Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Spring Cloud Function SpEL Injection

Authored by Spencer McIntyre, m09u3r, hktalent | Site metasploit.com Spring Cloud Function versions prior to 3.1.7 and 3.2.3 are vulnerable to remote code execution due to using an unsafe evaluation...

Chrome safe_browsing::ThreatDetails::OnReceivedThreatDOMDetails Use-After-Free

0
Authored by Google Security Research, Glazvunov Chrome suffers from a heap use-after-free vulnerability in safe_browsing::ThreatDetails::OnReceivedThreatDOMDetails. Versions affected include Google Chrome 96.0.4664.110 (Official Build) (64-bit) and Chromium 99.0.4807.0 (Developer Build) (64-bit). advisories...

Message System 1.0 Cross Site Scripting

0
Authored by Hejap Zairy Message System version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download ## Title: Message System 1.0 1.0 XSS Stored # Author: Hejap Zairy# Date:...

Medical Hub Directory Site 1.0 Local File Inclusion

0
Authored by Hejap Zairy Medical Hub Directory Site version 1.0 suffers from a local file inclusion vulnerability. Change Mirror Download # Title: Medical Hub Directory Site LFI To RCE# Author:...

Medical Hub Directory Site 1.0 Cross Site Scripting

0
Authored by Hejap Zairy Medical Hub Directory Site version 1.0 suffers from a persistent cross site scripting vulnerability. Change Mirror Download ## Title: Medical Hub Directory Site 1.0 XSS Stored # Author:...

Medical Hub Directory Site 1.0 Shell Upload

0
Authored by Hejap Zairy Medical Hub Directory Site version 1.0 suffers from a remote shell upload vulnerability. Change Mirror Download # Title: Medical Hub Directory Site 1.0 Shell Upload# Author:...

PostgreSQL 11.7 Remote Code Execution

0
Authored by b4keSn4ke PostgreSQL versions 9.3 through 11.7 remote code execution exploit. advisories | CVE-2019-9193 Change Mirror Download # Exploit Title: PostgreSQL 9.3-11.7 - Remote Code Execution (RCE) (Authenticated)# Date: 2022-03-29# Exploit Author:...

Kramer VIAware 2.5.0719.1034 Remote Code Execution

0
Authored by BallO, sharkmoos Kramer VIAware version 2.5.0719.1034 suffers from a remote code execution vulnerability. advisories | CVE-2019-17124 Change Mirror Download # Exploit Title: Kramer VIAware 2.5.0719.1034 - Remote Code Execution (RCE)# Date:...

WordPress CleanTalk 5.173 Cross Site Scripting

0
Authored by Ramuel Gall | Site wordfence.com WordPress CleanTalk plugin versions 5.173 and below suffer from multiple cross site scripting vulnerabilities. advisories | CVE-2022-28221, CVE-2022-28222 Change Mirror Download Description: Reflected Cross-Site ScriptingAffected Plugin:...

WordPress Easy Cookie Policy 1.6.2 Cross Site Scripting

0
Authored by 0xB9 WordPress Easy Cookie Policy plugin version 1.6.2 suffers from persistent cross site scripting vulnerability due to a broken access control. advisories | CVE-2021-24405 Change Mirror Download # Exploit Title: WordPress...