what you don't know can hurt you
Showing 1 - 25 of 44,880 RSS Feed

Exploit Files

Roxy Fileman 1.4.5 For .NET Directory Traversal
Posted Dec 13, 2019
Authored by Patrik Lantz

Roxy Fileman version 1.4.5 for .NET suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2019-19731
MD5 | 8284d1688030466bc863d4e452dcf4ff
FTP Commander Pro 8.03 Local Stack Overflow
Posted Dec 13, 2019
Authored by boku, UN_NON

FTP Commander Pro version 8.03 suffers from a local stack overflow vulnerability.

tags | exploit, overflow, local
MD5 | 925505483680514fa64f204f5dad0883
NVMS-1000 Directory Traversal
Posted Dec 13, 2019
Authored by numan turle

NVMS-1000 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 4faa08b0960e93093a283aeb4b7f6d71
Windows Defender Antivirus 4.18.1908.7-0 File Extension Spoofing
Posted Dec 12, 2019
Authored by David Haintz | Site sec-consult.com

Windows Defender Antivirus version 4.18.1908.7-0 suffers from a file extension spoofing vulnerability.

tags | exploit, spoof
systems | windows
MD5 | bf4d6995971178b6b1ea80749698ee1f
Qualys Security Advisory - OpenBSD Dynamic Loader Privilege Escalation
Posted Dec 12, 2019
Authored by Qualys Security Advisory

Qualys discovered a local privilege escalation in OpenBSD's dynamic loader (ld.so). This vulnerability is exploitable in the default installation (via the set-user-ID executable chpass or passwd) and yields full root privileges. They developed a simple proof of concept and successfully tested it against OpenBSD 6.6 (the current release), 6.5, 6.2, and 6.1, on both amd64 and i386; other releases and architectures are probably also exploitable.

tags | exploit, local, root, proof of concept
systems | openbsd
advisories | CVE-2019-19726
MD5 | 5cd25d74e467c8f83e9ece30c0c6b982
OpenNetAdmin 18.1.1 Command Injection
Posted Dec 12, 2019
Authored by Onur ER, mattpascoe | Site metasploit.com

This Metasploit module exploits a command injection in OpenNetAdmin versions 8.5.14 through 18.1.1.

tags | exploit
MD5 | e0125a1f3ab628006c1c5332f3a1c783
Bullwark Momentum Series JAWS 1.0 Directory Traversal
Posted Dec 12, 2019
Authored by numan turle

Bullwark Momentum Series JAWS version 1.0 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 9c13d9574ed7f6ae1ac1f4755cf23500
Product Key Explorer 4.2.0.0 Key Denial Of Service
Posted Dec 11, 2019
Authored by sajjadbnd

Product Key Explorer version 4.2.0.0 suffers from a Key denial of service vulnerability.

tags | exploit, denial of service
MD5 | 9bbf0f88fcc147555aafba4f4e7f1811
Adobe Acrobat Reader DC For Windows Memory Corruption
Posted Dec 11, 2019
Authored by Google Security Research, mjurczyk

Adobe Acrobat Reader DC for Windows suffers from a heap-based memory corruption vulnerability due to malformed TTF font handling.

tags | exploit
systems | windows
advisories | CVE-2019-16451, CVE-2019-8042
MD5 | 758f99d981b49ec41d80325c4f847006
AppXSvc 17763 Arbitrary File Overwrite
Posted Dec 11, 2019
Authored by Gabor Seljan

AppXSvc 17763 suffers from an arbitrary file overwrite vulnerability.

tags | exploit, arbitrary
advisories | CVE-2019-1476
MD5 | 27175b4528bc6db5f32bd6d10c198699
Product Key Explorer 4.2.0.0 Name Denial Of Service
Posted Dec 11, 2019
Authored by sajjadbnd

Product Key Explorer version 4.2.0.0 suffers from a Name denial of service vulnerability.

tags | exploit, denial of service
MD5 | 986e1dff710ea02ff435e9d06c008628
Lenovo Power Management Driver Buffer Overflow
Posted Dec 11, 2019
Authored by Nassim Asrir

Lenovo Power Management Driver suffers from buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2019-6192
MD5 | 491269e11d6df59f01d64d162f95cca9
vBulletin 5.5.4 Remote Command Execution
Posted Dec 10, 2019
Authored by mekhalleh | Site metasploit.com

This Metasploit module exploits vBulletin versions 5.x through 5.5.4 leveraging a remote command execution vulnerability via the widgetConfig[code] parameter in an ajax/render/widget_php routestring POST request.

