Core Certified Exploits
We provide real-time updates including new penetration testing exploits and tests for additional platforms as they become available. We advise you of any new modules by email, after which you can download them directly from within Core Impact. All product updates are free during the license period. You're always on the cutting edge of vulnerability and threat intelligence because Core Impact keeps you there.
Subscribe to receive regular updates by email:
Browse All Exploits
| Title | Description | Date Added | CVE Link | Exploit Platform | Exploit Type |
|---|---|---|---|---|---|
| CMS Made Simple moduleinterface.php Remote PHP File Upload Vulnerability Exploit | CMS Made Simple allows remote authenticated administrators to execute arbitrary PHP code via file upload using admin/moduleinterface.php | July 26, 2018 | CVE-2018-1000094 | Windows, Linux | Exploits / Remote File Inclusion / Known Vulnerabilities |
| Oracle VirtualBox crUnpackTexGendv Buffer Overflow DoS | The specific flaw exists within the crUnpackTexGendv method. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length buffer. An attacker can leverage this vulnerability to crash the VirtualBox process used for open the target. | July 23, 2018 | CVE-2018-2688 | Windows, Linux | Denial of Service / Local |
| Tomabo MP4 Player Stack Overflow Exploit | A Stack Overflow exists when parsing .m3u files. The vulnerability is caused due to a boundary error when handling a crafted .m3u files. | July 19, 2018 | NOCVE-9999-110771 | Windows | Exploits / Client Side |
| Cisco UCS Manager ping OS Command Injection Exploit | Cisco UCS Manager contains a OS Command Injection vulnerability in /settings/ping function, which allows unauthenticated attackers to gain arbitrary code execution on the affected system. | July 18, 2018 | CVE-2017-12243 | Linux | Exploits / OS Command Injection / Known Vulnerabilities |
| NoMachine Nxfuse Uninitialised Stack Variable Privilege Escalation Exploit | An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine allows a local low privileged user to gain elevation of privileges. | July 18, 2018 | CVE-2018-6947 | Windows | Exploits / Local |
| AMD PlaysTV Service Privilege Escalation Exploit | In the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming Evolved products, executes code at a user-defined (local) path as SYSTEM when the execute_installer parameter is used in an HTTP message. | July 16, 2018 | CVE-2018-6546 | Windows | Exploits / Local |
| Beckhoff TwinCAT Local Privilege Escalation Exploit | Kernel drivers in Beckhoff TwinCAT 3.1 Build 4022.4, TwinCAT 2.11 R3 2259, and TwinCAT 3.1 lack proper validation of user-supplied pointer values. An attacker who is able to execute code on the target may be able to exploit this vulnerability to obtain SYSTEM privileges. | July 13, 2018 | CVE-2018-7502 | Windows | Exploits / Local |
| QNAP Qcenter Virtual Appliance Remote OS Command Injection Exploit | QNAP Qcenter Virtual Appliance contains multiples vulnerabilities which allows authenticated attackers to gain arbitrary code execution on the affected system with root privileges. | July 12, 2018 | CVE-2018-0706 | Linux | Exploits / OS Command Injection / Known Vulnerabilities |
| Acrobat Reader DC Double-Free Vulnerability Exploit | Adobe Reader has a built-in sandbox feature that usually makes exploitation difficult. By combining vulnerabilities, this attack achieves code execution and then bypasses the sandbox protection to fully compromise the targeted system. | July 10, 2018 | CVE-2018-4990 | Windows | Exploits / Client Side |
| Apache CouchDB Remote OS Command Injection Exploit | Apache CouchDB contains an Authentication Bypass vulnerability and a OS Command Injection vulnerability, which allows attackers to gain arbitrary code execution on the affected system. | July 6, 2018 | CVE-2017-12635 | Linux | Exploits / Authentication Weakness / Known Vulnerabilities |
