PHP CGI Argument Injection Remote Code Execution
Authored by Orange Tsai, sfewer-r7, WatchTowr | Site metasploit.com
This Metasploit module exploits a PHP CGI argument injection vulnerability affecting PHP in certain configurations on a Windows target. A vulnerable...
User Registration And Management System 3.2 SQL Injection
Authored by bRpsd
User Registration and Management System version 3.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Change Mirror Download
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@.:. Exploit Title > User Registration &...
Bagisto 2.1.2 Client-Side Template Injection
Authored by tmrswrr
Bagisto version 2.1.2 suffers from a client-side template injection vulnerability.
Change Mirror Download
# Exploit Title: Bagisto 2.1.2 Client-Side Template Injection(CSTI) (VueJS)# Date: 06/18/2024# Exploit Author: tmrswrr# Vendor Homepage:...
TURPENTINE XNU Kernel Buffer Overflow
Authored by ravi | Site jprx.io
CVE-2024-27815 is a buffer overflow in the XNU kernel that was reported in sbconcat_mbufs. It was publicly fixed in xnu-10063.121.3, released with macOS 14.5,...
Payroll Management System 1.0 Remote Code Execution
Authored by ShellUnease
Payroll Management System version 1.0 suffers from a remote code execution vulnerability.
advisories | CVE-2024-34833
Change Mirror Download
# Exploit Title: Payroll Management System v1.0 RCE (Unauthenticated)# Google Dork: intitle:"Employee's...
Premium Support Tickets For WHMCS 1.2.10 Cross Site Scripting
Authored by Sajibe Kanti
Premium Support Tickets For WHMCS version 1.2.10 suffers from a cross site scripting vulnerability.
Change Mirror Download
Exploit Title: Premium Support Tickets For WHMCS Reflected XSSExploit Author: Sajibe...
WordPress RFC WordPress 6.0.8 Shell Upload
Authored by E1.Coders
WordPress RFC WordPress plugin version 6.0.8 suffers from a remote shell upload vulnerability.
Change Mirror Download
Exploit for Remote Code Execution (RCE) in RFC WordPress 6.0.8 import requestsimport sys...
Rejetto HTTP File Server (HFS) Unauthenticated Remote Code Execution
Authored by sfewer-r7, Arseniy Sharoglazov | Site metasploit.com
The Rejetto HTTP File Server (HFS) version 2.x is vulnerable to an unauthenticated server side template injection (SSTI) vulnerability. A remote unauthenticated...
Telerik Report Server Authentication Bypass / Remote Code Execution
Authored by unknown, Soroush Dalili, Spencer McIntyre, SinSinology | Site metasploit.com
This Metasploit module chains an authentication bypass vulnerability with a deserialization vulnerability to obtain remote code execution against Telerik...
PHP Remote Code Execution
Authored by Yesith Alvarez
PHP versions prior to 8.3.8 suffer from a remote code execution vulnerability.
advisories | CVE-2024-4577
Change Mirror Download
# Exploit Title: PHP Windows Remote Code Execution (Unauthenticated)# Exploit Author:...
