Rejetto HttpFileServer 2.3.x – Remote Command Execution (3)
November 30th, 2020 📆 | 3645 Views ⚑
# Exploit Title: Rejetto HttpFileServer 2.3.x - Remote Command Execution (3) # Google Dork: intext:"httpfileserver 2.3" # Date: 28-11-2020 #
Browsing the "execution" Tag
Tagged with: 23x • command • CVE-2014-6287 • execution • httpfileserver • rejetto • remote • webapps • windows
Foxit Reader 9.0.1.1049 Arbitrary Code Execution ≈ Packet Storm
November 29th, 2020 📆 | 5067 Views ⚑
# Exploit Title: Foxit Reader 9.0.1.1049 – Arbitrary Code Execution# Date: August 29, 2020# Exploit Author: CrossWire# Vendor Homepage: https://www.foxitsoftware.com/#
Tagged with: advisory • arbitrary • code • CSRF • execution • exploit • foxit • overflow • packet • reader • scanner • security • storm • vulnerability • whitepaper • XSS
Ruckus IoT Controller 1.5.1.0.21 Remote Code Execution ≈ Packet Storm
November 29th, 2020 📆 | 8366 Views ⚑
*]# Product: Ruckus IoT Controller (Ruckus vRIoT)*]# Version: < = 1.5.1.0.21*]# Vendor: https://support.ruckuswireless.com/*]# Vulnerability: Command Injection & Broken Authentication*]# References:
Tagged with: advisory • code • controller • CSRF • execution • exploit • IoT • overflow • packet • remote • ruckus • scanner • security • storm • vulnerability • whitepaper • XSS
Apache NiFi API Remote Code Execution ≈ Packet Storm
November 29th, 2020 📆 | 5802 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## # Potential Improvements:# Add option to authenticate using client certificate# Add
Tagged with: advisory • apache • API • code • CSRF • execution • exploit • NiFi • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS
Foxit Reader 9.0.1.1049 – Arbitrary Code Execution
November 27th, 2020 📆 | 6076 Views ⚑
# Exploit Title: Foxit Reader 9.0.1.1049 - Arbitrary Code Execution # Date: August 29, 2020 # Exploit Author: CrossWire #
Tagged with: arbitrary • code • CVE-2018-9958 • execution • foxit • local • reader • windows
Ruckus IoT Controller (Ruckus vRIoT) 1.5.1.0.21 – Remote Code Execution
November 27th, 2020 📆 | 8180 Views ⚑
*] *]# Product: Ruckus IoT Controller (Ruckus vRIoT) # Version: < = 1.5.1.0.21 # Vendor: https://support.ruckuswireless.com/ # Vulnerability: Command Injection
Tagged with: code • controller • execution • hardware • IoT • remote • ruckus • vriot • webapps
Razer Chroma SDK Server 3.16.02 – Race Condition Remote File Execution
November 26th, 2020 📆 | 6050 Views ⚑
Exploit Title: Razer Chroma SDK Server 3.16.02 - Race Condition Remote File Execution Date: 2020-08-13 Exploit Author: Loke Hui Yi
Tagged with: Chroma • condition • CVE-2020-16602 • execution • File • race • razer • remote • SDK • server • windows
Seowon 130-SLC 1.0.11 Remote Code Execution ≈ Packet Storm
November 26th, 2020 📆 | 5398 Views ⚑
# Exploit Title: Seowon 130-SLC router 1.0.11 – ‘ipAddr’ RCE (Authenticated)# Date: 5 Aug 2020# Exploit Author: maj0rmil4d# Vendor Homepage:
Tagged with: 130SLC • advisory • code • CSRF • execution • exploit • overflow • packet • remote • scanner • security • seowon • storm • vulnerability • whitepaper • XSS
ZeroShell 3.9.0 Remote Command Execution ≈ Packet Storm
November 26th, 2020 📆 | 7315 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStager def
Tagged with: advisory • command • CSRF • execution • exploit • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS • zeroshell
WordPress Simple File List Unauthenticated Remote Code Execution ≈ Packet Storm
November 26th, 2020 📆 | 3056 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = GoodRanking include Msf::Exploit::Remote::HTTP::Wordpressprepend Msf::Exploit::Remote::AutoCheckinclude Msf::Exploit::FileDropper def
Tagged with: advisory • code • CSRF • execution • exploit • File • list • overflow • packet • remote • scanner • security • simple • storm • unauthenticated • vulnerability • whitepaper • wordpress • XSS
Kong Gateway Admin API Remote Code Execution ≈ Packet Storm
November 26th, 2020 📆 | 5730 Views ⚑
# frozen_string_literal: true ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Remote::HttpClient
Tagged with: admin • advisory • API • code • CSRF • execution • exploit • gateway • Kong • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS
Aerospike Database 5.1.0.3 – OS Command Execution
November 21st, 2020 📆 | 4018 Views ⚑
# Exploit Title: Aerospike Database 5.1.0.3 - OS Command Execution # Date: 2020-08-01 # Exploit Author: Matt S # Vendor
Tagged with: aerospike • command • CVE-2020-13151 • database • execution • multiple • remote
Zortam MP3 Media Studio 27.60 Remote Code Execution ≈ Packet Storm
November 21st, 2020 📆 | 6341 Views ⚑
# Exploit Title: Zortam Mp3 Media Studio 27.60 – Remote Code Execution (SEH)# Date: November 19, 2020# Exploit Author: Vincent
Tagged with: advisory • code • CSRF • execution • exploit • media • MP3 • overflow • packet • remote • scanner • security • storm • studio • vulnerability • whitepaper • XSS • zortam
Rockwell FactoryTalk View SE SCADA Unauthenticated Remote Code Execution ≈ Packet Storm
November 20th, 2020 📆 | 7559 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Powershellinclude Msf::Exploit::Remote::HttpServerinclude Msf::Exploit::Remote::HttpClient def
