Clik here to view.
Firefox 50.0.1 ASM.JS JIT-Spray Remote Code Execution
Firefox version 50.0.1 full ASLR and DEP bypass exploit using ASM.JS JIT-spray.MD5 | 7a48d520cb4cdd3d74af0cf1ed0c841cDownload<!DOCTYPE HTML><!-- FULL ASLR AND DEP BYPASS USING ASM.JS JIT SPRAY...
View ArticleClik here to view.
Counter Strike: Condition Zero Code Execution
Counter Strike: Condition Zero .BSP map file code execution exploit.MD5 | 60cf38b1bf5d77a322b766592b2b1fa3DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
WDTV Live SMP Remote Password Reset
WDTV Live suffers from a remote SMP password reset vulnerability.MD5 | b838dc9a2878a6f3645cfe2eeb185a36Download######################################################### WDTV Live SMP Remote Password...
View ArticleClik here to view.
Cisco DDR2200 / 2201v1 Insecure Direct Object Reference / Path Traversal
Cisco DDR2200 and 2201v1 ADSL2+ Residential Gateway devices suffer from insecure direct object reference vulnerabilities that allow for remote code execution as well as a path traversal issue.MD5 |...
View ArticleClik here to view.
iSmartAlarm CubeOne Remote Command Execution
iSmartAlarm CubeOne suffers from a remote command execution vulnerability that allows disabling the alarm and setting it off.MD5 | 833bd9dd85db2c65f3f3f6af99f3241bDownload[+] Credits: Ilia Shnaidman[+]...
View ArticleClik here to view.
Metasploit Example Exploit
This exploit module illustrates how a vulnerability could be exploited in an TCP server that has a parsing bug. This is an example Metasploit module to be used for exploit development.MD5 |...
View ArticleClik here to view.
Windows Browser Example Exploit
This template covers IE8/9/10, and uses the user-agent HTTP header to detect the browser version. Please note IE8 and newer may emulate an older IE version in compatibility mode, in that case the...
View ArticleClik here to view.
FTPGetter 5.89.0.85 - Buffer Overflow (SEH)
EDB-ID: 42328Author: Paul PurcellPublished: 2017-07-14CVE: N/A Type: RemotePlatform: WindowsVulnerable App: # Exploit Title: FTPGetter 5.89.0.85 Remote SEH Buffer Overflow # Date: 07/14/2017 # Exploit...
View ArticleClik here to view.
Orangescrum 1.6.1 - Multiple Vulnerabilities
EDB-ID: 42330Author: tomplixseePublished: 2017-07-16CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Google Dork: [NA] # Date: [July 9 2017] # Exploit...
View ArticleClik here to view.
Belkin NetCam F7D7601 - Multiple Vulnerabilities
EDB-ID: 42331Author: WadeekPublished: 2017-07-17CVE: N/A Type: RemotePlatform: HardwareVulnerable App: N/A # Date: 17/07/17 # Exploit Author: Wadeek # Vendor Homepage: http://www.belkin.com/ # Tested...
View ArticleClik here to view.
Sophos Web Appliance 4.3.0.2 - 'trafficType' Remote Command Injection...
EDB-ID: 42332Author: xortPublished: 2017-07-18CVE: CVE-2017-6182 Type: WebappsPlatform: JSONVulnerable App: N/A # Date: 01/28/2017 # Exploit Author: xort @ Critical Start # Vendor Homepage:...
View ArticleClik here to view.
Barracuda Load Balancer Firmware
EDB-ID: 42333Author: xortPublished: 2017-07-18CVE: CVE-2017-6320 Type: WebappsPlatform: HardwareVulnerable App: N/A # # Date: 01/06/2017 (Originally discovered: 3/16) # Exploit Author: xort # Software...
View ArticleClik here to view.
Easy File Sharing Web Server 7.2 Buffer Overflow
Easy File Sharing Web Server version 7.2 SEH buffer overflow PassWD exploit that spawns a reverse shell.MD5 | 0a226fb9ae5920b89126ab6486e607fbDownload#!/usr/bin/python#Easy File Sharing Web Server 7.2...
View ArticleClik here to view.
FTPGetter 5.89.0.85 Buffer Overflow
FTPGetter version 5.89.0.85 SEH buffer overflow exploit.MD5 | ecf55fae0da7cb2320324500d212bccbDownload#!/usr/bin/python# Exploit Title: FTPGetter 5.89.0.85 Remote SEH Buffer Overflow# Date: 07/14/2017#...
View ArticleClik here to view.
Belkin NetCam F7D7601 Remote Command Execution / Hard-Coded Passwords
Belkin NetCam F7D7601 suffers from remote command execution, network fingerprinting, and hard-coded password vulnerabilities.MD5 | e937ccdeddaba497377af60a275dbe5aDownload# Exploit Title: Belkin NetCam...
View ArticleClik here to view.
Orangescrum 1.6.1 File Upload / Cross Site Scripting
Orangescrum version 1.6.1 suffers from cross site scripting and remote file upload vulnerabilities.MD5 | 9693daf187246491e666ce159587cc45Download# Exploit Title: [Orangescrum 1.6.1 Multiple...
View ArticleClik here to view.
DotCMS 4.1.1 Shell Upload
DotCMS version 4.1.1 suffers from a remote shell upload vulnerability.MD5 | 6662f3bad9f3f62ed6c7151df589bba6Download==========================Advisory: DotCMS /servlets/ajax_file_upload Arbitrary File...
View ArticleClik here to view.
Hashicorp vagrant-vmware-fusion 4.0.20 Privilege Escalation
Hashicorp vagrant-vmware-fusion versions 4.0.20 and below suffer from a local root privilege escalation vulnerability.MD5 | fa75f3b5ac8d64b6fe452388903fb02dDownloadCVE-2017-7642 Local root privesc in...
View ArticleClik here to view.
PEGA Platform 7.2 ML0 Missing Access Control / Cross Site Scripting
PEGA Platform versions 7.2 ML0 and below suffer from missing access control and cross site scripting vulnerabilities.MD5 | 938c5f42465df06a9e5c4c2fc3e83ed2DownloadSummary=======1. Missing access...
View ArticleClik here to view.
Sophos Web Appliance 4.3.0.2 Remote Command Injection
Sophos Web Appliance version 4.3.0.2 reporting JSON trafficType remote command injection exploit.MD5 | 6d5a691d22205e8d640310d8376287ceDownload# Exploit Title: Sophos Web Appliance reporting JSON...
View Article