WinAVR 20100110 Insecure Folder Permissions
Authored by Mohammed Alshehri
WinAVR version 20100110 suffers from an insecure folder permissions vulnerability.
Change Mirror Download
# Exploit Title: WinAVR Version 20100110 - Insecure Folder Permissions# Date: 2020-12-11# Exploit Author: Mohammed...
NTLM BITS SYSTEM Token Impersonation
Authored by Andrea Pierini, Cassandre, Roberto, Antonio Cocomazzi | Site metasploit.com
This Metasploit module exploit BITS behavior which tries to connect to the local Windows Remote Management server (WinRM) every...
IPS Community Suite 4.5.4 SQL Injection
Authored by EgiX | Site karmainsecurity.com
IPS Community Suite versions 4.5.4 and below suffer from a remote SQL injection vulnerability in the Downloads REST API.
advisories | CVE-2021-3025
Change Mirror Download
-----------------------------------------------------------------------------IPS Community...
PaperStream IP (TWAIN) 1.42.0.5685 Local Privilege Escalation
Authored by 1F98D
PaperStream IP (TWAIN) version 1.42.0.5685 suffers from a local privilege escalation vulnerability.
advisories | CVE-2018-16156
Change Mirror Download
# Exploit Title: PaperStream IP (TWAIN) 1.42.0.5685 - Local Privilege Escalation# Exploit...
Gitea 1.7.5 Remote Code Execution
Authored by 1F98D
Gitea version 1.7.5 suffers from a remote code execution vulnerability.
advisories | CVE-2019-11229
Change Mirror Download
# Exploit Title: Gitea 1.7.5 - Remote Code Execution# Date: 2020-05-11# Exploit Author: 1F98D#...
H2 Database 1.4.199 JNI Code Execution
Authored by Markus Wulftange, 1F98D
H2 Database version 1.4.199 JNI code execution exploit. This exploit utilizes the Java Native Interface to load a a Java class without needing to use...
Sonatype Nexus 3.21.1 Remote Code Execution
Authored by 1F98D
Sonatype Nexus version 3.21.1 suffers from an authenticated remote code execution vulnerability.
advisories | CVE-2020-10199
Change Mirror Download
# Exploit Title: Sonatype Nexus 3.21.1 - Remote Code Execution (Authenticated)# Exploit...
Rocket.Chat 3.7.1 Email Address Enumeration
Authored by Stefan Pietsch, Trovent Security, Nick Decker | Site trovent.io
Rocket.Chat versions 3.7.1 and below suffers from an email address enumeration vulnerability.
advisories | CVE-2020-28208
Change Mirror Download
# Trovent Security Advisory...
IPeakCMS 3.5 SQL Injection
Authored by MoeAlBarbari
IPeakCMS version 3.5 suffers from a blind remote SQL injection vulnerability.
advisories | CVE-2021-3018
Change Mirror Download
# Exploit Title: IPeakCMS 3.5 - Boolean-based blind SQLi# Date: 07.12.2020# Exploit Author:...
Expense Tracker 1.0 Cross Site Scripting
Authored by Shivam Verma
Expense Tracker version 1.0 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Expense Tracker 1.0 - 'Expense Name' Stored Cross-Site Scripting# Exploit...
