Showing 1 - 25 of 196

Files

Packet Storm New Exploits For April, 2023: Posted May 1, 2023; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 195 exploits added to Packet Storm in April, 2023.; tags | exploit; SHA-256 | 405e6139b88516b8b8d310fa20e72af135bf83c73084dbec2de5761b29649a61; Download | Favorite | View

ebankIT 6 Denial Of Service: Posted Apr 28, 2023; Authored by Jake Murphy; ebankIT versions prior to 7 suffer from a denial of service vulnerability.; tags | exploit, denial of service; advisories | CVE-2023-30455; SHA-256 | 667e017380dd636cee2eeb00041c4e65ca7a482014707822dbdd9e8236100248; Download | Favorite | View

ebankIT 6 Cross Site Scripting: Posted Apr 28, 2023; Authored by Jake Murphy; ebankIT versions prior to 7 suffer from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2023-30454; SHA-256 | 7931b012672b6d0e59c41ad92350890e7e94c1bf444f21f043305ff4aff364fc; Download | Favorite | View

Aigital Wireless-N Repeater Mini_Router.0.131229 Remote Command Execution: Posted Apr 28, 2023; Authored by Matteo Mandolini; Aigital Wireless-N Repeater version Mini_Router.0.131229 suffers from a remote command execution vulnerability.; tags | exploit, remote; SHA-256 | 97edc222e7315d869c1e02817b6e6c4b4c30b0606e2e14225d9e8d4f74decd73; Download | Favorite | View

CreativeItem Academy Learning Management System 5.14 Cross Site Scripting: Posted Apr 28, 2023; Authored by CraCkEr; CreativeItem Academy Learning Management System version 5.14 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 8dafc026f42d8948de2c7702a63a398acd3ac8d639a74c8228f8c2ee335a2849; Download | Favorite | View

Piwigo 13.5.0 SQL Injection: Posted Apr 28, 2023; Authored by Rodolfo Tavares | Site tempest.com.br; Piwigo version 13.5.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2023-26876; SHA-256 | b4b2bf2bd02e5e6e2f24ce835e44e52d016f467252a6d79a30e013c6f3028a74; Download | Favorite | View

Aigital Wireless-N Repeater Mini_Router.0.131229 Cross Site Scripting: Posted Apr 27, 2023; Authored by Matteo Mandolini; Aigital Wireless-N Repeater version Mini_Router.0.131229 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 94281fa05de5a472379714c6ea982eb1b2cb7c33282f68eb7f5c8014b7e5b07d; Download | Favorite | View

MilleGPG5 5.9.2 Local Privilege Escalation: Posted Apr 27, 2023; Authored by Andrea Intilangelo; MilleGPG5 version 5.9.2 suffers from a local privilege escalation vulnerability due to incorrect access controls.; tags | exploit, local; advisories | CVE-2023-25438; SHA-256 | 170b10b19175444a0ac5f5835ca8fe2bafd6554d1e4df279781d00be46f34722; Download | Favorite | View

ChurchCRM 4.5.3 SQL Injection: Posted Apr 27, 2023; Authored by Iyaad Luqman K; ChurchCRM versions 4.5.3 and below suffer from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2023-24685; SHA-256 | b7e8e8d02c14367cc11b87ca55d24411a5f5c671111953263d92dee6b75436f6; Download | Favorite | View

qdPM 9.1 Cross Site Scripting: Posted Apr 26, 2023; Authored by Or4nG.M4N; qdPM version 9.1 suffers from a cross site scripting vulnerability. Original discovery of cross site scripting in this version is attributed to Mehmet Emiroglu in 2019.; tags | exploit, xss; SHA-256 | 762c3a099f8808825acab911075c4599d14e0932cf84e755a9b0be0b475e2ba4; Download | Favorite | View

PHP Restaurants 1.0 SQL Injection / Cross Site Scripting: Posted Apr 26, 2023; Authored by Or4nG.M4N; PHP Restaurants version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass and a cross site scripting vulnerability. Original discovery of SQL injection in this version is attributed to Nefrit ID in February of 2022.; tags | exploit, remote, php, xss, sql injection; SHA-256 | b586c653e892e2e9c9de6abf89736d9dfbba1db49179b4cfb8634d3641320419; Download | Favorite | View

Mars Stealer 8.3 Account Takeover: Posted Apr 26, 2023; Authored by Skoll; Mars Stealer version 8.3 suffers from an account takeover vulnerability.; tags | exploit; SHA-256 | 859ee6c02a290946712e160d9fa6957451e5ff9d3a1ee48e8c136fe88493850a; Download | Favorite | View

Online Book Store 1.0 SQL Injection: Posted Apr 26, 2023; Authored by Or4nG.M4N; Online Book Store version 1.0 suffers from a remote SQL injection vulnerability. This is a variant of the original vulnerability discovered in August of 2020 by Moaaz Taha.; tags | exploit, remote, sql injection; SHA-256 | 28d8290923669351721291a134ab393064c7cf596e562dab8f119516f8343a3a; Download | Favorite | View

PaperCut NG/MG 22.0.4 Authentication Bypass: Posted Apr 26, 2023; Authored by MaanVader; PaperCut NG/MG version 22.0.4 suffers from an authentication bypass vulnerability.; tags | exploit, bypass; advisories | CVE-2023-27350; SHA-256 | 95117b4ea6d64465f3bdf0cbe0e494cb29917bc6739c9247641bc9a4924cf832; Download | Favorite | View

