Результаты поиска

NodCMS - PHP Code Execution <!-- Title: NodCMS - PHP Code Execution Application: NodCMS Versions Affected: All Version Vendor URL: http://nodcms.com/ Software URL: https://github.com/khodakhah/nodcms/archive/master.zip Discovered by: Ashiyane Digital Security Team Tested on: Windows 10 Bugs...

libtiff 4.0.9 - Decodes Arbitrarily Sized JBIG into a Target Buffer /* libtiff up to and including 4.0.9 decodes arbitrarily-sized JBIG into a buffer, ignoring the buffer size. The issue occurs because JBIGDecode entirely ignores the size of the buffer that is passed to it: static int...

Sophos Web Appliance 4.2.1.3 - Remote Code Execution KL-001-2016-009 : Sophos Web Appliance Remote Code Execution Title: Sophos Web Appliance Remote Code Execution Advisory ID: KL-001-2016-009 Publication Date: 2016.11.03 Publication URL...

SweetRice 1.5.1 - Backup Disclosure Title: SweetRice 1.5.1 - Backup Disclosure Application: SweetRice Versions Affected: 1.5.1 Vendor URL: http://www.basic-cms.org/ Software URL: http://www.basic-cms.org/attachment/sweetrice-1.5.1.zip Discovered by: Ashiyane Digital Security Team Tested on...

Schoolhos CMS 2.29 - 'kelas' SQL Injection Document Title: =============== Schoolhos CMS v2.29 - (kelas) Data Siswa SQL Injection Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1931 Release Date: ============= 2016-11-07...

Microsoft Internet Explorer 8/9/10/11 / IIS / CScript.exe/WScript.exe VBScript - CRegExp..Execute Use of Uninitialized Memory (MS14-080/MS14-084) <!-- Source: http://blog.skylined.nl/20161107001.html Synopsis A specially crafted script can cause the VBScript engine to access data before...

PCMan FTP Server 2.0.7 - 'SITE CHMOD' Remote Buffer Overflow #!/usr/bin/env python #-*- coding: utf-8 -*- # Exploit Title: PCMan FTP Server 2.0 BoF SITE CHMOD Command # Date: 04/11/2016 # Exploit Author: Luis Noriega # Tested on: Windows XP Profesional V. 5.1 Service Pack 3 # CVE : n/a...

PCMan FTP Server 2.0.7 - 'PORT' Remote Buffer Overflow #!/usr/bin/env python #-*- coding: utf-8 -*- # Exploit Title: PCMan FTP Server 2.0 PORT Command BoF Exploit # Author: Pablo González # Date: 4/11/2016 # Software: PCMan 2.0 # Tested on: Windows XP Profesional SP3 Spanish x86 import...

SweetRice 1.5.1 - Arbitrary File Upload #/usr/bin/python #-*- Coding: utf-8 -*- # Exploit Title: SweetRice 1.5.1 - Unrestricted File Upload # Exploit Author: Ashiyane Digital Security Team # Date: 03-11-2016 # Vendor: http://www.basic-cms.org/ # Software Link...

IBM AIX 5.3/6.1/7.1/7.2 - 'lquerylv' Local Privilege Escalation #!/usr/bin/sh # # AIX lquerylv 5.3, 6.1, 7.1, 7.2 local root exploit. Tested against latest patchset (7100-04) # # This exploit takes advantage of known issues with debugging functions # within the AIX linker library. We are...

Freefloat FTP Server 1.0 - 'SITE ZONE' Remote Buffer Overflow #!/usr/bin/env python #-*- coding: utf-8 -*- # Exploit Title: FreeFloat FTP Server BoF SITE ZONE Command # Date: 04/11/2016 # Exploit Author: Luis Noriega # Software Link: http://www.freefloat.com/software/freefloatftpserver.zip #...

PCMan FTP Server 2.0.7 - 'NLST' Remote Buffer Overflow #!/usr/bin/env python # -*- coding: utf-8 -*- import socket #Exploit Title: PCMan FTP Server 2.0 Buffer Overflow NLST command #Date: 03/11/16 #Exploit Author: Karri93 #Version: 2.0 #Tested on: Windows XP Profesional SP3 Spanish x86...

sNews 1.7.1 - Cross-Site Request Forgery # Exploit Title : Snews CMS Cross Site Request Forgery # Author : Ashiyane Digital Security Team # Google Dork : "This site is powered by sNews" # Date : 1/11/2016 # Type : webapps # Platform : PHP # Vendor Homepage : http://snewscms.com/ # Software...

sNews 1.7.1 - Arbitrary File Upload # Exploit Title : Snews CMS upload sheller # Author : Ashiyane Digital Security Team # Google Dork : "This site is powered by sNews" # Date : 04/11/2016 # Type : webapps # Platform : PHP # Vendor Homepage : http://snewscms.com/ # Software link ...

IBM AIX 6.1/7.1/7.2.0.2 - 'lsmcode' Local Privilege Escalation #!/usr/bin/sh # # AIX lsmcode local root exploit. # # Affected: AIX 6.1/7.1/7.2.0.2 # # Blog post URL: https://rhinosecuritylabs.com/2016/11/03/unix-nostalgia-hunting-zeroday-vulnerabilities-ibm-aix/ # # lqueryroot.sh by...

ETchat 3.7 - Cross-Site Request Forgery # Exploit Title: ETchat(persian version) CMS Xsrf vulnerability # Exploit Author: Hesam Bazvand # Contact: https://www.facebook.com/hesam.king73 # Software Link: http://dl.20script.ir/script/chat/et-chat-3.7-Persian(www.20script.ir).zip # Tested on...

Adult Filter 1.0 - Denial of Service (PoC) # Exploit Title: ADULT FILTER 1.0 - Denial of Service (PoC) # Date: 2018-10-28 # Exploit Author: Beren Kuday GÖRÜN # Vendor Homepage: http://www.armcode.com/adult-filter/ # Software Link: http://www.armcode.com/downloads/adult-filter.exe # Version...

PCMan FTP Server 2.0.7 - 'ACCT' Remote Buffer Overflow #!/usr/bin/env python #-*- coding: utf-8 -*- # Exploit Title: PCMan FTP Server 2.0 ACCT Command Buffer Overflow Exploit # Date: 3/11/2016 # Exploit Author: Cybernetic # Version: 2.0 # Tested on: Windows XP Profesional SP3 ESP x86 # CVE ...

Axessh 4.2 - Denial of Service [+] Credits: John Page aka hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/AXESSH-DENIAL-OF-SERVICE.txt [+] ISR: ApparitionSec Vendor: ============ www.labf.com Product: ============= Axessh 4.2.2...

SweetRice 1.5.1 - Cross-Site Request Forgery / PHP Code Execution <!-- # Exploit Title: SweetRice 1.5.1 Arbitrary Code Execution # Date: 30-11-2016 # Exploit Author: Ashiyane Digital Security Team # Vendor Homepage: http://www.basic-cms.org/ # Software Link...

Linux/x86 - execve(/bin/cat /etc/ssh/sshd_config) Shellcode 44 Bytes /* # Linux/x86 - execve(/bin/cat /etc/ssh/sshd_config) Shellcode 44 Bytes # Author: Goutham Madhwaraj # Date: 2018-10-22 # Tested on: i686 GNU/Linux # Shellcode Length: 44 # ShoutOut - BarrierSec # gcc -fno-stack-protector -z...

SweetRice 1.5.1 - Cross-Site Request Forgery <!-- # Exploit Title: SweetRice 1.5.1 - Cross-Site Request Forgery # Exploit Author: Ashiyane Digital Security Team # Date: 03-11-2016 # Vendor: http://www.basic-cms.org/ # Software Link: http://www.basic-cms.org/attachment/sweetrice-1.5.1.zip #...

WinaXe 7.7 'FTP client' - Remote Buffer Overflow [+] Credits: John Page aka hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/WINAXE-FTP-CLIENT-REMOTE-BUFFER-OVERFLOW.txt [+] ISR: Apparition Security Vendor: ============ www.labf.com...

SweetRice 1.5.1 - Arbitrary File Download #/usr/bin/python #-*- Coding: utf-8 -*- # Exploit Title: SweetRice 1.5.1 - Local File Inclusion # Exploit Author: Ashiyane Digital Security Team # Date: 03-11-2016 # Vendor: http://www.basic-cms.org/ # Software Link...

Microsoft Windows - SetImeInfoEx Win32k NULL Pointer Dereference (Metasploit) ## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Local Rank = GoodRanking include...