| Zip-n-Go Buffer Overflow Exploit | A Buffer Overflow exists in Zip-n-Go 4.9 when parsing .ZIP files. The vulnerability is caused due to a boundary error when handling a crafted .ZIP files. | July 4, 2018 | NOCVE-9999-109691 | Windows | Exploits / Client Side |
| Delta Industrial Automation COMMGR Buffer Overflow Exploit | Delta Industrial COMMGR is prone to a buffer overflow when handling spacially crafted packets. | June 27, 2018 | CVE-2018-10594 | Windows | Exploits / Remote |
| Microsoft Internet Explorer VBScript UAF Exploit | A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. | June 22, 2018 | CVE-2018-8174 | Windows | Exploits / Client Side |
| MS17-010 support update 2 | Eternalromance targets were added to this module (Win 2000 to Win 2016) | June 21, 2018 | CVE-2017-0143 | Windows | Exploits / Remote |
| Delta Industrial Automation WPLSoft File Parsing Buffer Overflow Exploit Update | The specific flaw exists within the processing of DVP files. The process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. This update adds CVE number and corrects some xml tags. | June 13, 2018 | CVE-2018-7507 | Windows | Exploits / Client Side |
| Dup Scout Enterprise Import Command Local Buffer Overflow Exploit | A Buffer Overflow exists when parsing .XML files by Command Import. The vulnerability is caused due to a boundary error when handling a crafted .XML files. | June 12, 2018 | CVE-2017-7310 | Windows | Exploits / Client Side |
| Advantech WebAccess webvrpcs viewdll1 VdBroadWinGetLocalDataLogEx Buffer Overflow Exploit | The specific flaw exists within the implementation of the 0x13C80 IOCTL in the BwOpcTool subsystem in VdBroadWinGetLocalDataLogEx. When parsing the NamedObject structure, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length buffer. | June 7, 2018 | CVE-2018-8845 | Windows | Exploits / Remote |
| PhpCollab editclient.php PHP File Upload Remote Code Execution Exploit | PhpCollab is vulnerable to an unauthenticated php remote file inclusion, allowing attackers to execute arbitrary php code in the system. | June 6, 2018 | CVE-2017-6090 | Windows, Linux | Exploits / Remote File Inclusion / Known Vulnerabilities |
| Advantech WebAccess Webvrpcs ViewDll1 Buffer Overflow Exploit | The specific flaw exists within implementation of the 0x138bd IOCTL in the webvrpcs process. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. | June 4, 2018 | CVE-2018-7499 | Windows | Exploits / Remote |
| Microsoft Windows Win32k SetImeinfoEx Privilege Escalation Exploit | An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system. |
May 31, 2018 | CVE-2018-8120 | Windows | Exploits / Local |
| DVD X Player Standard Buffer Overflow Exploit | A Buffer Overflow exists in DVD X Player Standard when parsing .plf files. The vulnerability is caused due to a boundary error when handling a crafted .plf files. | May 31, 2018 | CVE-2018-9128 | Windows | Exploits / Client Side |
| DiskBoss Enterprise Buffer Overflow Exploit | DiskBoss is prone to a buffer-overflow when handling specially crafted packets. No authentication is required. | May 23, 2018 | CVE-2018-5262 | Windows | Exploits / Remote |
| Speculative Store Bypass Checker (CVE-2018-3639) | Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. | May 23, 2018 | CVE-2018-3639 | Linux | Exploits / Tools |
| Dell EMC Data Protection Advisor Remote OS Command Injection Exploit | Dell EMC Data Protection Advisor contains an Authentication Bypass vulnerability and a OS Command Injection vulnerability, which allows attackers to gain arbitrary code execution on the affected system. | May 21, 2018 | CVE-2017-10955 | Windows | Exploits / Authentication Weakness / Known Vulnerabilities |
| Tp-link EAP Controller Exploit | Tp-link EAP Controller does not handle privilege management correctly so a non privileged user can execute privileged actions. This module will try to change the device's settings and enable ssh in order to take control of the managed Access Points. | May 18, 2018 | CVE-2018-10168 | Windows, Linux | Exploits / Authentication Weakness / Known Vulnerabilities |