Showing 1 - 25 of 41,051

Exploit Files

MySQL Smart Reports 1.0 Cross Site Scripting / SQL Injection: Posted May 23, 2018; Authored by Ozkan Mustafa Akkus; MySQL Smart Reports version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; MD5 | 1deb436274ece79190d4578f0b25e4ab; Download | Favorite | Comments (0)

MySQL Blob Uploader 1.7 Cross Site Scripting / SQL Injection: Posted May 23, 2018; Authored by Ozkan Mustafa Akkus; MySQL Blob Uploader version 1.7 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; MD5 | 0df31f3773a11ec980d7bbd206341fd6; Download | Favorite | Comments (0)

Epic Games Launcher 7.9.4-4058369 Insecure File Permissions: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Epic Games Launcher version 7.9.4-4058369 suffers from an insecure file permissions vulnerability.; tags | exploit; MD5 | 7fa8529b91bb7a5f82012456098247bf; Download | Favorite | Comments (0)

Epic Games Fortnite 4.2-CL-4072250 Insecure File Permissions: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Epic Games Fortnite version 4.2-CL-4072250 suffers from an insecure file permissions vulnerability.; tags | exploit; MD5 | 53874ec8a31c983f1f18e22c35e62744; Download | Favorite | Comments (0)

Procps-ng Audit Report: Posted May 22, 2018; Site qualys.com; Qualys performed an extensive audit of procps-ng. They discovered hundreds of bugs and vulnerabilities.; tags | exploit, vulnerability; advisories | CVE-2018-1120, CVE-2018-1121, CVE-2018-1122, CVE-2018-1123, CVE-2018-1124, CVE-2018-1125, CVE-2018-1126; MD5 | f1ccc03a8fc209831a2c1cce59c6e9f9; Download | Favorite | Comments (0)

Feedy RSS News Ticker 2.0 SQL Injection: Posted May 22, 2018; Authored by Ozkan Mustafa Akkus; Feedy RSS News Ticker version 2.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | a1f291cb95d90b615a7aab97be1c398d; Download | Favorite | Comments (0)

QNAP PhotoStation Cross Site Scripting: Posted May 22, 2018; Authored by SaeedReza Zamanian; QNAP PhotoStation versions prior to 5.x suffer from a cross site scripting vulnerability.; tags | exploit, xss; MD5 | 05f5de9d0cbcfeb0b09d981b2c4c7cc6; Download | Favorite | Comments (0)

EasyService Billing 1.0 SQL Injection / Cross Site Scripting: Posted May 22, 2018; Authored by Ozkan Mustafa Akkus; EasyService Billing version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection; MD5 | aceaf6b54180e7b1e5aa621e5fe14e10; Download | Favorite | Comments (0)

FTPShell Server 6.80 Local Buffer Overflow: Posted May 22, 2018; Authored by Hashim Jawad; FTPShell Server version 6.80 local buffer overflow exploit with SafeSEH bypass.; tags | exploit, overflow, local; MD5 | 40cfd7e488e4d9cdb73978bb8844d4f1; Download | Favorite | Comments (0)

Teradek VidiU Pro 3.0.3 (snapshot.cgi) Stream Disclosure: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Teradek VidiU Pro version 3.0.3 suffers from a stream disclosure vulnerability in snapshot.cgi.; tags | exploit, cgi; MD5 | 85f74b0bec8310d4a27675d34c91fdcf; Download | Favorite | Comments (0)

Teradek Slice 7.3.15 (snapshot.cgi) Stream Disclosure: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Teradek Slice version 7.3.15 suffers from a stream disclosure vulnerability in snapshot.cgi.; tags | exploit, cgi; MD5 | 0cf6b30e0f45999cc94c85ea740b66ed; Download | Favorite | Comments (0)

Teradek T-RAX 7.3.2 (snapshot.cgi) Stream Disclosure: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Teradek T-RAX version 7.3.2 suffers from a stream disclosure vulnerability in snapshot.cgi.; tags | exploit, cgi; MD5 | b94d2810cd0ee343c10b24d906ad3e7d; Download | Favorite | Comments (0)

PaulPrinting CMS Printing 1.0 SQL Injection: Posted May 22, 2018; Authored by Mehmet Onder Key; PaulPrinting CMS Printing version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; MD5 | 1b15f77a709406610d5c406023fd16c6; Download | Favorite | Comments (0)

Siemens SIMATIC S7-1200 CPU Cross Site Scripting: Posted May 22, 2018; Authored by Jameel Nabbo, t4rkd3vilz; Siemens SIMATIC S7-1200 CPU suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2014-2908; MD5 | 694030f7dbd9a8de71aec5f3772be83d; Download | Favorite | Comments (0)

Teradek Slice 7.3.15 Change Password Cross Site Request Forgery: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Teradek Slice version 7.3.15 suffers from a password changing cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | c4cc6381be728820054867a92156d4a7; Download | Favorite | Comments (0)

Teradek Cube 7.3.6 Change Password Cross Site Request Forgery: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Teradek Cube version 7.3.6 suffers from a password changing cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 6ee2897fda34fa7704724bbd3ddae301; Download | Favorite | Comments (0)

NewsBee CMS 1.4 SQL Injection: Posted May 22, 2018; Authored by Ozkan Mustafa Akkus; NewsBee CMS version 1.4 suffers from a remote SQL injection vulnerability in home-text-edit.php.; tags | exploit, remote, php, sql injection; MD5 | cefa5350f0ab6bfdef55bcda50287284; Download | Favorite | Comments (0)

