Exploits & CVE's

Authored by Alexander Hagenah | Site metasploit.com This Metasploit module exploits a vulnerability in WinRAR (CVE-2023-38831). When a user opens a crafted RAR file and its embedded document, the decoy...

Authored by indoushka iSmile Soft CMS version 0.3.0 suffers from a cross site scripting vulnerability. Change Mirror Download ====================================================================================================================================| # Title : iSmile Soft CMS v0.3.0 XSS Vulnerability...

Authored by indoushka IWT Imagine CMS version 1.0 suffers from a cross site scripting vulnerability. Change Mirror Download ====================================================================================================================================| # Title : IWT Imagineِ CMS v1.0 XSS Vulnerability...

Authored by indoushka Varient News Magazine Script version 1.3.0 suffers from an ignored default credential vulnerability. Change Mirror Download ======================================================================================================================================| # Title : Varient News Magazine Script V1.3.0...

Authored by nu11secur1ty Shuttle Booking Software version 1.0 suffers from multiple remote SQL injection vulnerabilities. Change Mirror Download ## Title: Shuttle-Booking-Software-1.0 Multiple-SQLi## Author: nu11secur1ty## Date: 09/10/2023## Vendor: https://www.phpjabbers.com/## Software: https://www.phpjabbers.com/shuttle-booking-software/#sectionPricing## Reference: https://portswigger.net/web-security/sql-injection##...

Authored by Ahmet Umit Bayram GOM Player version 2.3.90.5360 suffers from a buffer overflow vulnerability. Change Mirror Download # Exploit Title: GOM Player 2.3.90.5360 - Buffer Overflow (PoC)# Discovered by: Ahmet Ümit...

Authored by mohamed Youssef SyncBreeze version 15.2.24 suffers from a denial of service vulnerability. Change Mirror Download # Exploit Title: SyncBreeze 15.2.24 -'login' Denial of Service# Date: 30/08/2023# Exploit Author: mohamed youssef#...

Authored by nu11secur1ty Event Ticketing System version 1.0 suffers from a cross site scripting vulnerability. Change Mirror Download ## Title: Event Ticketing System-1.0 XSS-Reflected - RCE## Author: nu11secur1ty## Date: 09/08/2023## Vendor: https://www.phpjabbers.com/##...

Authored by Google Security Research, mjurczyk The Microsoft Windows Kernel suffers from out-of-bounds reads due to an integer overflow in registry .LOG file parsing. advisories | CVE-2023-35386

Authored by Google Security Research, mjurczyk The Microsoft Windows Kernel has an issue where a partial success of registry hive log recovery may lead to inconsistent state and memory corruption. advisories...