WordPress Social Warfare plugin versions prior to 3.5.3 suffer from a remote code execution vulnerability.
MailCarrier version 2.51 HELP remote buffer overflow exploit.
Sentrifugo Human Resource Management System version 3.2 suffers from a database configuration file disclosure vulnerability.
OpenSkos Simple Knowledge Organization System version 2.0 suffers from a database configuration file disclosure vulnerability.
CentOS Web Panel versions 0.9.8.793 (Free), 0.9.8.753 (Pro), and 0.9.8.807 (Pro) suffer from a domain field (Add DNS Zone) cross site scripting vulnerability.
This archive contains proof of concepts and a whitepaper that describes multiple email client implementations where popular clients for email are vulnerable to signature spoofing attacks.
Winamp version 5.12 playlist (.pls) buffer overflow exploit with ASLR + EGGHUNT + REV_SHELL. Written in Python.
This Metasploit module exploits a vulnerability in Ruby on Rails. In development mode, a Rails application would use its name as the secret_key_base, and can be easily extracted by visiting…
This archive contains all of the 204 exploits added to Packet Storm in April, 2019.
Microsoft Windows PowerShell ISE will execute wrongly supplied code when debugging specially crafted PowerShell scripts that contain array brackets as part of the filename. This can result in ISE executing…