Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

ChurchCRM 4.4.5 SQL Injection

Authored by nu11secur1ty ChurchCRM version 4.4.5 suffers from a remote SQL injection vulnerability. advisories | CVE-2022-31325 Change Mirror Download ## Title: ChurchCRM 4.4.5 SQLi session hijacking L2## Author: nu11secur1ty## Date: 05.11.2022## Vendor: https://churchcrm.io/##...

JM-DATA ONU JF511-TV 1.0.67 / 1.0.62 / 1.0.55 XSS / CSRF / Open Redirect

Authored by Neurogenesia | Site zeroscience.mk JM-DATA ONU JF511-TV versions 1.0.67, 1.0.62, and 1.0.55 suffer from cross site request forgery, persistent cross site scripting, default credential, and open redirection vulnerabilities. Change...

Trojan-Banker.Win32.Banker.agzg MVID-2022-0608 Insecure Permissions

Authored by malvuln | Site malvuln.com Trojan-Banker.Win32.Banker.agzg malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source:https://malvuln.com/advisory/ef1e59148c9a902ae5454760aaab73fe.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Banker.Win32.Banker.agzgVulnerability: Insecure...

Trojan-Banker.Win32.Banbra.cyt MVID-2022-0611 Insecure Permissions

Authored by malvuln | Site malvuln.com Trojan-Banker.Win32.Banbra.cyt malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/e0f2bee25dd103d92e91e895e313ec34.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Banker.Win32.Banbra.cytVulnerability:...

Trojan-Proxy.Win32.Symbab.o MVID-2022-0610 Heap Corruption

Authored by malvuln | Site malvuln.com Trojan-Proxy.Win32.Symbab.o malware suffers from a heap corruption vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/bffc519fbaf2d119bd307cd22368cdc7.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Proxy.Win32.Symbab.oVulnerability:...

Ransom.Haron MVID-2022-0609 Code Execution

Authored by malvuln | Site malvuln.com Haron ransomware looks for and executes DLLs in its current directory. Therefore, we can potentially hijack a DLL to execute our own code and...

Backdoor.Win32.Cabrotor.10.d MVID-2022-0612 Remote Command Execution

Authored by malvuln | Site malvuln.com Backdoor.Win32.Cabrotor.10.d malware suffers from an unauthenticated remote command execution vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022Original source: https://malvuln.com/advisory/40acf109fa9621eae6930ef18f804909.txtContact: [email protected]:...

Microsoft Office Word MSDTJS Code Execution

Authored by Ramella Sebastien, nao sec | Site metasploit.com This Metasploit module generates a malicious Microsoft Word document that when loaded, will leverage the remote template feature to fetch an...

WordPress Download Manager 3.2.42 Cross Site Scripting

Authored by Rafie Muhammad | Site wordfence.com WordPress Download Manager versions 3.2.42 and below suffer from a cross site scripting vulnerability. advisories | CVE-2022-1985 Change Mirror Download Description: Reflected Cross-Site ScriptingAffected Plugin: Download...

Atlassian Confluence Namespace OGNL Injection

Authored by unknown, Spencer McIntyre, jbaines-r7, bturner-r7 | Site metasploit.com This Metasploit module exploits an OGNL injection in Atlassian Confluence servers. A specially crafted URI can be used to evaluate...