Teradek Cube 7.3.6 (snapshot.cgi) Stream Disclosure: Posted May 22, 2018; Authored by LiquidWorm | Site zeroscience.mk; Teradek Cube version 7.3.6 suffers from a stream disclosure vulnerability in snapshot.cgi.; tags | exploit, cgi; MD5 | 4503c90da737c7d782d2b0c1ff45ad01; Download | Favorite | Comments (0)

ERPnext 11.x.x Cross Site Scripting: Posted May 22, 2018; Authored by Veerababu Penugonda; ERPnext version 11.x.x suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2018-11339; MD5 | c6e2544bb660ab243da6a87411202ca9; Download | Favorite | Comments (0)

Siemens SIMATIC S7-1200 CPU Cross Site Request Forgery: Posted May 22, 2018; Authored by Jameel Nabbo, t4rkd3vilz; Siemens SIMATIC S7-1200 suffers from a CPU functionality related cross site request forgery vulnerability.; tags | exploit, csrf; advisories | CVE-2015-5698; MD5 | 3918f1d4882eb7d0a69bb075197dc03b; Download | Favorite | Comments (0)

Nordex N149/4.0-4.5 Wind Turbine Web Server SQL Injection: Posted May 22, 2018; Authored by t4rkd3vilz; Nordex N149/4.0-4.5 Wind Turbine Web Server suffers from a remote SQL injection vulnerability.; tags | exploit, remote, web, sql injection; MD5 | 2c581c04b219d80725898e6fafc219f3; Download | Favorite | Comments (0)

AF_PACKET chocobo_root Privilege Escalation: Posted May 22, 2018; Authored by rebel, Brendan Coles | Site metasploit.com; This Metasploit module exploits a race condition and use-after-free in the packet_set_ring function in net/packet/af_packet.c (AF_PACKET) in the Linux kernel to execute code as root (CVE-2016-8655). The bug was initially introduced in 2011 and patched in 2016 in version 4.4.0-53.74, potentially affecting a large number of kernels; however this exploit targets only systems using Ubuntu (Trusty / Xenial) kernels 4.4.0 < 4.4.0-53, including Linux distros based on Ubuntu, such as Linux Mint. The target system must have unprivileged user namespaces enabled and two or more CPU cores. Bypasses for SMEP, SMAP and KASLR are included. Failed exploitation may crash the kernel. This Metasploit module has been tested successfully on Linux Mint 17.3 (x86_64); Linux Mint 18 (x86_64); and Ubuntu 16.04.2 (x86_64) with kernel versions 4.4.0-45-generic and 4.4.0-51-generic.; tags | exploit, kernel, root; systems | linux, ubuntu; advisories | CVE-2016-8655; MD5 | 4e74e49fb99838182c2b1099fc25b230; Download | Favorite | Comments (0)

ILIAS 5.3.2 / 5.2.14 / 5.1.25 Cross Site Scripting: Posted May 22, 2018; Authored by Moritz Bechler; ILIAS versions 5.3.2, 5.2.14, and 5.1.25 suffer from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2018-10428; MD5 | e040c53ef97a1cf82b56b47ee94179a8; Download | Favorite | Comments (0)

Nordex N149/4.0-4.5 Scada Web Server SQL Injection: Posted May 22, 2018; Authored by t4rkd3vilz; Nordex N149//4.0-4.5 Scada Web Server suffers from a remote SQL injection vulnerability.; tags | exploit, remote, web, sql injection; MD5 | 1c1c017c9e52b4219b7f00f4e469bf23; Download | Favorite | Comments (0)

Superfood 1.0 XSS / CSRF / SQL Injection: Posted May 22, 2018; Authored by Borna Nematzadeh; Superfood Restaurants and Online Food Order System version 1.0 suffers from cross site request forgery, remote SQL injection, and cross site scripting vulnerabilities.; tags | exploit, remote, vulnerability, xss, sql injection, csrf; MD5 | e78e92d2845150ca472a4cb6e6cf1d38; Download | Favorite | Comments (0)

Page 1 of 1,643 Back 1 2 3 4 5 Next

Want To Donate?

Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Top Authors In Last 30 Days

Red Hat 134 files
Ubuntu 42 files
Debian 30 files
Borna Nematzadeh 14 files
Slackware Security Team 11 files
Google Security Research 11 files
LiquidWorm 10 files
Gentoo 9 files
hyp3rlinx 8 files
t4rkd3vilz 8 files

File Archives

Systems

AIX (409)
Apple (1,546)
BSD (335)
Cisco (1,810)
Debian (5,514)
Fedora (1,681)
FreeBSD (1,195)
Gentoo (3,570)
HPUX (865)
iOS (173)
iPhone (103)
IRIX (219)
Juniper (66)
Linux (33,448)
Mac OS X (652)
Mandriva (3,105)
NetBSD (255)
OpenBSD (456)
RedHat (6,531)
Slackware (825)
Solaris (1,569)
SUSE (1,444)
Ubuntu (5,628)
UNIX (8,267)
UnixWare (172)
Windows (5,332)
Other

Exploit Files

Want To Donate?

File Archive:

May 2018

Top Authors In Last 30 Days

File Tags

File Archives

Systems