Clik here to view.
TwonkyMedia Server 7.0.11-8.5 Directory Traversal
TwonkyMedia Server version 7.0.11-8.5 suffers from a directory traversal vulnerability.MD5 |...
View ArticleClik here to view.
TwonkyMedia Server 7.0.11-8.5 Cross Site Scripting
TwonkyMedia Server version 7.0.11-8.5 suffers from a persistent cross site scripting vulnerability.MD5 |...
View ArticleClik here to view.
Square 9 GlobalForms 6.2.x Blind SQL Injection
Square 9 GlobalForms versions 6.2.x and below suffer from a remote blind SQL injection vulnerability.MD5 | b239bea8c4049e2b889557cf26a0913aDownload# Blind SQL Injection in Square 9 GlobalForms <=...
View ArticleClik here to view.
Allok AVI DivX MPEG To DVD Converter 2.6.1217 Buffer Overflow
Allok AVI DivX MPEG to DVD Converter version 2.6.1217 SEH buffer overflow exploit.MD5 | ee3e0074f9ed71d3e96208850a01981bDownload#!/usr/bin/env python## Exploit Title : Allok AVI DivX MPEG to DVD...
View ArticleClik here to view.
Joomla Fields SQL Injection / Code Execution
This Metasploit module exploits a SQL injection vulnerability in the com_fields component, which was introduced to the core of Joomla in version 3.7.0.MD5 | 61060be68a21ff81952012d30b418918Download###...
View ArticleClik here to view.
Exodus Wallet (ElectronJS Framework) Remote Code Execution
This Metasploit module exploits a remote code execution vulnerability in Exodus Wallet. A vulnerability in the ElectronJS Framework protocol handler can be used to get arbitrary command execution if...
View ArticleClik here to view.
GitStack 2.3.10 Unsanitized Argument Remote Code Execution
This Metasploit module exploits a remote code execution vulnerability that exists in GitStack versions through 2.3.10, caused by an unsanitized argument being passed to an exec function call. This...
View ArticleClik here to view.
Tenda W308R V2 Wireless Router 5.07.48 DNS Changer
Tenda W308R V2 wireless router version 5.07.48 remote DNS changer proof of concept exploit.MD5 | 78c72a9c8bc7ea5d1b1ada749accd592Download### Tenda W308R v2 Wireless Router V5.07.48# Cookie Session...
View ArticleClik here to view.
ManageEngine Application Manager Remote Code Execution
This Metasploit module exploits a command injection vulnerability in the ManageEngine Application Manager product. An unauthenticated user can execute an operating system command under the context of...
View ArticleClik here to view.
CA API Developer Portal Cross Site Scripting
CA Technologies Support is alerting customers to multiple potential risks with CA API Developer Portal. Multiple vulnerabilities exist that can allow a remote attacker to conduct cross-site scripting...
View ArticleClik here to view.
Joomla Component Fields - SQLi Remote Code Execution (Metasploit)
EDB-ID: 44358Author: MetasploitPublished: 2018-03-29CVE: CVE-2017-8917 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF), SQL Injection (SQLi)Vulnerable App:...
View ArticleClik here to view.
GitStack - Unsanitized Argument Remote Code Execution (Metasploit)
EDB-ID: 44356Author: MetasploitPublished: 2018-03-29CVE: CVE-2018-5955 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module...
View ArticleClik here to view.
Exodus Wallet (ElectronJS Framework) - Remote Code Execution (Metasploit)
EDB-ID: 44357Author: MetasploitPublished: 2018-03-29CVE: CVE-2018-1000006 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module...
View ArticleClik here to view.
Cisco IOS XE Software Multiple Cross Site Scripting Vulnerabilities
Cisco IOS XE Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize the user-supplied input. An attacker may leverage these issues to execute...
View ArticleClik here to view.
Tenda W316R Wireless Router 5.07.50 Remote DNS Changer
Tenda W316R wireless router version 5.07.50 cookie session weakness remote DNS changer proof of concept exploit.MD5 | 64f928c7e3bf05e3ba5142d01cabff91Download### Tenda W316R Wireless Router V5.07.50#...
View ArticleClik here to view.
Tenda W3002R/A302/w309r Wireless Router 5.07.64_en DNS Changer
Tenda W3002R/A302/w309r wireless router version 5.07.64_en cookie session weakness remote DNS changer proof of concept exploit.MD5 | fd6792545074adf74f37ff87b030925fDownload### Tenda W3002R/A302/w309r...
View ArticleClik here to view.
Tenda FH303/A300 5.07.68_EN Remote DNS Changer
Tenda FH303/A300 with firmware version 5.07.68_EN cookie session weakness remote DNS changer proof of concept exploit.MD5 | 2504ce8b0547c837ca7b83ab9b96f1e2Download### Tenda FH303/A300 Firmware...
View ArticleClik here to view.
glibc LD_AUDIT libmemusage.so RHEL-Based Arbitrary DSO Load Privilege Escalation
This Metasploit module attempts to gain root privileges on Linux systems by abusing a vulnerability in the GNU C Library (glibc) dynamic linker with libmemusage.so library.MD5 |...
View ArticleClik here to view.
Crea8Social Social Network Script Pro / Business Cross Site Scripting
Crea8Social Social Network Script versions Pro and Business suffer from multiple cross site scripting vulnerabilities.MD5 | 9a23d752188261452534812f5ca23298Download[-] Title: Multiple Cross-Site...
View ArticleClik here to view.
CA Workload Automation AE / CA Workload Control Center SQL Injection / Code...
CA Technologies Support is alerting customers to two potential risks with CA Workload Automation AE and CA Workload Control Center. Two vulnerabilities exist that can allow a remote attacker to conduct...
View Article