WordPress AIT CSV Import/Export 3.0.3 Shell Upload
Authored by h00die | Site metasploit.com
WordPress AIT CSV Import/Export plugin versions 3.0.3 and below allow unauthenticated remote attackers to upload and execute arbitrary PHP code. The upload-handler does not...
Cloud Filter Arbitrary File Creation / Privilege Escalation
Authored by Grant Willcox, James Foreshaw | Site metasploit.com
This Metasploit module exploits a vulnerability in cldflt.sys. The Cloud Filter driver on Windows 10 v1803 and later, prior to the...
Erlang Cookie Remote Code Execution
Authored by 1F98D
Erlang makes use of a cookie that can be leveraged to achieve remote code execution.
Change Mirror Download
# Exploit Title: Erlang Cookie - Remote Code Execution# Date: 2020-05-04#...
Backdoor.Win32.Kurbadur.a Remote Stack Buffer Overflow
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Kurbadur.a malware suffers from a remote stack buffer overflow vulnerability.
Change Mirror Download
Discovery / credits: malvuln - Malvuln.com (c) 2021Original source: https://malvuln.com/advisory/821d3d5a9b15dc3388fe17f233cce296.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Kurbadur.aVulnerability:...
Envira Gallery Lite 1.8.3.2 Cross Site Scripting
Authored by Rodolfo Tavares | Site tempest.com.br
Envira Gallery Lite edition version 1.8.3.2 suffers from a cross site scripting vulnerability.
advisories | CVE-2020-35581, CVE-2020-35582
Change Mirror Download
==== =============================Envira Gallery - Lite Edition...
FiberHome HG6245D Disclosure / Bypass / Privilege Escalation / DoS
Authored by Pierre Kim
FiberHome HG6245D routers suffer from bypass, hard-coded credentials, password disclosure, privilege escalation, denial of service, remote stack overflow, and additional vulnerabilities. suffers from bypass, cross site...
EyesOfNetwork 5.3 Remote Code Execution / Privilege Escalation
Authored by Audencia Business School Red Team
EyesOfNetwork version 5.3 remote code execution and privilege escalation exploit. Initial discovery of remote code execution in this version is attributed to Clement...
Anchor CMS 0.12.7 Cross Site Scripting
Authored by Ramazan Mert Gokten
Anchor CMS version 0.12.7 suffers from a markdown persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version was discovered...
Coturn 4.5.1.x Access Control Bypass
Authored by Sandro Gauci | Site enablesecurity.com
Coturn version 4.5.1.x suffers from a loopback access control bypass vulnerability.
advisories | CVE-2020-26262
Change Mirror Download
# Loopback access control bypass in coturn by using...
WordPress Custom Global Variables 1.0.5 Cross Site Scripting
Authored by Swapnil Subhash Bodekar
WordPress Custom Global Variables plugin version 1.0.5 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: WordPress Plugin Custom Global Variables 1.0.5...