tags | exploit, remote
advisories | CVE-2019-16759
MD5 | 12d01f78d7c81ffd50f6373629755cb8
DAViCal CalDAV Server 1.1.8 Reflective Cross Site Scripting
Posted Dec 10, 2019
Authored by Rick Verdoes

DAViCal CalDAV Server versions 1.1.8 and below suffer from a reflective cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-18345
MD5 | 106d6376bfe42cd1d4a6aa71f7885eaa
DAViCal CalDAV Server 1.1.8 Cross Site Request Forgery
Posted Dec 10, 2019
Authored by Rick Verdoes

DAViCal CalDAV Server versions 1.1.8 and below suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2019-18346
MD5 | 71241e8b0dd14c1b51e8708854a79e80
DAViCal CalDAV Server 1.1.8 Persistent Cross Site Scripting
Posted Dec 10, 2019
Authored by Rick Verdoes

DAViCal CalDAV Server versions 1.1.8 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-18347
MD5 | 168863215252aa9df18b7fb2768cce78
Apache Olingo OData 4.6.x XML Injection
Posted Dec 10, 2019
Authored by Archibald Haddock

Apache Olingo OData versions 4.x.x through 4.6.x suffer from an XML external entity injection vulnerability.

tags | exploit
advisories | CVE-2019-17554
MD5 | 051e029f16764feddeb7a0590f43de8e
Inim Electronics Smartliving SmartLAN/G/SI 6.x Hard-Coded Credentials
Posted Dec 10, 2019
Authored by LiquidWorm | Site zeroscience.mk

Inim Electronics Smartliving SmartLAN/G/SI versions 6.x and below suffer from a hard-coded credential vulnerability.

tags | exploit
MD5 | 04f17bebbbf0986a1f927de3cebd3ef5
Inim Electronics Smartliving SmartLAN/G/SI 6.x SSRF
Posted Dec 10, 2019
Authored by LiquidWorm | Site zeroscience.mk

Inim Electronics Smartliving SmartLAN/G/SI versions 6.x and below suffer from an unauthenticated server-side request forgery vulnerability.

tags | exploit
MD5 | f21751ca54479762c2e2bdb3358bab9d
Inim Electronics SmartLiving SmartLAN/G/SI 6.x Remote Root
Posted Dec 10, 2019
Authored by LiquidWorm | Site zeroscience.mk

Inim Electronics SmartLiving SmartLAN/G/SI versions 6.x and below suffer from a remote root command execution vulnerability.

tags | exploit, remote, root
MD5 | fa5b04b87f4f1fdd3b909cfc78a8b51d
WordPress Scoutnet Kalender 1.1.0 Cross Site Scripting
Posted Dec 10, 2019
Authored by Simon Moser

WordPress Scoutnet Kalender plugin version 1.1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-19198
MD5 | e04e112fcfa436f18ef05c4933998c2c
Oracle Siebel Sales 8.1 Cross Site Scripting
Posted Dec 9, 2019
Authored by omurugur

Oracle Siebel Sales version 8.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | e51ac3fef4c785e1fff5e0fc2bd40700
Alcatel-Lucent Omnivista 8770 Remote Code Execution
Posted Dec 9, 2019
Authored by 0x1911

Alcatel-Lucent Omnivista 8770 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 0f7cc26132500939004bd71ceacd597f
Snipe-IT Open Source Asset Management 4.7.5 Cross Site Scripting
Posted Dec 9, 2019
Authored by Metin Yunus Kandemir

Snipe-IT Open Source Asset Management version 4.7.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | ab654a127618deb61eec45dcac220261
PRO-7070 Hazir Profesyonel Web Sitesi 1.0 SQL Injection
Posted Dec 9, 2019
Authored by Ahmet Umit Bayram

PRO-7070 Hazir Profesyonel Web Sitesi version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, web, sql injection
MD5 | 791eab6baad5a9a9903848ffb987623d
Page 1 of 1,796
Back12345Next

File Archive:

December 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    1 Files
  • 2
    Dec 2nd
    16 Files
  • 3
    Dec 3rd
    17 Files
  • 4
    Dec 4th
    23 Files
  • 5
    Dec 5th
    11 Files
  • 6
    Dec 6th
    10 Files
  • 7
    Dec 7th
    1 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    15 Files
  • 10
    Dec 10th
    30 Files
  • 11
    Dec 11th
    8 Files
  • 12
    Dec 12th
    20 Files
  • 13
    Dec 13th
    6 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close