Showing 1 - 25 of 155

Files

Packet Storm New Exploits For October, 2020: Posted Nov 2, 2020; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 154 exploits added to Packet Storm in October, 2020.; tags | exploit; SHA-256 | b5cfc872c238a61ff5883d14c4a76378974806ddf56ff456ce4fb59e34b2c367; Download | Favorite | View

Cobian Backup Service Unquoted Service Path: Posted Oct 31, 2020; Authored by yunaranyancat; Cobian Backup Service versions prior to 11 suffer from an unquoted service path vulnerability.; tags | exploit; SHA-256 | 23bef7053fc0f819508c7faa47673fb323bb8691cf6a73c449e709f1441ad8f1; Download | Favorite | View

Quick N Easy FTP Service 3.2 Unquoted Service Path: Posted Oct 31, 2020; Authored by yunaranyancat; Quick N Easy FTP Service version 3.2 suffers from an unquoted service path vulnerability.; tags | exploit; SHA-256 | c38bccb18e7838464f5a3cee09bb5a408db3c897f7df4e98ad770b10ffb706cc; Download | Favorite | View

HealthMonitor 3.1 Unquoted Service Path: Posted Oct 31, 2020; Authored by yunaranyancat; HealthMonitor version 3.1 suffers from an unquoted service path vulnerability.; tags | exploit; SHA-256 | b830aa9cd8ffd86707694b33361fc6acbbab90058dff56d946d6eb98d9f71863; Download | Favorite | View

Microsoft Windows Kernel cng.sys Buffer Overflow: Posted Oct 30, 2020; Authored by Mateusz Jurczyk, Google Security Research, hawkes; The Microsoft Windows Kernel Cryptography Driver (cng.sys) exposes a \Device\CNG device to user-mode programs and supports a variety of IOCTLs with non-trivial input structures. It constitutes a locally accessible attack surface that can be exploited for privilege escalation (such as sandbox escape).; tags | exploit, kernel; systems | windows; advisories | CVE-2020-17087; SHA-256 | dcd9bb74f157ccd45992a6aeffd77f590ad19684a1b4e9e165f72d39d919d700; Download | Favorite | View

Simple College Website 1.0 Code Execution / SQL Injection: Posted Oct 30, 2020; Authored by yunaranyancat; Simple College Website version 1.0 suffers from code execution and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, code execution, sql injection; SHA-256 | e376096cc757722a9a9b5bcf16b207b9a9f8c5a06614c2fffac7d004d52259f8; Download | Favorite | View

Wondershare Dr.Fone 3.0.0 Unquoted Service Path: Posted Oct 30, 2020; Authored by Andrea Intilangelo; Wondershare Dr.Fone version 3.0.0 suffers from an unquoted service path vulnerability.; tags | exploit; systems | windows; advisories | CVE-2020-27992; SHA-256 | 26d7040b3fa2dbb8ced8f3b58bfb1ce674ab78449709550e871465d9e6e67d4f; Download | Favorite | View

Citadel WebCit Session Hijacking: Posted Oct 30, 2020; Authored by Simone Quatrini; Citadel WebCit versions prior to 926 suffer from a session hijacking vulnerability.; tags | exploit; SHA-256 | 98e86cf86cfca145e13b74edda9a1fa5f16f57a911984a2cb0932be7f86782f8; Download | Favorite | View

Agent Tesla Botnet Cross Site Scripting: Posted Oct 30, 2020; Authored by n4pst3r; Agent Tesla Botnet suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | c170c4d163099300f40d75af8844855f539b42a13b5df9177ea5e5f8d09782f0; Download | Favorite | View

DedeCMS 5.8 Cross Site Scripting: Posted Oct 30, 2020; Authored by Noth; DedeCMS version 5.8 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2020-27533; SHA-256 | e9495aef3d8a7055dd27be701c095038e70287427e269abcd76a29e03771c740; Download | Favorite | View

CSE Bookstore 1.0 Cross Site Scripting: Posted Oct 30, 2020; Authored by Vyshnav NK; CSE Bookstore version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 43b48eac38ffbd3edb385a455b2a2eb549a7ebfca5a7d897033f98bd7f828bf3; Download | Favorite | View

Oracle WebLogic Server Remote Code Execution: Posted Oct 29, 2020; Authored by Nguyen Jang; Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.; tags | exploit, remote, code execution; advisories | CVE-2020-14882; SHA-256 | 269998241a3473e130c36a33e8a41a91634ae92b38578c7c0fcfcf81171abc62; Download | Favorite | View

Genexis Platinum-4410 P4410-V2-1.28 Cross Site Request Forgery: Posted Oct 29, 2020; Authored by Mohammed Farhan; Genexis Platinum-4410 version P4410-V2-1.28 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | cd3794a1c45a5196d326376b26aa0d62abf73663d405a3b352ac105735b4a929; Download | Favorite | View

