Category: Local - Privilege Escalation Exploits

All kind of Local & Privilege Escalation Exploits

Local - Privilege Escalation Exploits, Local Exploit

GOautodial 4.0 – ‘CreateEvent’ Persistent Cross-Site Scripting

- Exploit Details # Exploit Title: GOautodial 4.0 - 'CreateEvent' Persistent Cross-Site Scripting # Author: Cakes # Discovery Date: 2019-09-19 # Vendor Homepage: //goautodial.org/ # ... Read More

Local - Privilege Escalation Exploits, Local Exploit

Symantec Advanced Secure Gateway (ASG) / ProxySG – Unrestricted File Upload

- Exploit Details ===========Security Intelligence============ # Vendor Homepage: adobe.com # Version: 2018 # Tested on: Adobe ColdFusion 2018 # Exploit Author: Pankaj Kumar Thakur (Nepal) ... Read More

Local - Privilege Escalation Exploits, Local Exploit

CollegeManagementSystem-CMS 1.3 – ‘batch’ SQL Injection

- Exploit Details # Exploit Title: CollegeManagementSystem-CMS 1.3 - 'batch' SQL Injection # Author: Cakes # Discovery Date: 2019-09-16 # Vendor Homepage: //github.com/SaloniKumari123/CollegeManagementSystem # Software ... Read More

Local - Privilege Escalation Exploits, Local Exploit

Microsoft DirectWrite – Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts

- Exploit Details Microsoft DirectWrite is a modern Windows API for high-quality text rendering. A majority of its code resides in the DWrite.dll user-mode library. ... Read More

Local - Privilege Escalation Exploits, Local Exploit

LibreNMS – Collectd Command Injection (Metasploit)

- Exploit Details ## # This module requires Metasploit: //metasploit.com/download # Current source: //github.com/rapid7/metasploit-framework ## class MetasploitModule 'LibreNMS Collectd Command Injection', 'Description' => %q( This ... Read More

Local - Privilege Escalation Exploits, Local Exploit

WordPress Plugin Photo Gallery 1.5.34 – Cross-Site Scripting

- Exploit Details # Exploit Title: WordPress Plugin Photo Gallery by 10Web <= 1.5.34 - Persistent Cross Site Scripting # inurl:"wp-contentpluginsphoto-gallery" # Date: 09-10-2019 # ... Read More

Local - Privilege Escalation Exploits, Local Exploit

Dolibarr ERP-CRM 10.0.1 – ‘elemid’ SQL Injection

- Exploit Details # Exploit Title: Dolibarr ERP/CRM - elemid Sql Injection # Exploit Author: Metin Yunus Kandemir (kandemir) # Vendor Homepage: //www.dolibarr.org/ # Software ... Read More

Local - Privilege Escalation Exploits, Local Exploit

Enigma NMS 65.0.0 – OS Command Injection

- Exploit Details #!/usr/bin/python #--------------------------------------------------------------------# # Exploit Title: Enigma NMS OS Command Injection # # NETSAS Pty Ltd Enigma NMS # # Date: 21 July ... Read More

Local - Privilege Escalation Exploits, Local Exploit

Enigma NMS 65.0.0 – SQL Injection

- Exploit Details #--------------------------------------------------------------------# # Exploit Title: Enigma NMS search_pattern SQL Injection # # Date: 21 July 2019 # # Author: Mark Cross (@xerubus | ... Read More