Clik here to view.
WordPress Plugin Social Media Widget by Acurax 3.2.5 - Cross-Site Request...
EDB-ID: 43484Author: Panagiotis VagenasPublished: 2018-01-10CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Request Forgery (CSRF)Vulnerable App: N/A * Discovery...
View ArticleClik here to view.
WordPress Plugin Admin Menu Tree Page View 2.6.9 - Cross-Site Request...
EDB-ID: 43486Author: Panagiotis VagenasPublished: 2018-01-10CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Request Forgery (CSRF)Vulnerable App: * Discovery Date:...
View ArticleClik here to view.
Linux/x86 - execve /bin/dash Shellcode (30 bytes)
EDB-ID: 43476Author: Hashim JawadPublished: 2018-01-10CVE: N/A Type: ShellcodePlatform: Lin_x86Shellcode: Download / View Raw Shellcode Size: 30 bytes ################## Description...
View ArticleClik here to view.
WordPress Plugin CMS Tree Page View 1.4 - Cross-Site Request Forgery /...
EDB-ID: 43485Author: Panagiotis VagenasPublished: 2018-01-10CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Request Forgery (CSRF)Vulnerable App: * Discovery Date:...
View ArticleClik here to view.
Muviko 1.1 - SQL Injection
EDB-ID: 43477Author: Ahmad MahfouzPublished: 2018-01-10CVE: CVE-2017-17970 Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Author: Ahmad Mahfouz # Contact: http://twitter.com/eln1x # Date:...
View ArticleClik here to view.
WordPress Plugin Events Calendar - 'event_id' SQL Injection
EDB-ID: 43479Author: Dennis VeningaPublished: 2018-01-10CVE: CVE-2018-5315 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 09-01-2018 # Exploit Author: Dennis Veninga # Contact Author: d.veninga...
View ArticleClik here to view.
Worpress Plugin Service Finder Booking < 3.2 - Local File Disclosure
EDB-ID: 43475Author: telahdihapusPublished: 2018-01-10CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Google Dork: N/A # Date: 09/01/2018 (GMT+7) # Exploit Author: telahdihapus # Vendor...
View ArticleClik here to view.
WordPress Plugin WordPress Download Manager 2.9.60 - Cross-Site Request Forgery
EDB-ID: 43487Author: Panagiotis VagenasPublished: 2018-01-10CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Request Forgery (CSRF)Vulnerable App: N/A * Discovery...
View ArticleClik here to view.
DiskBoss Enterprise 8.8.16 - Buffer Overflow
EDB-ID: 43478Author: Arris HuijgenPublished: 2018-01-10CVE: CVE-2018-5262 Type: RemotePlatform: WindowsVulnerable App: # Date: 2017-08-27 # Exploit Author: Arris Huijgen # Vendor Homepage:...
View ArticleClik here to view.
Spring Jackson-Databind Default Typing Issue
Proof of concept that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions.MD5 | bd94dd448499d73f15b54018b06b7f7fDownloadSource:packetstormsecurity.com
View ArticleClik here to view.
HPE iMC dbman RestartDB Unauthenticated Remote Command Execution
This Metasploit module exploits a remote command execution vulnerability in Hewlett Packard Enterprise Intelligent Management Center before version 7.3 E0504P04. The dbman service allows...
View ArticleClik here to view.
HPE iMC dbman RestoreDBase Unauthenticated Remote Command Execution
This Metasploit module exploits a remote command execution vulnerability in Hewlett Packard Enterprise Intelligent Management Center before version 7.3 E0504P04. The dbman service allows...
View ArticleClik here to view.
Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (53 bytes)
EDB-ID: 43489Author: Debashis PalPublished: 2018-01-10CVE: N/A Type: ShellcodePlatform: Lin_x86Shellcode: Download / View Raw Shellcode Size: 53 bytes # Title: Linux/x86 - execve(/bin/sh) Polymorphic...
View ArticleClik here to view.
Joomla! Component Easydiscuss < 4.0.21 - Cross-Site Scripting
EDB-ID: 43488Author: Mattia FurlaniPublished: 2018-01-10CVE: CVE-2018-5263 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 06-01-2018 # Software Link: https://stackideas.com/easydiscuss # Exploit...
View ArticleClik here to view.
HPE iMC - dbman RestoreDBase Unauthenticated Remote Command Execution...
EDB-ID: 43492Author: MetasploitPublished: 2018-01-10CVE: CVE-2017-5817 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module...
View ArticleClik here to view.
Microsoft Edge Chakra JIT - 'Lowerer::LowerSetConcatStrMultiItem' Missing...
EDB-ID: 43491Author: Google Security ResearchPublished: 2018-01-10CVE: CVE-2018-0758 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A The method...
View ArticleClik here to view.
Multiple CPUs - Information Leak Using Speculative Execution
EDB-ID: 43490Author: Google Security ResearchPublished: 2018-01-10CVE: N/A Type: DosPlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A This is a bug report about a CPU...
View ArticleClik here to view.
HPE iMC - dbman RestartDB Unauthenticated Remote Command Execution (Metasploit)
EDB-ID: 43493Author: MetasploitPublished: 2018-01-10CVE: CVE-2017-5816 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module...
View ArticleClik here to view.
WordPress Service Finder Booking Local File Disclosure
WordPress Service Finder Booking plugin versions prior to 3.2 suffer from a file disclosure vulnerability.MD5 | eb1fec3edda863885a9a8ece334e0246Download# Exploit Title: Worpress Plugin Service Finder...
View ArticleClik here to view.
DiskBoss Enterprise 8.8.16 Buffer Overflow
DiskBoss Enterprise version 8.8.16 suffers from a buffer overflow vulnerability.MD5 | 1274008b98599a4a381fb456d4011787Download# Exploit Title: DiskBoss <= 8.8.16 - Unauthenticated Remote Code...
View Article