F5 BIG-IP Authorization Bypass / User Creation
Authored by W01fh4cker | Site github.com
F5 BIG-IP remote user addition exploit that leverages the authorization bypass vulnerability as called out in CVE-2023-46747.
advisories | CVE-2023-46747
GL.iNet AR300M 4.3.7 Arbitrary File Write
Authored by Michele Di Bonaventura
GL.iNet AR300M versions 4.3.7 and below suffer from an arbitrary file writing vulnerability.
advisories | CVE-2023-46455
Change Mirror Download
#!/usr/bin/env python3# Exploit Title: GL.iNet <= 4.3.7 Arbitrary File...
GL.iNet AR300M 4.3.7 Remote Code Execution
Authored by Michele Di Bonaventura
GL.iNet AR300M versions 4.3.7 and below suffer from an OpenVPN client related remote code execution vulnerability.
advisories | CVE-2023-46454
Change Mirror Download
#!/usr/bin/env python3# Exploit Title: GL.iNet <=...
GL.iNet AR300M 3.216 Remote Code Execution
Authored by Michele Di Bonaventura
GL.iNet AR300M versions 3.216 and below suffer from an OpenVPN client related remote code execution vulnerability.
advisories | CVE-2023-46456
Change Mirror Download
#!/usr/bin/env python3# Exploit Title: GL.iNet <=...
Easywall 0.3.1 Remote Command Execution
Authored by Melvin Mejia
Easywall version 0.3.1 suffers from an authenticated remote command execution vulnerability.
Change Mirror Download
# Exploit Title: Easywall 0.3.1 - Authenticated Remote Command Execution# Date: 30-11-2023# Exploit Author:...
Petrol Pump Management Software 1.0 Cross Site Scripting
Authored by Shubham Pandey
Petrol Pump Management Software version 1.0 suffers from multiple cross site scripting vulnerabilities.
advisories | CVE-2024-27743, CVE-2024-27744
Change Mirror Download
# Exploit Title: Cross Site Scripting vulnerability in Petrol...
Petrol Pump Management Software 1.0 SQL Injection
Authored by Shubham Pandey
Petrol Pump Management Software version 1.0 suffers from a remote SQL injectionvulnerability.
Change Mirror Download
# Exploit Title: SQL Injection vulnerability in Petrol Pump ManagementSoftware v.1.0.# Date: 01-03-2024#...
Petrol Pump Management System 1.0 Shell Upload
Authored by Shubham Pandey
Petrol Pump Management System version 1.0 suffers from a remote shell upload vulnerability. This is a variant vector of attack in comparison to the original discovery...
Wallos Shell Upload
Authored by sML
Wallos versions prior to 1.11.2 suffer from a remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: Wallos - File Upload RCE (Authenticated)# Date: 2024-03-04# Exploit Author: [email protected]#...
TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 Privilege Escalation
Authored by Shahnawaz Shaikh
TP-Link JetStream Smart Switch TL-SG2210P version 5.0 build 20211201 suffers from a privilege escalation vulnerability.
advisories | CVE-2023-43318
Change Mirror Download
Credits: Shahnawaz Shaikh, Security Researcher at Cybergate...