Twenty Year Anniversary
Showing 1 - 25 of 2,665 RSS Feed

Shell Files

Linux/x64 Reverse (0.0.0.0:1907/TCP) Shell Shellcode
Posted Dec 5, 2018
Authored by Kagan Capar

119 bytes small Linux/x64 reverse (0.0.0.0:1907/TCP) shell shellcode.

tags | shell, tcp, shellcode
systems | linux
MD5 | a1db6d316aa892b3b81d8165639238c0
Joomla Fabrik 3.9 CSRF / LFI / Shell Upload
Posted Nov 29, 2018
Authored by KingSkrupellos

Joomla Fabrik component version 3.9 suffers from cross site request forgery, local file inclusion, and remote shell upload vulnerabilities.

tags | exploit, remote, shell, local, vulnerability, file inclusion, csrf
MD5 | cee583e8df398e9f206f9451d94be1bd
Helpdezk 1.1.1 Shell Upload
Posted Nov 16, 2018
Authored by Ihsan Sencan

Helpdezk version 1.1.1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | cbacc0533908cb511a19e2bd2c3b95b4
PHP Mass Mail 1.0 Shell Upload
Posted Nov 15, 2018
Authored by Ihsan Sencan

PHP Mass Mail version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, php
MD5 | 0cb5d71edeb4a2b0e094423306caac00
2-Plan Team 1.0.4 Shell Upload
Posted Nov 15, 2018
Authored by Ihsan Sencan

2-Plan Team version 1.0.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | f032a820048d7947081bbeda6a354d98
Kordil EDMS 2.2.60rc3 Shell Upload
Posted Nov 15, 2018
Authored by Ihsan Sencan

Kordil EDMS version 2.2.60rc3 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, sql injection
MD5 | f3deb8055528a28140da5feca3b41892
DoceboLMS 1.2 Shell Upload / SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

DoceboLMS version 1.2 suffers from remote shell upload and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection
MD5 | a55f2d35d29cb2b7921c5303409f47a9
OCS Inventory NG ocsreports Shell Upload
Posted Nov 14, 2018
Authored by Simon Uvarov

OCS Inventory NG suffers from an ocsreports authenticated remote code execution vulnerability via a shell upload.

tags | exploit, remote, shell, code execution
advisories | CVE-2018-15537
MD5 | cdb899f87fd086c3c20bd02fe32b2495
Webiness Inventory 2.3 Cross Site Request Forgery / Shell Upload
Posted Nov 14, 2018
Authored by Ihsan Sencan

Webiness Inventory version 2.3 suffers from cross site request forgery and remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, csrf
MD5 | bd7157f05c3f52197726bb5053d678ba
Linux/x86 Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode
Posted Nov 13, 2018
Authored by Javier Tello

58 bytes small Linux/x86 bind (99999/TCP) netcat traditional (/bin/nc) shell (/bin/bash) shellcode.

tags | shell, x86, tcp, shellcode, bash
systems | linux
MD5 | f4b8522201682477a5e1e7f645023f22
Morris Worm sendmail Debug Mode Shell Escape
Posted Nov 5, 2018
Authored by wvu, Robert Tappan Morris, Cliff Stoll | Site metasploit.com

This Metasploit module exploits sendmail's well-known historical debug mode to escape to a shell and execute commands in the SMTP RCPT TO command. This vulnerability was exploited by the Morris worm in 1988-11-02. Cliff Stoll reports on the worm in the epilogue of The Cuckoo's Egg. Currently only cmd/unix/reverse and cmd/unix/generic are supported.

tags | exploit, worm, shell
systems | unix
MD5 | 916044331d126eab8e387612884dc927
Poppy Web Interface Generator 0.8 Shell Upload
Posted Nov 5, 2018
Authored by Ihsan Sencan

Poppy Web Interface Generator version 0.8 suffers from a remote shell upload vulnerability.

tags | exploit, remote, web, shell
MD5 | eca601b2e8566420184951b2fc2bb286
CI User Login And Management 1.0 Shell Upload
Posted Oct 31, 2018
Authored by Ihsan Sencan

CI User Login and Management version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 5efd76fdc226c1431e2925adee7b304f
Simple PHP Shopping Cart 0.9 Shell Upload / SQL Injection
Posted Oct 31, 2018
Authored by Ihsan Sencan

