bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/shellcodes
History
Offensive Security f33a724e0b DB: 2021-10-29 
58 changes to exploits/shellcodes

Yenkee Hornet Gaming Mouse - 'GM312Fltr.sys' Denial of Service (PoC)
Easy CD & DVD Cover Creator 4.13 - Denial of Service (PoC)
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Device Reboot (Unauthenticated)
ProFTPD 1.3.7a - Remote Denial of Service
glFTPd 2.11a - Remote Denial of Service
Hasura GraphQL 1.3.3 - Denial of Service
Sticky Notes & Color Widgets 1.4.2 - Denial of Service (PoC)
NBMonitor 1.6.8 - Denial of Service (PoC)
Nsauditor 3.2.3 - Denial of Service (PoC)
Sticky Notes Widget Version 3.0.6 - Denial of Service (PoC)
Secure Notepad Private Notes 3.0.3 - Denial of Service (PoC)
Post-it 5.0.1 - Denial of Service (PoC)
Notex the best notes 6.4 - Denial of Service (PoC)
SmartFTP Client 10.0.2909.0 - 'Multiple' Denial of Service (PoC)
Redragon Gaming Mouse - 'REDRAGON_MOUSE.sys' Denial of Service (PoC)
GeoGebra Graphing Calculato‪r‬ 6.0.631.0 - Denial Of Service (PoC)
GeoGebra Classic 5.0.631.0-d - Denial of Service (PoC)
GeoGebra CAS Calculato‪r‬ 6.0.631.0 - Denial of Service (PoC)
Backup Key Recovery 2.2.7 - Denial of Service (PoC)
memono Notepad Version 4.2 - Denial of Service (PoC)

Disk Sorter Enterprise 13.6.12 - 'Disk Sorter Enterprise' Unquoted Service Path

Cyberfox Web Browser 52.9.1 - Denial of Service (PoC)
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Hard coded Credentials Shell Access
vsftpd 3.0.3 - Remote Denial of Service

Dlink DSL2750U - 'Reboot' Command Injection

PHPGurukul Hostel Management System 2.1 - Cross-site request forgery (CSRF) to Cross-site Scripting (XSS)

Netsia SEBA+ 0.16.1 - Add Root User (Metasploit)

Arteco Web Client DVR/NVR - 'SessionId' Brute Force

Resumes Management and Job Application Website 1.0 - Authentication Bypass
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Command Injection (Authenticated)
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Authentication Bypass
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Remote Code Execution
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Factory Reset (Unauthenticated)
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Config Download (Unauthenticated)
'customhs_js_content' - 'customhs_js_content' Cross-Site Request Forgery
Regis Inventory And Monitoring System 1.0 - 'Item List' Persistent Cross-Site Scripting

rConfig 3.9.6 - Arbitrary File Upload to Remote Code Execution (Authenticated) (1)

Mini Mouse 9.3.0 - Local File inclusion

rconfig 3.9.6 - Arbitrary File Upload

Sipwise C5 NGCP CSC - 'Multiple' Persistent Cross-Site Scripting (XSS)

Rocket.Chat 3.12.1 - NoSQL Injection (Unauthenticated)

OpenEMR 5.0.1.3 - Authentication Bypass
VMware vCenter Server 7.0 - Remote Code Execution (RCE) (Unauthenticated)
WordPress Plugin Supsystic Contact Form 1.7.18 - 'label' Stored Cross-Site Scripting (XSS)

Patient Appointment Scheduler System 1.0 - Persistent Cross-Site Scripting

Apartment Visitor Management System (AVMS) 1.0 - 'username' SQL Injection
Budget and Expense Tracker System 1.0 - Authenticated Bypass
Budget and Expense Tracker System 1.0 - Remote Code Execution (RCE) (Unauthenticated)

FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 - 'Add Admin' Cross-Site Request Forgery (CSRF)

WordPress Plugin Select All Categories and Taxonomies 1.3.1 - Reflected Cross-Site Scripting (XSS)

Blood Bank System 1.0 - Authentication Bypass

Lodging Reservation Management System 1.0 - Authentication Bypass

Atlassian Jira Server Data Center 8.16.0 - Arbitrary File Read

Linux/x64 - /sbin/halt -p Shellcode (51 bytes)
Linux/x86 - execve(/bin/sh) Shellcode (17 bytes)
Linux/x64 - execve(/bin/sh) Shellcode (21 bytes) (2)
Linux/x86 - execve /bin/sh Shellcode (fstenv eip GetPC technique) (70 bytes_ xor encoded)

Windows/x86 - Bind TCP shellcode / Dynamic PEB & EDT method null-free Shellcode (415 bytes)
2021-10-29 05:02:12 +00:00
..
aix DB: 2021-09-03 2021-09-03 13:39:06 +00:00
alpha DB: 2021-09-03 2021-09-03 13:39:06 +00:00
android DB: 2021-09-03 2021-09-03 20:19:21 +00:00
arm DB: 2021-09-03 2021-09-03 20:19:21 +00:00
bsd DB: 2021-09-03 2021-09-03 20:19:21 +00:00
bsd_ppc DB: 2021-09-03 2021-09-03 20:19:21 +00:00
bsd_x86 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
bsdi_x86 DB: 2021-09-03 2021-09-03 13:39:06 +00:00
freebsd DB: 2021-09-03 2021-09-03 13:39:06 +00:00
freebsd_x86 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
freebsd_x86-64 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
generator DB: 2021-09-03 2021-09-03 20:19:21 +00:00
hardware DB: 2021-09-03 2021-09-03 20:19:21 +00:00
hp-ux DB: 2021-09-03 2021-09-03 20:19:21 +00:00
ios DB: 2021-09-03 2021-09-03 20:19:21 +00:00
irix DB: 2021-09-03 2021-09-03 13:39:06 +00:00
linux DB: 2021-10-29 2021-10-29 05:02:12 +00:00
linux_crisv32 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
linux_mips DB: 2021-09-03 2021-09-03 20:19:21 +00:00
linux_ppc DB: 2021-09-03 2021-09-03 20:19:21 +00:00
linux_sparc DB: 2021-09-03 2021-09-03 20:19:21 +00:00
linux_x86 DB: 2021-10-29 2021-10-29 05:02:12 +00:00
linux_x86-64 DB: 2021-10-29 2021-10-29 05:02:12 +00:00
macos DB: 2021-09-03 2021-09-03 20:19:21 +00:00
multiple DB: 2021-09-03 2021-09-03 20:19:21 +00:00
netbsd_x86 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
openbsd_x86 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
osx DB: 2021-09-03 2021-09-03 20:19:21 +00:00
osx_ppc DB: 2021-09-03 2021-09-03 20:19:21 +00:00
sco_x86 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
solaris DB: 2021-09-03 2021-09-03 20:19:21 +00:00
solaris_mips DB: 2021-09-03 2021-09-03 20:19:21 +00:00
solaris_sparc DB: 2021-09-03 2021-09-03 20:19:21 +00:00
solaris_x86 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
superh_sh4 DB: 2021-09-03 2021-09-03 20:19:21 +00:00
system_z DB: 2021-09-03 2021-09-03 20:19:21 +00:00
unixware DB: 2021-09-03 2021-09-03 20:19:21 +00:00
windows DB: 2021-09-03 2021-09-03 20:19:21 +00:00
windows_x86 DB: 2021-10-29 2021-10-29 05:02:12 +00:00
windows_x86-64 DB: 2021-10-23 2021-10-23 05:02:09 +00:00