what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 3,067 RSS Feed

Shell Files

Gas Agency Management 2022 SQL Injection / XSS / Shell Upload
Posted Aug 12, 2022
Authored by nu11secur1ty

Gas Agency Management 2022 suffers from cross site scripting, remote SQL injection, and remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, xss, sql injection
SHA-256 | fbd80e45f29f9c744b81fc81cb49905ea0ee4dbf9f49738b949c8e75caba6e49
Garage Management System 1.0 Shell Upload
Posted Jul 26, 2022
Authored by saitamang

Garage Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | ab0ebb6c87eb34a7a0f252098e28dd19c540d7bd1bf348be3b734685516a5a76
Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) Remote Root
Posted Jul 21, 2022
Authored by LiquidWorm | Site zeroscience.mk

Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) versions 1.31.460 and below suffer from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the root user via the name GET parameter in delsnap.pl Perl/CGI script which is used for deleting snapshots taken from the webcam.

tags | exploit, arbitrary, shell, cgi, root, perl
advisories | CVE-2022-34753
SHA-256 | d419b1daf53d0f565d05d6ba8ea75d7ee176ccb9140c55fa6180d7f9532dc155
Red Hat Security Advisory 2022-5498-01
Posted Jul 6, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-5498-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include HTTP request smuggling, buffer overflow, bypass, code execution, cross site scripting, denial of service, heap overflow, information leakage, privilege escalation, remote shell upload, remote SQL injection, and traversal vulnerabilities.

tags | advisory, remote, web, denial of service, overflow, shell, vulnerability, code execution, xss, sql injection
systems | linux, redhat
advisories | CVE-2021-21290, CVE-2021-21295, CVE-2021-21409, CVE-2021-30151, CVE-2021-3200, CVE-2021-32839, CVE-2021-33928, CVE-2021-33929, CVE-2021-33930, CVE-2021-33938, CVE-2021-3584, CVE-2021-41136, CVE-2021-4142, CVE-2021-42550
SHA-256 | c0789250da6e85f6ddbf1eff137427983e596902d3fa57015a6fd21b598eac60
C Language Reverse Shell Generator
Posted Jul 5, 2022
Authored by Raed Ahsan

This is a C language reverse shell generator that is written in Python.

tags | tool, shell, rootkit, python
systems | unix
SHA-256 | 5dd358c97fb9c1f37b759fb43edddae386016d7945cc7d063e37b7e28f9e337f
Bash / Netcat Reverse Shells
Posted Jul 4, 2022
Authored by Raed Ahsan

This script is a great tool for pentesters needing to create reverse shells using either bash or netcat.

tags | tool, shell, rootkit, bash
systems | unix
SHA-256 | 6fa1de2937ad42cc30d32f1a0d8144e64791a2c154a8baa4dad7d30634eb9f38
Library Management System With QR Code 1.0 Shell Upload
Posted Jun 27, 2022
Authored by Ashish Kumar

Library Management System with QR Code version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 3a8ce351708906e85954acf5c152d09183ea9e79616f36410b16490f39b0edcd
Ubuntu Security Notice USN-5459-1
Posted Jun 3, 2022
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5459-1 - Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a password. In certain environments, a local attacker could possibly use this issue to escalate privileges. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. It was discovered that cifs-utils incorrectly used host credentials when mounting a krb5 CIFS file system from within a container. An attacker inside a container could possibly use this issue to obtain access to sensitive information. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.

tags | advisory, shell, local
systems | linux, ubuntu
advisories | CVE-2020-14342, CVE-2021-20208, CVE-2022-27239, CVE-2022-29869
SHA-256 | 2742ad8c53c8d4078d2663f3a6a291fda0c5b7a8aaddb41246e402f6bb7d11f1
Cisco RV340 SSL VPN Unauthenticated Remote Code Execution
Posted May 11, 2022
Authored by Pedro Ribeiro, Radek Domanski | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in the Cisco RV series router's SSL VPN functionality. The default SSL VPN configuration is exploitable, with no authentication required and works over the Internet! The stack is executable and no ASLR is in place, which makes exploitation easier. Successful execution of this module results in a reverse root shell. A custom payload is used as Metasploit does not have ARMLE null free shellcode. This vulnerability was presented by the Flashback Team in Pwn2Own Austin 2021 and OffensiveCon 2022. For more information check the referenced advisory. This module has been tested in firmware versions 1.0.03.15 and above and works with around 65% reliability. The service restarts automatically so you can keep trying until you pwn it. Only the RV340 router was tested, but other RV series routers should work out of the box.

tags | exploit, overflow, shell, root, shellcode
systems | cisco
advisories | CVE-2022-20699
SHA-256 | 619682621429d96cd23a1e1bcd69a008398c5244223265886c52e2e417242d02
Red Hat Security Advisory 2022-2120-01
Posted May 11, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-2120-01 - The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell, but includes many enhancements. Zsh supports command-line editing, built-in spelling correction, programmable command completion, shell functions, a history mechanism, and more.

