Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Prestashop Blockwishlist 2.1.0 SQL Injection

0
Authored by Karthik UJ Prestashop Blockwishlist module version 2.1.0 suffers from a remote SQL injection vulnerability. advisories | CVE-2022-31101 Change Mirror Download # Exploit Title: Prestashop blockwishlist module 2.1.0 - SQLi# Date: 29/07/22#...

Nortek Linear eMerge E3-Series Command Injection

0
Authored by Omar Hashim Nortek Linear eMerge E3-Series version 0.32-09c suffers from a blind OS command injection vulnerability. advisories | CVE-2022-31499 Change Mirror Download # Exploit Title: Nortek Linear eMerge E3-Series - Blind...

Nortek Linear eMerge E3-Series Account Takeover

0
Authored by Omar Hashim Nortek Linear eMerge E3-Series version 0.32-07p suffers from a vulnerability where session fixation tied with cross site scripting can allow for account takeover. advisories | CVE-2022-31798 Change Mirror...

WordPress Duplicator 1.4.7.1 Backup Disclosure

0
Authored by nu11secur1ty WordPress Duplicator plugin version 1.4.7.1 suffers from a backup disclosure vulnerability. Change Mirror Download ## Title: WordPress Plugin Duplicator 1.4.7.1 - Unauthenticated Backup Download## Author: nu11secur1ty## Date: 08.08.2022## Vendor:...

ManageEngine ADAudit Plus Path Traversal / XML Injection

0
Authored by Ron Bowes, Naveen Sunkavally | Site metasploit.com This Metasploit module exploits CVE-2022-28219, which is a pair of vulnerabilities in ManageEngine ADAudit Plus versions before build 7060. They include...

Backdoor.Win32.Bushtrommel.122 MVID-2022-0629 Authentication Bypass

0
Authored by malvuln | Site malvuln.com Backdoor.Win32.Bushtrommel.122 malware suffers from an authentication bypass vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/76c09bc82984c7f7ef55eb13018e0d87.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Bushtrommel.122Vulnerability:...

Backdoor.Win32.Bushtrommel.122 MVID-2022-0630 Remote Command Execution

0
Authored by malvuln | Site malvuln.com Backdoor.Win32.Bushtrommel.122 malware suffers from an unauthenticated remote command execution vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/76c09bc82984c7f7ef55eb13018e0d87_B.txtContact: [email protected]:...

WordPress Ecwid Ecommerce Shopping Cart 6.10.23 Cross Site Request Forgery

0
Authored by Marco Wotschka | Site wordfence.com WordPress Ecwid Ecommerce Shopping Cart plugin versions 6.10.23 and below suffer from a cross site request forgery vulnerability. advisories | CVE-2022-2432 Change Mirror Download Description: Cross-Site...

Zimbra UnRAR Path Traversal

0
Authored by Ron Bowes, Simon Scannell | Site metasploit.com This Metasploit module creates a RAR file that can be emailed to a Zimbra server to exploit CVE-2022-30333. If successful, it...

Nortek Linear eMerge E3-Series Credential Disclosure

0
Authored by Omar Hashim Nortek Linear eMerge E3-Series versions 0.32-07p, 0.32-07e, 0.32-07p, 0.32-08f, and 0.32-09c suffer from an administrative credential disclosure vulnerability. advisories | CVE-2022-31269 Change Mirror Download # Exploit Title: Nortek Linear...