Clik here to view.
Microsoft Windows Kernel Ring-0 Address Leak
It was discovered that it is possible to disclose addresses of kernel-mode Paged Pool allocations via a race-condition in the implementation of the NtQueryVirtualMemory system call (information class...
View ArticleClik here to view.
Samsung Internet Browser SOP Bypass
This Metasploit module takes advantage of a Same-Origin Policy (SOP) bypass vulnerability in the Samsung Internet Browser, a popular mobile browser shipping with Samsung Android devices. By default, it...
View ArticleClik here to view.
BEIMS ContractorWeb 5.18.0.0 SQL Injection
BEIMS ContractorWeb version 5.18.0.0 suffers from a remote SQL injection vulnerability.MD5 | 09b915b91fe5f71c1123d95e43778bceDownload# Exploit Title: SQL Injection# Date: 18 December, 2017# Exploit...
View ArticleClik here to view.
Symantec Messaging Gateway CVE-2017-15532 Directory Traversal Vulnerability
Symantec Messaging Gateway is prone to a directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters ('../') to access or read arbitrary files that...
View ArticleClik here to view.
Ability Mail Server 3.3.2 - Cross-Site Scripting
EDB-ID: 43378Author: Aloyce J. MakalangaPublished: 2017-12-20CVE: CVE-2017-17752 Type: WebappsPlatform: MultipleVulnerable App: # CVE: CVE-2017-17752 # Date: 19-12-2017 # Software Link:...
View ArticleClik here to view.
Microsoft Windows Kernel -...
EDB-ID: 43380Author: Google Security ResearchPublished: 2017-12-20CVE: N/A Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
BEIMS ContractorWeb 5.18.0.0 - SQL Injection
EDB-ID: 43379Author: Rajwinder SinghPublished: 2017-12-20CVE: CVE-2017-17721 Type: WebappsPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Date: 18 December, 2017 #...
View ArticleClik here to view.
Conarc iChannel - Improper Access Restrictions
EDB-ID: 43377Author: Information ParadoxPublished: 2017-12-20CVE: CVE-2017-17759 Type: WebappsPlatform: MultipleVulnerable App: N/A # Date: 2017-12-19 # Exploit Author: Information Paradox # CVE :...
View ArticleClik here to view.
Netis-WF2419 HTML Injection
Netis-WF2419 version 2.2.36123 suffers from an html injection issue.MD5 | 2b280523a9f4eb6e8a8a2405157b52e2Download# Exploit Title: Netis-WF2419 HTML Injection# Date: 20/12/2017# Exploit Author: Sajibe...
View ArticleClik here to view.
WordPress Grifus 4.0.1 Cross Site Scripting
WordPress Grifus theme version 4.0.1 suffers from a cross site scripting vulnerability.MD5 | 13f5e84da1d535b4d27885e13f635678Download======Title: Grifus WordPress Themes XSS VulnVersion: 4.0.1Homepage:...
View ArticleClik here to view.
WordPress Feed-Statistics 4.1 Open Redirect
WordPress Feed-Statistics plugin versions 4.1 and below suffer from an open redirection vulnerability.MD5 | 1f8cfc15a5ccfc95a84ac1d880647631Download[+] Title: WordPress feed-statistics Plugin Open...
View ArticleClik here to view.
Ruby < 2.2.8 / < 2.3.5 / < 2.4.2 / < 2.5.0-preview1 - 'NET::Ftp' Command...
EDB-ID: 43381Author: Etienne StalmansPublished: 2017-12-02CVE: CVE-2017-17405 Type: LocalPlatform: RubyAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A The problem lies in the...
View ArticleClik here to view.
ServersCheck Monitoring Software Cross Site Scripting
ServersCheck Monitoring Software versions prior to 14.2.3 suffers from a cross site scripting vulnerability.MD5 | 5d726e783e063a527c15ce6c9c68493aDownload# Exploit Title: ServersCheck Monitoring...
View ArticleClik here to view.
Trend Micro Smart Protection Server 3.2 XSS / Access Control / Disclosure
Trend Micro Smart Protection Server version 3.2 suffers from access control bypass, cross site scripting, information disclosure, and various other vulnerabilities.MD5 |...
View ArticleClik here to view.
Online Hotel Booking System Pro 1.3 Cross Site Scripting
Online Hotel Booking System Pro version 1.3 suffers from a cross site scripting vulnerability.MD5 | 80b3a97b3c233ef7570ac0a93e46095aDownload# Exploit Title: Online Hotel Booking System Pro 1.3 - Cross...
View ArticleClik here to view.
phpMars 1.0.9 Cross Site Scripting
phpMars version 1.0.9 suffers from a cross site scripting vulnerability.MD5 | d1205a24c4da3d1ec41231258fdcf33eDownload# Exploit Title: phpMars - Photos Social Network ( instagram clone ) - Cross Site...
View ArticleClik here to view.
Roommate And Real Estate Listing Classified Response 1.0 XSS
Roommate and Real Estate Listing Classified Response version 1.0 suffers from a cross site scripting vulnerability.MD5 | bf8a3c42958bcf690cab862f0766410dDownload# Exploit Title: Roommate and Real...
View ArticleClik here to view.
Joomla JB Bus 2.3.0 SQL Injection
Joomla JB Bus extension version 2.3.0 suffers from a remote SQL injection vulnerability.MD5 | 01129b11df44a25e556a0215f9e2ba59Download#################################################Title: Joomla JB...
View ArticleClik here to view.
Joomla JB Tour Booking 2.2.2 SQL Injection
Joomla JB Tour Booking extension 2.2.2 suffers from a remote SQL injection vulnerability.MD5 | 2ba4114e2429bf92db11ac3c63ee15a0Download#################################################Title: Joomla JB...
View ArticleClik here to view.
eBPF Arbitrary Read/Write Via Incorrect Range Tracking
eBPF suffers from an arbitrary read and write vulnerability via incorrect range tracking.MD5 | ad6516e5054737ab0ef7abdefd3ba79bDownloadSource:packetstormsecurity.com
View Article