Belkin NetCam F7D7601 suffers from remote command execution, network fingerprinting, and hard-coded password vulnerabilities.
4bd2b5bb8c5fc1891523e53b3179f3ae7e600feacbf458153657ff0e4b2e1524
FTPGetter version 5.89.0.85 SEH buffer overflow exploit.
4fa92d2f4bc97359cff9f04b584dd37f0cfcc11abec7d9380c43260b85836ec4
Easy File Sharing Web Server version 7.2 SEH buffer overflow PassWD exploit that spawns a reverse shell.
855626ab8af8fc4fef34a5da9dbdf4eba93dbb924d810fcb1456e7f629fe805e
This template covers IE8/9/10, and uses the user-agent HTTP header to detect the browser version. Please note IE8 and newer may emulate an older IE version in compatibility mode, in that case the module won't be able to detect the browser correctly. This is an example Metasploit module to be used for exploit development.
8143adacc68c1de409f678efae5e4cfb85f69d420b14992c225c72b7072d3163
This exploit module illustrates how a vulnerability could be exploited in an TCP server that has a parsing bug. This is an example Metasploit module to be used for exploit development.
7080c0e0772da0f83c51df64e3f6e1cc4c7d74a7c1c2265e80261599694e52d2
iSmartAlarm CubeOne suffers from a remote command execution vulnerability that allows disabling the alarm and setting it off.
4430cd29b879fd0975002c47989434a03744c202fb70efe80eea72dbabd51292
Cisco DDR2200 and 2201v1 ADSL2+ Residential Gateway devices suffer from insecure direct object reference vulnerabilities that allow for remote code execution as well as a path traversal issue.
7653bf6d69854327291ba03c42436923b5ed5b87b1ea493bea7feccbee2bd185
WDTV Live suffers from a remote SMP password reset vulnerability.
adf823f3fce3f792bea062367944f3a2c224fff3b6c5a0a5c1b4888072593ee5
Counter Strike: Condition Zero .BSP map file code execution exploit.
1aaae42dcf775bae0172248b3082263a9ac732e19aa248d45bc4c3b2e68c7ed7
Firefox version 50.0.1 full ASLR and DEP bypass exploit using ASM.JS JIT-spray.
86cecd285d657c050c53a7f7a6a47081e1bc4db32994a106122cf7a3a0d39213
Apache Struts 2.3.x Showcase remote code execution proof of concept exploit.
cd6e613e04931295e1cb05abb73544d2cbf655028faed41cdb86dc4dc0492257
Dasan Networks GPON ONT WiFi Router H64X Series suffers from a system configuration download vulnerability.
a627da9c1df890eec3dbf9c40fe603019d72bd3fa530fe22b040805a1417bfde
Orion Elite Hidden IP Browser Pro versions 1.0 through 7.9 have insecure versions of Tor and OpenSSL included and also suffer from man-in-the-middle vulnerabilities.
ea153ef267f8201a7355e376eb43cd29dc8fbd90d5353fe0f4d060beb44b2f07
Dasan Networks GPON ONT WiFi Router H64X Series suffers from a privilege escalation vulnerability.
77c3e76e1b2715bfa3f6e6f46442a7d80501cb82f492ae6e10822b2c464e5804
Vodafone Italia's webmail system suffers from a cross site scripting vulnerability that can be leveraged via an incoming email.
73bb1928c9a0788d7c25a40471f33fa8d63be2abed6dbec656c3c0643eb1aa01
Dasan Networks GPON ONT WiFi Router H64X Series suffers from a cross site request forgery vulnerability.
888bec27cedcd3bccba124b1839b5ff363df148add2268e27c1b8b6cd55da46c
Dasan Networks GPON ONT WiFi Router H64X Series does not properly perform authentication and authorization, allowing it to be bypassed through cookie manipulation. Setting the Cookie 'Grant' with value 1 (user) or 2 (admin) will bypass security controls in place enabling the attacker to take full control of the device management interface.
c3cd6665c308dda2cda1ed68cf0ca4c303b2082244008416fbc1d832bb0787f1
Sitecore CMS version 8.2 suffers from cross site scripting and file disclosure vulnerabilities.
745ca93afd64f6a67937abb2b76921c146c8517548a8b85d941d4e9385ae832d
PyCharm 2-0 / 2017 suffers from a command-line buffer overflow vulnerability.
2e7002255ec35d2edf52b454d5e45882df5d1f17ed608219757d14789cf55e66
iSmartAlarm Backend suffers from a server-side request forgery vulnerability.
da804f19d05a661b73dd051be5f3a1581b11b2858fec1fe0e6c21ddf2edf9c84
AGFEO Smart Home ES 5xx / 6xx versions 1.9b and 1.10 suffers from authentication bypass, cross site scripting, and hard-coded private key vulnerabilities.
b2200472eb599e2f158bdd515a5c8503aba40b07de1704b509cb4ab9af230c5d
IBM Informix DB-Access utility is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. The vulnerability is triggered by providing an overly long file parameter value inside a LOAD statement, which is used to insert data from an operating-system file into an existing table or view. Version 12.10 is affected.
7242df27de9624e0c0b57ed3ef055069c110005a841ad63815fe50406c581c74
ObjectPlanet Opinio versions 7.6.3 and below suffer from a cross site scripting vulnerability.
1ec0215ae742091f21c37eeb17032a074dc5191ea8941b52c6a34d5e36556cda
DataTaker DT80 dEX version 1.50.012 suffers from an information disclosure vulnerability.
048568e8d903730e1c7a71509f06b027e564960e8dac311671ebcf6ca565d868
RaidenHTTPD version 2.0.44 suffers from a cross site scripting vulnerability via the user-agent header.
4e5fb1d12824277e2c16c01b1e20fc64700a011ff335cb5fd70e538478517c43