Showing 1 - 16 of 16

Files from Mr Empy

First Active	2021-11-23
Last Active	2023-06-30

Windows/x64 Add Administrator Shellcode: Posted Jun 30, 2023; Authored by Mr Empy; 326 bytes small Windows/x64 add administrative user dynamic PEB and EDT method shellcode.; tags | shellcode; systems | windows; SHA-256 | ce836880761cfda2559a206f8a4eddd7cafbcbfe3f946cceb11b3d189d914798; Download | Favorite | View

FLEX Denial Of Service: Posted May 15, 2023; Authored by Mr Empy; FLEX versions prior to 1085 Web 1.6.0 suffer from a denial of service vulnerability.; tags | exploit, web, denial of service; advisories | CVE-2022-2591; SHA-256 | ae0a20928dfa334d84c3e4bae14365283943129dafd6b66b0cb30a235a9f223c; Download | Favorite | View

Advanced Host Monitor 12.56 Unquoted Service Path: Posted May 3, 2023; Authored by Mr Empy; Advanced Host Monitor version 12.56 suffers from an unquoted service path vulnerability.; tags | exploit; advisories | CVE-2023-2417; SHA-256 | 345729204fd62ea669a733d90946c008f6634738cd6a29af717aa4eda7454e05; Download | Favorite | View

KODExplorer 4.49 Cross Site Request Forgery / Shell Upload: Posted Apr 21, 2023; Authored by Mr Empy; KODExplorer versions 4.49 and below suffer from cross site request forgery and remote shell upload vulnerabilities.; tags | exploit, remote, shell, vulnerability, csrf; advisories | CVE-2022-4944; SHA-256 | 2c24ede0b6c9ade31db524c30505dfd3c2502c034c6ae0b1c0858a97d424c42d; Download | Favorite | View

SAP Information System 1.0.0 Missing Authorization: Posted Apr 7, 2022; Authored by Mr Empy; SAP Information System version 1.0.0 suffers from an improper authentication vulnerability that allows a malicious user to create an administrative account without needing to authenticate. The POST request is sent to the /SAP_Information_System/controllers/add_admin.php endpoint. The problem occurs due to lack of session verification in the request.; tags | exploit, php, bypass; advisories | CVE-2022-1248; SHA-256 | 81b2d35c550ef4f8db3fd0aac42c15232a707b20d75b5eeabeefd52e176de1e6; Download | Favorite | View

Royale Event Management System 1.0 Cross Site Scripting: Posted Mar 28, 2022; Authored by Mr Empy; Royale Event Management System version 1.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 4ba5bed99918ab869e0641c56b759bcab5b92ee105f33e0a11566bb46af66764; Download | Favorite | View

Royale Event Management System 1.0 Privilege Escalation: Posted Mar 28, 2022; Authored by Mr Empy; Royale Event Management System version 1.0 suffers from a privilege escalation vulnerability by allowing an attacker to register an account as an administrator.; tags | exploit; SHA-256 | 85ce88277012be394e2e9c1726b65a9dd12b2ee36964f37334e9e463bf7d6124; Download | Favorite | View

Microfinance Management System 1.0 Cross Site Scripting: Posted Mar 28, 2022; Authored by Mr Empy; Microfinance Management System version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | c86119833c22b38c0769d848d0d43aa58bfb7a83ddc8391abb36775d17fb128c; Download | Favorite | View

One Church Management System 1.0 SQL Injection: Posted Mar 26, 2022; Authored by Mr Empy; One Church Management System version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 7370b13e702149a98eb34624da7e19119c5e0bd03b3a9128aec5c36bb8b8e281; Download | Favorite | View

Microfinance Management System 1.0 SQL Injection: Posted Mar 26, 2022; Authored by Mr Empy; Microfinance Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities including one that allows for authentication bypass. Original discovery of SQL injection in this version is attributed to Hejap Zairy in March of 2022.; tags | exploit, remote, vulnerability, sql injection; SHA-256 | 343044362efa4a6c2b811fb81e765a9457a7230a718bbb4fa5ab4935f8b979a8; Download | Favorite | View

One Church Management System 1.0 Cross Site Scripting: Posted Mar 26, 2022; Authored by Mr Empy; One Church Management System version 1.0 suffers from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | f821ada63fe52bb30efe2ce38c79ee3cd771ba5c4bd2328f70edc33512ce5e3d; Download | Favorite | View

College Website Management System 1.0 SQL Injection: Posted Mar 15, 2022; Authored by Mr Empy; College Website Management System version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 728950467a26ee6d6511c30824c4ea6b179d8627cc5304a9a0b2a94cfedcc2da; Download | Favorite | View

Automatic Question Paper Generator System 1.0 Cross Site Scripting: Posted Mar 14, 2022; Authored by Mr Empy; Automatic Question Paper Generator System version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 8010a14496f4fb08182b6da205815a644f43386ad9762be33603bba8aa039062; Download | Favorite | View

Automatic Question Paper Generator System 1.0 Insecure Direct Object Reference: Posted Mar 14, 2022; Authored by Mr Empy; Automatic Question Paper Generator System version 1.0 suffers from an insecure direct object reference that allows an attacker to reset the password of other users.; tags | exploit; SHA-256 | 7cfab5761bf9d3af6005cfa1068476496ef37656abf084c7157403f53dec2e13; Download | Favorite | View

FLEX 1080/1085 Web 1.6.0 Information Disclosure: Posted Mar 11, 2022; Authored by Mr Empy; FLEX 1080/1085 Web version 1.6.0 suffers from an information disclosure vulnerability.; tags | exploit, web, info disclosure; SHA-256 | 28ce810269e0bf61bc80264045e9cf5c6db97242b86229546be0407a3d2ebece; Download | Favorite | View

FLEX 1085 Web 1.6.0 HTML Injection: Posted Nov 23, 2021; Authored by Mr Empy; FLEX 1085 Web version 1.6.0 suffers from an html injection vulnerability.; tags | exploit, web; SHA-256 | 2ce54edd9758e61d9f66041bd0461c61b5f7135aa98da49b7508c369fbbd421e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days