Hotel Management System version 1.0 exploit that leverages a blind cross site scripting attack against the admin to have a reverse PHP shell uploaded.
aa7d7b6de743aefd9eda1c19bbe45794ObjectPlanet Opinio version 7.13 suffers from a remote shell upload vulnerability.
428a660ba8fcf617d5de88b7920acbe4Event Registration System with QR Code version 1.0 suffers from authentication bypass and shell upload vulnerabilities.
0258508306684f3c1ccb2c248610b9a3Red Hat Security Advisory 2021-2438-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include bypass, code execution, denial of service, open redirection, resource exhaustion, and remote shell upload vulnerabilities.
dda5a75b5b7fd18f58795ba51eeb6a02Denver Smart Wifi Camera SHC-150 has a hardcoded backdoor login vulnerability available via telnet that gives a shell.
a9a3afa83abcffe28d96ceb14d65cdc7This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress SP Project and Document plugin versions prior to 4.22. The security check only searches for lowercase file extensions such as .php, making it possible to upload .pHP files for instance. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/sp-client-document-manager/<user_id>/<random_payload_name>.php.
d73daa7ac6681410691920aff7640598This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress Modern Events Calendar plugin versions prior to 5.16.5. This is due to an incorrect check of the uploaded file extension. Indeed, by using text/csv content-type in a request, it is possible to upload a .php payload as is is not forbidden by the plugin. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/<random_payload_name>.php.
75b29e689541f825031d9308d2c36b24This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in Wordpress plugin Backup Guard versions prior to 1.6.0. This is due to an incorrect check of the uploaded file extension which should be of SGBP type. Then, the uploaded payload can be triggered by a call to /wp-content/uploads/backup-guard/<random_payload_name>.php.
a13b79ee96d9f6b0f86db446a8c091a9Webmin version 1.973 cross site request forgery exploit that loads a reverse shell.
64d50ff2e6b23cb13a822ba9d9b79c96Linux/x86 egghunter reverse TCP shell shellcode generator with dynamic IP and port.
12a643a44f3245dd82780330839889e3WordPress Popular Posts plugin version 5.3.2 suffers from a remote shell upload vulnerability.
d260aa6f7a6cdf6bd50085eb8b82c659Garbage Collection Management System version 1.0 shell upload exploit that leverages a SQL injection vulnerability.
ea34ecce44fb54eefcd9fffe39d45a35OpenEMR version 5.0.1.3 authenticated remote shell upload exploit that leverages a vulnerability discovered in 2018.
42dde552844a71d54aa98a08c105ae9f86 bytes small Linux/x86 reverse TCP shell with dynamic IP and port binding shellcode.
15a0f14a218e63eb34bcd799a25afa3fChurch Management System version 1.0 shell upload exploit that leverages SQL injection.
754760cca1be4200f17b82d4eeeb4ddcWyomind Help Desk version 1.3.6 suffers from remote shell upload, cross site scripting, and directory traversal vulnerabilities.
59218439c3ab4fb34a4f3a6427121b87Online Covid Vaccination Scheduler System version 1.0 suffers from a remote shell upload vulnerability.
f427b73c7117627cde91d42a7bb201e0WordPress SP Project and Document Manager plugin version 4.21 suffers from a remote shell upload vulnerability.
2b2c3c8691137157e2a48f7efcdd8a79This Metasploit module allows an attacker with an unprivileged windows account to gain admin access on windows system and start a shell. For this module to work, both the NSClient++ web interface and ExternalScripts features must be enabled. You must also know where the NSClient config file is, as it is used to read the admin password which is stored in clear text.
e99505921a58963a745bb746bb2715a9Exam Hall Management System version 1.0 suffers from an unauthenticated remote shell upload vulnerability.
ee9e3fa29a87a987f88bfe2690b24db2Billing System Project version 1.0 suffers from a remote shell upload vulnerability.
35dd65abd4cbd23a6e90dc15236cb784Phone Shop Sales Managements System version 1.0 shell upload exploit. This is a variant of the original discovery made in this version of the software by Richard Jones in April of 2021.
43e2188ea8e5bf388fc76dbda5e3b6dfRicon Industrial Cellular Router S9922XL suffers from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the admin (root) user via the ping_server_ip POST parameter. It is also vulnerable to Heartbleed.
23fc8665a81e1f9a6166b3c13847b608Simple Client Management System version 1.0 shell upload exploit that leverages SQL injection.
5bd758665b3d42345b29f38a20d36289WordPress Backup Guard plugin version 1.5.8 remote shell upload exploit.
75b99c3a3102d89bce9985d105ebe3a3
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed