bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/dos
History
Offensive Security de260aeac6 DB: 2021-10-30 
95 changes to exploits/shellcodes

Product Key Explorer 4.2.7 - 'multiple' Denial of Service (PoC)
Managed Switch Port Mapping Tool 2.85.2 - Denial of Service (PoC)
AgataSoft PingMaster Pro 2.1 - Denial of Service (PoC)
Nsauditor 3.2.2.0 - 'Event Description' Denial of Service (PoC)
WordPress Plugin WPGraphQL 1.3.5 - Denial of Service
Sandboxie 5.49.7 - Denial of Service (PoC)
WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service (PoC)
iDailyDiary 4.30 - Denial of Service (PoC)
RarmaRadio 2.72.8 - Denial of Service (PoC)
DupTerminator 1.4.5639.37199 - Denial of Service (PoC)
Color Notes 1.4 - Denial of Service (PoC)
Macaron Notes great notebook 5.5 - Denial of Service (PoC)
My Notes Safe 5.3 - Denial of Service (PoC)

n+otes 1.6.2 - Denial of Service (PoC)

Telegram Desktop 2.9.2 - Denial of Service (PoC)

Mini-XML 3.2 - Heap Overflow
Solaris 10 (Intel) - 'dtprintinfo' Local Privilege Escalation (2)
Solaris 10 (Intel) - 'dtprintinfo' Local Privilege Escalation (3)
Solaris 10 (SPARC) - 'dtprintinfo' Local Privilege Escalation (1)
Solaris 10 (SPARC) - 'dtprintinfo' Local Privilege Escalation (2)

MariaDB 10.2 - 'wsrep_provider' OS Command Execution

Microsoft Internet Explorer 11 and WPAD service 'Jscript.dll' - Use-After-Free

Visual Studio Code 1.47.1 - Denial of Service (PoC)

DELL dbutil_2_3.sys 2.3 - Arbitrary Write to Local Privilege Escalation (LPE)

MySQL User-Defined (Linux) x32 / x86_64 - 'sys_exec' Local Privilege Escalation (2)

Cmder Console Emulator 1.3.18 - 'Cmder.exe' Denial of Service (PoC)

GNU Wget < 1.18 - Arbitrary File Upload (2)

WebCTRL OEM 6.5 - 'locale' Reflected Cross-Site Scripting (XSS)

E-Learning System 1.0 - Authentication Bypass

PEEL Shopping 9.3.0 - 'Comments' Persistent Cross-Site Scripting

GetSimple CMS 3.3.16 - Persistent Cross-Site Scripting

EgavilanMedia User Registration & Login System with Admin Panel 1.0 - Persistent Cross-Site Scripting

Selea Targa 512 IP OCR-ANPR Camera - Stream Disclosure (Unauthenticated)

Library System 1.0 - Authentication Bypass

Web Based Quiz System 1.0 - 'name' Persistent Cross-Site Scripting

Dolibarr ERP 11.0.4 - File Upload Restrictions Bypass (Authenticated RCE)

GetSimple CMS My SMTP Contact Plugin 1.1.1 - Cross-Site Request Forgery

GravCMS 1.10.7 - Unauthenticated Arbitrary File Write (Metasploit)

Umbraco v8.14.1 - 'baseUrl' SSRF

Cacti 1.2.12 - 'filter' SQL Injection

GetSimple CMS Custom JS 0.1 - Cross-Site Request Forgery

Internship Portal Management System 1.0 - Remote Code Execution(Unauthenticated)
Markdown Explorer 0.1.1 - Persistent Cross-Site Scripting
Xmind 2020 - Persistent Cross-Site Scripting
Tagstoo 2.0.1 - Persistent Cross-Site Scripting
SnipCommand 0.1.0 - Persistent Cross-Site Scripting
Moeditor 0.2.0 - Persistent Cross-Site Scripting
Marky 0.0.1 - Persistent Cross-Site Scripting
StudyMD 0.3.2 - Persistent Cross-Site Scripting
Freeter 1.2.1 - Persistent Cross-Site Scripting
Markright 1.0 - Persistent Cross-Site Scripting
Markdownify 1.2.0 - Persistent Cross-Site Scripting
Anote 1.0 - Persistent Cross-Site Scripting
Subrion CMS 4.2.1 - Arbitrary File Upload
Printable Staff ID Card Creator System 1.0 - 'email' SQL Injection

Schlix CMS 2.2.6-6 - Arbitary File Upload (Authenticated)

Selenium 3.141.59 - Remote Code Execution (Firefox/geckodriver)

CHIYU IoT Devices - Denial of Service (DoS)

Zenario CMS 8.8.52729 - 'cID' SQL injection (Authenticated)

TextPattern CMS 4.8.7 - Remote Command Execution (Authenticated)

WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 - Directory Traversal

Atlassian Jira Server Data Center 8.16.0 - Reflected Cross-Site Scripting (XSS)

Scratch Desktop 3.17 - Remote Code Execution

Church Management System 1.0 - Arbitrary File Upload (Authenticated)

Phone Shop Sales Managements System 1.0 - Arbitrary File Upload

Zoo Management System 1.0 - 'Multiple' Persistent Cross-Site-Scripting (XSS)

WordPress Plugin Current Book 1.0.1 - 'Book Title' Persistent Cross-Site Scripting

ForgeRock Access Manager 14.6.3 - Remote Code Execution (RCE) (Unauthenticated)

KevinLAB BEMS 1.0 - Authentication Bypass

Event Registration System with QR Code 1.0 - Authentication Bypass

CloverDX 5.9.0 - Cross-Site Request Forgery (CSRF)

Panasonic Sanyo CCTV Network Camera 2.03-0x - Cross-Site Request Forgery (Change Password)

qdPM 9.2 - Password Exposure (Unauthenticated)
ApacheOfBiz 17.12.01 - Remote Command Execution (RCE)
Movable Type 7 r.5002 - XMLRPC API OS Command Injection (Metasploit)

GeoVision Geowebserver 5.3.3 - Local FIle Inclusion

Simple Phone Book 1.0 - 'Username' SQL Injection (Unauthenticated)

Umbraco CMS 8.9.1 - Directory Traversal

Traffic Offense Management System 1.0 - Remote Code Execution (RCE) (Unauthenticated)

Dolibarr ERP 14.0.1 - Privilege Escalation

Compro Technology IP Camera - 'killps.cgi' Denial of Service (DoS)

