Exploit the possiblities
Showing 1 - 25 of 40,237 RSS Feed

Exploit Files

CentOS Web Panel 0.9.8.12 Cross Site Scripting
Posted Jan 20, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

CentOS Web Panel version 0.9.8.12 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, web, vulnerability, xss
systems | linux, centos
MD5 | d4e1642698943201c71ed84ba0b37e4e
Shopware 5.2.5 / 5.3 Cross Site Scripting
Posted Jan 20, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Shopware versions 5.2.5 and 5.3 suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 5f5351510b7d98d6bccbea93109fa0c5
Agora Project 3.3.5 Cross Site Scripting
Posted Jan 20, 2018
Authored by indoushka

Agora Project version 3.3.5 suffers from a cross site scripting vulnerability via file uploads.

tags | exploit, xss, file upload
MD5 | 19ec3f68485f461850f2545ca0ce2717
CentOS Web Panel 0.9.8.12 Cross Site Scripting
Posted Jan 19, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

CentOS Web Panel version 0.9.8.12 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, web, vulnerability, xss
systems | linux, centos
MD5 | 429a78b20422fdffc9614f2158726d5d
Photo Vault 1.2 Brute Forcing Issue
Posted Jan 19, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Photo Vault version 1.2 fails to rate limit authentication attempts allowing for brute force attacks.

tags | exploit
MD5 | 8f0929c5a09fa035ddab2b1019c9551a
Simple ASC CMS 1.2 Database Disclosure
Posted Jan 19, 2018
Authored by indoushka

Simple ASC CMS version 1.2 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 4e75565f6e8c4a004211ca64f0edf078
Online Hotel Booking System Pro 1.3 SQL Injection
Posted Jan 19, 2018
Authored by indoushka

Online Hotel Booking System Pro version 1.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 71ae79c1a63d41c4233e62f577d93985
Toplist 2 SQL Injection / Backdoor Account / Shell Upload
Posted Jan 19, 2018
Authored by indoushka

Toplist 2 suffers from remote shell upload, backdoor account, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection
MD5 | 08a6531a217a4c307ef90f734313edb8
Vanilla 2.0.18.8 Local File Inclusion
Posted Jan 19, 2018
Authored by indoushka

Vanilla version 2.0.18.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 9b04ce03372064ca883b9a945d9d30d5
Primefaces 5.x Remote Code Execution
Posted Jan 18, 2018
Authored by Bjoern Schuette | Site metasploit.com

This Metasploit module exploits an expression language remote code execution flaw in the Primefaces JSF framework. Primefaces versions prior to 5.2.21, 5.3.8 or 6.0 are vulnerable to a padding oracle attack, due to the use of weak crypto and default encryption password and salt.

tags | exploit, remote, crypto, code execution
advisories | CVE-2017-1000486
MD5 | a290d8a9cb6552111c22dc331da1c4dc
glibc getcwd() Local Privilege Escalation
Posted Jan 18, 2018
Authored by halfdog

glibc suffers from a getcwd() local privilege escalation vulnerability.

tags | exploit, local
advisories | CVE-2018-1000001
MD5 | e79c3ac4621ad3e8b1aa9ccefe2bfd86
GitStack 2.3.10 Remote Code Execution
Posted Jan 18, 2018
Authored by Kacper Szurek

GitStack version 2.3.10 suffers from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 6a2c421c9fca302ac949e344854f3553
Oracle JDeveloper IDE Directory Traversal
Posted Jan 18, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Oracle JDeveloper IDE suffers from a directory traversal vulnerability.

tags | exploit
advisories | CVE-2017-10273
MD5 | 547bcfa070ea60b42a0ee5d2efd530ed
Smiths Medical Medfusion 4000 DHCP Denial Of Service
Posted Jan 18, 2018
Authored by Scott Gayou

Smiths Medical Medfusion 4000 suffers from a dhcp related denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-12718
MD5 | 4c2f6fcef898c910b2256c9c3a7a1f4c
macOS 10.13 Kernel Memory Disclosure
Posted Jan 18, 2018
Authored by Google Security Research, ianbeer

macOS version 10.13 suffers from a kernel memory disclosure due to lack of bounds checking in AppleIntelCapriController::getDisplayPipeCapability.

tags | exploit, kernel
advisories | CVE-2017-13878
MD5 | 64dd02ddcdb2646e983a2c6616d02c4a
Microsoft Edge Chakra AsmJSByteCodeGenerator::EmitCall Call Handling
Posted Jan 18, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra suffers from an AsmJSByteCodeGenerator::EmitCall call handling bug.

tags | exploit
advisories | CVE-2018-0780
MD5 | 1c7860ec256452b1d95a1e70975c4a35
Microsoft Edge Chakra JIT Loop Analysis Bug
Posted Jan 18, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT suffers from a loop analysis bug that can perform an out-of-bounds write.

tags | exploit
advisories | CVE-2018-0777
MD5 | ff08702b950d0869cae0d738a90cb6ac
Microsoft Edge Chakra JIT Stack-To-Heap Copy Bug
Posted Jan 18, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT suffers from a stack-to-heap copy bug.

tags | exploit
advisories | CVE-2018-0776
MD5 | 380e5767238c8dcf3ac7de7f26e6998c
Microsoft Edge Chakra Deferred Parsing
Posted Jan 18, 2018
Authored by Google Security Research, lokihardt

Microsoft Egde Chakra deferred parsing makes wrong scopes.

tags | exploit
advisories | CVE-2018-0775
MD5 | 8ebf986754c648c945c174f53fac15d2
Docker Sudo Privilege Escalation
Posted Jan 18, 2018
Authored by Pype

If a user has sudo permissions to /usr/bin/docker, it can be leveraged to escalated privileges to root.

tags | exploit, root
MD5 | 52de940cff9cf249313f9f59cec9e950
SugarCRM 3.5.1 Cross Site Scripting
Posted Jan 17, 2018
Authored by Guilherme Assmann

SugarCRM version 3.5.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-5715
MD5 | 9a54cf199d165391fec684154413be11
Microsoft Edge Chakra Incorrect Scope Handling
Posted Jan 17, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra suffers from an incorrect scope handling vulnerability.

tags | exploit
advisories | CVE-2018-0774
MD5 | f9aa042a0c635706708db62651d0068a
Microsoft Edge Chakra JavascriptGeneratorFunction::GetPropertyBuiltIns Exposure
Posted Jan 17, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra suffers from a JavascriptGeneratorFunction::GetPropertyBuiltIns exposure of scriptFunction.

tags | exploit
advisories | CVE-2017-11914
MD5 | e8df0b0b2e1f9ed2b06276033e5b5645
Microsoft Edge Chakra JIT Incorrect Bounds Calculation
Posted Jan 17, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT suffers from an out-of-bounds write vulnerability.

tags | exploit
advisories | CVE-2018-0769
MD5 | cd3a0e785ae920d4c8bf5b53a4cc3e8f
Belkin N600DB Command Injection / Backdoor
Posted Jan 17, 2018
Authored by Wadeek

Belkin N600DB suffers from password disclosure, a backdoor shell, server-side request forgery, and command injection vulnerabilities.

tags | exploit, shell, vulnerability
MD5 | 546c8e10d2e3c9868c52f837366e622c
Page 1 of 1,610
Back12345Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

January 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    2 Files
  • 2
    Jan 2nd
    13 Files
  • 3
    Jan 3rd
    16 Files
  • 4
    Jan 4th
    39 Files
  • 5
    Jan 5th
    26 Files
  • 6
    Jan 6th
    40 Files
  • 7
    Jan 7th
    2 Files
  • 8
    Jan 8th
    16 Files
  • 9
    Jan 9th
    25 Files
  • 10
    Jan 10th
    28 Files
  • 11
    Jan 11th
    44 Files
  • 12
    Jan 12th
    32 Files
  • 13
    Jan 13th
    2 Files
  • 14
    Jan 14th
    4 Files
  • 15
    Jan 15th
    31 Files
  • 16
    Jan 16th
    15 Files
  • 17
    Jan 17th
    16 Files
  • 18
    Jan 18th
    24 Files
  • 19
    Jan 19th
    15 Files
  • 20
    Jan 20th
    5 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close