Lot Reservation Management System 1.0 Cross Site Scripting: Posted Oct 29, 2020; Authored by Ankita Pal; Lot Reservation Management System version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 8fb8b5d6d2181fe1523827a17f4627a5c49aa055796b0e3e5ab5f3bc01aa3b1a; Download | Favorite | View

Lot Reservation Management System 1.0 SQL Injection: Posted Oct 29, 2020; Authored by Ankita Pal; Lot Reservation Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.; tags | exploit, remote, sql injection; SHA-256 | 82d342e2bf7eda1f9e1546ed794e9b91d12e1025ccb9a63ba9876f781aa39c9e; Download | Favorite | View

Icewarp WebMail 11.4.5.0 Cross Site Scripting: Posted Oct 29, 2020; Authored by Harun Karakis; Icewarp WebMail version 11.4.5.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2020-27982; SHA-256 | bd4b225bf09ba2d23836eae6d0eef301010ef1a0c956eef8b47d2a92c566bc58; Download | Favorite | View

Mailman 2.1.23 Cross Site Scripting: Posted Oct 29, 2020; Authored by Valerio Alessandroni; Mailman versions 1.x up through 2.1.23 suffer from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2018-5950; SHA-256 | 3acd354767ea65719c08384106b042f59668c91d3587059546459b8bc4c33aa3; Download | Favorite | View

Point Of Sales 1.0 Cross Site Scripting: Posted Oct 29, 2020; Authored by Ankita Pal; Point of Sales version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | b1abcd5d7eb0894c7563e29ca9a278b410be32cd7afa181ae98954a8747fbcb7; Download | Favorite | View

Online Examination System 1.0 Cross Site Scripting: Posted Oct 29, 2020; Authored by Nikhil Kumar; Online Examination System version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | abf23d72c2354792e43130404aef9ac045c0c9a640bd817b3ac572f49386bb3c; Download | Favorite | View

FreeType Load_SBit_Png Heap Buffer Overflow: Posted Oct 28, 2020; Authored by Google Security Research, Glazvunov; FreeType suffers from a heap buffer overflow vulnerability due to integer truncation in Load_SBit_Png.; tags | exploit, overflow; advisories | CVE-2020-15999; SHA-256 | 3e74cc76bab0b12102b081d5d5527d7a09ac96232ae08096c3cc4702512988b9; Download | Favorite | View

Oracle Business Intelligence Enterprise Edition 5.5.0.0.0 / 12.2.1.3.0 / 12.2.1.4.0 LFI: Posted Oct 28, 2020; Authored by Ivo Palazzolo; Oracle Business Intelligence Enterprise Edition versions 5.5.0.0.0, 12.2.1.3.0, and 12.2.1.4.0 suffer from local file inclusion and directory traversal vulnerabilities.; tags | exploit, local, vulnerability, file inclusion; advisories | CVE-2020-14864; SHA-256 | 1ce61cfa5df4fb1911183bd9133f8dd66643cf0945794e668ec5c2a5cb8333b5; Download | Favorite | View

God Kings 0.60.1 Notification Spoofing: Posted Oct 28, 2020; Authored by Julien Ahrens | Site rcesecurity.com; God Kings version 0.60.1 suffers from an improper authorization issue allowing for in-game notification spoofing.; tags | exploit, spoof; advisories | CVE-2020-25204; SHA-256 | 0739b7472a6c8181be50dac6e880dba434850aeb93bca40ab3c19da4c9c1fd8c; Download | Favorite | View

CSE Bookstore 1.0 SQL Injection: Posted Oct 28, 2020; Authored by Alper Basaran; CSE Bookstore version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.; tags | exploit, remote, sql injection; SHA-256 | 22ade0807de506d719e10260a6706f161c23e19eabb44126ae5efb25be5761a3; Download | Favorite | View

Nagios XI 5.7.3 Remote Command Injection: Posted Oct 28, 2020; Authored by Chris Lyne, Matthew Aberegg; Nagios XI version 5.7.3 mibs.php remote command injection exploit.; tags | exploit, remote, php; advisories | CVE-2020-5791; SHA-256 | 6855f4caf30f9e7751d6594a73e43b55ca31b7b9ddebeacdfa7108721c29da09; Download | Favorite | View

Blueman Local Root / Privilege Escalation: Posted Oct 28, 2020; Authored by Vaisha Bernard; Blueman versions prior to 2.1.4 suffer from a local privilege escalation vulnerability that achieves root.; tags | exploit, local, root; advisories | CVE-2020-15238; SHA-256 | ad12e1f52e4713a386324b965386aa1a9020999aa33360fe64eedb3b1faaaecf; Download | Favorite | View

Page 1 of 7 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 295 files
Ubuntu 58 files
Debian 33 files
Gentoo 32 files
LiquidWorm 10 files
Apple 9 files
malvuln 6 files
Adam Gowdiak 4 files
nu11secur1ty 4 files
Ahmet Umit Bayram 4 files

Files

Top Authors In Last 30 Days

Recent News