Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Trojan.Ransom.Cryptowall Code Execution

Authored by malvuln | Site malvuln.com Cryptowall ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and...

ChatBot Application With A Suggestion Feature 1.0 SQL Injection

Authored by Saud Alenazi ChatBot Application with a Suggestion Feature version 1.0 suffers from a remote blind SQL injection vulnerability. Change Mirror Download # Exploit Title: ChatBot Application with a Suggestion Feature...

Trojan-Ransom.LockerGoga Code Execution

Authored by malvuln | Site malvuln.com LockerGoga ransomware looks for and loads a DLL named "wow64log.dll" in WindowsSystem32. Therefore, we can drop our own DLL to intercept and terminate the...

Trojan-Ransom.Cerber Code Execution

Authored by malvuln | Site malvuln.com Cerber ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and...

Ransom.CTBLocker Code Execution

Authored by malvuln | Site malvuln.com CTBLocker ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and...

Craft CMS 3.7.36 Password Reset Poisoning Attack

Authored by Sandro Einfeldt | Site sec-consult.com Craft CMS version 3.7.36 suffers from a password reset poisoning vulnerability. An unauthenticated attacker who knows valid email addresses or account names of...

Trojan.CryptoLocker Code Execution

Authored by malvuln | Site malvuln.com Cryptolocker ransomware drops a PE file in the AppDataRoaming directory which then tries to load a DLL named "netapi32.dll". Therefore, we can drop our...

Trojan-Ransom.Radamant Code Execution

Authored by malvuln | Site malvuln.com Radamant ransomware tries to load a DLL named "PROPSYS.dll" and execute a hidden PE file "DirectX.exe" from the AppDataRoaming directory. Therefore, we can drop...

SAP Web Dispatcher HTTP Request Smuggling

Authored by Yvan Genuer, Martin Doyhenard | Site onapsis.com SAP Web Dispatcher suffers from an HTTP request smuggling vulnerability. advisories | CVE-2021-38162 Change Mirror Download # Onapsis Security Advisory 2022-0001: HTTP Request Smuggling...

PHProjekt PhpSimplyGest / MyProjects 1.3.0 Cross Site Scripting

Authored by Andrea Intilangelo PHProjekt PhpSimplyGest and MyProjects version 1.3.0 suffer from a cross site scripting vulnerability. advisories | CVE-2022-27308 Change Mirror Download # Exploit Title: PHProjekt (PhpSimplyGest / MyProjects, 1.3.0) - Stored...