Gr8 Tutorial Script suffers from a remote SQL injection vulnerability.
8b6a6007ea8937aa9c224d330e0df5f987f8002cc7f690afbea6394d7f18588e
Sparrow Web Server suffers from a directory traversal vulnerability.
bca941889016395fc4ea26b1d05b3ad0300e1155974bdfb8ba314432a81335ea
Gr8 Gallery Script suffers from a remote SQL injection vulnerability.
3b4d29b9be17ecd5e950581d8da3d980189292ab4e1cfe9e2316095a6a287e04
The NETGEAR WNR2000 router has a buffer overflow vulnerability in the hidden_lang_avi parameter. In order to exploit it, it is necessary to guess the value of a certain timestamp which is in the configuration of the router. An authenticated attacker can simply fetch this from a page, but an unauthenticated attacker has to brute force it. Brute-forcing the timestamp token might take a few minutes, a few hours, or days, but it is guaranteed that it can be brute-forced. This Metasploit module implements both modes, and it works very reliably. It has been tested with the WNR2000v5, firmware versions 1.0.0.34 and 1.0.0.18. It should also work with hardware revisions v4 and v3, but this has not been tested - with these routers it might be necessary to adjust the LibcBase variable as well as the gadget addresses.
9a070ce74f71e2662326a2f24f0e886e3c26c8510e555c2e622810bbc7f545ed
The LastPass domain regex does not handle data and other pseudo-url schemes.
c0a8fe296712f524a32da5c517945525e5ab13ee7092ff234e231f8b07fc44f8
LastPass had an issue with websiteConnector.js content script allows proxying internal RPC commands. The fix appears to not work on FireFox.
27d63cb0f60259717435f5611911b967a0c0559c6c2c10dfabac06098d0685e1
This Metasploit module exploits an command injection vulnerability in Logsign. By exploiting this vulnerability, unauthenticated users can execute arbitrary code under the root user. Logsign has a publicly accessible endpoint. That endpoint takes a user input and then use it during operating system command execution without proper validation. This Metasploit module was tested against 4.4.2 and 4.4.137 versions.
514278ac234d24bce62d18b93726fb1600a3b3355c201fea7091430ea41f75e7
QNAP QTS versions prior to 4.2.4 suffer from a sensitive data exposure vulnerability that allows for privilege escalation.
3d248b7122dde92c3c6cff49c15a639517a9a2504a008042fa15212812bc6b27
APNGDis version 2.8 suffers from multiple overflow vulnerabilities.
5a19a1e4e31c23da558e2d90f1f4413bdf2655fa2b5f9dd5c30d65e457f6cf8a
Joomla FocalPoint component version 1.2.3 suffers from a remote SQL injection vulnerability.
419f784ff8442434b7fa865ec9cef0df98b08ae1c02fbf2bd8df38f7db6e6502
Joomla Modern Booking component version 1.0 suffers from a remote SQL injection vulnerability.
006e913445e924a197da572f04e6f6c0d0b601aaa1321e1129e402542bcaba08
SpyCamLizard SC Liz version 1.230 remote buffer overflow exploit.
7938a0efc48b2f7f0a9e2c43e3fbf274467f37d1710f4630bee19ddb1dd55215
onArcade version 2.4.x suffers from a local file disclosure vulnerability.
a313d87067397f6047c1d3c3d831ff7a33e56265508ee0f36b5c7fe87bd6d51b
D-Link DSL-2640B remote DNS changing exploit.
b82d3dc13d1e33a86fea85f7796a9cb127096e83601da1cf601b180a867a6c29
Flippa Clone suffers from a remote SQL injection vulnerability.
d6dd20b68e90bded5f7799e8e0df17012400a8847e305b9036d43feee93a232a
Bonza Digital Cart Script version 1 suffers from a remote SQL injection vulnerability.
48603fce8c4fe0b8afb1aaf706ef92565762029c3b126cafcb957b6793f449bd
Omegle Clone version 2.0 suffers from a remote SQL injection vulnerability.
97033a8a798b81482880293a4b5f1d6cc9ac04b8a4e2b1ccfe9ef1c780f20c48
Membership Site Script version 1 suffers from a remote SQL injection vulnerability.
b0a221aa6057753730df3ce5e09a7341b8c05c4f125c3306271aef9260cfcefb
This Metasploit module will setup an SMTP server expecting a connection from SysGauge 1.5.18 via its SMTP server validation. The module sends a malicious response along in the 220 service ready response and exploits the client, resulting in an unprivileged shell.
4baa08befe8f7e2bbccdcae8c675d729f0222bafa9e6eadc97b5a044bd54592c
Solare Datensysteme GmbH Solar-Log versions 250, 300, 500, 800e, 1000, 1000 PM+, 1200, and 2000 suffer from cross site request forgery, cross site scripting, file upload, information disclosure, and denial of service vulnerabilities.
2d4ea59b67a6e2e050f10517f0354018d7194b9a69fe3ed5b13cfef0aeab7eeb
Disk Sorter Enterprise version 9.5.12 GET buffer overflow SEH exploit.
9bcbe319bc61fad1c46803139c12a81d49aef3ac226ad042a33e2cd8d25b179c
Portable OpenSSH supports running on Cygwin. However, the SFTP client only filters out forward slashes (in do_lsreaddir()) and the directory names "." and ".." (in download_dir_internal()). On Windows, including in Cygwin, backslashes can a lso be used for directory traversal.
653080ead75f1a09ebf8449dc6271901603c629ff1cecc6eeb9ae0c1a78ce3da
websiteConnector.js content script in LastPass allows for proxying of internal RPC commands.
c01b74d3513ae36c123c2c3bd27e5429944df7d35416e37f930ce4fb1b95e591
Joomla Extra Search component version 2.2.8 suffers from a remote SQL injection vulnerability.
5be2f98138805bf2cc9f1d2224fed71b68edd376c41d767b3a824ec1ae04d21d
GLink Word Link Script version 1.2.3 suffers from a remote SQL injection vulnerability.
747e4c63b964c0b2248900a592b92907cc45965bc58ebbc6f8bf03f0e3e21876