Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Packet Storm New Exploits For March, 2022

Authored by Todd J. | Site packetstormsecurity.com This archive contains all of the 170 exploits added to Packet Storm in March, 2022.

ALLMediaServer 1.6 Buffer Overflow

Authored by Hejap Zairy | Site metasploit.com This Metasploit module exploits a stack buffer overflow in ALLMediaServer version 1.6. The vulnerability is caused due to a boundary error within the...

Sherpa Connector Service 2020.2.20328.2050 Unquoted Service Path

Authored by Harshit, Manthan Chhabra Sherpa Connector Service version 2020.2.20328.2050 suffers from an unquoted service path vulnerability. advisories | CVE-2022-23909 Change Mirror Download # Exploit Title: Sherpa Connector Service (v2020.2.20328.2050) - Unquoted...

Message System 1.0 SQL Injection

Authored by Hejap Zairy Message System version 1.0 suffers from a remote SQL injection vulnerability that can lead to remote code execution. Change Mirror Download # Title: Message System 1.0 1.0 Blind...

Medical Hub Directory Site 1.0 SQL Injection

Authored by Hejap Zairy Medical Hub Directory Site version 1.0 suffers from a remote blind SQL injection vulnerability. This research was submitted on the same day Packet Storm received similar...

Spoofer 1.4.6 Privilege Escalation / Unquoted Service Path

Authored by Asim Sattar Spoofer version 1.4.6 suffers from an unquoted service path vulnerability that can lead to privilege escalation. advisories | CVE-2021-46443 Change Mirror Download # Exploit Title: Spoofer 1.4.6 – Local...

EG Free AntiVirus 2020 Privilege Escalation / Unquoted Service Path

Authored by Shahrukh Iqbal Mirza EG Free AntiVirus version 2020 suffers from an unquoted service path vulnerability that can lead to privilege escalation. advisories | CVE-2021-46439 Change Mirror Download # Exploit Title: EG...

Chrome DeserializeFromMessage Validation Issue

Authored by Google Security Research, Glazvunov Chrome has an issue where a malformed message sent to DeserializeFromMessage may trigger deserialization of out-of-bounds data. advisories | CVE-2022-0797

IdeaRE RefTree Shell Upload

Authored by Savino Sisco IdeaRE RefTree versions prior to 2021.09.17 suffer from a remote shell upload vulnerability. advisories | CVE-2022-27249 Change Mirror Download =============================================================================== ...

IdeaRE RefTree Path Traversal

Authored by Savino Sisco IdeaRE RefTree versions prior to 2021.09.17 suffer from a path traversal vulnerability. advisories | CVE-2022-27248 Change Mirror Download =============================================================================== ...