header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

Impero Education Pro SYSTEM-RCE PoC

The proprietary Impero protocol used by Impero Education Pro is vulnerable to a remote code execution (RCE) attack. The protocol is encrypted with AES-128 CBC using a hardcoded key and initialization vector (IV) derived from the string 'Imp3ro'. ISO10126 padding is used. After authentication, an attacker can send commands to the server to execute arbitrary code on the target system. The attack works on Windows clients and can run commands as the SYSTEM user. The server logs the commands executed, but the client responsible is recorded as 'unknown'.

Joomla Component JoomlaPack 1.0.4a2 RE (CAltInstaller.php) Remote File Include Vulnerabilities

The JoomlaPack component version 1.0.4a2 is vulnerable to remote file inclusion. The vulnerability exists in the CAltInstaller.php file, where the mosConfig_absolute_path parameter is not properly sanitized, allowing an attacker to include arbitrary files from remote servers. This can lead to remote code execution and compromise of the affected system.

Chatness Admin Authentication Bypass and Arbitrary Code Execution

Chatness <= 2.5.3 is affected by two vulnerabilities. The first vulnerability is an authentication bypass in /admin/options.php, where the script fails to verify if the user is an administrator and displays the administrator's username and password in plain text. The second vulnerability is an arbitrary code execution in /admin/save.php and /index.php, where an attacker can overwrite foot.html or head.html with arbitrary PHP code that will be executed when included by index.php.

Recent Exploits: