Showing 101 - 125 of 54,214

Exploit Files

Backdoor.Win32.Optix.02.b MVID-2024-0690 Hardcoded Credential: Posted Sep 4, 2024; Authored by malvuln | Site malvuln.com; Backdoor.Win32.Optix.02.b malware suffers from a hardcoded credential vulnerability.; tags | exploit; systems | windows; SHA-256 | 8c8ad33e111ebd91632229baa25c24e2eb3101bf3951d070074c5b4618e78fcf; Download | Favorite | View

Backdoor.Win32.JustJoke.21 (BackDoor Pro - v2.0b4) MVID-2024-0689 Code Execution: Posted Sep 4, 2024; Authored by malvuln | Site malvuln.com; Backdoor.Win32.JustJoke.21 (BackDoor Pro - v2.0b4) malware suffers from a code execution vulnerability.; tags | exploit, code execution; systems | windows; SHA-256 | efd34490081822962a9907289feb284b29b116cd83a6df573fe5cae3f6d09fb1; Download | Favorite | View

Backdoor.Win32.PoisonIvy.ymw MVID-2024-0688 Insecure Credential Storage: Posted Sep 4, 2024; Authored by malvuln | Site malvuln.com; Backdoor.Win32.PoisonIvy.ymw malware suffers from an insecure credential storage vulnerability.; tags | exploit; systems | windows; SHA-256 | 2a0b97e3b01f0c3a9c85e1a96ede18240c61b21ee538261305346eec34828cd5; Download | Favorite | View

Online Travel Agency System 1.0 Shell Upload: Posted Sep 4, 2024; Authored by indoushka; Online Travel Agency System version 1.0 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | e1c910902237872a9a7ebb40f19760f24f84f89e4b7e66a2979867c3d7860ef2; Download | Favorite | View

Tourism Management System 1.0 SQL Injection: Posted Sep 4, 2024; Authored by indoushka; Tourism Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.; tags | exploit, remote, sql injection, bypass; SHA-256 | db170b3ac31a17248bfa19e67220ae00449f12c6e02e1fc5d27c5fcdf490b79a; Download | Favorite | View

Tenant courier management 1.0 Insecure Settings: Posted Sep 4, 2024; Authored by indoushka; Tenant courier management version 1.0 suffers from an ignored default credential vulnerability.; tags | exploit; SHA-256 | e5bc487016d175a441c7e77bd92498997edbbd879dd65cd842a7fdf9320ae77f; Download | Favorite | View

Supply Chain Management 1.0 SQL Injection: Posted Sep 4, 2024; Authored by indoushka; Supply Chain Management version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.; tags | exploit, remote, sql injection, bypass; SHA-256 | e470a8736045692eb5cfaa7bc4e77aaa4cc7c9beb8b335abd16a1b89d107b75e; Download | Favorite | View

Student Result Management System 2.0 Insecure Direct Object Reference: Posted Sep 4, 2024; Authored by indoushka; Student Result Management System version 2.0 suffers from an insecure direct object reference vulnerability.; tags | exploit; SHA-256 | bda5efeeb9ed25bc54c10734b12e890e9b254852bf233042b1f26d7328107bff; Download | Favorite | View

Student Record System 1.0 SQL Injection: Posted Sep 4, 2024; Authored by indoushka; Student Record System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.; tags | exploit, remote, sql injection, bypass; SHA-256 | 65197edb9fa8815555185ffcfdef263bccbd753949a90ec711337f13c2e0c060; Download | Favorite | View

Student Attendance Management System 1.0 Arbitrary File Upload: Posted Sep 4, 2024; Authored by indoushka; Student Attendance Management System version 1.0 suffers from an arbitrary file upload vulnerability.; tags | exploit, arbitrary, file upload; SHA-256 | 8301589003c010f20ac529eb42cbb71ab3534415a910f9e4049f5a4439af953d; Download | Favorite | View

Online Course Registration 1.0 SQL Injection: Posted Sep 4, 2024; Authored by indoushka; Online Course Registration version 1.0 suffers from a remote blind SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 33f34004d037922833768a63f88ac2eafd52901b044b79be249240c957b80608; Download | Favorite | View

Texas Instruments Fusion Digital Power Designer 7.10.1 Credential Disclosure: Posted Sep 3, 2024; Authored by Gionathan Armando Reale; Texas Instruments Fusion Digital Power Designer version 7.10.1 allows a local attacker to obtain sensitive information via the plaintext storage of credentials.; tags | exploit, local, info disclosure; advisories | CVE-2024-41629; SHA-256 | 7d2282798e3247a2123a5993d7d6d2cb77a3755e9e0270c916b57856fbfaf0ef; Download | Favorite | View

Taskhub 2.8.8 Insecure Settings: Posted Sep 3, 2024; Authored by indoushka; Taskhub version 2.8.8 suffers from an ignored default credential vulnerability.; tags | exploit; SHA-256 | 2c385d7b29ff2d1f0cadb673bff0447f2a27c839cc502710002b3eab58740544; Download | Favorite | View

