Clik here to view.
Malicious GIT HTTP Server
This Metasploit module exploits CVE-2017-1000117, which affects Git versions 2.7.5 and lower. A submodule of the form 'ssh://' can be passed parameters from the username incorrectly. This can be used...
View ArticleClik here to view.
Linux/x86 - Fork Bomb Shellcode (9 bytes)
EDB-ID: 42594Author: Touhid M.ShaikhPublished: 2017-08-30CVE: N/A Type: ShellcodePlatform: Lin_x86Shellcode: Download / View Raw Shellcode Size: 9 bytes ;Title: Linux/x86 - Fork() Bomb Shellcode ;...
View ArticleClik here to view.
Joomla Component Huge-IT Portfolio Gallery Plugin 1.0.6 - SQL Injection
EDB-ID: 42597Author: Larry W. CashdollarPublished: 2017-08-31CVE: CVE-2016-1000124 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: SQL Injection (SQLi)Vulnerable App: N/A # Date:...
View ArticleClik here to view.
OpenJPEG 'mqc.c' Remote Heap Based Buffer Overflow Vulnerability
OpenJPEG is prone to a remote heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. An...
View ArticleClik here to view.
OpenJPEG - 'mqc.c' Heap-Based Buffer Overflow
EDB-ID: 42600Author: Ke LiuPublished: 2017-09-01CVE: CVE-2016-10504 Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A An Out-of-Bounds Write issue can be occurred in...
View ArticleClik here to view.
RubyGems CVE-2017-0901 Local Arbitrary File Overwrite Vulnerability
RubyGems is prone to a local arbitrary file-overwrite vulnerability because it fails to properly sanitize user-supplied data. Attackers can overwrite arbitrary files on an unsuspecting user's computer...
View ArticleClik here to view.
Joomla! Component Survey Force Deluxe 3.2.4 - 'invite' Parameter SQL Injection
EDB-ID: 42606Author: Ihsan SencanPublished: 2017-09-03CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Joomla! Component Survey Force Deluxe 3.2.4 - SQL Injection # Dork: N/A #...
View ArticleClik here to view.
Joomla! Component CheckList 1.1.0 - SQL Injection
EDB-ID: 42607Author: Ihsan SencanPublished: 2017-09-03CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Joomla! Component CheckList 1.1.0 - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
Wireless Repeater BE126 - Remote Code Execution
EDB-ID: 42608Author: Hay MizrachiPublished: 2017-09-04CVE: CVE-2017-13713 Type: WebappsPlatform: HardwareVulnerable App: N/A # Date Publish: 09/09/2017 # Exploit Authors: Hay Mizrachi, Omer Kaspi #...
View ArticleClik here to view.
CodeMeter 6.50 - Cross-Site Scripting
EDB-ID: 42610Author: Vulnerability-LabPublished: 2017-09-04CVE: CVE-2017-13754 Type: WebappsPlatform: MultipleVulnerable App: N/A =============== Wibu Systems AG CodeMeter 6.50 - Persistent XSS...
View ArticleClik here to view.
RubyGems < 2.6.13 - Arbitrary File Overwrite
EDB-ID: 42611Author: mamePublished: 2017-09-04CVE: CVE-2017-0901 Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Proof of Concept 1: Create a file anywhere This...
View ArticleClik here to view.
FineCMS 1.0 Cross Site Scripting / SQL Injection
FineCMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.MD5 | e0e0805a0ab9f68d76db0eb249f9af22Download# # # # ## Exploit Title: FineCMS 1.0 Multiple...
View ArticleClik here to view.
Lexmark Scan To Network (SNF) 3.2.9 Information Disclosure
Lexmark Scan to Network (SNF) printer application versions 3.2.9 and below suffer from a credential disclosure vulnerability.MD5 | a2f8f1bd1016da9a8c59d02c7ed56417DownloadSummary=======1. Information...
View ArticleClik here to view.
TeraCopyService 3.1 Unquoted Service Path Privilege Escalation
TeraCopyService version 3.1 suffers from an unquoted service path privilege escalation vulnerability.MD5 | 52b80363acbee141023a142f811cf1f8Download# Exploit Title: TeraCopyService 3.1 - Unquoted...
View ArticleClik here to view.
USB Safely Remove 5.5.5 Denial Of Service
USB Safely Remove version 5.5.5 suffers from a denial of service vulnerability.MD5 | 5a4e139ce9b5265d69146770d8d7ae9dDownload#!/usr/bin/python# Exploit Title: USB Safely Remove 5.5.5 - Denial of...
View ArticleClik here to view.
OpenJPEG Buffer Overflow
OpenJPEG suffers from an out-of-bounds write issue in mqc.c and can be triggered by a malformed bmp.MD5 | 67b52b5c7e1f871908cd53240444f8cfDownloadSource:packetstormsecurity.com
View ArticleClik here to view.
SOA - School Management System 3.0 Shell Upload
SOA - School Management System version 3.0 suffers from a remote shell upload vulnerability.MD5 | 2fe2cdfd6210b32a06189f8002f9cb10Download# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #...
View ArticleClik here to view.
Lotus Notes Diagnostic Tool 8.5 / 9.0 Privilege Escalation
Lotus Notes Diagnostic Tool versions 8.5 and 9.0 suffers from a privilege escalation vulnerability.MD5 | a3ff0e801858982aa115a4de76468555Download# Exploit Title: Lotus Notes Diagnostic Tool (nsd.exe)...
View ArticleClik here to view.
IBM Notes 8.5.x / 9.0.x Denial Of Service
IBM Notes versions 8.5.x and 9.0.x suffer from a denial of service vulnerability.MD5 | 9fb22fea4846ddb2727b405d5822e3bdDownload# Exploit Title: IBM Notes is affected by a denial of service...
View ArticleClik here to view.
Joomla Survey Force Deluxe 3.2.4 SQL Injection
Joomla Survey Force Deluxe component version 3.2.4 suffers from a remote SQL injection vulnerability.MD5 | ad5f82dba867c31641bc215c432fec21DownloadNext Exploit...
View Article