hyp3rlinx

260 exploits Active since Jun 2015
CVE-2022-47529 NOMISEC MEDIUM WORKING POC
RSA NetWitness <12.2 - Privilege Escalation
Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protection features via ACL modification.
1 stars
CVSS 6.7
CVE-2015-6944 EXPLOITDB WORKING POC
Jsp/mysql Administrador Web - CSRF
Cross-site request forgery (CSRF) vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp.
CVE-2015-8037 EXPLOITDB WORKING POC
Fortinet FortiManager <5.2.4 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) SOMVpnSSLPortalDialog or (2) FGDMngUpdHistory.
CVE-2025-34115 EXPLOITDB text WORKING POC
OP5 Monitor <7.1.9 - Command Injection
An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via the 'cmd_str' parameter in the command_test.php endpoint. A user with access to the web interface can exploit the 'Test this command' feature to execute arbitrary shell commands as the unprivileged web application user. The vulnerability resides in the configuration section of the application and requires valid login credentials with access to the command testing functionality. This issue is fixed in version 7.2.0.
CVE-2025-34107 EXPLOITDB ruby WORKING POC
WinaXe FTP Client <7.7 - Buffer Overflow
A buffer overflow vulnerability exists in the WinaXe FTP Client version 7.7 within the FTP banner parsing functionality, WCMDPA10.dll. When the client connects to a remote FTP server and receives an overly long '220 Server Ready' response, the vulnerable component responsible for parsing the banner overflows a stack buffer, leading to arbitrary code execution under the context of the user.
CVE-2018-11741 EXPLOITDB CRITICAL python WORKING POC
NEC Univerge Sv9100 Webpro Firmware - Information Disclosure
NEC Univerge Sv9100 WebPro 6.00.00 devices have Predictable Session IDs that result in Account Information Disclosure via Home.htm?sessionId=#####&GOTO(8) URIs.
CVSS 9.8
CVE-2016-3653 EXPLOITDB HIGH text WORKING POC
Symantec SEPM <12.1 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in management scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allow remote authenticated users to hijack the authentication of arbitrary users.
CVSS 8.0
CVE-2016-3652 EXPLOITDB MEDIUM text WORKING POC
Symantec Endpoint Protection Manager <12.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in management scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVSS 5.4
CVE-2015-2023 EXPLOITDB HIGH text WORKING POC
IBM I Access - Memory Corruption
Buffer overflow in IBM i Access 7.1 on Windows allows local users to gain privileges via unspecified vectors.
CVSS 8.8
CVE-2017-12970 EXPLOITDB HIGH text WORKING POC
Apache2triad - CSRF
Cross-site request forgery (CSRF) vulnerability in Apache2Triad 1.5.4 allows remote attackers to hijack the authentication of authenticated users for requests that (1) add or (2) delete user accounts via a request to phpsftpd/users.php.
CVSS 8.8
CVE-2017-12965 EXPLOITDB CRITICAL text WORKING POC
Apache2Triad 1.5.4 - Info Disclosure
Session fixation vulnerability in Apache2Triad 1.5.4 allows remote attackers to hijack web sessions via the PHPSESSID parameter.
CVSS 9.8
CVE-2016-5537 EXPLOITDB MEDIUM text WORKING POC
Oracle Netbeans - Path Traversal
Unspecified vulnerability in the NetBeans component in Oracle Fusion Middleware 8.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information is from the October 2016 CPU. Oracle has not commented on third-party claims that this issue is a directory traversal vulnerability which allows local users with certain permissions to write to arbitrary files and consequently gain privileges via a .. (dot dot) in a archive entry in a ZIP file imported as a project.
CVSS 5.7
CVE-2016-4311 EXPLOITDB HIGH text WORKING POC
WSO2 Identity Server 5.1.0 - CSRF
Cross-site request forgery (CSRF) vulnerability in the XACML flow feature in WSO2 Identity Server 5.1.0 allows remote attackers to hijack the authentication of privileged users for requests that process XACML requests via an entitlement/eval-policy-submit.jsp request.
CVSS 8.8
CVE-2015-7346 EXPLOITDB CRITICAL text WORKING POC
Zcms - SQL Injection
SQL injection vulnerability in ZCMS 1.1.
CVSS 9.8
CVE-2015-5353 EXPLOITDB text WRITEUP
Novius OS 5.0.1 - Path Traversal
Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/.
CVE-2015-5958 METASPLOIT HIGH ruby WORKING POC
phpFileManager 0.9.8 - Command Injection
phpFileManager 0.9.8 allows remote attackers to execute arbitrary commands via a crafted URL.
CVSS 8.8
CVE-2018-6892 METASPLOIT CRITICAL ruby WORKING POC
Cloudme Sync < 1.10.9 - Memory Corruption
An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.
CVSS 9.8
CVE-2025-34115 METASPLOIT ruby WORKING POC
OP5 Monitor <7.1.9 - Command Injection
An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via the 'cmd_str' parameter in the command_test.php endpoint. A user with access to the web interface can exploit the 'Test this command' feature to execute arbitrary shell commands as the unprivileged web application user. The vulnerability resides in the configuration section of the application and requires valid login credentials with access to the command testing functionality. This issue is fixed in version 7.2.0.
CVE-2017-14086 EXPLOITDB HIGH text WORKING POC
Trend Micro OfficeScan 11.0 - Use After Free
Pre-authorization Start Remote Process vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to start the fcgiOfcDDA.exe executable or cause a potential INI corruption, which may cause the server disk space to be consumed with dump files from continuous HTTP requests.
CVSS 7.5
CVE-2017-9413 EXPLOITDB HIGH text WORKING POC
Subsonic 6.1.1 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in the Podcast feature in Subsonic 6.1.1 allow remote attackers to hijack the authentication of users for requests that (1) subscribe to a podcast via the add parameter to podcastReceiverAdmin.view or (2) update Internet Radio Settings via the urlRedirectCustomUrl parameter to networkSettings.view. NOTE: These vulnerabilities can be exploited to conduct server-side request forgery (SSRF) attacks.
CVSS 8.8
EIP-2026-119453 EXPLOITDB text WRITEUP
Wing FTP Server Admin 4.4.5 - Multiple Vulnerabilities
CVE-2018-6941 EXPLOITDB HIGH text WORKING POC
Nat32 - CSRF
A /shell?cmd= CSRF issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with XSS.
CVSS 8.8
EIP-2026-119370 EXPLOITDB text WORKING POC
FTGate 2009 Build 6.4.00 - Multiple Vulnerabilities
EIP-2026-119371 EXPLOITDB text WORKING POC
FTGate 7 - Cross-Site Request Forgery
CVE-2018-6940 EXPLOITDB MEDIUM text WORKING POC
Nat32 - CSRF
A /shell?cmd= XSS issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with CSRF.
CVSS 6.1