Showing 1 - 25 of 194

Files

Packet Storm New Exploits For May, 2017: Posted May 31, 2017; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 193 exploits added to Packet Storm in May, 2017.; tags | exploit; SHA-256 | 26fc166294f508802d9d337041eea7e914e6da3ef5ab631fc1d0144d30fcb790; Download | Favorite | View

Piwigo Facetag 0.0.3 SQL Injection: Posted May 31, 2017; Authored by Touhid M.Shaikh; Piwigo Facetag plugin version 0.0.3 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 3f72fcb8ece0adc26b0ccbdbcfeb68fd34b23af7b91df6f5b9dc2fe3a3041a20; Download | Favorite | View

OV3 Online Administration 3.0 SQL Injection: Posted May 31, 2017; Authored by LiquidWorm | Site zeroscience.mk; OV3 Online Administration version 3.0 suffers from multiple unauthenticated remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; SHA-256 | f4e0ed42c7cdf22bd2a600ec5839995ad5649db85fc9209f988faf25d90d15e1; Download | Favorite | View

OV3 Online Administration 3.0 Authenticated Code Execution: Posted May 31, 2017; Authored by LiquidWorm | Site zeroscience.mk; OV3 Online Administration version 3.0 suffers from an authenticated remote code execution vulnerability.; tags | exploit, remote, code execution; SHA-256 | 9b12192c30c33bbae65bf04c6774a126a919f815212c82f293754d45342d964d; Download | Favorite | View

OV3 Online Administration 3.0 Parameter Traversal Arbitrary File Access: Posted May 31, 2017; Authored by LiquidWorm | Site zeroscience.mk; OV3 Online Administration version 3.0 suffers from a traversal vulnerability that allows for arbitrary file access.; tags | exploit, arbitrary; SHA-256 | a392bf3b481a40ea58d1544ce2ba02f18757959c59d6184fa4e3fed5fdca7576; Download | Favorite | View

WordPress Simple Slideshow Manager 2.2 Cross Site Scripting: Posted May 31, 2017; Authored by DefenseCode, Neven Biruski; WordPress Simple Slideshow Manager plugin versions 2.2 and below suffer from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | de8d084a354a9a22976a85a2b82537644cf6619fed4c57ece740d7a79e011e9d; Download | Favorite | View

ModX CMS Proof Of Concept Shell Upload: Posted May 31, 2017; Authored by Cody Sixteen; This proof of concept code shows how manager functionality can be abused in ModX CMS to upload a shell.; tags | exploit, shell, proof of concept; SHA-256 | 716aad67ffbd1e03ee636500fb005acbd2d5d6ac6569cc879ee02aa5114964b1; Download | Favorite | View

KEMP LoadMaster 7.135.0.13245 XSS / Code Execution: Posted May 31, 2017; Site securiteam.com; KEMP LoadMaster version 7.135.0.13245 suffers from persistent cross site scripting and remote code execution vulnerabilities.; tags | exploit, remote, vulnerability, code execution, xss; SHA-256 | 40a63bf9cbf46ca01a18785c8a019b65341c0efbcd81542b5279e2a98b25ce9c; Download | Favorite | View

IBM Informix Dynamic Server DLL Injection / Code Execution: Posted May 31, 2017; Site securiteam.com; IBM Informix Dynamic Server suffers from dll injection, PHP code injection, and heap buffer overflow vulnerabilities.; tags | exploit, overflow, php, vulnerability; advisories | CVE-2016-2183, CVE-2017-1092; SHA-256 | ac5d0ef0f10cad9d7b9a1524abc605c6815ee7dc5254833cf12c5cdbb411f95b; Download | Favorite | View

Trend Micro Deep Security 6.5 XXE / Code Execution: Posted May 31, 2017; Site securiteam.com; Trend Micro Deep Security version 6.5 suffers from XML external entity injection, local privilege escalation, and remote code execution vulnerabilities.; tags | exploit, remote, local, vulnerability, code execution, xxe; SHA-256 | 7734e239114061512b4ac1ebb3b04a639de98f84e9b038a1c584b34f794fd8ce; Download | Favorite | View

Microsoft MsMpEng Saved Callers Use-After-Free: Posted May 31, 2017; Authored by Google Security Research, lokihardt; Microsoft Windows MsMpEng suffers from a saved caller use-after-free vulnerability.; tags | exploit; systems | windows; advisories | CVE-2017-8541; SHA-256 | eb08a025f45ed24c82f64c6675c1bb35662e65430180b83f4bb679101ca6fdab; Download | Favorite | View

TerraMaster F2-420 NAS TOS 3.0.30 Code Execution: Posted May 31, 2017; Authored by Simone Margaritelli; TerraMaster F2-420 NAS TOS version 3.0.30 suffers from an unauthenticated remote root code execution vulnerability.; tags | exploit, remote, root, code execution; SHA-256 | aec3efc9d8d66284f07bd071e69c63cdec654b577e52326543bbb519412ea907; Download | Favorite | View

Microsoft MsMpEng GC Engine Use-After-Free: Posted May 31, 2017; Authored by Google Security Research, Ian Beer; Microsoft Windows MsMpEng suffers from a remotely exploitable use-after-free vulnerability due to a design issue in the GC engine.; tags | exploit; systems | windows; advisories | CVE-2017-8540; SHA-256 | d279bd01ec69e2a865d0f1da9c97d28f84fd74c96f36a4000b1826c9ad115979; Download | Favorite | View

uc-httpd Local File Inclusion / Traversal: Posted May 31, 2017; Authored by keksec; uc-httpd suffers from local file inclusion and directory traversal vulnerabilities.; tags | exploit, local, vulnerability, file inclusion; SHA-256 | 3a341738a708f989775254401f6a4b13470afc5a93121ecd88281080592e613a; Download | Favorite | View

Intel SSD Toolbox 3.4.3 DLL Hijacking: Posted May 31, 2017; Authored by Stefan Kanthak; Intel SSD Toolbox version 3.4.3 suffers from a dll hijacking vulnerability.; tags | exploit; systems | windows; SHA-256 | bca118f21515d6e1ab924c929e6631ec6f06fdcdc4033d6b440b013abd6b8660; Download | Favorite | View

TiEmu 2.08 Buffer Overflow: Posted May 30, 2017; Authored by Juan Sacco; TiEmu versions 2.08 and below suffer from a stack-based buffer overflow vulnerability.; tags | exploit, overflow; SHA-256 | d7f63f6b109c64688cd679a3e23d920c4c59ac4ddeda65c96a0c42ccd281e329; Download | Favorite | View

Ampache 3.8.2 Cross Site Scripting: Posted May 29, 2017; Authored by hyp3rlinx | Site hyp3rlinx.altervista.org; Ampache version 3.8.2 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 840c447bd9f09e54a8a47c9e4812cbdacc54fed01861bcaa4abf20e47560f145; Download | Favorite | View

CERIO 11nbg 2.4Ghz High Power Wireless Router (pekcmd) Rootshell Backdoors: Posted May 29, 2017; Authored by LiquidWorm | Site zeroscience.mk; CERIO 11nbg 2.4Ghz high power wireless router (pekcmd) has multiple backdoor accounts that yield rootshells.; tags | exploit; SHA-256 | 2134455cc726f1991757dc7605c1ded2b3bb0b429b58b89ceaa328ddd71d91cc; Download | Favorite | View

RealPlayer 18.1.7.344 Memory Corruption: Posted May 29, 2017; Authored by Cody Sixteen; RealPlayer version 18.1.7.344 suffers from memory corruption vulnerabilities.; tags | exploit, vulnerability; SHA-256 | 34735884e57bf041f2ef2d6a51aff4eac035924e94a271abafaa53b0e7f52ed3; Download | Favorite | View

Joomla 3.x Proof Of Concept Shell Upload: Posted May 28, 2017; Authored by Cody Sixteen; This proof of concept code shows how administrator functionality can be abused in Joomla to upload a shell.; tags | exploit, shell, proof of concept, file upload; SHA-256 | 87a728b87ac587ae5b8e6ee3b500ceb0624fe986b8ed1bfd032bd116ff3c79a3; Download | Favorite | View

Microsoft Azure Recovery Services Agent DLL Hijacking: Posted May 28, 2017; Authored by Stefan Kanthak; MARSAgentInstaller.exe, the Microsoft Azure Recovery Services Agent, suffers from a dll hijacking vulnerability.; tags | exploit; systems | windows; SHA-256 | c6cd0ae7d7fa40be499d1ccd81b8951142a42e44c1b2be56de288485c5f93f38; Download | Favorite | View

DokuWiki Proof Of Concept Shell Upload: Posted May 28, 2017; Authored by Cody Sixteen; This proof of concept code shows how administrative functionality can be abused in DokuWiki to upload a shell.; tags | exploit, shell, proof of concept; SHA-256 | 898865a317bcc77f576b4558759df3d84a4cbe466095de9d767b2e148a4909db; Download | Favorite | View

Concrete5 Proof Of Concept Shell Upload: Posted May 28, 2017; Authored by Cody Sixteen; This proof of concept code shows how functionality can be abused in Concrete5 to upload a shell.; tags | exploit, shell, proof of concept; SHA-256 | d3561f919f95a84828625cf5bd9e0f2bdfc5da586f3e00580cf1cd43a8d35f83; Download | Favorite | View

Home FTP Server 1.14.0 Build 176 Directory Traversal: Posted May 28, 2017; Authored by sultan albalawi; Home FTP Server version 1.14.0 build 176 suffers from a directory traversal vulnerability.; tags | exploit; SHA-256 | 4ec85b5f6b839459802f2de18bcb46d5924e124ebf779e0b6ddcc54ce211c6a5; Download | Favorite | View

Octopus Deploy Authenticated Code Execution: Posted May 27, 2017; Authored by James Otten | Site metasploit.com; This Metasploit module can be used to execute a payload on an Octopus Deploy server given valid credentials or an API key. The payload is executed as a powershell script step on the Octopus Deploy server during a deployment.; tags | exploit; SHA-256 | c4855db7df7cb678dd9da32ffe4ac3575beac9fd02dbc2ba53eb304fca0a4ff7; Download | Favorite | View

Page 1 of 8 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

Files

Top Authors In Last 30 Days

Recent News