Linux/ARM64 – Reverse (127.0.0.1:4444/TCP) Shell (/bin/sh) + Null-Free Shellcode (128 bytes)
>> CATEGORY: Security
ZoneMinder 1.32.3 – Cross-Site Scripting
Linux/ARM64 – execve(“/bin/sh”, NULL, NULL) Shellcode (40 Bytes)
PowerPanel Business Edition – Cross-Site Scripting
CiuisCRM 1.6 – ‘eventType’ SQL Injection
Varient 1.6.1 – SQL Injection
WorkSuite PRM 2.4 – ‘password’ SQL Injection
Windows/x86 – Start iexplore.exe (http://192.168.10.10/) Shellcode (191 Bytes)
Linux/x86 – Chmod + Execute (/usr/bin/wget http://192.168.1.93//x) + Hide Output Shellcode (129 bytes)
LibreNMS 1.46 – ‘addhost’ Remote Code Execution