Exploits & CVE's

Authored by Nhat Ha WordPress Litespeed Cache plugin version 3.6 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: WordPress Plugin litespeed-cache 3.6 - 'server_ip' Cross-Site Scripting# Date:...

Authored by Ali Al Sinan Newgen Correspondence Management System (corms) eGov version 12.0 suffers from an insecure direct object reference vulnerability. advisories | CVE-2020-35737 Change Mirror Download # Exploit Title: Newgen Correspondence Management...

Authored by Mohammed Alshehri WinAVR version 20100110 suffers from an insecure folder permissions vulnerability. Change Mirror Download # Exploit Title: WinAVR Version 20100110 - Insecure Folder Permissions# Date: 2020-12-11# Exploit Author: Mohammed...

Authored by Andrea Pierini, Cassandre, Roberto, Antonio Cocomazzi | Site metasploit.com This Metasploit module exploit BITS behavior which tries to connect to the local Windows Remote Management server (WinRM) every...

Authored by EgiX | Site karmainsecurity.com IPS Community Suite versions 4.5.4 and below suffer from a remote SQL injection vulnerability in the Downloads REST API. advisories | CVE-2021-3025 Change Mirror Download -----------------------------------------------------------------------------IPS Community...

Authored by 1F98D PaperStream IP (TWAIN) version 1.42.0.5685 suffers from a local privilege escalation vulnerability. advisories | CVE-2018-16156 Change Mirror Download # Exploit Title: PaperStream IP (TWAIN) 1.42.0.5685 - Local Privilege Escalation# Exploit...

Authored by 1F98D Gitea version 1.7.5 suffers from a remote code execution vulnerability. advisories | CVE-2019-11229 Change Mirror Download # Exploit Title: Gitea 1.7.5 - Remote Code Execution# Date: 2020-05-11# Exploit Author: 1F98D#...

Authored by Markus Wulftange, 1F98D H2 Database version 1.4.199 JNI code execution exploit. This exploit utilizes the Java Native Interface to load a a Java class without needing to use...

Authored by 1F98D Sonatype Nexus version 3.21.1 suffers from an authenticated remote code execution vulnerability. advisories | CVE-2020-10199 Change Mirror Download # Exploit Title: Sonatype Nexus 3.21.1 - Remote Code Execution (Authenticated)# Exploit...

Authored by Stefan Pietsch, Trovent Security, Nick Decker | Site trovent.io Rocket.Chat versions 3.7.1 and below suffers from an email address enumeration vulnerability. advisories | CVE-2020-28208 Change Mirror Download # Trovent Security Advisory...