Julien (jvoisin) Voisin - Security Researcher - Exploit Intelligence Platform

CVE-2017-7615 METASPLOIT HIGH ruby WORKING POC

MantisBT <2.3.0 - Info Disclosure

MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access via an empty confirm_hash value to verify.php.

CVSS 8.8

View Code

CVE-2015-7808 METASPLOIT ruby WORKING POC

vBulletin 5 Connect <5.1.9 - Code Injection

The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in the arguments parameter to ajax/api/hook/decodeArguments.

View Code

CVE-2015-7808 EXPLOITDB ruby WORKING POC

vBulletin 5 Connect <5.1.9 - Code Injection

The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in the arguments parameter to ajax/api/hook/decodeArguments.

View Code