Clik here to view.
CloudMe Sync 1.10.9 Remote Buffer Overflow
CloudMe Sync versions 1.10.9 and below suffer from an unauthenticated remote buffer overflow vulnerability.MD5 | e6cc573f3f01ea0671021866a42d3b05Download[+] Credits: John Page (aka hyp3rlinx) [+]...
View ArticleClik here to view.
CloudMe Sync < 1.11.0 - Buffer Overflow
EDB-ID: 44027Author: hyp3rlinxPublished: 2018-02-13CVE: CVE-2018-6892 Type: RemotePlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
TypeSetter CMS 5.1 - 'Host' Header Injection
EDB-ID: 44028Author: Navina AsraniPublished: 2018-02-13CVE: CVE-2018-6889 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 10-02-2018 # Exploit Author: Navina Asrani # Contact:...
View ArticleClik here to view.
News Website Script 2.0.4 - 'search' SQL Injection
EDB-ID: 44030Author: Varun BagariaPublished: 2018-02-13CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title:News Website Script - SQL Injection (Error Based) # Google Dork: NA # Date:...
View ArticleClik here to view.
TypeSetter CMS 5.1 - Cross-Site Request Forgery
EDB-ID: 44029Author: Navina AsraniPublished: 2018-02-13CVE: CVE-2018-6888 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Date: 10-02-2018 # Exploit Author:...
View ArticleClik here to view.
Advantech WebAccess 8.3.0 - Remote Code Execution
EDB-ID: 44031Author: Nassim AsrirPublished: 2018-02-13CVE: CVE-2018-6911 Type: RemotePlatform: WindowsVulnerable App: N/A Discovered by: Nassim Asrir Contact: wassline@gmail.com /...
View ArticleClik here to view.
Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
Multiple CPU Hardware are prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. InformationBugtraq ID:...
View ArticleClik here to view.
Multiple CPU Hardware CVE-2017-5754 Information Disclosure Vulnerability
Multiple CPU Hardware are prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. InformationBugtraq ID:...
View ArticleClik here to view.
Multiple CPU Hardware CVE-2017-5715 Information Disclosure Vulnerability
Multiple CPU Hardware are prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. InformationBugtraq ID:...
View ArticleClik here to view.
Advantech WebAccess Node 8.3.0 DLL Hijacking
Advantech WebAccess Node version 8.3.0 suffers from an AspVBObj.dll code execution dll hijacking vulnerability.MD5 | d399329ffa7fecc776e24fe1316f6ea9DownloadVulnerability Title: Advantech WebAccess...
View ArticleClik here to view.
Ciesto Solutions ERP System SQL Injection
Ciesto Solutions ERP System suffers from a remote SQL injection vulnerability that allows for authentication bypass.MD5 | df9732f40887a3359179b387e26f8539Download# # # # # # Exploit Title: Ciesto...
View ArticleClik here to view.
NAT32 2.2 Build 22284 - Remote Command Execution
EDB-ID: 44033Author: hyp3rlinxPublished: 2018-02-14CVE: CVE-2018-6940 Type: WebappsPlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
NAT32 2.2 Build 22284 - Cross-Site Request Forgery
EDB-ID: 44034Author: hyp3rlinxPublished: 2018-02-14CVE: CVE-2018-6941 Type: WebappsPlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
GNU binutils 2.26.1 - Integer Overflow (POC)
EDB-ID: 44035Author: r4xisPublished: 2018-02-14CVE: CVE-2018-6323 Type: DosPlatform: WindowsVulnerable App: N/A # Date: 12.02.2018 # Exploit Author: r4xis # Tested Version: 2.26.1 # Vuln Version:...
View ArticleClik here to view.
Social Oauth Login PHP - Authentication Bypass
EDB-ID: 44036Author: L0RDPublished: 2018-02-14CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Dork: N/A # Date: 2018-02-12 # Exploit Author: Borna nematzadeh (L0RD) or...
View ArticleClik here to view.
SOA School Management - 'access_login' SQL Injection
EDB-ID: 44037Author: L0RDPublished: 2018-02-14CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A Parents/Students Portal & Mobile App - 'access_login' SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
userSpice 4.3 - Cross-Site Scripting
EDB-ID: 44038Author: Dolev FarhiPublished: 2018-02-14CVE: N/A Type: WebappsPlatform: PHPVulnerable App: Vulnerability userSpice <= 4.3 Persistent Cross Site Scripting URL https://userspice.com Date...
View ArticleClik here to view.
K7 Total Security 15.1.0.305 - Device Driver Arbitrary Memory Read
EDB-ID: 44046Author: SecuriTeamPublished: 2017-10-23CVE: CVE-2017-18019 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A The following advisory describes an Crash...
View ArticleClik here to view.
Cisco UCS Platform Emulator 3.1(2ePE1) - Remote Code Execution
EDB-ID: 44052Author: SecuriTeamPublished: 2017-11-01CVE: CVE-2017-12243 Type: RemotePlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A The following advisory describes two...
View ArticleClik here to view.
Ametys CMS 4.0.2 - Unauthenticated Password Reset
EDB-ID: 44050Author: SecuriTeamPublished: 2017-11-07CVE: CVE-2017-16935 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A The following advisory describes a...
View Article