Home Tools Page 112

Tools

The latest hacking and hacker tools. Open source offensive and defensive security tools. Browse interactive maps of offensive security tools used by malicious actors and cybercriminals. Check out some live threat maps and malware intelligence databases.

This will be a curated list of mostly open source hacking tools. These can range from Red Teaming offensive security tools to fuzzers and debuggers for malware analysis. We are always looking for new state of the art tools that can be used for security professionals. Please feel free to send us a tool via email or one of our social media accounts.

WordPress UserPro 5.1.x Password Reset / Authentication Bypass / Escalation

0
Authored by Istvan Marton | Site wordfence.com WordPress UserPro plugin versions 5.1.1 and below suffer from an insecure password reset mechanism, information disclosure, and authentication bypass vulnerabilities. Versions 5.1.4 and...

CSZ CMS 1.3.0 Shell Upload

0
Authored by tmrswrr CSZ CMS version 1.3.0 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution# Date: 23/11/2023# Exploit Author: tmrswrr#...

PyroCMS 3.0.1 Cross Site Scripting

0
Authored by tmrswrr PyroCMS version 3.0.1 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: PyroCMS v3.0.1 - Stored XSS# Date: 2023-11-25# Exploit Author: tmrswrr# Category...

CE Phoenix 1.0.8.20 Cross Site Scripting

0
Authored by tmrswrr CE Phoenix version 1.0.8.20 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: CE Phoenix Version 1.0.8.20 - Stored XSS# Date: 2023-11-25# Exploit...

CE Phoenix 1.0.8.20 Remote Command Execution

0
Authored by tmrswrr CE Phoenix version 1.0.8.20 suffers from an authenticated remote command execution vulnerability. Change Mirror Download ## Exploit Title: CE Phoenix v1.0.8.20 - Remote Code Execution (RCE) (Authenticated)#### Date: 2023-11-25####...

CSZ CMS 1.3.0 Remote Command Execution

0
Authored by tmrswrr CSZ CMS version 1.3.0 suffers from a remote command execution vulnerability. Exploit written in Python. Change Mirror Download # Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution# Date:...

FireBear Improved Import And Export 3.8.6 XSLT Server Side Injection

0
Authored by tmrswrr FireBear Improved Import and Export version 3.8.6 for Magento 2.4.6 suffers from an XSLT server-side injection vulnerability that allows for command execution. Change Mirror Download Exploit Title: FireBear Improved...

Jorani Leave Management System 1.0.2 Host Header Injection

0
Authored by Rahad Chowdhury Jorani Leave Management System version 1.0.2 suffers from a host header injection vulnerability. advisories | CVE-2023-48205 Change Mirror Download # Exploit Title: Jorani Leave Management System v1.0.2 Host Header...

GaatiTrack Courier Management System 1.0 Cross Site Scripting

0
Authored by Rahad Chowdhury GaatiTrack Courier Management System version 1.0 suffers from multiple cross site scripting vulnerabilities. advisories | CVE-2023-48206 Change Mirror Download # Exploit Title: GaatiTrack Courier Management System v1.0 - MultipleCross-site...

PHPJabbers Availability Booking Calendar 5.0 CSV Injection

0
Authored by Rahad Chowdhury PHPJabbers Availability Booking Calendar version 5.0 suffers from a CSV injection vulnerability. advisories | CVE-2023-48207 Change Mirror Download # Exploit Title: PHPJabbers Availability Booking Calendar v5.0 - CSVInjection# Date:...