exploit the possibilities
Showing 1 - 25 of 48,500 RSS Feed

Exploit Files

OpenVPN Monitor 1.1.3 Cross Site Request Forgery
Posted Sep 24, 2021
Authored by Sylvain Heiniger, Emanuel Duss

OpenVPN Monitor versions 1.1.3 and below suffer from a cross site request forgery vulnerability that allows an attacker to disconnect arbitrary VPN clients.

tags | exploit, arbitrary, csrf
advisories | CVE-2021-31604
MD5 | 8fe8676ce55952fcce460972fb63424c
OpenVPN Monitor 1.1.3 Command Injection
Posted Sep 24, 2021
Authored by Sylvain Heiniger, Emanuel Duss

OpenVPN Monitor versions 1.1.3 and below suffer from an injection vulnerability that allows an attacker to inject arbitrary commands into the OpenVPN server management interface socket.

tags | exploit, arbitrary
advisories | CVE-2021-31605
MD5 | 6ea912419e5cea8787dd7f4766877eef
OpenVPN Monitor 1.1.3 Authorization Bypass / Denial Of Service
Posted Sep 24, 2021
Authored by Sylvain Heiniger, Emanuel Duss

OpenVPN Monitor versions 1.1.3 and below suffer from an authorization bypass vulnerability that allows an attacker to disconnect arbitrary clients, even if the disconnect feature is disabled.

tags | exploit, arbitrary, bypass
advisories | CVE-2021-31606
MD5 | e062e120ca7f341e24487a82f218030c
SmarterTools SmarterTrack 7922 Information Disclosure
Posted Sep 24, 2021
Authored by Andrei Manole

SmarterTools SmarterTrack 7922 suffers from an information disclosure vulnerability.

tags | exploit, info disclosure
MD5 | eee4a3d556dbb4d6a7731be368f9471b
WordPress 3DPrint Lite 1.9.1.4 Shell Upload
Posted Sep 23, 2021
Authored by spacehen

WordPress 3DPrint Lite plugin version 1.9.1.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | df05024a490ce087dd2a9ea5257bf09c
Pharmacy Point Of Sale System 1.0 SQL Injection
Posted Sep 23, 2021
Authored by Janik Wehrli

Pharmacy Point of Sale System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 0c421cadb58ed3860edd48c36da90815
Police Crime Record Management Project 1.0 SQL Injection
Posted Sep 23, 2021
Authored by ()t/\/\1

Police Crime Record Management Project version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 799b2319f52c524aa996f903df4c7448
Redragon Gaming Mouse Denial Of Service
Posted Sep 23, 2021
Authored by Quadron Research Lab

Redragon Gaming Mouse suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | a001d0c25a8946620304491113760b3f
WordPress Advanced Order Export For WooCommerce 3.1.7 Cross Site Scripting
Posted Sep 23, 2021
Authored by 0xB9

WordPress Advanced Order Export For WooCommerce plugin version 3.1.7 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-24169
MD5 | cda16c38c590a26e4758142316be12a5
WordPress Fitness Calculators 1.9.5 Cross Site Request Forgery
Posted Sep 23, 2021
Authored by 0xB9

WordPress Fitness Calculators plugin version 1.9.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2021-24272
MD5 | 30ca373f3886f6f98013bb82a0a42e7c
Backdrop CMS 1.20.0 Cross Site Request Forgery / Command Execution
Posted Sep 23, 2021
Authored by V1n1v131r4

Backdrop CMS version 1.20.0 suffers from cross site request forgery vulnerabilities that can assist an attacker in achieving command execution.

tags | exploit, vulnerability, csrf
MD5 | 2e44ed7c8aa4c0431592175c5c6161c9
Gurock Testrail 7.2.0.3014 Improper Access Control
Posted Sep 23, 2021
Authored by JohnJHacking, Sick Codes

Gurock Testrail version 7.2.0.3014 suffers from an improper access control vulnerability.

tags | exploit
advisories | CVE-2021-40875
MD5 | ca364a6a681f0978d5193d137515cfbc
Chrome HRTFDatabaseLoader::WaitForLoaderThreadCompletion Data Race
Posted Sep 22, 2021
Authored by Google Security Research, Glazvunov

Chrome suffers from a HRTFDatabaseLoader::WaitForLoaderThreadCompletion data race condition.

tags | exploit
advisories | CVE-2021-30603
MD5 | 0aaadc59ac484d75a50e47a84bef9a4b
OpenCats 0.9.4-2 XML Injection
Posted Sep 22, 2021
Authored by Jake Ruston

OpenCats version 0.9.4-2 suffers from an XML external entity injection vulnerability.

tags | exploit
advisories | CVE-2019-13358
MD5 | 4657a1136a0bf436beecf92beabb9bb7
E-Negosyo System 1.0 Shell Upload
Posted Sep 22, 2021
Authored by Janik Wehrli

E-Negosyo System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | f0d85a1322ee67d65a1f75316c55eebc
E-Negosyo System 1.0 SQL Injection
Posted Sep 22, 2021
Authored by Janik Wehrli

E-Negosyo System version 1.0 suffers from a remote time-based blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 75b7dc2867d4a8eb9c0953dc3831e66f
e107 CMS 2.3.0 Shell Upload
Posted Sep 22, 2021
Authored by Halit Akaydin

e107 CMS version 2.3.0 authenticated remote shell upload exploit.

tags | exploit, remote, shell
MD5 | efc7054ac1ba787888db18351c577bcc
Online Reviewer System 1.0 Shell Upload
Posted Sep 22, 2021
Authored by Abdullah Khawaja

Online Reviewer System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | ae34b4deb334f94e046ad7ea3919c2b1
South Gate Inn Online Reservation System 1.0 Shell Upload / SQL Injection
Posted Sep 22, 2021
Authored by Janik Wehrli

South Gate Inn Online Reservation System version 1.0 suffers from a remote SQL injection vulnerability that allows for a shell upload.

tags | exploit, remote, shell, sql injection
MD5 | 69fa9931e645aa63507e752a01212b6b
Sentry 8.2.0 Remote Code Execution
Posted Sep 22, 2021
Authored by Mohin Paramasivam

Sentry version 8.2.0 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 7ab59d06aee52c87e42e7da434c4a24b
Filerun 2021.03.26 Remote Code Execution
Posted Sep 22, 2021
Authored by syntegris Information solutions GmbH, Christian P

Filerun version 2021.03.26 authenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | f9ac55e431c2a7f0daa0eb4d6922bea0
TotalAV 5.15.69 Unquoted Service Path
Posted Sep 22, 2021
Authored by Andrea Intilangelo

TotalAV version 5.15.69 suffers from an unquoted service path vulnerability.

tags | exploit
advisories | CVE-2021-35313
MD5 | f60e46c8d3377f891ee188835e438cd2
Simple Attendance System 1.0 SQL Injection
Posted Sep 22, 2021
Authored by ()t/\/\1

Simple Attendance System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 62a8cbbf17593175cd123e2b14cd74ef
Cloudron 6.2 Cross Site Scripting
Posted Sep 22, 2021
Authored by Akiner Kisa

Cloudron version 6.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-40868
MD5 | 04e5263b2aba1564e3b29ea91dd03411
ManageEngine OpManager SumPDU Java Deserialization
Posted Sep 21, 2021
Authored by Spencer McIntyre, Robin Peraglie, Johannes Moritz | Site metasploit.com

An HTTP endpoint used by the Manage Engine OpManager Smart Update Manager component can be leveraged to deserialize an arbitrary Java object. This can be abused by an unauthenticated remote attacker to execute OS commands in the context of the OpManager application. This vulnerability is also present in other products that are built on top of the OpManager application. This vulnerability affects OpManager versions 12.1 through 12.5.328.

tags | exploit, java, remote, web, arbitrary
advisories | CVE-2020-28653, CVE-2021-3287
MD5 | 500769d3199b6e8b0a42f614f06b6820
Page 1 of 1,940
Back12345Next

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    13 Files
  • 18
    Sep 18th
    2 Files
  • 19
    Sep 19th
    2 Files
  • 20
    Sep 20th
    14 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    28 Files
  • 23
    Sep 23rd
    13 Files
  • 24
    Sep 24th
    10 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close