Clik here to view.
Samsung SRN-1670D Web Viewer 1.0.0.193 Arbitrary File Read / Upload
This Metasploit module exploits an unrestricted file upload vulnerability in Web Viewer 1.0.0.193 on Samsung SRN-1670D devices. The network_ssl_upload.php file allows remote authenticated attackers to...
View ArticleClik here to view.
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
This Metasploit module exploits a buffer overflow in the LabF nfsAxe 3.7 FTP Client allowing remote code execution.MD5 | 8d30c79823a88f61fd7afa9d88d0562eDownload### This module requires Metasploit:...
View ArticleClik here to view.
Linux/ARM (Raspberry Pi) Bind Shell Shellcode
112 bytes small Linux/ARM (Raspberry Pi) null-free shellcode that binds a shell to 0.0.0.0:4444/TCP.MD5 | 80fbc5d27e17dc9e5bb4b1bf5f0abea2Download.section .text.global _start _start: .ARM add r3, pc,...
View ArticleClik here to view.
Microsoft Windows SMB Server Mount Point Privilege Escalation
On Microsoft Windows, the SMB server drivers (srv.sys and srv2.sys) do not check the destination of a NTFS mount point when manually handling a reparse operation leading to being able to locally open...
View ArticleClik here to view.
ALLMediaServer 0.95 Stack Buffer Overflow
ALLMediaServer version 0.95 stack buffer overflow exploit with DEP bypass on Windows 7 x64.MD5 | 15321ab5b12699493b877fadfdf25da1Download#!/usr/bin/python# Exploit Title: Stack Buffer Overflow in...
View ArticleClik here to view.
D-Link Routers 110/412/615/815 Arbitrary Code Execution
D-Link routers 110/412/615/815 versions prior to 1.03 suffer from a service.cgi arbitrary code execution vulnerability.MD5 | 3d62c7e0cb26b053130f3ca201d0f494Download#!/usr/bin/python# Exploit Title:...
View ArticleClik here to view.
SAP NetWeaver J2EE Engine 7.40 SQL Injection
SAP NetWeaver J2EE Engine version 7.40 suffers from a remote SQL injection vulnerability.MD5 | 6b73d2dd9de02a95a19540c46ce2d138Download#!/usr/bin/env python# coding=utf-8"""Author: Vahagn Vardanyan...
View ArticleClik here to view.
ALLMediaServer 0.95 - Buffer Overflow
EDB-ID: 43523Author: Mario Kartone CiccarelliPublished: 2018-01-11CVE: CVE-2017-17932 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Exploit Title: Stack...
View ArticleClik here to view.
PyroBatchFTP < 3.19 - Buffer Overflow
EDB-ID: 43548Author: Manuel GarcÃa CárdenasPublished: 2018-01-12CVE: N/A Type: DosPlatform: WindowsVulnerable App: N/A MGC ALERT 2018-001 - Original release date: December 22, 2017 - Last revised:...
View ArticleClik here to view.
Oracle January 2018 Critical Patch Update Multiple Vulnerabilities
Oracle has released advance notification regarding the January 2018 Critical Patch Update (CPU) to be released on January 16, 2018. The update addresses 233 vulnerabilities affecting the following...
View ArticleClik here to view.
Kentico CMS 11.0 - Buffer Overflow
EDB-ID: 43547Author: Vulnerability-LabPublished: 2018-01-12CVE: CVE-2018-5282 Type: DosPlatform: WindowsVulnerable App: N/A =============== Kentico CMS v11.0 - Stack Buffer Overflow Vulnerability...
View ArticleClik here to view.
Xnami 1.0 - Cross-Site Scripting
EDB-ID: 43535Author: Dennis VeningaPublished: 2018-01-12CVE: CVE-2018-5370 Type: WebappsPlatform: PHPVulnerable App: N/A # Google Dork: " Copyright 2017 xnami. "& 2018 # Date: 11-01-2018 # Exploit...
View ArticleClik here to view.
Taxi Booking Script 1.0 - Cross-site Scripting
EDB-ID: 43543Author: TaucoPublished: 2018-01-12CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Taxi Booking Script v1.0 - Cross-site Scripting (XSS) # Date: 11.01.2018 # Vendor...
View ArticleClik here to view.
Linux/x86-64 /bin/sh Shellcode
24 bytes small Linux/x86-64 execute /bin/sh shellcode.MD5 | 50f820da8824e476bf8fe8000f27344bDownload/*global _startsection .text_start: push 59 pop rax cdq push rdx mov rbx,0x68732f6e69622f2f push rbx...
View ArticleClik here to view.
Linux/x86-64 Add Mapping In /etc/hosts Shellcode
96 bytes small Linux/x86-64 add mapping (127.1.1.1 google.lk) in /etc/hosts shellcode.MD5 | 58571c81a05ae0a8e172b90ba5bfe997Download/*global _start section .text_start: ;open push 2 pop rax xor rdi,...
View ArticleClik here to view.
macOS process_policy Stack Leak
macOS suffers from a process_policy stack leak through an uninitialized field.MD5 | 087461a94f1e181ee115eef15d6fd864DownloadMacOS process_policy stack leak through uninitialized field CVE-2017-7154The...
View ArticleClik here to view.
eBPF 4.9-stable Verifier Bug Backported
eBPF had the verifier bug backported to version 4.9-stable.MD5 | 8a1c22a5152b26d19ce1cffd65c19ab9DownloadeBPF verifier bug backported to 4.9-stable Moving this one to a separate bug report...Commit...
View ArticleClik here to view.
Zimbra Collaboration Suite Cross Site Scripting
Zimbra Collaboration Suite suffers from a stored cross site scripting vulnerability.MD5 |...
View ArticleClik here to view.
ZyXEL P-660HW UDP Denial Of Service
ZyXEL P-660HW suffers from a UDP fragmentation denial of service vulnerability.MD5 | 540f62d029470090796859bb2a8aeed4Download#################Exploit Title: ZyXEL P-660HW UDP fragmentation Denial of...
View ArticleClik here to view.
Flash Operator Panel 2.31.03 Command Execution
Flash Operator Panel version 2.31.03 suffers from a command execution vulnerability.MD5 | 82f481cffd6af5326f66a863d2dab7a6DownloadDocument Title:===============Flash Operator Panel v2.31.03 - Command...
View Article