env python3# Concrete5 < 8.3 vulnerable to Authorization Bypass...
View ArticleClik here to view.
Microsoft Windows 8.1 / 2012 R2 SMB Denial Of Service
Microsoft Windows versions 8.1 and 2012 R2 SMB denial of service exploit.MD5 | 2bfe01792d14bfc3f8a4bbfad81b0a4cDownload# Exploit Title: Microsoft Windows SMB Client Null Pointer Dereference Denial of...
View ArticleClik here to view.
Sony Playstation 4 (PS4) 4.07 Code Execution
Sony Playstation 4 (PS4) versions 4.07 up to but not including 4.55 bpf local kernel code execution proof of concept exploit.MD5 | 559cc86e3a21ec5fe15bbb6df9150f23Downloadfunction stage4_(){ function...
View ArticleClik here to view.
Joomla! K2 2.8.0 Arbitrary File Download
Joomla! K2 component version 2.8.0 suffers from an arbitrary file download vulnerability.MD5 | 9d3f07059f7aca5bd9656309768aa984Download# # # ## Exploit Title: Joomla! Component K2 2.8.0 - Arbitrary...
View Article