Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Transposh WordPress Translation 1.0.8.1 Remote Code Execution

Authored by Julien Ahrens | Site rcesecurity.com Transposh WordPress Translation versions 1.0.8.1 and below have a "save_transposh" action available at "/wp-admin/admin.php?page=tp_advanced" that does not properly validate the "Log file name"...

Backdoor.Win32.Eclipse.h MVID-2022-0625 Hardcoded Credential

Authored by malvuln | Site malvuln.com Backdoor.Win32.Eclipse.h malware suffers from a hardcoded credential vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/8b470931114527b4dce42034a95ebf46.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Eclipse.hVulnerability:...

Marty Marketplace Multi Vendor Ecommerce Script 1.2 SQL Injection

Authored by CraCkEr Marty Marketplace Multi Vendor Ecommerce Script version 1.2 suffers from a remote SQL injection vulnerability. Change Mirror Download ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...

Patlite 1.46 Buffer Overflow

Authored by Samy Younsi Patlite versions 1.45 and below suffer from a buffer overflow vulnerability. advisories | CVE-2022-35911 Change Mirror Download # Exploit Title: CVE-2022-35911 - Patlite Overflow.# Date: 2022-07-07# Exploit Author: Samy...

PCProtect Endpoint 5.17.470 Tampering / Privilege Escalation

Authored by Yehia Elghaly PCProtect Endpoint version 5.17.470 fails to provide sufficient anti-tampering protection that can be leveraged to achieve SYSTEM privileges. Change Mirror Download Credits: Yehia Elghaly (aka Mrvar0x) ...

Expert X Jobs Portal And Resume Builder 1.0 SQL Injection

Authored by CraCkEr Expert X Jobs Portal and Resume Builder version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...

Garage Management System 1.0 Shell Upload

Authored by saitamang Garage Management System version 1.0 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: Garage Management System Remote Code Execution via File Upload# Date: 24/07/2022#...

Hospital Information System 1.0 SQL Injection

Authored by saitamang Hospital Information System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Change Mirror Download # Exploit Title: Hospital Information System - SQL Injection...

Roxy-WI Remote Command Execution

Authored by Nuri Cilengir | Site metasploit.com This Metasploit module exploits an unauthenticated command injection vulnerability in Roxy-WI versions prior to 6.1.1.0. Successful exploitation results in remote code execution under...

Loan Management System 1.0 Cross Site Scripting

Authored by saitamang Loan Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: Loan Management System - Stored XSS on several parameters# Date:...