hyp3rlinx

260 exploits Active since Jun 2015
EIP-2026-115251 EXPLOITDB text WORKING POC
Firefox 54.0.1 - Denial of Service
CVE-2017-7183 EXPLOITDB HIGH text WORKING POC
ExtraPuTTY <0.30 - DoS
The TFTP server in ExtraPuTTY 0.30 and earlier allows remote attackers to cause a denial of service (crash) via a large (1) read or (2) write TFTP protocol message.
CVSS 7.5
CVE-2017-5359 EXPLOITDB HIGH text WORKING POC
EasyCom SQL iPlug - DoS
EasyCom SQL iPlug allows remote attackers to cause a denial of service via the D$EVAL parameter to the default URI.
CVSS 7.5
CVE-2017-5358 EXPLOITDB CRITICAL text WORKING POC
EasyCom for PHP 4.0.0.29 - Buffer Overflow
Stack-based buffer overflows in php_Easycom5_3_0.dll in EasyCom for PHP 4.0.0.29 allows remote attackers to execute arbitrary code via the server argument to the (1) i5_connect, (2) i5_pconnect, or (3) i5_private_connect API function.
CVSS 9.8
CVE-2018-7583 EXPLOITDB HIGH text WORKING POC
Advantig Dualdesk - Improper Input Validation
Proxy.exe in DualDesk 20 allows Remote Denial Of Service (daemon crash) via a long string to TCP port 5500.
CVSS 7.5
EIP-2026-115114 EXPLOITDB text WRITEUP
CyberCop Scanner Smbgrind 5.5 - Buffer Overflow (PoC)
EIP-2026-115085 EXPLOITDB python WORKING POC
Core FTP LE 2.2 - 'SSH/SFTP' Remote Buffer Overflow (PoC)
CVE-2018-15437 EXPLOITDB MEDIUM c WORKING POC
Cisco Advanced Malware Protection For Endpoints - Denial of Service
A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could allow executable files to be launched on the system without being analyzed for threats. The vulnerability is due to improper process resource handling. An attacker could exploit this vulnerability by gaining local access to a system running Microsoft Windows and protected by Cisco Immunet or Cisco AMP for Endpoints and executing a malicious file. A successful exploit could allow the attacker to prevent the scanning services from functioning properly and ultimately prevent the system from being protected from further intrusion.
CVSS 5.5
EIP-2026-114978 EXPLOITDB text WORKING POC
BarcodeWiz ActiveX Control < 6.7 - Buffer Overflow (PoC)
EIP-2026-114969 EXPLOITDB text WORKING POC
Axessh 4.2 - Denial of Service
CVE-2017-12969 EXPLOITDB HIGH text WORKING POC
Avaya IP Office Contact Center - Memory Corruption
Buffer overflow in the ViewerCtrlLib.ViewerCtrl ActiveX control in Avaya IP Office Contact Center before 10.1.1 allows remote attackers to cause a denial of service (heap corruption and crash) or execute arbitrary code via a long string to the open method.
CVSS 8.8
CVE-2016-7866 EXPLOITDB CRITICAL text WRITEUP
Adobe Animate < 15.2.1.95 - Memory Corruption
Adobe Animate versions 15.2.1.95 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
CVSS 9.8
EIP-2026-114837 EXPLOITDB text WORKING POC
Abyss Web Server < 2.11.6 - Heap Memory Corruption
EIP-2026-114609 EXPLOITDB text WRITEUP
ZenPhoto 1.4.10 - Local File Inclusion
CVE-2015-7293 EXPLOITDB HIGH text WORKING POC
Plone < 4.3.7 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x.
CVSS 8.8
EIP-2026-114383 EXPLOITDB text WORKING POC
WPN-XM Serverstack 0.8.6 - Cross-Site Request Forgery
EIP-2026-114466 EXPLOITDB text WRITEUP
XOOPS 2.5.7.2 - Directory Traversal Bypass
EIP-2026-114465 EXPLOITDB text WORKING POC
Xoops 2.5.7.2 - Cross-Site Request Forgery (Arbitrary User Deletions)
EIP-2026-113445 EXPLOITDB text WORKING POC
Wing FTP Server Admin 4.4.5 - Cross-Site Request Forgery (Add User)
EIP-2026-113058 EXPLOITDB text WRITEUP
VFront 0.99.2 - Cross-Site Request Forgery / Persistent Cross-Site Scripting
EIP-2026-113255 EXPLOITDB text WORKING POC
WebCalendar 1.2.7 - Multiple Vulnerabilities
EIP-2026-113220 EXPLOITDB php WORKING POC
Web Interface for DNSmasq / Mikrotik - SQL Injection
CVE-2017-14085 EXPLOITDB MEDIUM text WORKING POC
Trend Micro OfficeScan <11.0 - Info Disclosure
Information disclosure vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to query the network's NT domain or the PHP version and modules.
CVSS 5.3
EIP-2026-112791 EXPLOITDB text WRITEUP
Trend Micro OfficeScan 11.0/XG (12.0) - Server Side Request Forgery
CVE-2017-14083 EXPLOITDB HIGH text WORKING POC
Trend Micro OfficeScan 11.0 - Info Disclosure
A vulnerability in Trend Micro OfficeScan 11.0 and XG allows remote unauthenticated users who can access the system to download the OfficeScan encryption file.
CVSS 7.5