Webpay E-Commerce 1.0 SQL Injection: Posted Sep 3, 2024; Authored by indoushka; Webpay E-Commerce version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | aab9cd23f27d0b380a30652d38f6b7294616ac5ba2a2caacad04babc8614cba6; Download | Favorite | View

SPIP 4.2.9 Code Execution: Posted Sep 3, 2024; Authored by indoushka; SPIP version 4.2.9 suffers from a code execution vulnerability.; tags | exploit, code execution; SHA-256 | d4ed25b80a6fdd5de7edecd14eb96fe799d3bf844e756b0284c009a504280356; Download | Favorite | View

Online Traffic Offense 1.0 Cross Site Request Forgery: Posted Sep 3, 2024; Authored by indoushka; Online Traffic Offense version 1.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 94fe5b823b710c5c6f181d6f318ef1740f7740edaddc57380ec3b9edff783886; Download | Favorite | View

Penglead 2.0 Cross Site Scripting: Posted Sep 3, 2024; Authored by indoushka; Penglead version 2.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 4803b54886f3d92678ccb96aae5fd9a82832e85074cee13728faeb8279e61357; Download | Favorite | View

PPDB 2.4-update 6118-1 Cross Site Request Forgery: Posted Sep 3, 2024; Authored by indoushka; PPDB version 2.4-update 6118-1 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | f9a7acddf2a8e87d760a0885cc5283d0764737fcf83a7d69b6cba9d514a0bf6e; Download | Favorite | View

Online Travel Agency System 1.0 Arbitrary File Upload: Posted Sep 3, 2024; Authored by indoushka; Online Travel Agency System version 1.0 suffers from an arbitrary file upload vulnerability.; tags | exploit, arbitrary, file upload; SHA-256 | 5d679af79681b3230bebbb01358d179220b220e1d69d8bcf6fa3c2dfc830be0f; Download | Favorite | View

Packet Storm New Exploits For August, 2024: Posted Sep 2, 2024; Authored by Todd J. | Site packetstormsecurity.com; This archive contains all of the 722 exploits added to Packet Storm in August, 2024. Please note the increase in size for this month is due to a massive backlog of older exploits being added to the archive and is not representative of an uptick in new issues being discovered.; tags | exploit; SHA-256 | 134571b730367a368bd78e19cc2729522241ac88f947a572cd37314d9f37a24f; Download | Favorite | View

IntelliNet 2.0 Remote Root: Posted Sep 2, 2024; Authored by Jean Pereira; Zero day remote root exploit for IntelliNet version 2.0. It affects multiple devices of AES Corp and Siemens. The exploit provides a remote shell and escalates your permissions to full root permissions by abusing exec_suid. No authentication needed at all, neither any interaction from the victim. The firmware affected by this exploit runs on fire alarms, burglar sensors and environmental devices, all on the internet, all vulnerable, no patch. Full control over hardware and software with no restrictions, you can manipulate battery voltage and even damage the hardware with unknown outcomes.; tags | exploit, remote, shell, root; SHA-256 | 03f6a27dff52d1325441a14044dae92e43735378844d284aa4a56aa28a72abe1; Download | Favorite | View

Online Musical Instrument Shop IN 1.0 Cross Site Scripting: Posted Sep 2, 2024; Authored by indoushka; Online Musical Instrument Shop IN version 1.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 2e3a9e009b49f67ad6f0534a437aba16431617d1d2588b6c4ed1087d4399d493; Download | Favorite | View

Online Job Portal IN 1.0 SQL Injection: Posted Sep 2, 2024; Authored by indoushka; Online Job Portal IN version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 92218ce274c20d93f28c9b743aacda84a68675963b3607d54c3484d9218e178e; Download | Favorite | View

pgAdmin 8.4 Code Execution: Posted Sep 2, 2024; Authored by indoushka; pgAdmin versions 8.4 and earlier are affected by a remote reverse connection execution vulnerability via the binary path validation API.; tags | exploit, remote; SHA-256 | 263e864f594c394a102efec26ea63661ce2ce5e3573fde482860fbce55467c71; Download | Favorite | View

SPIP 4.2.7 Code Execution: Posted Sep 2, 2024; Authored by indoushka; SPIP version 4.2.7 suffers from a code execution vulnerability.; tags | exploit, code execution; SHA-256 | 160ad4f3c2b9737ce719a722da0465d21060eaa5bdf0025e6c316b142389c830; Download | Favorite | View

Page 5 of 2,169 Back 3 4 5 6 7 Next

Top Authors In Last 30 Days

Red Hat 232 files
indoushka 159 files
Jay Turla 150 files
Ubuntu 64 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,120)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,142)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,780)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,828)
UNIX (9,454)
UnixWare (188)
Windows (6,766)
Other

Exploit Files

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems