Clik here to view.
VX Search Enterprise 10.1.12 - Buffer Overflow
EDB-ID: 42973Author: Revnic VasilePublished: 2017-10-09CVE: CVE-2017-15220 Type: RemotePlatform: WindowsVulnerable App: # Exploit Title : VX Search Enterprise v10.1.12 Remote Buffer Overflow # Exploit...
View ArticleClik here to view.
ASX to MP3 3.1.3.7 - '.m3u' Buffer Overflow
EDB-ID: 42974Author: Parichay RaiPublished: 2017-10-11CVE: CVE-2017-15221 Type: LocalPlatform: WindowsVulnerable App: N/A import socket import sys shellcode = (...
View ArticleClik here to view.
binutils 2.29.51.20170921 - 'read_1_byte' Heap-Based Buffer Overflow
EDB-ID: 42970Author: Agostino SarubboPublished: 2017-10-10CVE: CVE-2017-14939 Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Description: binutils is a set of...
View ArticleClik here to view.
WordPress Pootle Button 1.1.1 Cross Site Scripting
WordPress Pootie Button plugin version 1.1.1 suffers from a cross site scripting vulnerability.MD5 | e5f908dc831833c1996dc7f34be65f2bDownloadClass Input Validation ErrorRemote YesReflected YesCredit...
View ArticleClik here to view.
WordPress PopCash.Net Publisher Code Integration 1.0 Cross Site Scripting
WordPress PopCash.Net Publisher Code Integration plugin version 1.0 suffers from a cross site scripting vulnerability.MD5 | 4a863fef46a91466e8e4b234006dbbcdDownloadClass Input Validation ErrorRemote...
View ArticleClik here to view.
OctoberCMS 1.0.425 Cross Site Scripting
OctoberCMS version 1.0.425 suffers from a stored cross site scripting vulnerability.MD5 | f858f84c1697f98f8c75cd03f41c39b5Download# Exploit Title: OctoberCMS 1.0.425 (aka Build 425) Stored XSS# Vendor...
View ArticleClik here to view.
X-Cart 5.2.23 / 5.3.1.9 / 5.3.2.13 / 5.3.3 PHP Code Injection
X-Cart versions 5.2.23, 5.3.1.9, 5.3.2.13, and 5.3.3 suffer from a PHP code injection vulnerability.MD5 | 517d89663c7dc4f461e8a51d590a30bfDownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Tomcat JSP Upload Bypass Remote Code Execution
This Metasploit module uploads a jsp payload and executes it.MD5 | 956dae1cfd4113446dba37af21923214Download### This module requires Metasploit: http://metasploit.com/download# Current source:...
View ArticleClik here to view.
Trend Micro InterScan Messaging Security (Virtual Appliance) Remote Code...
This Metasploit module exploits the authentication bypass and command injection vulnerability together. Unauthenticated users can execute a terminal command under the context of the web server user....
View ArticleClik here to view.
Windows Escalate UAC Protection Bypass (In Memory Injection) Abusing WinSXS
This Metasploit module will bypass Windows UAC by utilizing the trusted publisher certificate through process injection. It will spawn a second shell that has the UAC flag turned off by abusing the way...
View ArticleClik here to view.
binutils 2.29.51.20170921 read_1_byte Heap-Based Buffer Overflow
binutils version 2.29.51.20170921 suffers from a read_1_byte heap-based buffer overflow vulnerability.MD5 | 5159846ca2c7df779c6f16c6c7a1d9daDownloadSource:packetstormsecurity.com
View ArticleClik here to view.
PHP Melody 2.7.3 Cross Site Scripting / SQL Injection
PHP Melody version 2.7.3 suffers from cross site scripting and SQL injection vulnerabilities.MD5 | 8d8544bc3a6ba55df5cbb4bfaefe5794DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (30 bytes)
EDB-ID: 42977Author: Manuel ManceraPublished: 2017-10-12CVE: N/A Type: ShellcodePlatform: Lin_x86Shellcode: Download / View Raw Shellcode Size: 30 bytes Title: Linux/x86 - Polymorphic execve /bin/sh...
View ArticleClik here to view.
OctoberCMS 1.0.425 (Build 425) - Cross-Site Scripting
EDB-ID: 42978Author: Ishaq MohammedPublished: 2017-10-12CVE: CVE-2017-15284 Type: WebappsPlatform: PHPVulnerable App: N/A # Vendor Homepage: https://octobercms.com/ # Software Link:...
View ArticleClik here to view.
E-Sic Software livre CMS - Cross Site Scripting
EDB-ID: 42983Author: Elber TavaresPublished: 2017-10-12CVE: N/A Type: WebappsPlatform: PHPVulnerable App: Date: 12/10/2017# Exploit Author: Elber Tavares # fireshellsecurity.team/ # Vendor Homepage:...
View ArticleClik here to view.
E-Sic Software livre CMS - Autentication Bypass
EDB-ID: 42980Author: Elber TavaresPublished: 2017-10-12CVE: N/A Type: WebappsPlatform: PHPVulnerable App: Date: 12/10/2017# Exploit Author: Elber Tavares# Vendor Homepage:...
View ArticleClik here to view.
E-Sic Software livre CMS - 'cpfcnpj' Parameter SQL Injection
EDB-ID: 42981Author: Elber TavaresPublished: 2017-10-12CVE: N/A Type: WebappsPlatform: PHPVulnerable App: 12/10/2017# Exploit Author: Elber Tavares # fireshellsecurity.team/ # Vendor Homepage:...
View ArticleClik here to view.
E-Sic Software livre CMS - 'f' Parameter SQL Injection
EDB-ID: 42982Author: Elber TavaresPublished: 2017-10-12CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Date: 12/10/2017 # Exploit Author: Elber Tavares # fireshellsecurity.team/ # Vendor Homepage:...
View ArticleClik here to view.
E-Sic Software livre CMS - 'q' Parameter SQL Injection
EDB-ID: 42979Author: Guilherme AssmannPublished: 2017-10-12CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Date: 12/10/2017 # Exploit Author: Guilherme Assmann # Vendor Homepage:...
View ArticleClik here to view.
TYPO3 Extension Restler 1.7.0 - Local File Disclosure
EDB-ID: 42985Author: CrashBandicotPublished: 2017-10-13CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Date: 2017-10-13 # Exploit Author: CrashBandicot @dosperl # Vendor Homepage:...
View Article