Okta Access Gateway 2020.5.5 Authenticated Remote Root
Authored by Jeremy Brown
Okta Access Gateway version 2020.5.5 suffers from multiple authenticated remote root command injection vulnerabilities.
advisories | CVE-2021-28113
Change Mirror Download
Okta Access Gateway v2020.5.5 Post-Auth Remote Root RCECVE-2021-28113=======Details=======There are...
WordPress SP Project And Document Manager 4.21 Shell Upload
Authored by Ron Jost
WordPress SP Project and Document Manager plugin version 4.21 suffers from a remote shell upload vulnerability.
advisories | CVE-2021-24347
Change Mirror Download
# Exploit Title: Wordpress Plugin SP Project...
Employee Record Management System 1.2 Cross Site Scripting
Authored by Subhadip Nag
Employee Record Management System version 1.2 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Employee Record Management System 1.2 - Stored Cross-Site...
Online Covid Vaccination Scheduler System 1.0 Shell Upload
Authored by faisalfs10x
Online Covid Vaccination Scheduler System version 1.0 suffers from a remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: Online Covid Vaccination Scheduler System 1.0 - Arbitrary File...
MpEngine ASProtect Embedded Runtime DLL Memory Corruption
Authored by Tavis Ormandy, Google Security Research
ASProtect embeds a runtime DLL that is susceptible to memory corruption. Crash testcase provided.
advisories | CVE-2021-31985
Wyomind Help Desk 1.3.6 XSS / Traversal / Shell Upload
Authored by Patrik Lantz
Wyomind Help Desk version 1.3.6 suffers from remote shell upload, cross site scripting, and directory traversal vulnerabilities.
Change Mirror Download
# Exploit Title: Wyomind Help Desk 1.3.6 -...
Church Management System 1.0 Shell Upload / SQL Injection
Authored by Eleonora Guardini
Church Management System version 1.0 shell upload exploit that leverages SQL injection.
Change Mirror Download
# Exploit Title: Church Management System 1.0 - SQL Injection (Authentication Bypass) +...
Polkit D-Bus Authentication Bypass
Authored by Spencer McIntyre, jheysel-r7, Kevin Backhouse | Site metasploit.com
A vulnerability exists within the polkit system service that can be leveraged by a local, unprivileged attacker to perform privileged...
Online Covid Vaccination Scheduler System 1.0 SQL Injection
Authored by faisalfs10x
Online Covid Vaccination Scheduler System version 1.0 suffers from a remote time-based blind SQL injection vulnerability.
Change Mirror Download
# Exploit Title: Online Covid Vaccination Scheduler System 1.0 -...
Docker Dashboard Remote Command Execution
Authored by Jeremy Brown
Docker Dashboard suffers from a remote command execution vulnerability. The fix is added in commit 79cdc41.
advisories | CVE-2021-27886
Change Mirror Download
#!/usr/bin/python# -*- coding: UTF-8 -*-## dockdash.py## Docker...