bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
exploit-db-mirror/platforms/cgi
History
Offensive Security 8194245b20 DB: 2017-11-03 
1 new exploits

Microsoft Windows 95/98/NT 4.0 - Help File Trojan
Microsoft Windows 95/98/NT 4.0 - Help File Backdoor

OpenBSD 2.9/3.0 - Default Crontab Root Compromise
OpenBSD 2.9/3.0 - Default Crontab Root Command Injection

Sam Spade 1.14 - Crawl website Buffer Overflow
Sam Spade 1.14 - Crawl Website Buffer Overflow

Vir.IT eXplorer Anti-Virus - Privilege Escalation

UnrealIRCd 3.2.8.1 - Remote Downloader/Execute Trojan
UnrealIRCd 3.2.8.1 - Remote Downloader/Execute

ProFTPd 1.3.3c - Compromised Source (Trojan) Remote Code Execution
ProFTPd 1.3.3c - Compromised Source Backdoor Remote Code Execution

Energizer DUO Trojan Code - Execution (Metasploit)
Arugizer Trojan Horse (Energizer DUO) - Code Execution (Metasploit)

Poison Ivy 2.3.2 - C&C Server Buffer Overflow (Metasploit)
Poison Ivy 2.3.2 (C2 Server) - Buffer Overflow (Metasploit)

DCForum 6.0 - Remote Admin Privilege Compromise
DCForum 6.0 - Remote Admin Privilege Arbitrary Commands

Sendmail 8.12.6 - Trojan Horse
Sendmail 8.12.6 - Compromised Source Backdoor

MySQL 3.23.x/4.0.x - COM_CHANGE_USER Password Length Account Compromise
MySQL 3.23.x/4.0.x - 'COM_CHANGE_USER' Password Length Account

Zemra Botnet (CnC Web Panel) - Remote Code Execution (Metasploit)
Zemra Botnet (C2 Web Panel) - Remote Code Execution (Metasploit)

HP Release Control - Authenticated XXE (Metasploit)
HP Release Control - Authenticated XML External Entity (Metasploit)

phpMyAdmin 3.3.x/3.4.x - Local File Inclusion via XXE Injection (Metasploit)
phpMyAdmin 3.3.x/3.4.x - Local File Inclusion via XML External Entity Injection (Metasploit)

CakePHP 2.x < 2.2.0-RC2 - XXE Injection
CakePHP 2.x < 2.2.0-RC2 - XML External Entity Injection

Bitbot C2 Panel - 'gate2.php' Multiple Vulnerabilities
Bitbot (C2 Web Panel) - 'gate2.php' Multiple Vulnerabilities

Cythosia 2.x Botnet - SQL Injection
Cythosia 2.x Botnet (C2 Web Panel) - SQL Injection

EMC Cloud Tiering Appliance 10.0 - Unauthenticated XXE Arbitrary File Read (Metasploit)
EMC Cloud Tiering Appliance 10.0 - Unauthenticated XML External Entity Arbitrary File Read (Metasploit)

Plesk 10.4.4/11.0.9 - SSO XXE / Cross-Site Scripting Injection
Plesk 10.4.4/11.0.9 - SSO XML External Entity / Cross-Site Scripting Injection

Enalean Tuleap 7.2 - XXE File Disclosure
Enalean Tuleap 7.2 - XML External Entity File Disclosure

Apache JackRabbit - WebDAV XXE Exploit
Apache JackRabbit - WebDAV XML External Entity

Geoserver < 2.7.1.1 / < 2.6.4 / < 2.5.5.1 - XXE Exploit
Geoserver < 2.7.1.1 / < 2.6.4 / < 2.5.5.1 - XML External Entity

DCForum - auth_user_file.txt File Multiple Information Disclosure Vulnerabilities
DCForum - 'auth_user_file.txt' File Multiple Information Disclosure Vulnerabilities

Qlikview 11.20 SR11 - Blind XXE Injection
Qlikview 11.20 SR11 - Blind XML External Entity Injection

AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure (via XXE Injection)
AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure via XML External Entity Injection

SAP NetWeaver AS JAVA 7.1 < 7.5 - ctcprotocol Servlet XXE
SAP NetWeaver AS JAVA 7.1 < 7.5 - 'ctcprotocol Servlet' XML External Entity

CyberPower Systems PowerPanel 3.1.2 - XXE Out-Of-Band Data Retrieval
CyberPower Systems PowerPanel 3.1.2 - Unauthenticated XML External Entity Out-Of-Band Data Retrieval
2017-11-03 05:01:35 +00:00
..
dos DB: 2017-08-23 2017-08-23 05:01:29 +00:00
local DB: 2017-08-23 2017-08-23 05:01:29 +00:00
remote DB: 2017-11-03 2017-11-03 05:01:35 +00:00
webapps DB: 2017-10-19 2017-10-19 05:01:29 +00:00