Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

MyBB Admin Control Remote Code Execution

Authored by Christophe de la Fuente, Altelus, Cillian Collins | Site metasploit.com This Metasploit module exploits an improper input validation vulnerability in MyBB versions prior to 1.8.30 to execute arbitrary...

Real Player 20.0.8.310 G2 Control DoGoToURL() Remote Code Execution

Authored by Eduardo Braun Prado | Site github.com The G2 Control component in Real Player version 20.0.8.310 suffer from remote code execution vulnerability.

Microsoft Follina Proof Of Concept

Authored by onecloudemoji | Site github.com Proof of concept exploit for the Microsoft Windows Support Diagnostic Tool (MSDT) remote code execution vulnerability dubbed Follina. advisories | CVE-2022-30190

Tigase XMPP Server Stanza Smuggling

Authored by Ivan Fratric, Google Security Research Tigase XMPP server suffers from a security vulnerability due to not escaping double quote character when serializing parsed XML. This can be used...

Fast Food Ordering System 1.0 SQL Injection

Authored by nu11secur1ty Fast Food Ordering System version 1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Title: Fast Food Ordering System 1.0 SQLi## Author: nu11secur1ty## Date: 05.30.2022## Vendor:...

Ingredient Stock Management System 1.0 SQL Injection

Authored by Saud Alenazi Ingredient Stock Management System version 1.0 suffers from a remote blind SQL injection vulnerability. Change Mirror Download # Exploit Title: Ingredient Stock Management System v1.0 - 'id' Blind...

Ingredient Stock Management System 1.0 Account Takeover

Authored by Saud Alenazi Ingredient Stock Management System version 1.0 suffers from an account takeover vulnerability. Change Mirror Download # Exploit Title: Ingredient Stock Management System v1.0 - Account Takeover (Unauthenticated)# Date:...

WordPress User Meta Lite / Pro 2.4.3 Path Traversal

Authored by Julien Ahrens | Site rcesecurity.com WordPress User Meta Lite and Pro plugin versions 2.4.3 and below suffer from a path traversal vulnerability. advisories | CVE-2022-0779 Change Mirror Download RCE Security Advisoryhttps://www.rcesecurity.com1....

Schneider Electric C-Bus Automation Controller (5500SHAC) 1.10 Remote Root

Authored by LiquidWorm | Site zeroscience.mk Schneider Electric C-Bus Automation Controller (5500SHAC) version 1.10 suffers from an authenticated arbitrary command execution vulnerability. An attacker can abuse the Start-up (init) script...

Fast Food Ordering System 1.0 Cross Site Scripting

Authored by Ashish Kumar Fast Food Ordering System version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download ## Title: Fast Food Ordering System 1.0 Stored Cross-Site Scripting## Author:...