Showing 1 - 15 of 15

Files from Hodorsec

ERPNext 12.14.0 SQL Injection: Posted Jan 22, 2021; Authored by Hodorsec; ERPNext version 12.14.0 suffers from an authenticated remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | 152e5fd7d5acb8bc4b494946522659f5; Download | Favorite | View

LibreNMS 1.46 SQL Injection: Posted Dec 14, 2020; Authored by Hodorsec; LibreNMS version 1.46 suffers from an authenticated remote SQL injection vulnerability in the MAC Account Graph. Original discovery of SQL injection in this version is attributed to Punt in May of 2020.; tags | exploit, remote, sql injection; MD5 | f2ded99e14c6ef8d7a6b3197a0529fee; Download | Favorite | View

ManageEngine Applications Manager Authenticated Remote Code Execution: Posted Sep 4, 2020; Authored by Hodorsec; ManageEngine Applications Manager authenticated remote code execution exploit that leverages the newInstance() and loadClass() methods being used by the "WeblogicReference", when attempting a Credential Test for a new Monitor. Versions below 14720 are affected.; tags | exploit, remote, code execution; advisories | CVE-2020-14008; MD5 | c91e6651f35b95c2f31437f3f8bc1b36; Download | Favorite | View

ATutor LMS 2.2.4 Weak Password Reset Hash: Posted May 5, 2020; Authored by Hodorsec; ATutor LMS version 2.2.4 suffers from having a weak password reset hash.; tags | exploit; MD5 | 63f346a37c58f06e15e7f77022dc02bf; Download | Favorite | View

AIDA64 Engineer 6.20.5300 Buffer Overflow: Posted Apr 2, 2020; Authored by Hodorsec; AIDA64 Engineer version 6.20.5300 Report File filename SEH buffer overflow exploit.; tags | exploit, overflow; MD5 | 6590017886deb392714463804d9171f6; Download | Favorite | View

10Strike LANState 9.32 Host Check hostname Buffer Overflow: Posted Apr 1, 2020; Authored by Hodorsec; 10Strike LANState version 9.32 on x86 Host Check hostname SEH buffer overflow exploit.; tags | exploit, overflow, x86; MD5 | 7f1eb06b56c5aa79bd94057284b6f222; Download | Favorite | View

10-Strike Network Inventory Explorer 9.03 Buffer Overflow: Posted Mar 30, 2020; Authored by Hodorsec; 10-Strike Network Inventory Explorer version 9.03 Read-from-file buffer overflow exploit that uses SEH and ROP.; tags | exploit, overflow; MD5 | 4149e3e557d63c733212a574642fceed; Download | Favorite | View

FreeCommander XE 2020 Pathname Buffer Overflow: Posted Mar 28, 2020; Authored by Hodorsec; FreeCommander XE 2020 Build 810a 32-bit suffers from a pathname buffer overflow vulnerability.; tags | exploit, overflow; MD5 | 6266ab0960d59612e8b66b9812e41dd0; Download | Favorite | View

Yachtcontrol 2019-10-06 Remote Code Execution: Posted Dec 6, 2019; Authored by Hodorsec; Yachtcontrol versions dated 2019-10-06 suffer from an unauthenticated remote code execution vulnerability.; tags | exploit, remote, code execution; advisories | CVE-2019-17270; MD5 | ca74a5272a744f07e91607ab0200e00a; Download | Favorite | View

Core FTP 2.0 Build 653 PBSZ Denial Of Service: Posted Mar 12, 2019; Authored by Hodorsec; Core FTP version 2.0 build 653 suffers from a PBSZ command denial of service vulnerability.; tags | exploit, denial of service; MD5 | 1c1de1481d4cb8235b7bfeb45179b294; Download | Favorite | View

Anyburn 4.x x86 Buffer Overflow: Posted Mar 7, 2019; Authored by Hodorsec; Anyburn version 4.3 x86 "Copy disc to image file" buffer overflow SEH unicode exploit.; tags | exploit, overflow, x86; MD5 | 8e92d805dee2a379fca84a0aa0ea1dda; Download | Favorite | View

RealTerm Serial Terminal 2.0.0.70 Echo Port Buffer Overflow: Posted Mar 6, 2019; Authored by Matteo Malvica, Hodorsec, Alejandra Sanchez; RealTerm Serial Terminal version 2.0.0.70 suffers from an echo port buffer overflow vulnerability. Modifications to the original proof of concept include the fact that it uses a larger payload size for shellcode due to different jump offsets and filters the bad character 0x3a as this is the character for port which causes an error ":".; tags | exploit, overflow, shellcode, proof of concept; MD5 | 9b31bdb38b680b223198f700a17dcfa6; Download | Favorite | View

Hodorsec Linux Binary Encryption Utility: Posted Jan 10, 2019; Authored by Hodorsec; This archive contains a Linux x86/x64 payload AES-128 CBC encrypter and payload decrypter/runner.; tags | tool, x86; systems | linux, unix; MD5 | 5a5ac347d6ff823061529155881b38a8; Download | Favorite | View

Ricoh myPrint Hardcoded Credentials / Information Disclosure: Posted Nov 20, 2018; Authored by Hodorsec; Ricoh myPrint suffers from hardcoded application credential and information disclosure vulnerabilities. The myPrint windows client version 2.9.2.4 and myPrint android client version 2.2.7 are both affected.; tags | exploit, vulnerability, info disclosure; systems | windows; advisories | CVE-2018-18006; MD5 | 4d051bae92eaadb5058aaec46aca59d2; Download | Favorite | View

Easy File Sharing Web Server 6.9 Buffer Overflow: Posted Sep 11, 2018; Authored by Hodorsec; Easy File Sharing Web Server version 6.9 POST msg.ghp UserID remote buffer overflow SEH exploit with DEP bypass and ROP.; tags | exploit, remote, web, overflow; MD5 | b31f7c399d1e719caf9218f318385547; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days