tags | advisory, shell
systems | linux, redhat
advisories | CVE-2021-45444
SHA-256 | cad6b69e64623ac3d744ea4e012aea789f4ebb8fab7d528559b72331b27bbf9e
Red Hat Security Advisory 2022-1814-01
Posted May 11, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-1814-01 - GNOME Shell acts as a compositing manager for the desktop, and displays both application windows and other objects. It provides core interface functions like switching windows, launching applications, and notifications. It takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts.

tags | advisory, shell
systems | linux, redhat, windows
advisories | CVE-2020-17489
SHA-256 | 6aef6e9677cf9c1bb55c80d3c53876b94f7260847d6381d799556ac3d7ca711a
e107 CMS 3.2.1 Arbitrary File Upload / Cross Site Scripting
Posted May 11, 2022
Authored by Hubert Wojciechowski

e107 CMS version 3.2.1 suffers from cross site scripting and arbitrary file upload vulnerabilities that can allow for a shell upload.

tags | exploit, arbitrary, shell, vulnerability, xss, file upload
SHA-256 | 3ae8caceae21f93d20493507ca607ad9781c300dc643e858c7c2ac8aa48b23b5
WordPress Advanced Uploader 4.2 Shell Upload
Posted May 11, 2022
Authored by Roel van Beurden

WordPress Advanced Uploader plugin versions 4.2 and below suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
advisories | CVE-2022-1103
SHA-256 | d6da47e9cfa89f863bdbab26f72fb5536450efbf87365b7899f665f69f1edd2a
VMware Workspace ONE Access Template Injection / Command Execution
Posted May 3, 2022
Authored by mr_me, wvu, Udhaya Prakash | Site metasploit.com

This Metasploit module exploits CVE-2022-22954, an unauthenticated server-side template injection (SSTI) vulnerability in VMware Workspace ONE Access, to execute shell commands as the horizon user.

tags | exploit, shell
advisories | CVE-2022-22954
SHA-256 | bf4114fce190a8b9bc1f2bfc2013620b04b05e7030c7cc59f3d685b8db2038b1
Tenda HG6 3.3.0 Remote Command Injection
Posted May 3, 2022
Authored by LiquidWorm | Site zeroscience.mk

Tenda HG6 version 3.3.0 suffers from a remote command injection vulnerability. It can be exploited to inject and execute arbitrary shell commands through the pingAddr and traceAddr HTTP POST parameters in formPing, formPing6, formTracert and formTracert6 interfaces.

tags | exploit, remote, web, arbitrary, shell
SHA-256 | 49f6e50dad2f50c5f9bee5f1105d5092b826a6f5ba27d2193fc00498390e1373
Pharmacy Management System 1.0 Shell Upload
Posted Apr 20, 2022
Authored by Saud Alenazi

Pharmacy Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 2da67c6c7a5c14228149e21e3cff2a8e2b144090f44d0181b62a6d2a34478852
WordPress Elementor 3.6.2 Shell Upload
Posted Apr 19, 2022
Authored by AkuCyberSec

WordPress Elementor versions 3.6.0, 3.6.1, and 3.6.2 suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 603237e279a2f8ffe3ece2867c143ddd6adc454ce1a658fa415b646b8ddb139f
Scriptcase 9.7 Shell Upload
Posted Apr 18, 2022
Authored by luckyt0mat0

Scriptcase version 9.7 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 705c580f419afeea2dc499c20aeef237849dd1a83cfc82260fbd3807b7385d36
AeroCMS 0.0.1 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

AeroCMS version 0.0.1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-27061
SHA-256 | 0829b922a0f4795f7428d43e52ebfbde5bb95f0c1238d5c58486e8a65f917f8f
Simple House Rental System 1 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

Simple House Rental System version 1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-27352
SHA-256 | 08758f678f8c4fc418d8d9517c841f053dbffc2e1507149c1a99fb38c15f3933
Social Codia SMS 1 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

Social Codia SMS version 1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-27349
SHA-256 | 4a7427d4fc0576c982c955ac1f929021a915162dd9065b11a25c19c67f8378b7
E-Commerce Website 1.1.0 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

E-Commerce Website version 1.1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-27346
SHA-256 | 1b9bd78010d60aaf601fb90507e50506efc424b988f99536383741a478b15552
Musical World 1 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

Musical World version 1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-27064
SHA-256 | 7da6ca366e4aa84857f2f399ff232d8312c64c14435be4d9948bfe5e0166f573
E-Commerce Website 1.0 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

E-Commerce Website version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-27357
SHA-256 | 7a3aaebde457cfdba6fc15fa5c0b8bd1116d56a78bad78ee7de4f9c3d3574ed1
PHPGurukul Zoo Management System 1.0 Shell Upload
Posted Apr 8, 2022
Authored by D4rkP0w4r | Site github.com

PHPGurukul Zoo Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
advisories | CVE-2022-27351
SHA-256 | dca1f178a16cf53e52736d7b787820a9fbabb32e64848116ca5fc2680795d6d7
Page 1 of 123
Back12345Next

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    34 Files
  • 11
    Aug 11th
    16 Files
  • 12
    Aug 12th
    5 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close