Showing 1 - 25 of 168

Files

Packet Storm New Exploits For May, 2020: Posted Jun 1, 2020; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 166 exploits added to Packet Storm in May, 2020.; tags | exploit; SHA-256 | a6359e27ffd6427602b7529507292b2724470653202c67ec9232ae110d2e766d; Download | Favorite | View

WordPress BBPress 2.5 Privilege Escalation: Posted May 30, 2020; Authored by Raphael Karger; WordPress BBPress plugin version 2.5 suffers from an unauthenticated privilege escalation vulnerability.; tags | exploit; advisories | CVE-2020-13693; SHA-256 | 721ba0e3478ef95b7a328c53b4993c0adc41d6f9a6ebe6837319e50d98f45d75; Download | Favorite | View

Crystal Shard http-protection 0.2.0 IP Spoofing Bypass: Posted May 29, 2020; Authored by Halis Duraki; Crystal Shard http-protection version 0.2.0 suffers from an IP spoofing bypass vulnerability.; tags | exploit, web, spoof, bypass; SHA-256 | 5541826f04a3a19d5af667dd573923bfd3ca06a9c8ea0aac07e7a6742fd3ff60; Download | Favorite | View

WordPress Multi-Scheduler 1.0.0 Cross Site Request Forgery: Posted May 29, 2020; Authored by UnD3sc0n0c1d0; WordPress Multi-Scheduler plugin version 1.0.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 99dbc846378685b2323c34771392c6ef834d8a9183459926257b3a17519139d8; Download | Favorite | View

PanaceaSoft Shell Upload: Posted May 29, 2020; Authored by SyFi; Various PanaceaSoft products appear to suffer from a shell upload vulnerability.; tags | exploit, shell; SHA-256 | e7ff3b66bb7350d5b9bc20efd9077e3228ee400411b82793b4fee4a799111543; Download | Favorite | View

Pi-Hole 4.3.2 DHCP MAC OS Command Execution: Posted May 28, 2020; Authored by h00die, nateksec | Site metasploit.com; This Metasploit module exploits a command execution in Pi-Hole versions 4.3.2 and below. A new DHCP static lease is added with a MAC address which includes a remote code execution issue.; tags | exploit, remote, code execution; advisories | CVE-2020-8816; SHA-256 | 359e5af00d21f40799f66c4def97b9142ec248ec7b78fc2f54d6c7286881fa62; Download | Favorite | View

Firefox Default Content Process DACL Sandbox Escape: Posted May 28, 2020; Authored by James Forshaw, Google Security Research; The Firefox content processes do not sufficiently lockdown access control which can result in a sandbox escape.; tags | exploit; advisories | CVE-2020-12388; SHA-256 | 5ab57ea898f6984a1d902219e6b5dad81c2a3fda15ddd5b7b3e8b94690951fda; Download | Favorite | View

QNAP QTS And Photo Station 6.0.3 Remote Command Execution: Posted May 28, 2020; Authored by Yunus YILDIRIM; QNAP QTS and Photo Station version 6.0.3 suffers from a remote command execution vulnerability.; tags | exploit, remote; advisories | CVE-2019-7192, CVE-2019-7193, CVE-2019-7194, CVE-2019-7195; SHA-256 | 604298053dafd0abe28f387617874da35d43eb2b5d986c0ce5674a7007367477; Download | Favorite | View

Online-Exam-System 2015 SQL Injection: Posted May 28, 2020; Authored by Berk Dusunur; Online-Exam-System 2015 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 30a65160caaf9089ecbac10698104fa0f25786673eeeb5312507f56693b83bcb; Download | Favorite | View

EyouCMS 1.4.6 Cross Site Scripting: Posted May 28, 2020; Authored by CBIITMC; EyouCMS version 1.4.6 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | c1633e096fd7ffb684c4d315be68aa3c97f84fe185e74fb5e0c5a8b58ee5307b; Download | Favorite | View

NOKIA VitalSuite SPM 2020 SQL Injection: Posted May 28, 2020; Authored by Berk Dusunur; NOKIA VitalSuite SPM 2020 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 4b2f2f524685c71ebbea6918e30aab44516bbaa3ba7628233adfab36ee03593b; Download | Favorite | View

osTicket 1.14.1 Cross Site Scripting: Posted May 27, 2020; Authored by Matthew Aberegg; osTicket version 1.14.1 has been found to be susceptible to multiple additional persistent cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | ece38dfe0b78b4d12c78d458561067a0b97f2949cd82f199e0d6a0061f46a19d; Download | Favorite | View

LimeSurvey 4.1.11 Cross Site Scripting: Posted May 27, 2020; Authored by Matthew Aberegg; LimeSurvey version 4.1.11 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 30d939865abf87145843d253320e96f1e28e072f156c8b7e3c9cd97c71aed39a; Download | Favorite | View

Online Marriage Registration System 1.0 Cross Site Scripting: Posted May 27, 2020; Authored by that faceless coder; Online Marriage Registration System version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | b4d0b82fba85f8a8973f9fe62363f2806a31a82d14033ccbff285549f14b1403; Download | Favorite | View

Kuicms PHP EE 2.0 Cross Site Scripting: Posted May 27, 2020; Authored by CBIITMC; Kuicms PHP EE version 2.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, php, xss; SHA-256 | e82f65400279306185606f0ab6e762f70da91a5cbfb2959d9f562424a6066f8f; Download | Favorite | View

Pi-hole 4.4.0 Remote Code Execution: Posted May 27, 2020; Authored by Photubias; Pi-hole version 4.4.0 suffers from a remote code execution vulnerability.; tags | exploit, remote, code execution; advisories | CVE-2020-11108; SHA-256 | c7a92f42c54992e326709bf0e3e1ed94ba5f65503d1d8babc2253d1fecbc3a84; Download | Favorite | View

StreamRipper32 2.6 Buffer Overflow: Posted May 27, 2020; Authored by Andy Bowden; StreamRipper32 version 2.6 buffer overflow proof of concept exploit.; tags | exploit, overflow, proof of concept; SHA-256 | 0feb3156390b780f200e8dc706a07d595728f4cfc309e6bd7ab831b37f8ed532; Download | Favorite | View

WordPress Drag And Drop File Upload Contact Form 1.3.3.2 Shell Upload: Posted May 27, 2020; Authored by Austin Martin; WordPress Drag and Drop File Upload Contact Form plugin version 1.3.3.2 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell, file upload; SHA-256 | 36da7f722845fbc942179b4637fb9e3df8d66888734d49a9f4a425645863787a; Download | Favorite | View

BIND TSIG Denial Of Service: Posted May 27, 2020; Authored by Teppei Fukuda; BIND TSIG denial of service exploit.; tags | exploit, denial of service; advisories | CVE-2020-8617; SHA-256 | d5de081d8f074ab17f17ab3bb8bf92ccf47e34c228b15fc1557bfc3b911a004c; Download | Favorite | View

OXID eShop 6.3.4 SQL Injection: Posted May 27, 2020; Authored by VulnSpy; OXID eShop version 6.3.4 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 7bb1a3bc51aaedfe1571b18d845e37fc1d0c2f4b394f2096ba120ca3f34672b7; Download | Favorite | View

Pi-Hole 3.3 Command Execution: Posted May 26, 2020; Authored by h00die, Denis Andzakovic | Site metasploit.com; This Metasploit module exploits a command execution vulnerability in Pi-Hole versions 3.3 and below. When adding a new domain to the whitelist, it is possible to chain a command to the domain that is run on the OS.; tags | exploit; SHA-256 | cfc36a06914072c52416ddfd61eac6960d61e2221a60fe7ace44ef28f80b6a52; Download | Favorite | View

Joomla XCloner Backup 3.5.3 Local File Disclosure: Posted May 26, 2020; Authored by Mehmet Kelepce; Joomla XCloner Backup version 3.5.3 suffers from a local file disclosure vulnerability.; tags | exploit, local, info disclosure; SHA-256 | ef04c92567e5b156450ea7e6559a869a0534f1b915695f0224bd3b46fda6017f; Download | Favorite | View

OpenEMR Remote Code Execution: Posted May 26, 2020; Authored by Musyoka Ian; OpenEMR versions prior to 5.0.1 suffer from a remote code execution vulnerability.; tags | exploit, remote, code execution; SHA-256 | cef69fb8f736848a842b3b4f42a6007301ace4c581b4522cb7c84afa0d549868; Download | Favorite | View

Online Discussion Forum Site 1.0 Remote Code Execution: Posted May 25, 2020; Authored by Selim Enes Karaduman; Online Discussion Forum Site version 1.0 suffers from a remote code execution vulnerability.; tags | exploit, remote, code execution; SHA-256 | ea586a27eb02fa39a4fd1a1dcfa0e3c62879ba0256ca8bfaf808b8fd2aa7e17f; Download | Favorite | View

Victor CMS 1.0 Cross Site Scripting: Posted May 25, 2020; Authored by Nitya Nand; Victor CMS version 1.0 suffers from an add_user persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | af2d44af85919ce3ff7507d9ddeb9effeb9185aebb9e00c04d9f22a22b331924; Download | Favorite | View

Page 1 of 7 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 292 files
Ubuntu 62 files
Gentoo 32 files
Debian 31 files
LiquidWorm 10 files
Apple 9 files
malvuln 7 files
Ahmet Umit Bayram 4 files
nu11secur1ty 4 files
Adam Gowdiak 4 files

Files

Top Authors In Last 30 Days

Recent News