profile.php in FunkBoard CF0.71 allows remote malicious users to change arbitrary passwords via a modified uid hidden form field in an Edit Profile action.
<!--
Change action="profilephp" under the <form tags> /str0ke
-->
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 401 Transitional//EN"><html><head><META http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body><form enctype="multipart/form-data" action="profilephp" metho ...
Tool for searching Exploits from Exploit Databases, etc.
go-exploitdb
This is a tool for searching Exploits from some Exploit Databases
Exploits are inserted at sqlite database(go-exploitdb) can be searched by command line interface
In server mode, a simple Web API can be used
As the following vulnerabilities database
ExploitDB(OffensiveSecurity) by CVE number or Exploit Database ID
GitHub Repositories
Awesome Cve Poc
i
Tool for searching Exploits from Exploit Databases, etc.
go-exploitdb
This is a tool for searching Exploits from some Exploit Databases
Exploits are inserted at sqlite database(go-exploitdb) can be searched by command line interface
In server mode, a simple Web API can be used
As the following vulnerabilities database
ExploitDB(OffensiveSecurity) by CVE number or Exploit Database ID
GitHub Repositories
Awesome Cve Poc
i
Vulmon