Online Covid Vaccination Scheduler System 1.0 Shell Upload
Authored by faisalfs10x
Online Covid Vaccination Scheduler System version 1.0 suffers from a remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: Online Covid Vaccination Scheduler System 1.0 - Arbitrary File...
MpEngine ASProtect Embedded Runtime DLL Memory Corruption
Authored by Tavis Ormandy, Google Security Research
ASProtect embeds a runtime DLL that is susceptible to memory corruption. Crash testcase provided.
advisories | CVE-2021-31985
Wyomind Help Desk 1.3.6 XSS / Traversal / Shell Upload
Authored by Patrik Lantz
Wyomind Help Desk version 1.3.6 suffers from remote shell upload, cross site scripting, and directory traversal vulnerabilities.
Change Mirror Download
# Exploit Title: Wyomind Help Desk 1.3.6 -...
Church Management System 1.0 Shell Upload / SQL Injection
Authored by Eleonora Guardini
Church Management System version 1.0 shell upload exploit that leverages SQL injection.
Change Mirror Download
# Exploit Title: Church Management System 1.0 - SQL Injection (Authentication Bypass) +...
Polkit D-Bus Authentication Bypass
Authored by Spencer McIntyre, jheysel-r7, Kevin Backhouse | Site metasploit.com
A vulnerability exists within the polkit system service that can be leveraged by a local, unprivileged attacker to perform privileged...
Online Covid Vaccination Scheduler System 1.0 SQL Injection
Authored by faisalfs10x
Online Covid Vaccination Scheduler System version 1.0 suffers from a remote time-based blind SQL injection vulnerability.
Change Mirror Download
# Exploit Title: Online Covid Vaccination Scheduler System 1.0 -...
Docker Dashboard Remote Command Execution
Authored by Jeremy Brown
Docker Dashboard suffers from a remote command execution vulnerability. The fix is added in commit 79cdc41.
advisories | CVE-2021-27886
Change Mirror Download
#!/usr/bin/python# -*- coding: UTF-8 -*-## dockdash.py## Docker...
Rocket.Chat 3.12.1 NoSQL Injection / Code Execution
Authored by enox
Rocket.Chat 3.12.1 unauthenticated NoSQL injection to remote code execution exploit.
advisories | CVE-2021-22911
Change Mirror Download
# Title: Rocket.Chat 3.12.1 - NoSQL Injection to RCE (Unauthenticated) (2)# Author: enox# Date:...
Phone Shop Sales Managements System 1.0 Shell Upload
Authored by faisalfs10x
Phone Shop Sales Managements System version 1.0 shell upload exploit. This is a variant of the original discovery made in this version of the software by Richard...
Phone Shop Sales Managements System 1.0 SQL Injection
Authored by faisalfs10x
Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Change Mirror Download
# Exploit Title: Phone Shop Sales Managements...