Tagged with: advisory • code • CSRF • execution • exploit • factorytalk • overflow • packet • remote • rockwell • scada • scanner • security • storm • unauthenticated • View • vulnerability • whitepaper • XSS
Zortam Mp3 Media Studio 27.60 – Remote Code Execution (SEH)
November 20th, 2020 📆 | 8067 Views ⚑
# Exploit Title: Zortam Mp3 Media Studio 27.60 - Remote Code Execution (SEH) # Date: November 19, 2020 # Exploit
Tagged with: code • execution • local • media • MP3 • remote • SEH • studio • windows • zortam
TestBox CFML Test Framework 4.1.0 – Arbitrary File Write and Remote Code Execution
November 20th, 2020 📆 | 7247 Views ⚑
# Title: TestBox CFML Test Framework 4.1.0 - Arbitrary File Write and Remote Code Execution # Author: Darren King #
Tagged with: arbitrary • CFML • code • execution • File • framework • multiple • remote • Test • testbox • webapps • write
TestBox CFML Test Framework 4.1.0 Arbitrary File Write / Code Execution ≈ Packet Storm
November 19th, 2020 📆 | 6298 Views ⚑
# Title: TestBox CFML Test Framework 4.1.0 – Arbitrary File Write and Remote Code Execution# Author: Darren King# Date: 2020-07-23#
Tagged with: advisory • arbitrary • CFML • code • CSRF • execution • exploit • File • framework • overflow • packet • scanner • security • storm • Test • testbox • vulnerability • whitepaper • write • XSS
Oracle WebLogic Server Administration Console Handle Remote Code Execution ≈ Packet Storm
November 19th, 2020 📆 | 2530 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking prepend Msf::Exploit::Remote::AutoCheckinclude Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStagerinclude
Tagged with: administration • advisory • code • console • CSRF • execution • exploit • handle • oracle • overflow • packet • remote • scanner • security • server • storm • vulnerability • weblogic • whitepaper • XSS
Aerospike Database 5.1.0.3 Remote Command Execution ≈ Packet Storm
November 17th, 2020 📆 | 5161 Views ⚑
# Exploit Title: Aerospike Database 5.1.0.3 – OS Command Execution# Date: 2020-08-01# Exploit Author: Matt S# Vendor Homepage: https://www.aerospike.com/# Version:
Tagged with: advisory • aerospike • command • CSRF • database • execution • exploit • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS
Fuel CMS 1.4 Remote Code Execution ≈ Packet Storm
November 17th, 2020 📆 | 3774 Views ⚑
#!/usr/bin/env ruby # Title: Fuel CMS 1.4 – Remote Code Execution# Exploit Author: Alexandre ZANNI# Date: 2020-11-14# Vendor Homepage: https://www.getfuelcms.com/#
Tagged with: advisory • cms • code • CSRF • execution • exploit • fuel • overflow • packet • remote • scanner • security • storm • vulnerability • whitepaper • XSS
Car Rental Management System 1.0 – Remote Code Execution (Authenticated)
November 16th, 2020 📆 | 4667 Views ⚑
# Exploit Title: Car Rental Management System 1.0 - Remote Code Execution (Authenticated) # Date: 2020-11.13 # Exploit Author: Mehmet
Tagged with: authenticated • Car • code • execution • management • php • remote • rental • system • webapps
SuiteCRM 7.11.15 – ‘last_name’ Remote Code Execution (Authenticated)
November 14th, 2020 📆 | 3677 Views ⚑
# Exploit Title: SuiteCRM 7.11.15 - 'last_name' Remote Code Execution (Authenticated) # Date: 08 NOV 2020 # Exploit Author: M.
Tagged with: authenticated • code • CVE-2020-28328 • execution • lastname • php • remote • suitecrm • webapps
ASUS TM-AC1900 Arbitrary Command Execution ≈ Packet Storm
November 13th, 2020 📆 | 3973 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Remote::HttpServerinclude Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::EXEinclude Msf::Exploit::FileDropper
Tagged with: AC1900 • advisory • arbitrary • Asus • command • CSRF • execution • exploit • overflow • packet • scanner • security • storm • TMAC1900 • vulnerability • whitepaper • XSS
CMSUno 1.6.2 – ‘user’ Remote Code Execution (Authenticated)
November 13th, 2020 📆 | 7773 Views ⚑
# Exploit Title: CMSUno 1.6.2 - 'user' Remote Code Execution (Authenticated) # Google Dork: N/A # Date: 2020.09.30 # Exploit
Tagged with: authenticated • cmsuno • code • execution • php • remote • user • webapps
Popular
23,600 hacked databases have leaked from a defunct… November 4, 2020 Image: Setyaki Irham, ZDNet More than 23,000 hacked databases have…
7 Things for CBAT Stock Investors to Know About the… November 13, 2020 © Source: Pavel Kapysh / Shutterstock.com A magnifying glass zooms…
Kali Linux 2020.4 released: New default shell, fresh… November 19, 2020 Offensive Security has released Kali Linux 2020.4, the latest version…
The malware that usually installs ransomware and you… November 20, 2020 Image: Lina White Gone are the days when ransomware groups…
‘Sound beaming’ technology will play… November 13, 2020 New futuristic audio technology developed in Israel allows music to…
After Trump tweets Defcon hacking video, voting… November 17, 2020 Getty Images As President Trump continues to make unfounded claims…
Here’s How Technology Saved Formula One Racing… November 30, 2020 BAHRAIN, BAHRAIN - NOVEMBER 29: A fire is pictured following…
Members
Comments