AbsoluteTelnet 11.24 - 'SHA1/SHA2/Username' and 'Error Report' Denial of Service (PoC)
Using Diagnostic tool from the Networking Tab to perform a Ping or Traceroute, to perform OS command injection
Persistent cross-site scripting (XSS) vulnerability in PHP Melody v3.0 allows remote attackers to inject arbitrary web script or HTML via the editor, which is not properly sanitized before being saved to the database.
The vulnerability laboratory core research team discovered a remote sql-injection web vulnerability in the PHP Melody v3.0 video cms web-application.
The vulnerability laboratory core research team discovered multiple non-persistent cross site scripting vulnerabilities in the PHP Melody v3.0 video cms web-application.
The vulnerability laboratory core research team discovered a local denial of service vulnerability in the RDP Manager v4.9.9.3 windows software client.
The vulnerability laboratory core research team discovered a remote sql-injection web vulnerability in the Simplephpscripts Simple CMS v2.1 web-application.
The vulnerability laboratory core research team discovered a persistent input validation vulnerability in the PHPJabbers Simple CMS v5.0 web-application.
This exploit targets a buffer overflow vulnerability in 10-Strike Network Inventory Explorer Pro version 9.31. By sending a specially crafted payload, an attacker can trigger a buffer overflow condition, potentially allowing for arbitrary code execution.
This exploit takes advantage of a buffer overflow vulnerability in YouTube Video Grabber version 1.9.9.1. By running a Python code, an attacker can trigger the overflow and gain control over the program. The exploit involves opening a malicious file, which leads to the execution of arbitrary code and the creation of a bind shell on port 3110.
Services By CQR