Maian-Cart 3.8 Remote Code Execution
Authored by DreyAnd, purpl3
Maian-Cart version 3.8 unauthenticated remote code execution exploit.
advisories | CVE-2021-32172
Change Mirror Download
# Exploit title: Maian-Cart 3.8 - Remote Code Execution (RCE) (Unauthenticated)# Date: 27.11.2020 19:35# Tested...
Dahua Authentication Bypass
Authored by bashis
Various Dahua products suffers from multiple authentication bypass vulnerabilities.
advisories | CVE-2021-33044, CVE-2021-33045
Change Mirror Download
Subject: : Dahua Authentication bypass (CVE-2021-33044, CVE-2021-33045)Attack vector: RemoteAuthentication: Anonymous (no credentials needed)Researcher: bashis...
High Infinity Technology HiKam S6 1.3.26 Spoofing / Broken Authentication
Authored by Gerhard Hechenberger, S. Robertz | Site sec-consult.com
High Infinity Technology HiKam S6 versions 1.3.26 and below suffer from broken authentication, enumeration, message protocol downgrade, insufficient use of cryptography,...
Google SLO-Generator 2.0.0 Code Execution
Authored by Kiran Ghimire
Google SLO-Generator versions 2.0.0 and below suffer from a code execution vulnerability.
advisories | CVE-2021-22557
Change Mirror Download
# Exploit Title: Google SLO-Generator 2.0.0 - Code Execution# Date: 2021-09-28#...
Online DJ Booking Management System 1.0 Cross Site Scripting
Authored by Yash Mahajan
Online DJ Booking Management System version 1.0 suffers from a cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Online DJ Booking Management System 1.0 - 'Multiple'...
Online Traffic Offense Management System 1.0 Shell Upload
Authored by snup
Online Traffic Offense Management System version 1.0 suffers from multiple remote shell upload vulnerabilities.
Change Mirror Download
# Exploit Title: Online Traffic Offense Management System 1.0 - Multiple RCE...
Online Traffic Offense Management System 1.0 Cross Site Scripting
Authored by snup
Online Traffic Offense Management System version 1.0 suffers from persistent and reflective cross site scripting vulnerabilities.
Change Mirror Download
# Exploit Title: Online Traffic Offense Management System 1.0 -...
Online Traffic Offense Management System 1.0 SQL Injection
Authored by snup
Online Traffic Offense Management System version 1.0 suffers from multiple unauthenticated remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to Justin...
Netfilter x_tables Heap Out-Of-Bounds Write / Privilege Escalation
Authored by Brendan Coles, Andy Nguyen, Szymon Janusz | Site metasploit.com
A heap out-of-bounds write affecting Linux since version 2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain...
VMware vCenter Server Analytics (CEIP) Service File Upload
Authored by VMware, Derek Abdine, wvu, Sergey Gerasimov, George Noseevich | Site metasploit.com
This Metasploit module exploits a file upload in VMware vCenter Server's analytics/telemetry (CEIP) service to write a...
