Traceroute 2.1.2 Privilege Escalation
Authored by g30ff1rl
In Traceroute versions 2.0.12 through to 2.1.2, the wrapper scripts mishandle shell metacharacters, which can lead to privilege escalation if the wrapper scripts are executed via sudo....
Golden FTP Server 2.02b Denial Of Service
Authored by Fernando Mengali
Golden FTP Server version 2.02b remote denial of service exploit.
Change Mirror Download
#!/usr/bin/perluse IO::Socket::INET;# Exploit Title: Golden FTP Server 2.02b - Denial of Service (DoS)# Discovery by:...
xbtitFM 4.1.18 SQL Injection / Shell Upload / Traversal
Authored by Who cares anyway
xbtitFM versions 4.1.18 and below suffer from remote shell upload, remote SQL injection, and path traversal vulnerabilities.
Change Mirror Download
# Exploit Title: xbtitFM 4.1.18 Multiple Vulnerabilities#...
Linux 5.6 io_uring Cred Refcount Overflow
Authored by Jann Horn, Google Security Research
Linux versions 5.6 and above appear to suffer from a cred refcount overflow when handling approximately 39 gigabytes of memory usage via io_uring.
Change...
Apache Commons Text 1.9 Remote Code Execution
Authored by Alvaro Munoz, Karthik UJ, Gaurav Jain | Site metasploit.com
This Metasploit module exploit takes advantage of the StringSubstitutor interpolator class, which is included in the Commons Text library....
Easy File Sharing FTP 3.6 Denial Of Service
Authored by Fernando Mengali
Easy File Sharing FTP version 3.6 remote denial of service exploit.
Change Mirror Download
#!/usr/bin/perluse Net::FTP;# Exploit Title: Easy File Sharing FTP Server 3.6 - Denial of Service...
Legends Of IdleOn Random Number Generation Manipulation
Authored by Soatok Dreamseeker | Site gist.github.com
Legends of IdleOn suffers from use of an insecure random number generator that can be replaced by a malicious user.
SpyCamLizard 1.230 Denial Of Service
Authored by Fernando Mengali
SpyCamLizard version 1.230 remote denial of service exploit.
Change Mirror Download
#!/usr/bin/perluse IO::Socket::INET;# Exploit Title: SpyCamLizard 1.230 - Denial of Service (DoS)# Discovery by: Fernando Mengali# Discovery Date:...
Ansible Agent Payload Deployer
Authored by h00die, n0tty | Site metasploit.com
This exploit module creates an ansible module for deployment to nodes in the network. It creates a new yaml playbook which copies our...
WordPress Backup Migration 1.3.7 Remote Command Execution
Authored by jheysel-r7, Valentin Lobstein, Nex Team | Site metasploit.com
This Metasploit module exploits an unauthenticated remote command execution vulnerability in WordPress Backup Migration plugin versions 1.3.7 and below. The...