Sophos Web Appliance 4.3.10.4 Command Injection: Posted Apr 26, 2023; Authored by Behnam Abasi Vanda; Sophos Web Appliance version 4.3.10.4 suffers from a pre-authentication command injection vulnerability.; tags | exploit, web; advisories | CVE-2023-1671; SHA-256 | 8e4b0c81eb06a2dfc87e1b36053af0e80c9350868950da3bba179b091cdd01f4; Download | Favorite | View

Old Age Home Management System 1.0 Cross Site Scripting / Missing Authentication: Posted Apr 26, 2023; Authored by Or4nG.M4N; Old Age Home Management System version 1.0 suffers from persistent cross site scripting and missing authentication vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 406e52ea68537bf0e17545568e2ad1202de89fc3b6233b9062e97c466bc89069; Download | Favorite | View

OCS Inventory NG 2.3.0.0 Unquoted Service Path: Posted Apr 26, 2023; Authored by msd0pe; OCS Inventory NG version 2.3.0.0 suffers from an unquoted service path vulnerability.; tags | exploit; SHA-256 | 5d958160589da7769707bc50d595f982a1af8f2002d91fa29fe3fd8c2db72f1a; Download | Favorite | View

Wondershare Filmora 12.2.9.2233 Unquoted Service Path: Posted Apr 26, 2023; Authored by msd0pe; Wondershare Filmora version 12.2.9.2233 suffers from an unquoted service path vulnerability.; tags | exploit; SHA-256 | 7ecc15ec912533d8da830a0bf77da0788e8fa6f2f82a71a6565f2289ef11bc3d; Download | Favorite | View

Arcsoft PhotoStudio 6.0.0.172 Unquoted Service Path: Posted Apr 26, 2023; Authored by msd0pe; Arcsoft PhotoStudio version 6.0.0.172 suffers from an unquoted service path vulnerability.; tags | exploit; SHA-256 | 8fe8d5b843b21e287299a2d20142df45859d8f18d0f6143c0c77f5de34bbf5b0; Download | Favorite | View

WordPress Shield Security 17.0.17 Cross Site Scripting / Missing Authorization: Posted Apr 25, 2023; Authored by Ramuel Gall | Site wordfence.com; WordPress Shield Security Smart Bot Blocking and Intrusion Prevention plugin versions 17.0.17 and below suffer from cross site scripting and missing authorization vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2023-0992, CVE-2023-0993; SHA-256 | 358b29ae547e818a56ed1efd1c28b8c8cf64813a62a0dcf419a7cb3364a65748; Download | Favorite | View

PaperCut MF/NG Authentication Bypass / Remote Code Execution: Posted Apr 25, 2023; Authored by James Horseman, Zach Hanley, Horizon3 Attack Team | Site github.com; PaperCut MF/NG proof of concept exploit that uses an authentication bypass vulnerability chained with abuse of built-in scripting functionality to execute code.; tags | exploit, proof of concept, bypass; advisories | CVE-2023-27350; SHA-256 | e01888c501e68b969faf6f9f0762260b9738e28e6c41609aee12cd8f6079824b; Download | Favorite | View

Telit Cinterion IoT Traversal / Escalation / Bypass / Heap Overflow: Posted Apr 24, 2023; Authored by Adam Gowdiak | Site security-explorations.com; This is an extension of research on the original findings of CVE-2020-15858 in Telit Cinterion IoT devices. Numerous issues have been discovered including path traversal, Java privilege elevation, AT commands whitelist / blacklist bypass, a heap overflow in fragmented SMS, and more.; tags | exploit, java, overflow; advisories | CVE-2020-15858; SHA-256 | abb8c4529f9d5d619b36098b1423bf2e497fc0bebd5da0e83e1d5c9a49803636; Download | Favorite | View

Multi-Vendor Online Groceries Management System 1.0 Remote Code Execution: Posted Apr 24, 2023; Authored by Or4nG.M4N; Multi-Vendor Online Groceries Management System version 1.0 suffers from a remote code execution vulnerability.; tags | exploit, remote, code execution; SHA-256 | bdcafa353a1a94b8b20f6c3dd463fee333a45f55015d6532275bbf4975fc15a0; Download | Favorite | View

Chitor CMS 1.1.2 SQL Injection: Posted Apr 24, 2023; Authored by CraCkEr; Chitor CMS version 1.1.2 suffers from a remote SQL injection vulnerability. Original discovery of this finding is attributed to msd0pe in April of 2023.; tags | exploit, remote, sql injection; SHA-256 | 8a4432c3e3e129e027cd240c72b5f12dd0876dfcfe5f4f263825c84c75e260d1; Download | Favorite | View

Nokia OneNDS 20.9 Insecure Permissions / Privilege Escalation: Posted Apr 21, 2023; Authored by Giacomo Sighinolfi; Nokia OneNDS 20.9 has loose sudo permissions that can allow users to escalate privileges.; tags | exploit; advisories | CVE-2022-30759; SHA-256 | 039f9568152fd31aa5f779ebb2810e14455f1fa0c4f2d93d530677863406e264; Download | Favorite | View

Page 1 of 8 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 228 files
Ubuntu 55 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Google Security Research 6 files
Apple 6 files
Milad Karimi 5 files
Yevhenii Butenko 4 files

Files

Top Authors In Last 30 Days

Recent News