Home Tools Exploits & CVE's

Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Ethercreative Logs 3.0.3 Path Traversal

0
Authored by Steffen Rogge | Site sec-consult.com Ethercreative Logs plugin versions 3.0.3 and below for Craft CMS suffer from a path traversal vulnerability. advisories | CVE-2022-23409 Change Mirror Download SEC Consult Vulnerability Lab...

Grandstream UCM62xx IP PBX sendPasswordEmail Remote Code Execution

0
Authored by jbaines-r7 | Site metasploit.com This Metasploit module exploits an unauthenticated SQL injection vulnerability and a command injection vulnerability affecting the Grandstream UCM62xx IP PBX series of devices. The...

Polkit pkexec CVE-2021-4034 Local Root

0
Authored by Davide Berardi | Site github.com Local privilege escalation root exploit for Polkit's pkexec vulnerability as described in CVE-2021-4034 and known as PwnKit. advisories | CVE-2021-4034

Backdoor.Win32.WinShell.50 Weak Hardcoded Password

0
Authored by malvuln | Site malvuln.com Backdoor.Win32.WinShell.50 malware suffers from a weak hardcoded password vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2022Original source: https://malvuln.com/advisory/1fd45364073a81ddd707d74ba5d4c121.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.WinShell.50Vulnerability: Weak...

Polkit pkexec CVE-2021-4034 Proof Of Concept

0
Authored by Andris Raugulis | Site github.com Local privilege escalation root exploit for Polkit's pkexec vulnerability as described in CVE-2021-4034. Verified on Debian 10 and CentOS 7. Written in C. advisories...

Linux Kernel Slab Out-Of-Bounds Write

0
Authored by Alejandro Guerrero Local privilege escalation exploit for a Linux kernel slab out-of-bounds write vulnerability. This exploit has been tested in an Ubuntu 21.04 Hirsute with kernel 5.11.0. advisories |...

CosaNostra Builder WebPanel Insecure Cryptographic Storage

0
Authored by malvuln | Site malvuln.com CosaNostra Builder WebPanel malware only uses straight MD5 to store passwords without any salt. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2022Original source:...

FAUST iServer 9.0.018.018.4 Local File Inclusion

0
Authored by Mario Keck | Site sec-consult.com Land Software's FAUST iServer versions 9.0.017.017.1-3 through 9.0.018.018.4 suffer from a local file inclusion vulnerability. advisories | CVE-2021-34805 Change Mirror Download SEC Consult Vulnerability Lab Security...

Ametys CMS 4.4.1 Cross Site Scripting

0
Authored by Vulnerability Laboratory | Site vulnerability-lab.com Ametys CMS version 4.4.1 suffers from a cross site scripting vulnerability. Change Mirror Download Document Title:===============Ametys v4.4.1 CMS - Cross Site Scripting VulnerabilityReferences (Source):====================https://www.vulnerability-lab.com/get_content.php?id=2275Release Date:=============2022-01-12Vulnerability...

Backdoor.Win32.DRA.c Weak Hardcoded Password

0
Authored by malvuln | Site malvuln.com Backdoor.Win32.DRA.c malware suffers from a weak hardcoded password vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2022Original source: https://malvuln.com/advisory/5ff832ce6af4b03a709eaf380672cf34.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.DRA.cVulnerability: Weak...
Error decoding the Instagram API json