Clik here to view.
Eclipse Equinoxe OSGi Console Command Execution
This Metasploit module exploits the Eclipse Equinoxe OSGi (Open Service Gateway initiative) console fork command to execute arbitrary commands on the remote system..MD5 |...
View ArticleClik here to view.
WebLog Expert Web Server Enterprise 9.4 Denial Of Service
WebLog Expert Web Server Enterprise version 9.4 suffers from a denial of service vulnerability.MD5 | e86a626a5d9a7984fbd9900209bb8f45Download[+] Credits: John Page (aka hyp3rlinx) [+] Website:...
View ArticleClik here to view.
WebLog Expert Web Server Enterprise 9.4 Weak Permissions
WebLog Expert Web Server Enterprise version 9.4 has a weak permission vulnerability that allows for authentication bypass.MD5 | 8c78785fe4472e8e995940803360bf13Download[+] Credits: John Page (aka...
View ArticleClik here to view.
Linux Kernel 'mm/hugetlb.c' Local Denial of Service Vulnerability
Linux Kernel is prone to a local denial-of-service vulnerability.An attacker can exploit this issue to cause a denial-of-service condition.Versions prior to Linux kernel version 4.15.7 are vulnerable....
View ArticleClik here to view.
Tuleap Open Redirect
RedTeam Pentesting discovered an arbitrary redirect vulnerability in the redirect mechanism of the application lifecycle management platform Tuleap. Versions prior to 9.17.99.93 are affected.MD5 |...
View ArticleClik here to view.
Cisco Unified Computing System (UCS) Director CVE-2018-0219 Cross Site...
Cisco Unified Computing System (UCS) Director is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...
View ArticleClik here to view.
Cisco Identity Services Engine CVE-2018-0215 Cross Site Request Forgery...
Cisco Identity Services Engine is prone to an cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to the...
View ArticleClik here to view.
Cisco Prime Data Center Network Manager CVE-2018-0144 Cross Site Scripting...
Cisco Prime Security Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
View ArticleClik here to view.
Cisco Data Center Network Manager CVE-2018-0210 Cross Site Request Forgery...
Cisco Data Center Network Manager is prone to an cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to...
View ArticleClik here to view.
Cisco Identity Services Engine CVE-2018-0212 Cross Site Scripting Vulnerability
Cisco Identity Services Engine is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...
View ArticleClik here to view.
Microsoft Office - 'Composite Moniker Remote Code Execution
EDB-ID: 44263Author: Rich WarrenPublished: 2018-01-09CVE: CVE-2017-8570 Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A This repo contains a Proof of Concept...
View ArticleClik here to view.
Memcached < 1.5.5 - 'Memcrashed' Insufficient Control Network Message Volume...
EDB-ID: 44265Author: 649Published: 2018-03-08CVE: CVE-2018-1000115 Type: DosPlatform: LinuxAliases: N/ATags: N/AVulnerable App: N/A #!/usr/bin/python # Download:...
View ArticleClik here to view.
Memcached 1.5.5 - 'Memcrashed' Insufficient Control Network Message Volume...
EDB-ID: 44264Author: anonymousPublished: 2018-03-05CVE: CVE-2018-1000115 Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A memcached-PoC memcached Proof of Concept...
View ArticleClik here to view.
Cisco Identity Services Engine CVE-2018-0216 Cross Site Request Forgery...
Cisco Identity Services Engine is prone to an cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to the...
View ArticleClik here to view.
WebLog Expert Enterprise 9.4 - Denial of Service
EDB-ID: 44271Author: hyp3rlinxPublished: 2018-03-09CVE: CVE-2018-7582 Type: DosPlatform: WindowsVulnerable App: [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
WebLog Expert Enterprise 9.4 - Authentication Bypass
EDB-ID: 44270Author: hyp3rlinxPublished: 2018-03-09CVE: CVE-2018-7581 Type: LocalPlatform: WindowsVulnerable App: [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
Bacula-Web < 8.0.0-rc2 - SQL Injection
EDB-ID: 44272Author: Gustavo SorondoPublished: 2018-03-09CVE: CVE-2017-15367 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-03-07 # Software Link: http://bacula-web.org/ # Exploit Author:...
View ArticleClik here to view.
Cisco Registered Envelope Service CVE-2018-0208 Cross Site Scripting...
Cisco Registered Envelope Service is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...
View ArticleClik here to view.
Cisco Security Manager CVE-2018-0223 Cross Site Scripting Vulnerability
Cisco Security Manager is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
View ArticleClik here to view.
Cisco Videoscape AnyRes Live CVE-2018-0220 Cross Site Scripting Vulnerability
Cisco Videoscape AnyRes Live is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
View Article