Joomla! Component GMapFP 3.5 – Unauthenticated Arbitrary File Upload
December 1st, 2020 📆 | 5313 Views ⚑
# Exploit Title: Joomla! Component GMapFP 3.5 - Unauthenticated Arbitrary File Upload # Google Dork: inurl:''com_gmapfp'' # Date: 2020-03-27 #
Browsing the "arbitrary" Tag
Tagged with: arbitrary • component • CVE-2020-23972 • File • gmapfp • joomla • php • unauthenticated • upload • webapps
Foxit Reader 9.0.1.1049 Arbitrary Code Execution ≈ Packet Storm
November 29th, 2020 📆 | 4302 Views ⚑
# Exploit Title: Foxit Reader 9.0.1.1049 – Arbitrary Code Execution# Date: August 29, 2020# Exploit Author: CrossWire# Vendor Homepage: https://www.foxitsoftware.com/#
Tagged with: advisory • arbitrary • code • CSRF • execution • exploit • foxit • overflow • packet • reader • scanner • security • storm • vulnerability • whitepaper • XSS
Foxit Reader 9.0.1.1049 – Arbitrary Code Execution
November 27th, 2020 📆 | 5216 Views ⚑
# Exploit Title: Foxit Reader 9.0.1.1049 - Arbitrary Code Execution # Date: August 29, 2020 # Exploit Author: CrossWire #
Tagged with: arbitrary • code • CVE-2018-9958 • execution • foxit • local • reader • windows
Gemtek WVRTM-127ACN 01.01.02.141 – Authenticated Arbitrary Command Injection
November 20th, 2020 📆 | 3816 Views ⚑
*] *]# Exploit Title: Gemtek WVRTM-127ACN 01.01.02.141 - Authenticated Arbitrary Command Injection # Date: 13/09/2020 # Exploit Author: Gabriele Zuddas
Tagged with: 127acn • arbitrary • authenticated • CGI • command • CVE-2020-24365 • gemtek • injection • webapps • wvrtm • WVRTM127ACN
TestBox CFML Test Framework 4.1.0 – Arbitrary File Write and Remote Code Execution
November 20th, 2020 📆 | 6682 Views ⚑
# Title: TestBox CFML Test Framework 4.1.0 - Arbitrary File Write and Remote Code Execution # Author: Darren King #
Tagged with: arbitrary • CFML • code • execution • File • framework • multiple • remote • Test • testbox • webapps • write
Gitlab 12.9.0 Arbitrary File Read ≈ Packet Storm
November 20th, 2020 📆 | 5047 Views ⚑
# Exploit Title: Gitlab 12.9.0 – Arbitrary File Read (Authenticated)# Google Dork: –# Date: 11/15/2020# Exploit Author: Jasper Rasenberg# Vendor
Tagged with: advisory • arbitrary • CSRF • exploit • File • gitlab • overflow • packet • read • scanner • security • storm • vulnerability • whitepaper • XSS
TestBox CFML Test Framework 4.1.0 Arbitrary File Write / Code Execution ≈ Packet Storm
November 19th, 2020 📆 | 8113 Views ⚑
# Title: TestBox CFML Test Framework 4.1.0 – Arbitrary File Write and Remote Code Execution# Author: Darren King# Date: 2020-07-23#
Tagged with: advisory • arbitrary • CFML • code • CSRF • execution • exploit • File • framework • overflow • packet • scanner • security • storm • Test • testbox • vulnerability • whitepaper • write • XSS
Gitlab 12.9.0 – Arbitrary File Read (Authenticated)
November 19th, 2020 📆 | 5533 Views ⚑
# Exploit Title: Gitlab 12.9.0 - Arbitrary File Read (Authenticated) # Google Dork: - # Date: 11/15/2020 # Exploit Author:
Tagged with: arbitrary • authenticated • File • gitlab • read • Ruby • webapps
BigBlueButton 2.2.25 – Arbitrary File Disclosure and Server-Side Request Forgery
November 19th, 2020 📆 | 2370 Views ⚑
# Exploit Title: BigBlueButton 2.2.25 - Arbitrary File Disclosure and Server-Side Request Forgery # Date: 2020-09-11 # Exploit Author: RedTeam
Tagged with: arbitrary • bigbluebutton • CVE-2020-25820 • disclosure • File • forgery • multiple • request • server • ServerSide • webapps
Car Rental Management System 1.0 – SQL injection + Arbitrary File Upload
November 14th, 2020 📆 | 4610 Views ⚑
# Exploit Title: Car Rental Management System 1.0 - SQL injection + Arbitrary File Upload # Date: 09-11-2020 # Exploit
Tagged with: arbitrary • Car • File • injection • management • php • rental • SQL • system • upload • webapps
October CMS Build 465 – Arbitrary File Read Exploit (Authenticated)
November 14th, 2020 📆 | 6025 Views ⚑
*] *]# Exploit Title: October CMS Build 465 - Arbitrary File Read Exploit (Authenticated) # Date: 2020-03-31 # Exploit Author:
Tagged with: arbitrary • authenticated • build • cms • CVE-2020-5295 • exploit • File • october • php • read • webapps
ASUS TM-AC1900 Arbitrary Command Execution ≈ Packet Storm
November 13th, 2020 📆 | 2596 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Remote::HttpServerinclude Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::EXEinclude Msf::Exploit::FileDropper
Tagged with: AC1900 • advisory • arbitrary • Asus • command • CSRF • execution • exploit • overflow • packet • scanner • security • storm • TMAC1900 • vulnerability • whitepaper • XSS
ASUS TM-AC1900 – Arbitrary Command Execution (Metasploit)
November 13th, 2020 📆 | 5278 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include
Tagged with: AC1900 • arbitrary • Asus • command • execution • hardware • metasploit • TMAC1900 • webapps
