Online Food Ordering System version 2.0 remote shell upload exploit.
3f132c1cd4abfb44da7318034f0e0404Church Management System version 1.0 remote shell upload exploit.
5c2e75b9bc007a4015cb43e73a0bf6ddRemote command execution exploit for Zenitel AlphaCom XE Audio Server versions up to 11.2.3.10 which have a web interface called AlphaWeb XE that allows for a remote shell upload.
7e648c2e86d13eff9019116bcae14157Zenitel AlphaCom XE Audio Server versions up to 11.2.3.10 have a web interface called AlphaWeb XE that allows for a remote shell upload.
6b53ff27b2a4d835007b117376d0f7c0Purchase Order Management System version 1.0 suffers from a remote shell upload vulnerability.
f35dbf962e11f319a7ed3f52f0e7edfaApartment Visitor Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for a shell upload.
2ea182061b9cf4d7e75a879b4e350ea6WordPress Download From Files plugin version 1.48 suffers from a remote shell upload vulnerability.
a6b690ce567b2506a7e8bf9edaee5c15Patient Appointment Scheduler System version 1.0 suffers from a remote shell upload vulnerability.
4c0c21239894f3ed1286f3d420aefb9dOnline Leave Management System version 1.0 suffers from a remote shell upload vulnerability.
e26581f382da4586b54fa0bafa96dbb9Simple Image Gallery version 1.0 suffers from an unauthenticated remote shell upload vulnerability.
29353b69e905ce60836dcda2ac84309eSimple Water Refilling Station Management System version 1.0 suffers from a remote shell upload vulnerability.
6829240820b70fe95885451f8333c89eHotel Management System version 1.0 exploit that leverages a blind cross site scripting attack against the admin to have a reverse PHP shell uploaded.
aa7d7b6de743aefd9eda1c19bbe45794ObjectPlanet Opinio version 7.13 suffers from a remote shell upload vulnerability.
428a660ba8fcf617d5de88b7920acbe4Event Registration System with QR Code version 1.0 suffers from authentication bypass and shell upload vulnerabilities.
0258508306684f3c1ccb2c248610b9a3Red Hat Security Advisory 2021-2438-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include bypass, code execution, denial of service, open redirection, resource exhaustion, and remote shell upload vulnerabilities.
dda5a75b5b7fd18f58795ba51eeb6a02Denver Smart Wifi Camera SHC-150 has a hardcoded backdoor login vulnerability available via telnet that gives a shell.
a9a3afa83abcffe28d96ceb14d65cdc7This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress SP Project and Document plugin versions prior to 4.22. The security check only searches for lowercase file extensions such as .php, making it possible to upload .pHP files for instance. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/sp-client-document-manager/<user_id>/<random_payload_name>.php.
d73daa7ac6681410691920aff7640598This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress Modern Events Calendar plugin versions prior to 5.16.5. This is due to an incorrect check of the uploaded file extension. Indeed, by using text/csv content-type in a request, it is possible to upload a .php payload as is is not forbidden by the plugin. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/<random_payload_name>.php.
75b29e689541f825031d9308d2c36b24This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in Wordpress plugin Backup Guard versions prior to 1.6.0. This is due to an incorrect check of the uploaded file extension which should be of SGBP type. Then, the uploaded payload can be triggered by a call to /wp-content/uploads/backup-guard/<random_payload_name>.php.
a13b79ee96d9f6b0f86db446a8c091a9Webmin version 1.973 cross site request forgery exploit that loads a reverse shell.
64d50ff2e6b23cb13a822ba9d9b79c96Linux/x86 egghunter reverse TCP shell shellcode generator with dynamic IP and port.
12a643a44f3245dd82780330839889e3WordPress Popular Posts plugin version 5.3.2 suffers from a remote shell upload vulnerability.
d260aa6f7a6cdf6bd50085eb8b82c659Garbage Collection Management System version 1.0 shell upload exploit that leverages a SQL injection vulnerability.
ea34ecce44fb54eefcd9fffe39d45a35OpenEMR version 5.0.1.3 authenticated remote shell upload exploit that leverages a vulnerability discovered in 2018.
42dde552844a71d54aa98a08c105ae9f86 bytes small Linux/x86 reverse TCP shell with dynamic IP and port binding shellcode.
15a0f14a218e63eb34bcd799a25afa3f
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed