| Latest Exploits |
| Showing 'Latest Exploits' from 1 to 10|
| |PHP 7.4 FFI Disable_functions Bypass Topic: PHP 7.4 FFI disable_functions Bypass Risk: Medium Text:< ?php /* FFI Exploit - uses 3 potential BUGS. PHP was contacted and said nothing in FFI is a security issue. Able to call...
| |ClearPass Policy Manager Unauthenticated Remote Command Execution Proof of concept exploit for ClearPass Policy Manager which suffers from an unauthenticated remote command execution vulnerability.
| |F5 BIG-IP TMUI Directory Traversal / File Upload / Code Execution This Metasploit module exploits a directory traversal in F5s BIG-IP Traffic Management User Interface (TMUI) to upload a shell script and execute it as the root user.
| |CDATA OLTs Backdoor / Privilege Escalation / Information Disclosure Various CDATA OLTs suffer from backdoor access with telnet, credential leaks, shell escape with root privileges, denial of service, and weak encryption algorithm vulnerabilities.
| |Online Shopping Portal 3.1 SQL Injection Online Shopping Portal version 3.1 suffers from a remote SQL injection vulnerability.
| |Sony PS4 / FreeBSD Ip6_setpktopt Local Privilege Escalation Sony PS4 versions prior to 7.02 and FreeBSD versions 9 and 12 ip6_setpktopt kernel local privilege escalation proof of concept exploit.
| |BIG-IP TMUI Remote Code Execution This exploit demonstrates the remote code execution vulnerability in the Traffic Management User Interface (TMUI) in BIG-IP versions 15.0.0 through 184.108.40.206, 14.1.0 through 220.127.116.11, 13.1.0 through 18.104.22.168, 12.1.0 through 22.214.171.124, and...
| |Grafana 7.0.1 Denial Of Service Grafana version 7.0.1 denial of service proof of concept exploit.
| |OpenSIS 7.4 Unauthenticated PHP Code Execution This Metasploit module exploits multiple vulnerabilities in openSIS 7.4 and prior versions which could be abused by unauthenticated attackers to execute arbitrary PHP code with the permissions of the webserver. The exploit chain abuses...
| |RSA IG+L Aveksa 7.1.1 Remote Code Execution RSA IG+L Aveksa version 7.1.1 suffers from a remote code execution vulnerability due to an authorization bypass issue.
| 1 2 3 4 5 6 7 8 9 10 Older » |