Exploits & CVE's

Authored by Jeremy Brown Openpilot has a default SSH key that can allow attackers remote access if not changed. This script port scans and attempts to login to Openpilot SSH...

Authored by Erick Galindo Backup Key Recovery version 2.2.7 suffers from a denial of service vulnerability. Change Mirror Download # Exploit Title: Backup Key Recovery 2.2.7 - Denial of Service (PoC)# Date:...

Authored by Salman Asad Argus Surveillance DVR version 4.0 suffers from a weak password encryption vulnerability. Change Mirror Download # Exploit Title: Argus Surveillance DVR 4.0 - Weak Password Encryption# Exploit Author:...

Authored by Christophe de la Fuente, Spencer McIntyre, Nick Frichette, Borys Poplawski, Adam Iwaniuk | Site metasploit.com This Metasploit module leverages a flaw in runc to escape a Docker container...

Authored by Jann Horn, Google Security Research Android GKI kernels contain broken non-upstream Speculative Page Faults MM code that can lead to multiple use-after-free conditions. advisories | CVE-2023-20937 Change Mirror Download Android: GKI...

Authored by Markus Vervier, Eric Sesterhenn, Luis Merino An off-by-one error in ngx_resolver_copy() while processing DNS responses allows a network attacker to write a dot character ('.', 0x2E) out of...

Authored by malvuln | Site malvuln.com HEUR.Backdoor.Win32.Generic malware suffers from a file download vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/d7648b676dd139d1b7ba781816726510.txtContact: [email protected]: twitter.com/malvulnThreat: HEUR.Backdoor.Win32.GenericVulnerability: Unauthenticated Open...

Authored by Oscar Andreu Rejetto HttpFileServer version 2.3.x remote command execution exploit. advisories | CVE-2014-6287 Change Mirror Download # Exploit Title: Rejetto HttpFileServer 2.3.x - Remote Command Execution (3)# Google Dork: intext:"httpfileserver 2.3"#...

Authored by malvuln | Site malvuln.com Backdoor.Win32.WinterLove.i malware suffers from a hardcoded credential vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/c6c81e8ba0a7b9da6216a78dfeccec8d.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.WinterLove.iVulnerability: Hardcoded Weak...

Authored by Raed Ahsan WordPress Social Warfare plugin version 3.5.2 remote code execution exploit. This fully automated exploit is a variation of the original discovery made by Luka Sikic and...