Clik here to view.
WordPress Woo Import Export 1.0 Arbitrary File Deletion
WordPress Woo Import Export plugin version 1.0 suffers from an arbitrary file deletion vulnerability.MD5 | 93eb0614801caff53e9b984f9ae70470Download<!--# Exploit Title: Plugin to Wordpress Woo Import...
View ArticleClik here to view.
Allok Video To DVD Burner 2.6.1217 Buffer Overflow
Allok Video to DVD Burner version 2.6.1217 suffers from a buffer overflow vulnerability.MD5 | e84f653d9e0c186e3e46ae373cd23250Download######################################################## Exploit...
View ArticleClik here to view.
Linux/x86 execve /bin/sh Encoded Shellcode
44 bytes small Linux/x86 execve /bin/sh encoded shellcode using ROT-13 + RShift-2 + XOR.MD5 | 66c9b228bfc5ac325b4db48c96248d5aDownload/*; Title : Execve /bin/sh Shellcode encoded with ROT-13 + RShift-2...
View ArticleClik here to view.
Open-AudIT 2.1 CSV Macro Injection
Open-AudIT version 2.1 suffers from a CSV macro injection vulnerability.MD5 | 6146831761bceaa28bb11d2de4b88054Download######################################## Exploit Title: Open-AudIT 2.1 - CSV Macro...
View ArticleClik here to view.
Monstra CMS 3.0.4 Arbitrary Folder Deletion
Monstra CMS version 3.0.4 suffers from an arbitrary folder deletion vulnerability.MD5 | 9f7cb4841fc668bcadbb64cd957faf1dDownload# Exploit Title: Monstra CMS 3.0.4 allows remote attackers to delete...
View ArticleClik here to view.
Interspire Email Marketer Administrative Authentication Bypass
nterspire Email Marketer versions prior to 6.1.6 suffer from a remote administrative authentication bypass vulnerability.MD5 | 01c71296da886b2dfd4fbe8c96e8f0e2Download'''# Exploit Title: Interspire...
View ArticleClik here to view.
Ericsson-LG iPECS NMS A.1Ac Credential Disclosure
Ericsson-LG iPECS NMS version A.1Ac suffers from a cleartext credential disclosure vulnerabilities.MD5 | 4a4e87c87a518def9d327d06745ef5d7Download# -*- coding: utf-8 -*-# Exploit Title: Ericsson-LG...
View ArticleClik here to view.
gif2apng 1.9 Stack Buffer Overflow
gif2apng version 1.9 .gif stack buffer overflow exploit.MD5 | 8611f664c60fbce8a0d032ed758fe902DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Quixplorer 2.4.1 Beta Cross Site Scripting
Quixplorer version 2.1 Beta suffers from a cross site scripting vulnerability.MD5 | e95fe1d277e4e821870231ebe223c12dDownload# Exploit Title: Reflected XSS in quixplorer-2.4.1beta # Google Dork:...
View ArticleClik here to view.
VMware Workstation 12.5.2 - Drag n Drop Use-After-Free (Pwn2Own 2017) (PoC)
EDB-ID: 44533Author: keenlabPublished: 2018-04-23CVE: N/A Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Pwn2OwnVulnerable App: N/A static const int cbObj = 0x100; char *second_dnd =...
View ArticleClik here to view.
HRSALE The Ultimate HRM v1.0.2 - 'award_id' SQL Injection
EDB-ID: 44537Author: 8bitsecPublished: 2018-04-25CVE: CVE-2018-10256 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-23 # Exploit Author: 8bitsec # CVE: CVE-2018-10256 # Vendor Homepage:...
View ArticleClik here to view.
Shopy Point of Sale v1.0 - CSV Injection
EDB-ID: 44534Author: 8bitsecPublished: 2018-04-25CVE: CVE-2018-10258 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-23 # Exploit Author: 8bitsec # CVE: CVE-2018-10258 # Vendor Homepage:...
View ArticleClik here to view.
Blog Master Pro v1.0 - CSV Injection
EDB-ID: 44535Author: 8bitsecPublished: 2018-04-25CVE: CVE-2018-10255 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-23 # Exploit Author: 8bitsec # CVE: CVE-2018-10255 # Vendor Homepage:...
View ArticleClik here to view.
HRSALE The Ultimate HRM v1.0.2 - CSV Injection
EDB-ID: 44536Author: 8bitsecPublished: 2018-04-25CVE: CVE-2018-10257 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-23 # Exploit Author: 8bitsec # CVE: CVE-2018-10257 # Vendor Homepage:...
View ArticleClik here to view.
HRSALE The Ultimate HRM 1.0.2 - Authenticated Cross-Site Scripting
EDB-ID: 44538Author: 8bitsecPublished: 2018-04-25CVE: CVE-2018-10259 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-23 # Exploit Author: 8bitsec # CVE: CVE-2018-10259 # Vendor Homepage:...
View ArticleClik here to view.
Chrome V8 JIT - Arrow Function Scope Fixing Bug
EDB-ID: 44541Author: Google Security ResearchPublished: 2018-04-25CVE: N/A Type: DosPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A When the parser parses the parameter...
View ArticleClik here to view.
Chrome V8 JIT - 'AwaitedPromise' Update Bug
EDB-ID: 44540Author: Google Security ResearchPublished: 2018-04-25CVE: N/A Type: DosPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Here's a snippet of...
View ArticleClik here to view.
HRSALE The Ultimate HRM v1.0.2 - Local File Inclusion
EDB-ID: 44539Author: 8bitsecPublished: 2018-04-25CVE: CVE-2018-10260 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-23 # Exploit Author: 8bitsec # CVE: CVE-2018-10260 # Vendor Homepage:...
View ArticleClik here to view.
October CMS User Plugin v1.4.5 - Persistent Cross-Site Scripting
EDB-ID: 44546Author: 0xB9Published: 2018-04-26CVE: CVE-2018-10366 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-03 # Author: 0xB9 # Software Link:...
View ArticleClik here to view.
phpLiteAdmin 1.9.7.1 Authorization Bypass
phpLiteAdmin versions 1.9.7.1 and below suffer from an authorization bypass vulnerability.MD5 | 8d2e406d93152cc028274b5875090e0aDownload// Underground_Agency (UA) - (koa, bacL, g3kko, Dostoyevsky)//...
View Article