SaltStack Salt REST API Arbitrary Command Execution ≈ Packet Storm
November 12th, 2020 📆 | 4664 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking prepend Msf::Exploit::Remote::AutoCheckinclude Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStager
Tagged with: advisory • API • arbitrary • command • CSRF • execution • exploit • overflow • packet • rest • Salt • saltstack • scanner • security • storm • vulnerability • whitepaper • XSS
WordPress Plugin Simple File List 5.4 – Arbitrary File Upload
November 2nd, 2020 📆 | 7844 Views ⚑
*] *]#!/usr/bin/python # -*- coding: utf-8 -*- # Exploit Title: WordPress Plugin Simple File List 5.4 - Arbitrary File Upload
Tagged with: arbitrary • File • list • php • plugin • simple • upload • webapps • wordpress
Typesetter CMS 5.1 – Arbitrary Code Execution (Authenticated)
October 25th, 2020 📆 | 1681 Views ⚑
# Exploit Title: Typesetter CMS 5.1 - Arbitrary Code Execution # Exploit Author: Rodolfo "t0gu" Tavares # Contact: @t0guu (TW)
Tagged with: arbitrary • authenticated • cms • code • CVE-2020-25790 • execution • php • typesetter • webapps
Car Rental Management System 1.0 – Arbitrary File Upload
October 24th, 2020 📆 | 3520 Views ⚑
# Exploit Title: Car Rental Management System 1.0 - Arbitrary File Upload # Date: 22-10-2020 # Exploit Author: Jyotsna Adhana
Tagged with: arbitrary • Car • File • management • php • rental • system • upload • webapps
Online Library Management System 1.0 – Arbitrary File Upload
October 24th, 2020 📆 | 6830 Views ⚑
# Exploit Title: Online Library Management System 1.0 - Arbitrary File Upload # Date: 22-10-2020 # Exploit Author: Jyotsna Adhana
Tagged with: arbitrary • File • library • management • online • php • system • upload • webapps
Tourism Management System 1.0 – Arbitrary File Upload
October 19th, 2020 📆 | 3505 Views ⚑
#Exploit Title: Tourism Management System 1.0 - Arbitrary File Upload #Date: 2020-10-19 #Exploit Author: Ankita Pal & Saurav Shukla #Vendor
Tagged with: arbitrary • File • management • php • system • tourism • upload • webapps
openMAINT 1.1-2.4.2 Arbitrary File Upload ≈ Packet Storm
October 12th, 2020 📆 | 3981 Views ⚑
# Exploit Title: openMAINT 1.1-2.4.2 – Arbitrary File Upload# Dork: N/A# Date: 2020-08-19# Exploit Author: mrb3n# Vendor Homepage: https://www.openmaint.org/en# Software
Tagged with: advisory • arbitrary • CSRF • exploit • File • openmaint • overflow • packet • scanner • security • storm • upload • vulnerability • whitepaper • XSS
openMAINT 1.1-2.4.2 – Arbitrary File Upload
October 9th, 2020 📆 | 2668 Views ⚑
# Exploit Title: openMAINT 1.1-2.4.2 - Arbitrary File Upload # Dork: N/A # Date: 2020-08-19 # Exploit Author: mrb3n #
Tagged with: arbitrary • File • JSON • openmaint • upload • webapps
MonoCMS Blog 1.0 – Arbitrary File Deletion (Authenticated)
October 3rd, 2020 📆 | 2611 Views ⚑
# Exploit Title: MonoCMS Blog 1.0 - Arbitrary File Deletion (Authenticated) # Date: 2020-09-20 # Exploit Author: Shahrukh Iqbal Mirza
Tagged with: arbitrary • authenticated • blog • deletion • File • monocms • php • webapps
Joplin 1.0.245 – Arbitrary Code Execution (PoC)
September 30th, 2020 📆 | 4379 Views ⚑
# Exploit Title: Joplin 1.0.245 - Arbitrary Code Execution (PoC) # Date: 2020-09-21 # Exploit Author: Ademar Nowasky Junior (@nowaskyjr)
Tagged with: arbitrary • code • CVE-2020-15930 • execution • joplin • multiple • PoC • webapps
ThinkAdmin 6 Arbitrary File Read ≈ Packet Storm
September 16th, 2020 📆 | 6178 Views ⚑
# Exploit Title: ThinkAdmin 6 - Arbitrarily File Read# Google Dork: N/A# Date: 2020-09-14# Exploit Author: Hzllaga# Vendor Homepage: https://github.com/zoujingli/ThinkAdmin/#
Tagged with: advisory • arbitrary • CSRF • exploit • File • overflow • packet • read • scanner • security • storm • thinkadmin • vulnerability • whitepaper • XSS
Popular
23,600 hacked databases have leaked from a defunct… November 4, 2020 Image: Setyaki Irham, ZDNet More than 23,000 hacked databases have…
7 Things for CBAT Stock Investors to Know About the… November 13, 2020 © Source: Pavel Kapysh / Shutterstock.com A magnifying glass zooms…
Kali Linux 2020.4 released: New default shell, fresh… November 19, 2020 Offensive Security has released Kali Linux 2020.4, the latest version…
The malware that usually installs ransomware and you… November 20, 2020 Image: Lina White Gone are the days when ransomware groups…
After Trump tweets Defcon hacking video, voting… November 17, 2020 Getty Images As President Trump continues to make unfounded claims…
‘Sound beaming’ technology will play… November 13, 2020 New futuristic audio technology developed in Israel allows music to…
Here’s How Technology Saved Formula One Racing… November 30, 2020 BAHRAIN, BAHRAIN - NOVEMBER 29: A fire is pictured following…
Members
Comments