This Metasploit module exploits a preauth Server-Side Template Injection vulnerability that leads to remote code execution in PlaySMS before version 1.4.3. This issue is caused by double processing a server-side template with a custom PHP template system called TPL which is used in the PlaySMS template engine at src/Playsms/Tpl.php:_compile(). The vulnerability is triggered when an […]
This Metasploit module exploits a vulnerability found in Pandora FMS 7.0NG and lower. net_tools.php in Pandora FMS 7.0NG allows remote attackers to execute arbitrary OS commands.
A vulnerability exists within the Microsoft Server Message Block 3.1.1 (SMBv3) protocol that can be leveraged to execute code on a vulnerable server. This local exploit implementation leverages this flaw to elevate itself before injecting a payload into winlogon.exe.
This Metasploit module exploits command injection vulnerability in v-list-user-backups bash script file. Low privileged authenticated users can execute arbitrary commands under the context of the root user. An authenticated attacker with a low privileges can inject a payload in the file name starts with dot. During the user backup process, this file name will be […]
LimeSurvey version 4.1.11 suffers from a Survey Groups persistent cross site scripting vulnerability.
The Windows “net use” network logon type-3 command does not prompt for authentication when the built-in Administrator account is enabled and both remote and originating systems suffer from password reuse. This also works as “standard” user but unfortunately we do not gain high integrity privileges. However, it opens the door and increases the attack surface […]
dnsmasq-utils 2.79-1 – ‘dhcp_release’ Denial of Service (PoC)
Tags:
0day,
remote exploit
ZOC Terminal 7.25.5 – ‘Script’ Denial of Service (PoC)
Tags:
0day,
remote exploit
http://samutprakan1.go.th/lo.php notified by KyusaKU [- YumeN0 -]
Tags:
defacement
http://www.maeku.go.th notified by moncet
Tags:
defacement