Exploits & CVE's

Exploits Database – Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, CVEs and more.

FreeSWITCH 1.10.6 Missing SIP MESSAGE Authentication

0
Authored by Sandro Gauci | Site enablesecurity.com FreeSWITCH versions 1.10.6 and below fails to authenticate SIP MESSAGE requests, leading to spam and message spoofing vulnerabilities. advisories | CVE-2021-37624 Change Mirror Download # FreeSWITCH...

WordPress Ninja Tables 4.1.7 Cross Site Scripting

0
Authored by Akash Rajendra Patil WordPress Ninja Tables plugin version 4.1.7 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: WordPress Plugin Ninja Tables 4.1.7 - Stored...

WordPress 4.9.6 Arbitrary File Deletion

0
Authored by samguy WordPress version 4.9.6 arbitrary file deletion exploit. Original discovery of this vulnerability is attributed to VulnSpy in June of 2018. advisories | CVE-2018-12895 Change Mirror Download # Exploit Title: Wordpress...

Gestionale Open 11.00.00 Privilege Escalation

0
Authored by Alessandro Salzano Gestionale Open version 11.00.00 suffers from a local privilege escalation vulnerability. Change Mirror Download # Exploit Title: Gestionale Open 11.00.00 - Local Privilege Escalation# Date: 2021-07-19# Author: Alessandro...

FreeSWITCH 1.10.5 SIP SUBSCRIBE Missing Authentication

0
Authored by Sandro Gauci | Site enablesecurity.com FreeSWITCH versions 1.10.5 and below fail to authenticate SIP SUBSCRIBE requests by default. advisories | CVE-2021-41157 Change Mirror Download # FreeSWITCH does not authenticate SIP SUBSCRIBE...

FreeSWITCH 1.10.6 SRTP Packet Denial Of Service

0
Authored by Sandro Gauci | Site enablesecurity.com FreeSWITCH versions 1.10.6 and below suffer from a denial of service vulnerability when handling invalid SRTP packets. advisories | CVE-2021-41105 Change Mirror Download # FreeSWITCH susceptible...

WordPress Enfold Theme 4.8.3 Cross Site Scripting

0
Authored by Francisco Diaz-Pache Alonso, Sergio Corral Cristo, David Alvarez Robles WordPress Enfold theme version 4.8.3 suffers from a cross site scripting vulnerability. advisories | CVE-2021-24719 Change Mirror Download # Exploit Title: WordPress...

Macro Expert 4.7 Unquoted Service Path

0
Authored by Mert Das Macro Expert version 4.7 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: Macro Expert 4.7 - Unquoted Service Path# Exploit Author: Mert DAŞ#...

SonicWall SMA 10.2.1.0-17sv Password Reset

0
Authored by Jacob Baines SonicWall SMA version 10.2.1.0-17sv suffers from a remote password reset vulnerability. advisories | CVE-2021-20034 Change Mirror Download # Exploit Title: SonicWall SMA 10.2.1.0-17sv - Password Reset# Description: Overwrite the...

Easy Chat Server 3.1 Directory Traversal

0
Authored by z4nd3r Easy Chat Server version 3.1 suffers from a directory traversal vulnerability. Change Mirror Download # Exploit Title: Easy Chat Server 3.1 - Directory Traversal and Arbitrary File Read# Date:...