Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

Pinkie 2.15 Remote Buffer Overflow

0
Authored by Yehia Elghaly Pinkie version 2.15 suffers from a remote buffer overflow vulnerability. Change Mirror Download # Exploit Title: Pinkie 2.15 - TFTP Remote Buffer Overflow (PoC)# Discovered by: Yehia Elghaly#...

Wipro Holmes Orchestrator 20.4.1 File Disclosure

0
Authored by Rizal Muhammed Wipro Holmes Orchestrator version 20.4.1 unauthenticated log file disclosure exploit. advisories | CVE-2021-38283 Change Mirror Download # Exploit Title: Wipro Holmes Orchestrator 20.4.1 Unauthenticated Log File Disclosure# Date: 09/08/2021#...

Backdoor.Win32.Agent.ad Insecure Credential Storage

0
Authored by malvuln | Site malvuln.com Backdoor.Win32.Agent.ad malware suffers from an insecure credential storage vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/d2b933ebadd5c808ca4c68ae173e2d62.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Agent.adVulnerability: Insecure...

Aimeos Laravel Ecommerce Platform 2021.10 LTS SQL Injection

0
Authored by Ilker Burak Adiyaman Aimeos Laravel Ecommerce Platform version 2021.10 LTS suffers from a remote SQL injection vulnerability. Change Mirror Download # Exploit Title: Aimeos Laravel ecommerce platform 2021.10 LTS -...

Online Learning System 2.0 Remote Code Execution

0
Authored by djebbaranon Online Learning System version 2.0 remote code execution exploit that leverages SQL injection, authentication bypass, and file upload vulnerabilities. advisories | CVE-2021-42580 Change Mirror Download # Exploit Title: Online Learning...

Sitecore Experience Platform (XP) Remote Code Execution

0
Authored by gwillcox-r7, AssetNote | Site metasploit.com This Metasploit module exploits a deserialization vulnerability in the Report.ashx page of Sitecore XP 7.5 to 7.5.2, 8.0 to 8.0.7, 8.1 to 8.1.3,...

Bludit 3.13.1 Cross Site Scripting

0
Authored by Vasu Bludit version 3.13.1 suffers from a cross site scripting vulnerability. advisories | CVE-2021-35323 Change Mirror Download # Exploit Title: Bludit 3.13.1 - 'username' Cross Site Scripting (XSS)# Date: 19/10/2021# Exploit...

Quick.CMS 6.7 Cross Site Request Forgery / Cross Site Scripting

0
Authored by Rahad Chowdhury Quick.CMS version 6.7 suffers from a cross site scripting vulnerability that can allow for cross site request forgery attacks. Change Mirror Download # Exploit Title: Quick.CMS 6.7 -...

GitLab 13.10.2 Remote Code Execution

0
Authored by Jacob Baines GitLab version 13.10.2 remote code execution exploit that provides a reverse shell. advisories | CVE-2021-22204, CVE-2021-22205 Change Mirror Download # Exploit Title: GitLab 13.10.2 - Remote Code Execution (RCE)...

LiquidFiles 3.5.13 Privilege Escalation

0
Authored by Eliana Cannella, Valerio Casalino, Riccardo Spampinato LiquidFiles version 3.5.13 suffers from a privilege escalation vulnerability. The LiquidFiles API allows a User Admin to access keys for System Administrators. advisories...