Exploits & CVE's

Authored by Akash Pandey Online Student Clearance System versions 1.0 and below suffer from a remote shell upload vulnerability. advisories | CVE-2022-3436 Change Mirror Download #!/usr/bin/python3# Exploit Title: Online Student Clearance System -...

Authored by tmrswrr CE Phoenix version 1.0.8.20 remote code execution exploit written in Python. Change Mirror Download ## Exploit Title: CE Phoenix v1.0.8.20 - Remote Code Execution (RCE) (Authenticated)#### Date: 2023-11-25#### Exploit...

Authored by tmrswrr WBCE CMS version 1.6.1 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: WBCE CMS Version : 1.6.1 Remote Command Execution# Date: 30/11/2023# Exploit...

Authored by tmrswrr Kopage Website Builder version 4.4.15 suffers from a persistent cross site scripting vulnerability. Change Mirror Download #Exploit Title: Kopage Website Builder version 4.4.15 – Stored Cross-Site Scripting (XSS)#Date: 1/12/2023#Exploit...

Authored by Todd J. | Site packetstormsecurity.com This archive contains all of the 49 exploits added to Packet Storm in November, 2023.

Authored by LiquidWorm | Site zeroscience.mk The Atemio AM 520 HD Full HD satellite receiver has a vulnerability that enables an unauthorized attacker to execute system commands with elevated privileges....

Authored by Maurizio Ruchay | Site syss.de SmartNode SN200 versions 3.21.2-23021 and below suffer from a remote command execution vulnerability. advisories | CVE-2023-41109 Change Mirror Download Advisory ID: SYSS-2023-019Product: SmartNode SN200 Analog Telephone...

Authored by Daniel Hirschberger, Marco Schillinger, Steven Kurka | Site sec-consult.com m-privacy TightGate-Pro suffers from code execution, insecure permissions, deletion mitigation, and outdated server vulnerabilities. advisories | CVE-2023-47250, CVE-2023-47251 Change Mirror Download SEC...

Authored by Google Security Research, nedwill A dangling pointer vulnerability is present in WebRTC's PacketRouter due to an SDP SIM group SSRC from one track (e.g., video) colliding with an...

Authored by tmrswrr Magento version 2.4.6 XSLT server-side injection proof of concept exploit. Change Mirror Download # Exploit Title: Magento ver. 2.4.6 - XSLT Server Side InjectionDate:** 2023-11-17Exploit Author:** tmrswrrVendor Homepage:** (https://magento2demo.firebearstudio.com/)Software...