Simple PHP Shopping Cart version 0.9 suffers from remote shell upload and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, php, vulnerability, sql injection
MD5 | 590960260c339d781b319ed9b86ae390
Instagram Clone 1.0 Shell Upload
Posted Oct 31, 2018
Authored by Ihsan Sencan

Instagram Clone version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 0f54198a22d88519691973f053af95e5
Red Hat Security Advisory 2018-3073-01
Posted Oct 31, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3073-01 - The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell, but includes many enhancements. Zsh supports command-line editing, built-in spelling correction, programmable command completion, shell functions, a history mechanism, and more. Issues addressed include buffer overflow and code execution vulnerabilities.

tags | advisory, overflow, shell, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2014-10071, CVE-2014-10072, CVE-2017-18205, CVE-2017-18206, CVE-2018-1071, CVE-2018-1083, CVE-2018-1100, CVE-2018-7549
MD5 | 2b606b1995f31012262e1e16c496dc3d
Red Hat Security Advisory 2018-3249-01
Posted Oct 31, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3249-01 - The setup package contains a set of important default system configuration and setup files. Examples include /etc/passwd, /etc/group, and /etc/profile. Other examples are the default lists of reserved user IDs, reserved ports, reserved protocols, allowed shells, allowed secure terminals. Issues addressed include a nologin listed in /etc/shells violating security expectations.

tags | advisory, shell, protocol
systems | linux, redhat
advisories | CVE-2018-1113
MD5 | 052b4472e8b5b2610c2c96b2ebfb3f33
Notes Manager 1.0 Shell Upload
Posted Oct 31, 2018
Authored by Ihsan Sencan

Notes Manager version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 2c1e7646664db47fa555768925253c58
Expense Management 1.0 Shell Upload
Posted Oct 31, 2018
Authored by Ihsan Sencan

Expense Management version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 3e4f0124277a38bffd8340de16815cd8
School Attendance Monitoring System 1.0 Shell Upload
Posted Oct 29, 2018
Authored by Ihsan Sencan

School Attendance Monitoring System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2018-18799
MD5 | 2cf494fff918da5a4ae1a920870904dc
School Event Management System 1.0 Shell Upload
Posted Oct 29, 2018
Authored by Ihsan Sencan

School Event Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
advisories | CVE-2018-18793
MD5 | 22cc8d03383f452cd7bd0eb86aa46ab6
Webiness Inventory 2.9 Shell Upload
Posted Oct 27, 2018
Authored by Boumediene Kaddour

Webiness Inventory version 2.9 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2018-18752
MD5 | 3fa741b3ec7919a771d219c34d4314ad
Shell In A Box 2.2.0 Denial Of Service
Posted Oct 27, 2018
Authored by Imre Rad

Shell In A Box versions 2.2.0 and below suffer from an infinite loop denial of service vulnerability.

tags | exploit, denial of service, shell
advisories | CVE-2018-16789
MD5 | 07020adca6e97df6e795a45fee4ff700
SIM-PKH 2.4.1 Shell Upload
Posted Oct 23, 2018
Authored by Ihsan Sencan

SIM-PKH version 2.4.1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
MD5 | 36310436e663f2db517072a0396e6a67
Solaris RSH Stack Clash Privilege Escalation
Posted Oct 15, 2018
Authored by Brendan Coles, Qualys Security Advisory | Site metasploit.com

This Metasploit module exploits a vulnerability in RSH on unpatched Solaris systems which allows users to gain root privileges. The stack guard page on unpatched Solaris systems is of insufficient size to prevent collisions between the stack and heap memory, aka Stack Clash. This Metasploit module uploads and executes Qualys' Solaris_rsh.c exploit, which exploits a vulnerability in RSH to bypass the stack guard page to write to the stack and create a SUID root shell. This Metasploit module has offsets for Solaris versions 11.1 (x86) and Solaris 11.3 (x86). Exploitation will usually complete within a few minutes using the default number of worker threads (10). Occasionally, exploitation will fail. If the target system is vulnerable, usually re-running the exploit will be successful. This Metasploit module has been tested successfully on Solaris 11.1 (x86) and Solaris 11.3 (x86).

tags | exploit, shell, x86, root
systems | solaris
advisories | CVE-2017-1000364, CVE-2017-3629, CVE-2017-3630, CVE-2017-3631
MD5 | 91b277586c77a3c37e33c0ac990f0483
Page 1 of 107
Back12345Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    10 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close