what you don't know can hurt you
Showing 1 - 25 of 2,926 RSS Feed

Shell Files

HashiCorp Nomad Remote Command Execution
Posted Jun 15, 2021
Authored by Wyatt Dahlenburg | Site metasploit.com

This Metasploit module lets you create a batch job on HashiCorp's Nomad service to spawn a shell. The default option is to use the raw_exec driver, which runs with high privileges. Development servers and clients explicitly enabling the raw_exec plugin can spawn these type of jobs. Regular exec jobs can be created in a similar fashion at a lower privilege level.

tags | exploit, shell
MD5 | 43fcfd455dd3900ac07eb5c17b346b5d
Red Hat Security Advisory 2021-2286-01
Posted Jun 15, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2286-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.7.16. Issues addressed include a remote shell upload vulnerability.

tags | advisory, remote, shell
systems | linux, redhat
advisories | CVE-2021-27219, CVE-2021-3121, CVE-2021-3501, CVE-2021-3543
MD5 | 3108f712077cfbeb44524f6cf709fed5
OpenEMR 5.0.1.3 Shell Upload
Posted Jun 14, 2021
Authored by Ron Jost

OpenEMR version 5.0.1.3 authenticated remote shell upload exploit.

tags | exploit, remote, shell
advisories | CVE-2018-15139
MD5 | 7700613258c55d87cc8689ab8d49b6f7
OpenEMR 5.0.0 Remote Shell Upload
Posted Jun 11, 2021
Authored by Ron Jost

OpenEMR version 5.0.0 authenticated remote shell upload exploit.

tags | exploit, remote, shell
advisories | CVE-2017-9380
MD5 | 12e2029d683e77944af7d9e8015af08d
NSClient++ 0.5.2.35 Remote Code Execution
Posted Jun 10, 2021
Authored by kindredsec, Yann Castel | Site metasploit.com

This Metasploit module allows an attacker with knowledge of the admin password of NSClient++ to start a privileged shell. For this module to work, both web interface of NSClient++ and ExternalScripts feature should be enabled.

tags | exploit, web, shell
MD5 | ee03ba18004e1e17f2300e870c462d89
Linux/x86 execve /bin/sh Shellcode
Posted Jun 10, 2021
Authored by D7X | Site promiselabs.net

70 bytes small Linux/x86 shellcode with XOR decoder stub and fstenv MMX FPU spawning a /bin/sh shell.

tags | shell, x86, shellcode
systems | linux
MD5 | e253cdb3deeb186f54711db1afcee22e
WordPress wpDiscuz 7.0.4 Shell Upload
Posted Jun 6, 2021
Authored by Chloe Chamberland, Juampa Rodriguez

WordPress wpDiscuz plugin version 7.0.4 remote shell upload exploit.

tags | exploit, remote, shell
advisories | CVE-2020-24186
MD5 | 03935e525138dda6961b79bfe756d49d
Cisco HyperFlex HX Data Platform Command Execution
Posted Jun 4, 2021
Authored by wvu, Mikhail Klyuchnikov, Nikita Abramov | Site metasploit.com

This Metasploit module exploits an unauthenticated command injection in Cisco HyperFlex HX Data Platform's /storfs-asup endpoint to execute shell commands as the Tomcat user.

tags | exploit, shell
systems | cisco
advisories | CVE-2021-1497, CVE-2021-1498
MD5 | 84909084ffbe70c31014516f90109679
Cisco SD-WAN vManage 19.2.2 Remote Root
Posted Jun 3, 2021
Authored by Johnny Yu | Site github.com

Cisco SD-WAN vManage version 19.2.2 remote root shell proof of concept exploit that leverages multiple vulnerabilities.

tags | exploit, remote, shell, root, vulnerability, proof of concept
systems | cisco
advisories | CVE-2020-3387, CVE-2020-3437
MD5 | a4bd588c350b9a327fc445d03fadab85
ProjeQtOr Project Management 9.1.4 Shell Upload
Posted Jun 1, 2021
Authored by Temel Demir

ProjeQtOr Project Management version 9.1.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | c339c240029d0206837f21f8c4bf2f70
Trixbox 2.8.0.4 Remote Code Execution
Posted May 28, 2021
Authored by Ron Jost

Trixbox version 2.8.0.4 has an OS command injection vulnerability that can be leveraged via shell metacharacters in the lang parameter to /maint/modules/home/index.php.

tags | exploit, shell, php
advisories | CVE-2017-14535
MD5 | b20a34f5709b4607d3383fa6db1f537f
Pluck CMS 4.7.13 Remote Shell Upload
Posted May 26, 2021
Authored by Ron Jost

Pluck CMS version 4.7.13 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2020-29607
MD5 | 8cadd74ca3a154c501a026a5b30e8f90
Codiad 2.8.4 Shell Upload
Posted May 26, 2021
Authored by Ron Jost

Codiad version 2.8.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2018-19423
MD5 | d3aabce9b795faa267d5b779874bdd9d
Red Hat Security Advisory 2021-1679-01
Posted May 19, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1679-01 - The bash packages provide Bash, which is the default shell for Red Hat Enterprise Linux.

tags | advisory, shell, bash
systems | linux, redhat
advisories | CVE-2019-18276
MD5 | 9b994c525fd8e0af524ca1b2adb7681c
Subrion CMS 4.2.1 Shell Upload
Posted May 17, 2021
Authored by Fellipe Oliveira

Subrion CMS version 4.2.1 file upload bypass exploit that uploads a shell.

tags | exploit, shell, file upload
advisories | CVE-2018-19422
MD5 | e874feae0d57f116b1f5a86b2f618f2b
Printable Staff ID Card Creator System 1.0 Shell Upload / SQL Injection
Posted May 17, 2021
Authored by bwnz

Printable Staff ID Card Creator System version 1.0 suffers from remote shell upload and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection
MD5 | 4490bd349a0b50e4d7488c7b344af3e9
ScadaBR 1.0 / 1.1CE Windows Shell Upload
Posted May 13, 2021
Authored by Fellipe Oliveira

ScadaBR versions 1.0 and 1.1CE authenticated shell upload exploit written for Windows targets.

tags | exploit, shell
systems | windows
advisories | CVE-2021-26828
MD5 | 04c215bbe62a07fd802ce382554daf46
ScadaBR 1.0 / 1.1CE Linux Shell Upload
Posted May 13, 2021
Authored by Fellipe Oliveira

ScadaBR versions 1.0 and 1.1CE authenticated shell upload exploit written for Linux targets.

tags | exploit, shell
systems | linux
advisories | CVE-2021-26828
MD5 | 3ad6c1b0c4cf0a0d3c8de295a42f4340
ExifTool DjVu ANT Perl Injection
Posted May 12, 2021
Authored by Justin Steven, William Bowling | Site metasploit.com

This Metasploit module exploits a Perl injection vulnerability in the DjVu ANT parsing code of ExifTool versions 7.44 through 12.23 inclusive. The injection is used to execute a shell command using Perl backticks. The DjVu image can be embedded in a wrapper image using the HasselbladExif EXIF field.

tags | exploit, shell, perl
advisories | CVE-2021-22204
MD5 | 1fba1ff491cb6bf069766f65d4437c6e
Customer Relationship Management (CRM) System 1.0 Shell Upload
Posted May 11, 2021
Authored by Richard Jones

Customer Relationship Management (CRM) System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | fd0485926223aa2206f5546dccf46c64
Ubuntu Security Notice USN-4943-1
Posted May 11, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4943-1 - Zhihong Tian and Hui Lu found that XStream was vulnerable to remote code execution. A remote attacker could run arbitrary shell commands by manipulating the processed input stream. This issue affected only affected Ubuntu 20.10. It was discovered that XStream was vulnerable to server-side forgery attacks. A remote attacker could request data from internal resources that are not publicly available only by manipulating the processed input stream. This issue only affected Ubuntu 20.10. Various other issues were also addressed.

tags | advisory, remote, arbitrary, shell, code execution
systems | linux, ubuntu
advisories | CVE-2020-26217, CVE-2020-26258, CVE-2020-26259, CVE-2021-21342, CVE-2021-21344, CVE-2021-21345, CVE-2021-21346, CVE-2021-21348, CVE-2021-21349, CVE-2021-21350
MD5 | a565fe2178a44c21cfecd0d125585112
Voting System 1.0 Shell Upload
Posted May 7, 2021
Authored by secure77

Voting System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 50bd682d293cd6f65051ddf82595a097
Internship Portal Management System 1.0 Shell Upload
Posted May 4, 2021
Authored by argenestel

Internship Portal Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 0e64d22b012cb716290ae978805da036
Windows/x64 Inject All Processes With Meterpreter Reverse Shell Shellcode
Posted May 2, 2021
Authored by Bobby Cooke

655 bytes small 64-bit Windows 10 shellcode that injects all processes with Meterpreter reverse shells.

tags | shell, shellcode
systems | windows
MD5 | 75a126bd35170b68365261ae4f904c66
Fog Project 1.5.9 Shell Upload
Posted Apr 29, 2021
Authored by sML

Fog Project version 1.5.9 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 4137325100e71652f6c4dc385797fd66
Page 1 of 118
Back12345Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    34 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close