Drupal Module MiniorangeSAML 8.x-2.22 - Privilege escalation

Phpwcms 1.9.30 - Arbitrary File Upload

Windows/x86 - Download File (http://10.10.10.5:8080/2NWyfQ9T.hta) Via mshta + Execute + Stager Shellcode (143 bytes)
Linux/x64 - Bind_tcp (0.0.0.0:4444) + Password (12345678) + Shell (/bin/sh) Shellcode (142 bytes)
Linux/x64 - execve _cat /etc/shadow_ Shellcode (66 bytes)
Windows/x86 - Add User Alfred to Administrators/Remote Desktop Users Group Shellcode (240 bytes)
Windows/x64 - Dynamic Null-Free WinExec PopCalc Shellcode (205 Bytes)
Windows/x64 - Dynamic NoNull Add RDP Admin (BOKU:SP3C1ALM0V3) Shellcode (387 Bytes)
Linux/x86 - setreuid(0) + execve(_/bin/sh_) Shellcode (29 bytes)
Linux/x86 - Bind (User Specified Port) Shell (/bin/sh) Shellcode (102 bytes)
Linux/x86 - Reverse (dynamic IP and port/TCP) Shell (/bin/sh) Shellcode (86 bytes)
Linux/x86 - Egghunter Reverse TCP Shell dynamic IP and port Shellcode
Windows/x86 - WinExec PopCalc PEB & Export Directory Table NullFree Dynamic Shellcode (178 bytes)
Windows/x86 - MessageBoxA PEB & Export Address Table NullFree/Dynamic Shellcode (230 bytes)
2021-10-30 05:02:09 +00:00
..
738.c DB: 2021-09-03 2021-09-03 20:19:21 +00:00
1063.pl DB: 2021-09-03 2021-09-03 20:19:21 +00:00
1064.c DB: 2021-09-03 2021-09-03 20:19:21 +00:00
1345.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
1517.c DB: 2021-09-03 2021-09-03 20:19:21 +00:00
1573.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
1651.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
6481.c DB: 2021-09-03 2021-09-03 20:19:21 +00:00
10242.py DB: 2021-09-03 2021-09-03 14:58:20 +00:00
10243.py DB: 2021-09-03 2021-09-03 14:58:20 +00:00
10820.sh DB: 2021-09-03 2021-09-03 13:39:06 +00:00
10825.sh DB: 2021-09-03 2021-09-03 13:39:06 +00:00
10826.sh DB: 2021-09-03 2021-09-03 13:39:06 +00:00
10829.pl DB: 2021-09-03 2021-09-03 13:39:06 +00:00
11397.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
12154.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
12259.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
12554.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
14678.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
15431.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
18023.java DB: 2021-09-03 2021-09-03 20:19:21 +00:00
18296.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
18305.py DB: 2021-09-03 2021-09-03 20:19:21 +00:00
18458.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
18460.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
18909.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
18910.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
18976.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
18977.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
18978.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
21428.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
22110.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
22419.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
22425.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
22426.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
22435.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
22494.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
22660.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
23311.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
23460.pl DB: 2021-09-03 2021-09-03 20:19:21 +00:00
23750.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
24621.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
24854.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
24855.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
25752.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
29577.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
29692.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
29693.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
29823.c DB: 2021-09-03 2021-09-03 20:19:21 +00:00
30395.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
30401.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
30753.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
30760.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
32715.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
32769.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
33625.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
33677.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
33755.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
34505.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35164.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35354.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35358.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35413.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35414.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
35415.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
35483.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
35484.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35485.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35486.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35487.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
35539.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
36070.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
36158.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
36682.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
36789.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
37566.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
37728.py DB: 2021-09-03 2021-09-03 20:19:21 +00:00
38120.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
38121.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
38122.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
38123.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
38125.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
38442.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
39091.pl DB: 2021-09-03 2021-09-03 20:19:21 +00:00
39092.pl DB: 2021-09-03 2021-09-03 20:19:21 +00:00
39095.pl DB: 2021-09-03 2021-09-03 20:19:21 +00:00
39653.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40155.py DB: 2021-09-03 2021-09-03 20:19:21 +00:00
40301.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40302.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40305.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40306.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40313.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40314.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40315.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40316.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
40317.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40318.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40319.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40320.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40321.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40329.php DB: 2021-09-03 2021-09-03 13:39:06 +00:00
40996.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
43852.php DB: 2021-09-03 2021-09-03 20:19:21 +00:00
43968.py DB: 2021-09-03 2021-09-03 20:19:21 +00:00
44057.md DB: 2021-09-03 2021-09-03 20:19:21 +00:00
44336.py DB: 2021-09-03 2021-09-03 13:39:06 +00:00
44768.txt DB: 2021-09-03 2021-09-03 13:39:06 +00:00
44846.txt DB: 2021-09-03 2021-09-03 20:19:21 +00:00
44927.pl DB: 2021-09-03 2021-09-03 20:19:21 +00:00
46921.sh DB: 2021-09-03 2021-09-03 20:19:21 +00:00
47800.py DB: 2021-09-03 2021-09-03 20:19:21 +00:00
49807.py DB: 2021-10-30 2021-10-30 05:02:09 +00:00