September 11th, 2020 📆 | 1828 Views ⚑
CVSSv3.1 Score ————————————————- AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N Vendor ————————————————- Hyland Software – (https://www.hyland.com/en/andhttps://www.onbase.com/en/) Product ————————————————- Hyland OnBase All derivatives based on OnBase Versions
September 8th, 2020 📆 | 6259 Views ⚑
# Exploit Title: Joomla! Component GMapFP J3.5/J3.5F – Unauthenticated Arbitrary File Upload# Google Dork: inurl:”com_gmapfp”# Date: 2020-03-27# Exploit Author: ThelastVvV#
September 5th, 2020 📆 | 5062 Views ⚑
# Exploit Title: SiteMagic CMS 4.4.2 – Arbitrary File Upload (Authenticated)# Date: 2020-09-02# Exploit Author: v1n1v131r4# Vendor Homepage: https://sitemagic.org/# Software
September 3rd, 2020 📆 | 6815 Views ⚑
# Exploit Title: SiteMagic CMS 4.4.2 - Arbitrary File Upload (Authenticated) # Date: 2020-09-02 # Exploit Author: v1n1v131r4 # Vendor
August 28th, 2020 📆 | 3020 Views ⚑
# Exploit Title: WordPress Plugin Autoptimize 2.7.6 – Arbitrary File Upload (Authenticated)# Date: 2020-08-24# Software Link: https://wordpress.org/plugins/autoptimize/# Author : SunCSR
August 28th, 2020 📆 | 4157 Views ⚑
# Exploit Title: WordPress Plugin Autoptimize 2.7.6 - Arbitrary File Upload (Authenticated) # Date: 2020-08-24 # Software Link: https://wordpress.org/plugins/autoptimize/ #
August 14th, 2020 📆 | 3475 Views ⚑
# Exploit Title: CMS Made Simple 2.2.14 – Arbitrary File Upload (Authenticated)# Google Dork: –# Date: 2020-07-29# Exploit Author: Roel
August 13th, 2020 📆 | 7192 Views ⚑
# Exploit Title: CMS Made Simple 2.2.14 - Arbitrary File Upload (Authenticated) # Google Dork: - # Date: 2020-07-29 #
August 12th, 2020 📆 | 4104 Views ⚑
SEC Consult Vulnerability Lab Security Advisory < 20200807-0 >=======================================================================title: Multiple Vulnerabilitiesproduct: flatCore CMSvulnerable version: < =1.5.5fixed version: 1.5.7CVE number: –impact:
August 7th, 2020 📆 | 6413 Views ⚑
# Exploit Title: Online Shopping Alphaware 1.0 – Arbitrary File Upload (Authenticated)# Date: 2020-8-4# Exploit Author: Edo Maland# Vendor Homepage:
August 1st, 2020 📆 | 3448 Views ⚑
# Exploit Title: Online Bike Rental v1.0 – (Authenticated) Arbitrary File Upload / Remote Code Execution# Date: July 31, 2020#
July 30th, 2020 📆 | 2223 Views ⚑
# Exploit Title: Koken CMS 0.22.24 – Arbitrary File Upload (Authenticated)# Date: 2020-07-15# Exploit Author: v1n1v131r4# Vendor Homepage: http://koken.me/# Software
July 30th, 2020 📆 | 4769 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRankinginclude Msf::Exploit::FileDropperinclude Msf::Exploit::Remote::HttpClientprepend Msf::Exploit::Remote::AutoCheck def initialize(info
July 28th, 2020 📆 | 3419 Views ⚑
# Exploit Title: Socket.io-file 2.0.31 – Arbitrary File Upload# Date: 2020-07-02# Exploit Author: Cr0wTom# Vendor Homepage: https://www.npmjs.com/package/socket.io-file# Software Link: https://www.npmjs.com/package/socket.io-file/v/2.0.31#
July 27th, 2020 📆 | 4277 Views ⚑
# Exploit Title: Koken CMS 0.22.24 - Arbitrary File Upload (Authenticated) # Date: 2020-07-15 # Exploit Author: v1n1v131r4 # Vendor
July 27th, 2020 📆 | 5751 Views ⚑
# Exploit Title: Socket.io-file 2.0.31 - Arbitrary File Upload # Date: 2020-07-02 # Exploit Author: Cr0wTom # Vendor Homepage: https://www.npmjs.com/package/socket.io-file
July 27th, 2020 📆 | 3149 Views ⚑
# Exploit Title: Webtareas 2.1p - Arbitrary File Upload (Authenticated) # Author: AppleBois # Date: 2020-07-10 # Exploit author :
July 17th, 2020 📆 | 6779 Views ⚑
SEC Consult Vulnerability Lab Security Advisory < 20200717-0 >=======================================================================title: Multiple Vulnerabilitiesproduct: WonderCMSvulnerable version: < =3.1.0fixed version: –CVE number: –impact: Highhomepage:
July 9th, 2020 📆 | 5969 Views ⚑
#Authenticated File Upload vulnerability#Author: AppleBois#Homepage: https://sourceforge.net/projects/webtareas/#Affected Version: 2.1 && 2.1p#Vendors Claim there’s a patch on 2.1p but it’s vulnerable and
July 8th, 2020 📆 | 4956 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking prepend Msf::Exploit::Remote::AutoCheckinclude Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStagerinclude
July 4th, 2020 📆 | 7934 Views ⚑
########################################################################### Bolt CMS < = 3.7.0 Multiple Vulnerabilities ########################################################################### Author – Sivanesh Ashok | @sivaneshashok | stazot.com Date : 2020-03-24Vendor
July 2nd, 2020 📆 | 3394 Views ⚑
# Exploit Title: Online Shopping Portal 3.1 – Authentication Bypass# Date: 2020-06-25# Exploit Author: Ümit Yalçın# Vendor Homepage: https://phpgurukul.com/shopping-portal-free-download/# Version:
June 26th, 2020 📆 | 7500 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##require ‘msf/core’require “net/http”require “uri”require ‘nokogiri’ class MetasploitModule < Msf::ExploitRank = ExcellentRanking include
June 25th, 2020 📆 | 4811 Views ⚑
# Exploit Title: Online Student Enrollment System 1.0 - Unauthenticated Arbitrary File Upload # Google Dork: N/A # Date: 2020-06-20
Cabot 0.11.12 – Persistent Cross-Site Scripting September 7, 2020 # Exploit Title: Cabot 0.11.12 - Persistent Cross-Site Scripting #…
A Tale of Escaping a Hardened Docker container August 25, 2020 Legend has it that before his death, Harry Houdini once…
Ubuntu Security Notice USN-4474-1 ≈ Packet Storm August 26, 2020 ==========================================================================Ubuntu Security Notice USN-4474-1August 26, 2020firefox vulnerabilities==========================================================================A security issue affects…
CyberRisk Alliance Acquires Security Weekly September 8, 2020 NEW YORK, Sept. 08, 2020 (GLOBE NEWSWIRE) -- CyberRisk Alliance…
Dominic Cummings’ plan to build UK Google… September 10, 2020 UK Prime Minister Boris Johnson's top adviser, Dominic Cummings, is…
European ISPs report mysterious wave of DDoS attacks September 5, 2020 More than a dozen internet service providers (ISPs) across Europe…Zerologon Proof Of Concept September 17, 2020 Proof of concept exploit for the Windows Zerologon vulnerability as…
Comments