Exploits 127 - exploit.company

Unzip Files Remote Code Execution

The exploit involves unzipping files and renaming them to trigger a vulnerability in shell32.dll, leading to remote code execution. The details of the exploit are provided in the links: http://ivanlef0u.nibbles.fr/repo/suckme.rar and https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/14403.rar (suckme.rar). The exploit has been tested under XP SP3.

7.5

CVSS

HIGH

Remote Code Execution

Affected Version

Easy FTP Server v1.7.0.11 [LIST] Remote BoF Exploit Post Authentication

This exploit allows remote attackers to execute arbitrary code on the target system by sending a specially crafted LIST command to the Easy FTP Server v1.7.0.11 after authentication.

Windows XP Pro SP2 [Eng] and Windows XP Pro SP3 [Eng]

Affected Version

MoreAmp Seh Buffer Overflow (meta)

This module exploits a SEH overflow in 0.1.25 MoreAmp Beta. By creating a specially crafted .m3u file, an attacker may be able to execute arbitrary code.

Affected Version

PRE PODCAST PORTAL AUTH BYPASS

On PARTNER login page put admin and username and ' or '1'='1 as password. You will be logged into the system.

CVSS

CRITICAL

Authentication Bypass

Affected Version

SoftClones Marketing Management System authentication bypass

On the login page, enter 'admin' as the username and '' or '1'='1' as the password to bypass authentication and gain access to the system.

7.5

CVSS

HIGH

Authentication Bypass

Affected Version

PRE DYNAMIC INSTITUTION WEB authentication bypass

The exploit allows an attacker to bypass the authentication process on the PRE DYNAMIC INSTITUTION WEB software. By entering 'admin' as the username and '' or '1'='1' as the password on the login page, the attacker can gain unauthorized access to the system.

7.5

CVSS

HIGH

Authentication Bypass

287

CWE

Product Name

DYNAMIC INSTITUTION WEB

Affected Version

Pre webhost System authentication bypass

On the login page, entering 'admin' as the username and '' or '1'='1' as the password allows the attacker to bypass authentication and gain access to the system.

7.5

CVSS

HIGH

Authentication Bypass

Affected Version

Mini-Stream RM-MP3 Converter v3.1.2.1 (.pls) Stack Buffer Overflow

This exploit is a stack buffer overflow in Mini-Stream RM-MP3 Converter v3.1.2.1 when parsing a specially crafted .pls file. The vulnerability allows an attacker to execute arbitrary code by overwriting the return address on the stack and redirecting the program flow to the attacker's shellcode.

7.5

CVSS

HIGH

Stack Buffer Overflow

Affected Version

BS Script Directory (articlesdetails) remote SQL injection vulnerability

The vulnerability allows an attacker to execute SQL commands on the database through the 'id' parameter in the 'articlesdetails.php' script.

Affected Version

BS Script Directory remote SQL injection vulnerability

This exploit allows an attacker to perform remote SQL injection on the BS Script Directory software. By manipulating the 'id' parameter in the 'info.php' file, an attacker can inject malicious SQL queries and potentially gain unauthorized access to the database.

Affected Version