Exploits & CVE's

Authored by Valerio Alessandroni Online Health Care System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. advisories | CVE-2020-28074 Change Mirror Download # Exploit Title: ​Authentication Bypass...

Authored by Andrea Intilangelo PHPJabbers Appointment Scheduler version 2.3 suffers from a cross site scripting vulnerability. advisories | CVE-2020-35416 Change Mirror Download # Exploit Title: PHPJabbers Appointment Scheduler 2.3 - Reflected XSS (Cross-Site...

Authored by Wolfgang Ettlinger | Site sec-consult.com Trend Micro InterScan Web Security Virtual Appliance (IWSVA) versions below 6.5 SP2 EN Patch 4 Build 1919 suffers from bypass, command execution, cross...

Authored by Guillaume Petit Nxlog Community Edition version 2.10.2150 denial of service proof of concept exploit. Change Mirror Download # Exploit Title: Nxlog Community Edition 2.10.2150 - DoS (Poc)# Date: 15/12/2020# Exploit...

Authored by Marco Nappi Flexmonster Pivot Table and Charts version 2.7.17 suffers from multiple cross site scripting vulnerabilities. advisories | CVE-2020-20138, CVE-2020-20139, CVE-2020-20140, CVE-2020-20141, CVE-2020-20142 Change Mirror Download # Exploit Title: CVE-2020-20140 :...

Authored by wvu, Hacker Fantastic, Jeffrey Martin, Aaron Carreras, Jacob Thompson | Site metasploit.com This Metasploit module exploits a stack-based buffer overflow in the Solaris PAM library's username parsing code,...

Authored by Valerio Alessandroni Alumni Management System version 1.0 suffers from a remote shell upload vulnerability. advisories | CVE-2020-28072 Change Mirror Download # Exploit Title: Remote Code Execution on Alumni Management System #...

Authored by Hacker Fantastic Solaris SunSSH versions 10 through 11.0 on x86 libpam remote root exploit. advisories | CVE-2020-14871 Change Mirror Download # Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root...

Authored by Google Security Research, hawkes Qualcomm Adreno GPU PID reuse can lead to a shared mapping leak vulnerability. advisories | CVE-2020-11311

Authored by timwr, bee13oy, Yoav Alon, Netanel Ben-Simon | Site metasploit.com This Metasploit module exploits CVE-2020-1054, an out of bounds write reachable from DrawIconEx within win32k. The out of bounds...