Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Telesquare SDT-CW3B1 1.1.0 Command Injection

Authored by Bryan Leong Telesquare SDT-CW3B1 version 1.1.0 suffers from a command injection vulnerability. advisories | CVE-2021-46422 Change Mirror Download #!/usr/bin/python3 # Exploit Title: Telesquare SDT-CW3B1 1.1.0 - OS Command Injection# Date: 24th...

Real Player 16.00.282 / 16.0.3.51 / Cloud 17.0.9.17 / 20.0.7.309 Remote Code Execution

Authored by Eduardo Braun Prado | Site github.com Real Player versions 16.00.282, 16.0.3.51, Cloud 17.0.9.17, and 20.0.7.309 suffer from external::Import() arbitrary file download and directory traversal vulnerabilities that lead to...

Real Player 16.0.3.51 / Cloud 17.0.9.17 / 20.0.7.309 DCP URI Remote Code Execution

Authored by Eduardo Braun Prado | Site github.com Real Player versions 16.0.3.51, Cloud 17.0.9.17, and 20.0.7.309 suffer from a DCP:// URI remote code execution vulnerability.

Avantune Genialcloud ProJ 10 Cross Site Scripting

Authored by Andrea Intilangelo Avantune Genialcloud ProJ version 10 suffers from a cross site scripting vulnerability. advisories | CVE-2022-29296 Change Mirror Download # Exploit Title: Avantune Genialcloud ProJ 10 - Reflected XSS (Cross-Site...

OpenSSL 1.0.2 / 1.1.1 / 3.0 BN_mod_sqrt() Infinite Loop

Authored by Tavis Ormandy, Google Security Research The BN_mod_sqrt() function in OpenSSL versions 1.0.2, 1.1.1, and 3.0, which computes a modular square root, contains a bug that can cause it...

libxml2 xmlBufAdd Heap Buffer Overflow

Authored by Google Security Research, Felix Wilhelm libxml2 is vulnerable to a heap buffer overflow when xmlBufAdd is called on a very large buffer. advisories | CVE-2022-29824 Change Mirror Download libxml2: heap-buffer-overflow in...

Packet Storm New Exploits For May, 2022

Authored by Todd J. | Site packetstormsecurity.com This archive contains all of the 142 exploits added to Packet Storm in May, 2022.

GtkRadiant 1.6.6 Buffer Overflow

Authored by Jeremy Brown GtkRadiant version 1.6.6 suffers from a buffer overflow vulnerability. Change Mirror Download =====Intro=====GtkRadiant is a cross-platform level editor software for idtech game engines such as Quake. It comes...

dotCMS Shell Upload

Authored by jheysel-r7, Hussein Daher, Shubham Shah | Site metasploit.com When files are uploaded into dotCMS via the content API, but before they become content, dotCMS writes the file down...

Microsoft Office MSDT Follina Proof Of Concept

Authored by JMousqueton | Site github.com Proof of concept for the remote code execution vulnerability in MSDT known as Follina. advisories | CVE-2022-30190 Change Mirror Download # POC CVE-2022-30190 : CVE 0-day MS...