Clik here to view.
Basic B2B Script SQL Injection
Basic B2B Script suffers from a remote SQL injection vulnerability.MD5 | 0c9ad486cce622e731c68a61266405feDownload# # # # # # Exploit Title: Basic B2B Script - SQL Injection# Dork: N/A# Date:...
View ArticleClik here to view.
CMS Lite 1.4 SQL Injection
Creative Management System CMS Lite version 1.4 suffers from a remote SQL injection vulnerability.MD5 | 6d6bb7ef41f981b567e136fb724ee283Download# # # # # # Exploit Title: Creative Management System -...
View ArticleClik here to view.
MyMagazine Magazine And Blog CMS 1.0 SQL Injection
MyMagazine Magazine and Blog CMS version 1.0 suffers from a remote SQL injection vulnerability.MD5 | 4658cb8e1d19de46206690f6a0555626Download# # # # # # Exploit Title: MyMagazine Magazine & Blog...
View ArticleClik here to view.
News Magazine And Blog CMS 1.0 SQL Injection
News Magazine and Blog CMS version 1.0 suffers from a remote SQL injection vulnerability.MD5 | 9f4bab3ca77531703dcefa759b8c273fDownload# # # # # # Exploit Title: News Magazine & Blog CMS 1.0 - SQL...
View ArticleClik here to view.
ZyXEL PK5001Z Modem Backdoor Account
The ZyXEL PK5001Z modem has a hardcoded backdoor admin account that allows escalation to root.MD5 | bca3b4449d9fcb8fb0e87e0643eda104Download# Exploit Title: ZyXEL PK5001Z Modem - CenturyLink Hardcoded...
View ArticleClik here to view.
OctoberCMS 1.0.426 (Build 426) Cross Site Request Forgery
OctoberCMS version 1.0.426 (Build 426) suffers from a cross site request forgery vulnerability.MD5 | 29c853f56b59ad6e4cb2b4757ef9e2c6Download Exploit Title: OctoberCMS 1.0.426 - CSRF to Admin Account...
View ArticleClik here to view.
Ingenious School Management System 2.3.0 SQL Injection
Ingenious School Management System version 2.3.0 suffers from a remote SQL injection vulnerability.MD5 | 0edcc3dcc71ecc83921e8b0f682a0862Download# Exploit Title: Ingenious School Management System...
View ArticleClik here to view.
US Zip Codes Database SQL Injection
US Zip Codes Database suffers from a remote SQL injection vulnerability.MD5 | d6b92e1e691a1e366d957fd52f5ee392Download# # # # # # Exploit Title: US Zip Codes Database Script - SQL Injection# Dork: N/A#...
View ArticleClik here to view.
Shareet Photo Sharing Social Network SQL Injection
Shareet Photo Sharing Social Network suffers from a remote SQL Injection vulnerability.MD5 | cfd15b7ecac832bdbbd2b57335aa5f00Download# # # # # # Exploit Title: Shareet - Photo Sharing Social Network -...
View ArticleClik here to view.
Newspaper Magazine And Blog CMS 1.0 SQL Injection
Newspaper Magazine and Blog CMS version 1.0 suffers from a remote SQL injection vulnerability.MD5 | 23e53e52f34e42d216f0239154f1d69dDownload# # # # # # Exploit Title: Newspaper Magazine & Blog CMS...
View ArticleClik here to view.
Protected Links SQL Injection
Protected Links suffers from a remote SQL injection vulnerability.MD5 | 8eb5959090abf91355cb01edc11dc01fDownload<!--# # # # # # Exploit Title: Protected Links - Expiring Download Links - SQL...
View ArticleClik here to view.
Oracle Java SE Wv8u131 Information Disclosure
Oracle Java SE installs a protocol handler in the registry as "HKEY_CLASSES_ROOT\jnlp\Shell\Open\Command\Default"'C:\Program Files\Java\jre1.8.0_131\bin\jp2launcher.exe" -securejws "%1"'. This can...
View ArticleClik here to view.
GraphicsMagick CVE-2017-16353 Information Disclosure Vulnerability
GraphicsMagick is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information that may aid in further attacks. InformationBugtraq ID: 101653...
View ArticleClik here to view.
Vir.IT eXplorer Anti-Virus Privilege Escalation
Vir.IT eXplorer Anti-Virus suffers from a privilege escalation vulnerability.MD5 | ff30fb040fe89ba20d52d211ff216adeDownload/*Exploit Title - Vir.IT eXplorer Anti-Virus Arbitrary Write Privilege...
View ArticleClik here to view.
Sera 1.2 Local Root / Password Disclosure
Sera version 1.2 suffers from a password disclosure that can allow for root privilege escalation.MD5 | 4625b7cb42f5e2f2c434c541fa4f6c89DownloadSera is a free app for mac and iOS that lets you unlock...
View ArticleClik here to view.
Cisco WebEx Meetings Server CVE-2017-12294 Cross Site Scripting Vulnerability
Cisco WebEx Meetings Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize the user-supplied input. An attacker may leverage this issue to execute arbitrary...
View ArticleClik here to view.
Ladon Framework For Python 0.9.40 XXE Injection
Attackers who can send SOAP messages to a Ladon webservice via the HTTP interface of the Ladon webservice can exploit an XML external entity expansion vulnerability and read local files, forge server...
View ArticleClik here to view.
WordPress WP Mobile Detector 3.5 Shell Upload
WP Mobile Detector Plugin for WordPress contains a flaw that allows a remote attacker to execute arbitrary PHP code. This flaw exists because the /wp-content/plugins/wp-mobile-detector/resize.php...
View ArticleClik here to view.
tnftp "savefile" Arbitrary Command Execution
This Metasploit module exploits an arbitrary command execution vulnerability in tnftp's handling of the resolved output filename - called "savefile" in the source - from a requested resource. If tnftp...
View ArticleClik here to view.
WordPress Plugin JTRT Responsive Tables 4.1 - SQL Injection
EDB-ID: 43110Author: Lenon LeitePublished: 2017-11-03CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Exploit Author: Lenon Leite # Vendor Homepage:...
View Article