Exploits Archives — Page 2 of 21

Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 – Stored XSS Exploit

January 20, 2021January 20, 2021 Admin

Oracle Business Intelligence Enterprise Edition version 11.1.1.7.140715 is vulnerable to a stored cross site scripting exploit.

Proxify – Swiss Army Knife Proxy for Rapid Deployments

January 14, 2021January 14, 2021 Admin

Swiss Army Knife Proxy for rapid deployments. Supports multiple operations such as request/response dump, filtering and manipulation via DSL language, upstream HTTP/Socks5 proxy. Additionally a replay utility allows to import the dumped traffic (request/responses with […]

Gila CMS 2.0.0 – Remote Code Execution (Unauthenticated)

January 12, 2021January 12, 2021 Admin

Gila Content Management System version 2.0.0 suffers from a Remote Code Execution Unauthenticated vulnerability.

OpenCart 3.0.36 Vulnerable ATO via Cross Site Request Forgery

January 11, 2021January 11, 2021 Admin

OpenCart version 3.0.36 suffers from a Cross Site Request Forgery (CSRF) vulnerability allowing for an account take over.

CISCO CVE-2020-3452 Scanner & Exploiter

January 7, 2021January 7, 2021 Admin

It will scan the target servers from shodan and then find the vulnerable servers to CVE-2020-3452 (Cisco Adaptive Security Appliance and FTD Unauthorized Remote File Reading). About A vulnerability in the web services interface of […]

iBall-Baton WRA150N Rom-0 Backup – File Disclosure (Sensitive Information)

January 7, 2021January 7, 2021 Admin

iBall-Baton WRA150N Router suffers a File Disclosure vulnerability via file download.

Dirsearch 0.4.1 – CSV Injection

January 6, 2021January 6, 2021 Admin

Dirsearch 0.4.1 suffers from a CSV Injection vulnerability when against a configured server.

Apache Flink 1.11.0-1.11.2 Exploit CVE-2020-17519

January 5, 2021January 5, 2021 Admin

Apache Flink 1.11.0-1.11.2 contains a flaw allowing hackers to read any file on the local filesystem of the JobManager through the REST interface of the JobManager process. To avoid exploitation it’s advised users upgrade to […]

WebMap – Python Based NMAP Nikto Dirsearch Automation Tool

January 5, 2021January 5, 2021 Admin

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing Perform A Network Scan using […]

Zoom Meeting Connector 4.6.239.20200613 – Remote Root Exploit (Authenticated)

January 5, 2021January 5, 2021 Admin

The remote conferencing software Zoom Meeting Connector suffers from a Remote Root Exploit (Authenticated)