Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Covenant 0.5 Remote Code Execution

0
Authored by xThaz Covenant version 0.5 suffers from a remote code execution vulnerability. Change Mirror Download # Exploit Title: Covenant v0.5 - Remote Code Execution (RCE)# Exploit Author: xThaz# Author website: https://xthaz.fr/#...

Virtual Reception 1.0 Directory Traversal

0
Authored by Spinae Virtual Reception version 1.0 suffers from a directory traversal vulnerability. Change Mirror Download # Exploit Title: Virtual Reception v1.0 - Web Server Directory Traversal# Exploit Author: Spinae# Vendor Homepage:...

Lavasoft 4.1.0.409 Unquoted Service Path

0
Authored by P4p4 M4n3 Lavasoft version 4.1.0.409 suffers from an unquoted service path vulnerability. Change Mirror Download #Exploit Title: Lavasoft web companion 4.1.0.409 - 'DCIservice' Unquoted Service Path# Author: P4p4 M4n3# Discovery...

CrowdStrike Falcon Agent 6.44.15806 Uninstall Issue

0
Authored by Fortunato Lodari, Luca Bernardi, Davide Bianchin, Raffaele Nacca, Walter Oberacher CrowdStrike Falcon Agent version 6.44.15806 has an uninstall bypass flaw that works without an installation token. advisories | CVE-2022-2841,...

Forcepoint (Stonesoft VPN Client) 6.2.0 / 6.8.0 Local Privilege Escalation

0
Authored by Touhami Kasbaoui Forcepoint (Stonesoft VPN Client) versions 6.2.0 and 6.8.0 suffer from a privilege escalation vulnerability. Change Mirror Download # Exploit Author : TOUHAMI KASBAOUI# Vendor Homepage : https://www.forcepoint.com/ #...

WordPress WPForms 1.7.8 Cross Site Scripting

0
Authored by Milad Karimi WordPress WPForms plugin version 1.7.8 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: WPForms 1.7.8 - Cross-Site Scripting (XSS)# Date: 2022-12-05# Author: Milad...

Eve-ng 5.0.1-13 Cross Site Scripting

0
Authored by hassan ali al-khafaji Eve-ng version 5.0.1-13 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: Eve-ng 5.0.1-13 - Stored Cross-Site Scripting (XSS) # Google Dork: N/A#...

Ancillary Function Driver (AFD) For Winsock Privilege Escalation

0
Authored by Christophe de la Fuente, b33f, Yarden Shafir, chompie | Site metasploit.com A vulnerability exists in the Windows Ancillary Function Driver for Winsock (afd.sys) can be leveraged by an...

Label Studio 1.5.0 Server-Side Request Forgery

0
Authored by DeveloperNinja Label Studio versions 1.5.0 and below suffer from a server-side request forgery vulnerability. advisories | CVE-2022-36551 Change Mirror Download # Exploit Title: Label Studio 1.5.0 - Authenticated Server Side Request...

OPSWAT Metadefender Core 4.21.1 Privilege Escalation

0
Authored by Ulascan Yildirim OPSWAT Metadefender Core version 4.21.1 suffers from a privilege escalation vulnerability. advisories | CVE-2022-32272 Change Mirror Download # Exploit Title: OPSWAT Metadefender Core - Privilege Escalation# Date: 24 October...