Clik here to view.
Binance 1.5.0 Insecure File Permission
Binance version 1.5.0 suffers from an insecure file permission vulnerability.MD5 | 23ab79875476d303569e9a725683a7deDownloadDocument Title:===============Binance v1.5.0 - Insecure File Permission...
View ArticleClik here to view.
PrestaShop < 1.6.1.19 - 'AES CBC' Privilege Escalation
EDB-ID: 45046Author: Charles FolPublished: 2018-07-16CVE: CVE-2018-13784 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # PrestaShop <= 1.6.1.19 AES...
View ArticleClik here to view.
PrestaShop < 1.6.1.19 - 'BlowFish ECD' Privilege Escalation
EDB-ID: 45047Author: Charles FolPublished: 2018-07-16CVE: CVE-2018-13784 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A #!/usr/bin/env python3 # PrestaShop...
View ArticleClik here to view.
JavaScript Core - Arbitrary Code Execution
EDB-ID: 45048Author: ret2Published: 2018-07-11CVE: CVE-2018-4192 Type: LocalPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A load('util.js'); load('int64.js'); // Helpers...
View ArticleClik here to view.
Smart SMS & Email Manager 3.3 - 'contact_type_id' SQL Injection
EDB-ID: 45049Author: AkkuSPublished: 2018-07-18CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Google Dork: N/A # Date: 17.07.2018 # Exploit Author: Özkan Mustafa Akkuş (AkkuS) # Vendor...
View ArticleClik here to view.
Open-AudIT Community 2.1.1 - Cross-Site Scripting
EDB-ID: 45053Author: Ranjeet JaiswalPublished: 2018-07-18CVE: CVE-2018-11124 Type: WebappsPlatform: MultipleAliases: N/AAdvisory/Source: N/ATags: Cross-Site Scripting (XSS)Vulnerable App: N/A # Exploit...
View ArticleClik here to view.
HomeMatic Zentrale CCU2 - Remote Code Execution
EDB-ID: 45052Author: Kacper SzurekPublished: 2018-07-18CVE: N/A Type: RemotePlatform: HardwareVulnerable App: N/A # Date: 16-07-2018 # Software Link: https://www.homematic.com/ # Exploit Author: Kacper...
View ArticleClik here to view.
FTP2FTP 1.0 - Arbitrary File Download
EDB-ID: 45054Author: AkkuSPublished: 2018-07-18CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Dork: N/A # Date: 18.07.2018 # Exploit Author: Özkan Mustafa Akkuş (AkkuS) # Vendor Homepage:...
View ArticleClik here to view.
Modx Revolution < 2.6.4 - Remote Code Execution
EDB-ID: 45055Author: Vitalii RudnykhPublished: 2018-07-18CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-07-13 # Exploit Author: Vitalii Rudnykh # Vendor Homepage: https://modx.com/...
View ArticleClik here to view.
Sony Playstation 4 5.05 BPF Double Free
Sony Playstation 4 version 5.05 BPF double-free kernel exploit whitepaper.MD5 | 211837c5b7a80994fc356f4c3f44eb56Download**Note: Similar to 4.55, this bug is interesting primarily for exploitation on...
View ArticleClik here to view.
FTP2FTP 1.0 Arbitrary File Download
FTP2FTP version 1.0 suffers from an arbitrary file download vulnerability.MD5 | 9d314c56059d12b0cc6aec73b088a155Download# Exploit Title: FTP2FTP 1.0 - Arbitrary File Download# Dork: N/A# Date:...
View ArticleClik here to view.
Open-AudIT Community 2.1.1 Cross Site Scripting
Open-AudIT Community version 2.1.1 suffers from a cross site scripting vulnerability.MD5 | 8d1bccdf395bdfdaa21807febf23168eDownload######################################## Exploit Title: Open-AudIT...
View ArticleClik here to view.
GhostMail Status Message HTML Injection
GhostMail suffers from an html injection vulnerability.MD5 | 6e046d902f12ab4c5fe434396b98bedaDownloadDocument Title:===============GhostMail - (Status Message) Persistent Web VulnerabilityReferences...
View ArticleClik here to view.
GhostMail Filename To Link Script Insertion
GhostMail suffers from a malicious script insertion vulnerability.MD5 | f901762c2d372d257852aa2cacd2355dDownloadDocument Title:===============GhostMail - (filename to link) POST Inject Web...
View ArticleClik here to view.
JavaScript Core Arbitrary Code Execution
JavaScript Core arbitrary code execution exploit.MD5 | 451614b5b6654ae9f5e8d9bc10001aefDownload// Load Int library, thanks saelo!load('util.js');load('int64.js');// Helpers to convert from float to in...
View ArticleClik here to view.
Modx Revolution Remote Code Execution
Modx Revolution versions prior to 2.6.4 suffer from a remote code execution vulnerability.MD5 | 6676ba0c95250f29f12815696ab2b9e4Download# Exploit Title: Modx Revolution < 2.6.4 - Remote Code...
View ArticleClik here to view.
Smart SMS And Email Manager 3.3 SQL Injection
Smart SMS and Email Manager version 3.3 suffers from a remote SQL injection vulnerability.MD5 | a6d5202d3365300bb015064a17f8729dDownload# Exploit Title: Smart SMS & Email Manager v3.3 - SQL...
View ArticleClik here to view.
Barracuda Cloud Control 3.020 Cross Site Scripting
Barracuda Cloud Control version 3.020 suffers from a cross site scripting vulnerability.MD5 | f23473cf4a6e820950f67bcee0f9bdf1DownloadDocument Title:===============Barracuda Cloud Control v3.020 - CS...
View ArticleClik here to view.
Barracuda Cloud Control 7.1.1.003 Cross Site Scripting
Barracuda Cloud Control version 7.1.1.003 suffers from a cross site scripting vulnerability.MD5 | ff2e83501f0a7393dc41facb92cd154fDownloadDocument Title:===============Barracuda Cloud Control 7.1.1.003...
View ArticleClik here to view.
AntiVirus Evasion With Metasploit's Web Delivery
Whitepaper called AntiVirus Evasion with Metasploit's Web Delivery - Leveraging PowerShell to Execute Arbitrary Shellcode.MD5 | 68e94c755f9d49405de6fd9c85c19ce2DownloadSource:packetstormsecurity.com
View Article