Clik here to view.
BarcodeWiz ActiveX Control Buffer Overflow
BarcodeWiz ActiveX Control versions prior to 6.7 suffers from a buffer overflow vulnerability.MD5 | 5a6d87beda1eb2117a5a9eb2725e9ddbDownload[+] Credits: John Page (aka hyp3rlinx) [+] Website:...
View ArticleClik here to view.
WordPress WpJobBoard 4.4.4 SQL Injection
WordPress WpJobBoard plugin version 4.4.4 suffers from a remote SQL injection vulnerability.MD5 | 3fee0762cf15dddb829c9979f9a9fb06DownloadDocument Title:===============WpJobBoard v4.4.4 - Multiple SQL...
View ArticleClik here to view.
Gespage 7.4.8 SQL Injection
Gespage versions 7.4.8 and below suffer from multiple remote SQL injection vulnerabilities.MD5 | e15279677f72561bb5c991e0efcc87d4Download# [CVE-2017-7997] Gespage SQL Injection vulnerability##...
View ArticleClik here to view.
Gespage 7.4.8 Cross Site Scripting
Gespage versions 7.4.8 and below suffer from a cross site scripting vulnerability.MD5 | 66f3d99a7e07c48ab4b4edbd0eab42dfDownload# [CVE-2017-7998] Gespage stored cross-site-scripting (XSS)...
View ArticleClik here to view.
Microsoft Windows - 'nt!NtQueryInformationProcess (information class 76,...
EDB-ID: 43470Author: Google Security ResearchPublished: 2018-01-09CVE: CVE-2018-0745 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A We have discovered that the...
View ArticleClik here to view.
Microsoft Edge Chakra JIT - Escape Analysis Bug
EDB-ID: 43469Author: Google Security ResearchPublished: 2018-01-09CVE: CVE-2017-11918 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Escape analysis:...
View ArticleClik here to view.
Microsoft Windows - 'nt!NtQuerySystemInformation (information class 138,...
EDB-ID: 43471Author: Google Security ResearchPublished: 2018-01-09CVE: CVE-2018-0746 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A We have discovered that the...
View ArticleClik here to view.
Microsoft SharePoint Limited Access Permission Bypass
Microsoft SharePoint suffers from a Limited Access permission bypass vulnerability.MD5 | 0295554bf43ae5430a02da73edf4cfd7Downloadvulnerability Title: Microsoft SharePoint 'Limited Access' Permission...
View ArticleClik here to view.
FiberHome MIFI LM53Q1 Information Disclosure / Password Change
FiberHome MIFI LM53Q1 suffers from credential disclosure and password change vulnerabilities.MD5 | ad025fdd2ffefcd1042e1363ec718580Download#!/usr/bin/python# /$$$$$$$$ /$$ /$$ /$$ /$$ /$$$$$$$ /$$...
View ArticleClik here to view.
WordPress Social Media Widget By Acurax 3.2.5 Cross Site Request Forgery
WordPress Social Media Widget by Acurax plugin version 3.2.5 suffers from a cross site request forgery vulnerability.MD5 | 6995e4045690a16a01eba9a082a3ca2dDownload* Exploit Title: Social Media Widget...
View ArticleClik here to view.
Synology DiskStation Manager (DSM) User Enumeration
Synology DiskStation Manager (DMS) versions prior to 6.1.3-15152 suffer from a forget_passwd.cgi user enumeration vulnerability.MD5 | c48c4c4573098defd903d29ddeae9f02Download# Exploit Title: Synology...
View ArticleClik here to view.
WordPress LearnDash 2.5.3 File Upload
WordPress LearnDash plugin version 2.5.3 suffers from an arbitrary file upload vulnerability.MD5 | 16db1a477dfec3557bd4c33fa68145e7Download# Exploit Title: WordPress LearnDash 2.5.3 Unauthenticated...
View ArticleClik here to view.
WordPress CMS Tree Page View 1.4 CSRF / Privilege Escalation
WordPress CMS Tree Page View plugin version 1.4 suffers from cross site request forgery and privilege escalation vulnerabilities.MD5 | 2631128536ccd68e83fc19a7c831a751Download* Exploit Title: CMS Tree...
View ArticleClik here to view.
WordPress Admin Menu Tree Page View 2.6.9 CSRF / Privilege Escalation
WordPress Admin Menu Tree Page View plugin version 2.6.9 suffers from cross site request forgery and privilege escalation vulnerabilities.MD5 | d90e37e348f554a84c5781437279668eDownload* Exploit Title:...
View ArticleClik here to view.
Rx Tera 2.0 Cross Site Request Forgery
Rx Tera version 2.0 suffers from a cross site request forgery vulnerability.MD5 |...
View ArticleClik here to view.
Office Tracker 11.2.5 Cross Site Scripting
Office Tracker version 11.2.5 suffers from a cross site scripting vulnerability.MD5 | a458952c5d53a047d2ebccfe52183690Download# Title: Office Tracker 11.2.5 - XSS# Author: Nassim Asrir# Contact:...
View ArticleClik here to view.
AvantFAX 3.3.3 Cross Site Scripting
AvantFAX version 3.3.3 suffers from a cross site scripting vulnerability.MD5 | 69a0b3a925460eb10e462a381d348d2aDownload# Title: AvantFAX 3.3.3 - XSS# Author: Nassim Asrir# Contact: wassline@gmail.com#...
View ArticleClik here to view.
Linux x86 exec /bin/dash Shellcode
30 bytes small Linux x86 exec /bin/dash shellcode.MD5 | e73a8aae13cbff1019f6a54b3efdd89fDownload/*################## Description ####################; Title : exec /bin/dash - Shellcode; Author :...
View ArticleClik here to view.
Vanilla Forums Cross Site Request Forgery
Vanilla Forums versions prior to 2.1.5 suffer from a cross site request forgery vulnerability.MD5 | 07788708ade7a4b68433038c99e7fc93Download# Exploit Title: CSRF vulnerabilities in Vanilla Forums below...
View ArticleClik here to view.
DiskBoss Enterprise 8.5.12 Denial Of Service
DiskBoss Enterprise version 8.5.12 suffers from a denial of service vulnerability.MD5 | 661234612264e4c4abf1b234d80d1d82Download# Exploit Title: DiskBoss Enterprise Server 8.5.12 - Denial of Service#...
View Article