Exploits & CVE's

Authored by Blasty, Max Kellermann Variant proof of concept exploit for the Dirty Pipe file overwrite vulnerability. This version hijacks a SUID binary to spawn a root shell. advisories | CVE-2022-0847 Change...

Authored by Mohamed Alzhrani Wondershare Dr.Fone version 12.0.18 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: Wondershare Dr.Fone 12.0.18 - 'Wondershare InstallAssist' Unquoted Service Path# Discovery by:...

Authored by Hejap Zairy Cobian Backup version 0.9 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: Cobian Backup 0.9 - Unquoted Service Path# Date: 06/03/2022# Exploit Author:...

Authored by faisalfs10x Webmin version 1.984 authenticated remote code execution exploit. advisories | CVE-2022-0824 Change Mirror Download # Exploit Title: Webmin 1.984 - Remote Code Execution (Authenticated)# Date: 2022-03-06# Exploit Author: faisalfs10x (https://github.com/faisalfs10x)#...

Authored by Logan Latvala Printix Client version 1.3.1106.0 suffers from a privilege escalation vulnerability. advisories | CVE-2022-25090 Change Mirror Download # Exploit Title: Printix Client 1.3.1106.0 - Privilege Escalation# Date: 3/2/2022# Exploit Author:...

Authored by Saud Alenazi Private Internet Access version 3.3 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: Private Internet Access 3.3 - 'pia-service' Unquoted Service Path# Date:...

Authored by malvuln | Site malvuln.com Loki RAT (Relapse) malware suffers from a remote SQL injection vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2022Original source: https://malvuln.com/advisory/aabb54951546132e70a8e9f02bf8b5ba_B.txtContact: [email protected]: twitter.com/malvulnThreat:...

Authored by Sunny Mehra part-db version 0.5.11 suffers from a remote code execution vulnerability. advisories | CVE-2022-0848 Change Mirror Download # Exploit Title: part-db 0.5.11 - Remote Code Execution (RCE)# Google Dork: NA#...

Authored by Dolev Farhi Hasura GraphQL version 2.2.0 suffers from an information disclosure vulnerability. Change Mirror Download # Exploit Title: Hasura GraphQL 2.2.0 - Information Disclosure# Software: Hasura GraphQL Community# Software Link:...

Authored by pr0z Attendance and Payroll System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download # Exploit Title: Attendance and Payroll System v1.0...