Clik here to view.
WordPress Gym Management System 07-05-2017 Code Execution / Cross Site Scripting
WordPress Gym Management System versions 07-05-2017 and below suffer from code execution and cross site scripting vulnerabilities.MD5 | ee0add2453bdeb49c0645ae5427b8c19Download# Exploit Title: WPGYM -...
View ArticleClik here to view.
A2billing 2.x - SQL Injection
EDB-ID: 42615Author: 0x4148Published: 2017-09-05CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Vulnerable software : A2billing 2.x # Author : Ahmed sultan (0x4148) # Email : 0x4148@gmail.com...
View ArticleClik here to view.
Cory Support - 'pr' Parameter SQL Injection
EDB-ID: 42620Author: v3n0mPublished: 2017-09-06CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Author : v3n0m # Contact : v3n0m[at]outlook[dot]com # Date : September, 06-2017 GMT +7:00 Jakarta,...
View ArticleClik here to view.
Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery (Update Admin)
EDB-ID: 42622Author: Ihsan SencanPublished: 2017-09-06CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Pay Banner Text Link Ad 1.0.6.1 - Cross-Site Request Forgery (Update Admin...
View ArticleClik here to view.
Jungo DriverWizard WinDriver - Kernel Out-of-Bounds Write Privilege Escalation
EDB-ID: 42625Author: mr_mePublished: 2017-09-06CVE: CVE-2017-14075 Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A """ Jungo DriverWizard WinDriver Kernel...
View ArticleClik here to view.
Advertiz PHP Script 0.2 - Cross-Site Request Forgery (Update Admin)
EDB-ID: 42621Author: Ihsan SencanPublished: 2017-09-06CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Advertiz PHP Script 0.2 - Cross-Site Request Forgery (Update Admin...
View ArticleClik here to view.
Pay Banner Text Link Ad 1.0.6.1 - SQL Injection
EDB-ID: 42623Author: Ihsan SencanPublished: 2017-09-06CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Pay Banner Text Link Ad 1.0.6.1 - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
Jungo DriverWizard WinDriver - Kernel Pool Overflow
EDB-ID: 42624Author: mr_mePublished: 2017-09-06CVE: CVE-2017-14153 Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A """ Jungo DriverWizard WinDriver Kernel Pool...
View ArticleClik here to view.
Tor - Linux Sandbox Breakout via X11
EDB-ID: 42626Author: Google Security ResearchPublished: 2017-09-06CVE: N/A Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Apache Struts 2.5 - Remote Code Execution
EDB-ID: 42627Author: WarflopPublished: 2017-09-06CVE: CVE-2017-9805 Type: RemotePlatform: LinuxVulnerable App: # Google Dork: filetype:action # Date: 06/09/2017 # Exploit Author: Warflop # Vendor...
View ArticleClik here to view.
Gh0st Client Buffer Overflow
This Metasploit module exploits a Memory buffer overflow in the Gh0st client (C2 server).MD5 | c9d019b365355d47b41e84da97f715f2Download### This module requires Metasploit:...
View ArticleClik here to view.
PlugX Controller Stack Overflow
This Metasploit module exploits a Stack buffer overflow in the PlugX Controller (C2 server).MD5 | 909cabdcc1a96f7ab15d19c3b99b2414Download### This module requires Metasploit:...
View ArticleClik here to view.
Ultimate HR System
EDB-ID: 42628Author: 8bitsecPublished: 2017-09-05CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-09-05 # Exploit Author: 8bitsec # Vendor Homepage: http://workablezone.com #...
View ArticleClik here to view.
Ultimate HR System 1.2 Cross Site Scripting / Directory Traversal
Ultimate HR System versions 1.2 and below suffer from cross site scripting and directory traversal vulnerabilities.MD5 | 7ef8c382c84bd564a779cefd35abf93aDownload# Exploit Title: HRM - Workable Zone :...
View ArticleClik here to view.
Subrion CMS 4.1.5 Cross Site Scripting
Subrion CMS version 4.1.5 suffers from a cross site scripting vulnerability.MD5 | 384913df20ce390bd7b36d3f2088e221Download___________________________________________________|| Exploit Title: Subrion...
View ArticleClik here to view.
WordPress Cool Flickr Slideshow 1.0 Cross Site Scripting
WordPress Cool Flickr Slideshow plugin version 1.0 suffers from a cross site scripting vulnerability.MD5 | 18c891fbfd15b9e7b0347e9f5327ed53Download___________________________________________________||...
View ArticleClik here to view.
WordPress Contact Form 7 International SMS Integration 1.2 XSS
WordPress Contact Form 7 International SMS Integration plugin version 1.2 suffers from a cross site scripting vulnerability.MD5 |...
View ArticleClik here to view.
Advertiz PHP Script 0.2 Cross Site Request Forgery
Advertiz PHP Script version 0.2 suffers from a cross site request forgery vulnerability.MD5 | fd1b21d9f8c84d00c07247ec58d57074Download# # # # # # Exploit Title: Advertiz PHP Script 0.2 - Cross-Site...
View ArticleClik here to view.
Cory Support SQL Injection
Cory Support suffers from a remote SQL injection vulnerability.MD5 | 7819ac691c73a58afd6d85950d2c1b3bDownload# Exploit : Cory Support (pr) SQL Injection Vulnerability# Author : v3n0m# Contact :...
View ArticleClik here to view.
Apache Struts 2 REST Plugin XStream Remote Code Execution
Apache Struts versions 2.5 through 2.5.12 using the REST plugin are vulnerable to a Java deserialization attack in the XStream library.MD5 | 6a456689db4d683f7253fa4ce925f95cDownload### This module...
View Article