Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Lilac-Reloaded For Nagios 2.0.8 Remote Code Execution

0
Authored by Zoltan Padanyi Lilac-Reloaded for Nagios version 2.0.l8 remote code execution exploit. Change Mirror Download #!/usr/bin/env python"""# Exploit Title: Lilac-Reloaded for Nagios 2.0.8 - Remote Code Execution (RCE)# Google Dork: N/A#...

Swagger UI 4.1.3 Critical Information Misrepresentation

0
Authored by Rafael Cintra Lopes Swagger UI version 4.1.3 user interface misrepresentation of information proof of concept exploit. Change Mirror Download # Exploit Title: Swagger UI 4.1.3 - User Interface (UI) Misrepresentation...

Franklin Fueling Systems TS-550 Hash Disclosure / Default Credentials

0
Authored by parsa rezaie khiabanloo Franklin Fueling Systems TS-550 suffers from a password hash disclosure vulnerability. Change Mirror Download # Exploit Title: Franklin Fueling Systems TS-550 - Default Password# Date: 4/16/2023# Exploit...

Bang Resto 1.0 Cross Site Scripting

0
Authored by Rahad Chowdhury Bang Resto version 1.0 suffers from a cross site scripting vulnerability. advisories | CVE-2023-29848 Change Mirror Download # Exploit Title: Bang Resto v1.0 - Stored Cross-Site Scripting (XSS)# Date:...

Bang Resto 1.0 SQL Injection

0
Authored by Rahad Chowdhury Bang Resto version 1.0 suffers from multiple SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to nu11secur1ty in December of 2022. advisories...

AspEmail 5.6.0.2 Weak Permissions / Local Privilege Escalation

0
Authored by Zer0FauLT AspEmail version 5.6.0.2 suffers from weak permission vulnerability that allows for local privilege escalation. Change Mirror Download ##################################################################################################################### Exploit Title: AspEmail 5.6.0.2 - Local Privilege Escalation ...

CentOS Stream 9 Missing Kernel Security Fix

0
Authored by Jann Horn, Google Security Research CentOS Stream 9 has a missing kernel security fix for a tun double-free amongst other missing fixes. Included is a local root exploit...

WordPress Weaver Xtreme 5.0.7 / Weaver Show Posts 1.6 Cross Site Scripting

0
Authored by Ramuel Gall, Alex Thomas | Site wordfence.com WordPress Weaver Xtreme theme versions 5.0.7 and below and Weaver Show Posts plugin versions 1.6 and below suffer from a persistent...

VMware Workspace ONE Remote Code Execution

0
Authored by mr_me, jheysel-r7 | Site metasploit.com This Metasploit module combines two vulnerabilities in order achieve remote code execution in the context of the horizon user. The first vulnerability, CVE-2022-22956,...

SPIP Remote Command Execution

0
Authored by coiffeur, Laluka, Julien Voisin | Site metasploit.com This Metasploit module exploits a PHP code injection in SPIP. The vulnerability exists in the oubli parameter and allows an unauthenticated...