Discord Probot Arbitrary File Upload ≈ Packet Storm
February 10th, 2021 📆 | 5912 Views ⚑
# Exploit Title: Discord Probot – Unrestricted File Upload # Google Dork: N/A# Date: 2021-02-08# Exploit Author: ThelastVvV# Vendor Homepage:probot.io#
Browsing the "arbitrary" Tag
Tagged with: advisory • arbitrary • CSRF • discord • exploit • File • overflow • packet • probot • scanner • security • storm • upload • vulnerability • whitepaper • XSS
Car Rental Project 2.0 – Arbitrary File Upload to Remote Code Execution
February 4th, 2021 📆 | 5003 Views ⚑
# Exploit Title: Car Rental Project 2.0 - Arbitrary File Upload to Remote Code Execution # Date: 3/2/2021 # Exploit
Tagged with: arbitrary • Car • code • execution • File • php • project • remote • rental • upload • webapps
WordPress Plugin SuperForms 4.9 – Arbitrary File Upload to Remote Code Execution
January 30th, 2021 📆 | 8611 Views ⚑
# Exploit Title: WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote Code Execution # Exploit Author: ABDO10 #
Tagged with: arbitrary • code • execution • File • php • plugin • remote • superforms • upload • webapps • wordpress
PEAR Archive_Tar Arbitrary File Write ≈ Packet Storm
January 26th, 2021 📆 | 3812 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## require ‘rex/tar’ class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::FILEFORMAT def
Tagged with: advisory • arbitrary • archive • ArchiveTar • CSRF • exploit • File • overflow • packet • Pear • scanner • security • storm • vulnerability • whitepaper • write • XSS
Cloud Filter Arbitrary File Creation / Privilege Escalation ≈ Packet Storm
January 13th, 2021 📆 | 6439 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Localinclude Exploit::EXEinclude Msf::Post::Fileinclude Msf::Post::Windows::Privinclude Msf::Post::Windows::Processinclude Msf::Post::Windows::ReflectiveDLLInjectioninclude Msf::Post::Windows::Dotnetinclude Msf::Post::Windows::Servicesinclude
Tagged with: advisory • arbitrary • cloud • creation • CSRF • escalation • exploit • File • filter • overflow • packet • privilege • scanner • security • storm • vulnerability • whitepaper • XSS
Apache Flink 1.11.0 Arbitrary File Read / Directory Traversal ≈ Packet Storm
January 9th, 2021 📆 | 2866 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Auxiliaryinclude Msf::Exploit::Remote::HttpClientinclude Msf::Auxiliary::Scannerinclude Msf::Auxiliary::Report def initialize(info = {})super(update_info(info,‘Name’
Tagged with: advisory • apache • arbitrary • CSRF • directory • exploit • File • flink • overflow • packet • read • scanner • security • storm • traversal • vulnerability • whitepaper • XSS
WordPress Plugin wpDiscuz 7.0.4 – Unauthenticated Arbitrary File Upload (Metasploit)
January 9th, 2021 📆 | 2631 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include
Tagged with: arbitrary • File • metasploit • php • plugin • unauthenticated • upload • webapps • wordpress • wpdiscuz
WordPress Plugin Autoptimize 2.7.6 – Authenticated Arbitrary File Upload (Metasploit)
January 8th, 2021 📆 | 1576 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include
Tagged with: arbitrary • authenticated • autoptimize • File • metasploit • php • plugin • upload • webapps • wordpress
Apache Flink 1.11.0 – Unauthenticated Arbitrary File Read (Metasploit)
January 8th, 2021 📆 | 7139 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Auxiliary include Msf::Exploit::Remote::HttpClient include Msf::Auxiliary::Scanner
Tagged with: apache • arbitrary • CVE-2020-17519 • File • flink • Java • metasploit • read • unauthenticated • webapps
WordPress Plugin Adning Advertising 1.5.5 – Arbitrary File Upload
December 24th, 2020 📆 | 6840 Views ⚑
# Exploit Title: WordPress Plugin Adning Advertising 1.5.5 - Arbitrary File Upload # Google Dork: inurl:/wp-content/plugins/angwp # Date: 23/12/2020 #
Tagged with: Adning • advertising • arbitrary • File • php • plugin • upload • webapps • wordpress
WordPress Plugin W3 Total Cache – Unauthenticated Arbitrary File Read (Metasploit)
December 22nd, 2020 📆 | 5995 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework # ## class MetasploitModule < Msf::Auxiliary include Msf::Auxiliary::Report include
Tagged with: arbitrary • cache • File • metasploit • php • plugin • read • total • unauthenticated • webapps • wordpress
WordPress Plugin Duplicator 1.3.26 – Unauthenticated Arbitrary File Read (Metasploit)
December 19th, 2020 📆 | 6450 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Auxiliary include Msf::Auxiliary::Report include Msf::Exploit::Remote::HTTP::Wordpress
Tagged with: arbitrary • duplicator • File • metasploit • php • plugin • read • unauthenticated • webapps • wordpress
Microsoft Windows Cloud Filter Arbitrary File Creation / Privilege Escalation
December 10th, 2020 📆 | 3420 Views ⚑
The Microsoft Windows Cloud Filter driver can be abused to create arbitrary files and directories leading to elevation of privilege.
Tagged with: advisory • arbitrary • cloud • creation • CSRF • escalation • exploit • File • filter • microsoft • overflow • privilege • scanner • security • vulnerability • whitepaper • windows • XSS
Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated) via Edit Profile
December 6th, 2020 📆 | 4378 Views ⚑
# Exploit Title: Artworks Gallery 1.0 - Arbitrary File Upload RCE (Authenticated) via Edit Profile # Date: November 17th, 2020
Tagged with: arbitrary • artworks • authenticated • CVE-2020-28687 • Edit • File • gallery • multiple • profile • RCE • upload • webapps
Artworks Gallery 1.0 – Arbitrary File Upload RCE (Authenticated) via Add Artwork
December 6th, 2020 📆 | 7488 Views ⚑
# Exploit Title: Artworks Gallery 1.0 - Arbitrary File Upload RCE (Authenticated) # Date: November 17th, 2020 # Exploit Author:
Tagged with: Add • arbitrary • artwork • artworks • authenticated • CVE-2020-28688 • File • gallery • multiple • RCE • upload • webapps
Joomla! Component GMapFP 3.5 – Unauthenticated Arbitrary File Upload
December 1st, 2020 📆 | 2770 Views ⚑
# Exploit Title: Joomla! Component GMapFP 3.5 - Unauthenticated Arbitrary File Upload # Google Dork: inurl:''com_gmapfp'' # Date: 2020-03-27 #
Tagged with: arbitrary • component • CVE-2020-23972 • File • gmapfp • joomla • php • unauthenticated • upload • webapps
Foxit Reader 9.0.1.1049 Arbitrary Code Execution ≈ Packet Storm
November 29th, 2020 📆 | 5427 Views ⚑
# Exploit Title: Foxit Reader 9.0.1.1049 – Arbitrary Code Execution# Date: August 29, 2020# Exploit Author: CrossWire# Vendor Homepage: https://www.foxitsoftware.com/#
Tagged with: advisory • arbitrary • code • CSRF • execution • exploit • foxit • overflow • packet • reader • scanner • security • storm • vulnerability • whitepaper • XSS
Foxit Reader 9.0.1.1049 – Arbitrary Code Execution
November 27th, 2020 📆 | 3039 Views ⚑
# Exploit Title: Foxit Reader 9.0.1.1049 - Arbitrary Code Execution # Date: August 29, 2020 # Exploit Author: CrossWire #
Tagged with: arbitrary • code • CVE-2018-9958 • execution • foxit • local • reader • windows
Gemtek WVRTM-127ACN 01.01.02.141 – Authenticated Arbitrary Command Injection
November 20th, 2020 📆 | 3154 Views ⚑
*] *]# Exploit Title: Gemtek WVRTM-127ACN 01.01.02.141 - Authenticated Arbitrary Command Injection # Date: 13/09/2020 # Exploit Author: Gabriele Zuddas
Tagged with: 127acn • arbitrary • authenticated • CGI • command • CVE-2020-24365 • gemtek • injection • webapps • wvrtm • WVRTM127ACN
Gitlab 12.9.0 Arbitrary File Read ≈ Packet Storm
November 20th, 2020 📆 | 4107 Views ⚑
# Exploit Title: Gitlab 12.9.0 – Arbitrary File Read (Authenticated)# Google Dork: –# Date: 11/15/2020# Exploit Author: Jasper Rasenberg# Vendor
Tagged with: advisory • arbitrary • CSRF • exploit • File • gitlab • overflow • packet • read • scanner • security • storm • vulnerability • whitepaper • XSS
Popular
High Wire Networks Achieves SOC 2 Type 1… February 9, 2021 BOCA RATON, Fla. and BATAVIA, Ill., Feb. 09, 2021 (GLOBE…- High Wire Networks Achieves SOC 2 Type 1… February 9, 2021 BOCA RATON, Fla. and BATAVIA, Ill., Feb. 09, 2021 (GLOBE…
- HUNTER TECHNOLOGY APPOINTS COO – 28.01.2021 January 28, 2021 VANCOUVER, British Columbia, Jan. 28, 2021 (GLOBE NEWSWIRE) -- via…
Sudo Heap-Based Buffer Overflow ≈ Packet Storm January 28, 2021 Qualys Security AdvisoryBaron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156)========================================================================Contents========================================================================SummaryAnalysisExploitationAcknowledgmentsTimeline========================================================================Summary========================================================================We…
Kodi 19.0 Matrix: What’s changed? February 22, 2021 Kodi 19.0 Matrix, the final version has arrived and it…
Metasploit Framework 6.0.11 – msfvenom APK… January 31, 2021 # Exploit Title: Metasploit Framework 6.0.11 - msfvenom APK template…
Rackspace Technology Named Best Place to Work… January 29, 2021 Aktien in diesem ArtikelSAN ANTONIO, Jan. 29, 2021 (GLOBE NEWSWIRE)…
Members
Comments