Clik here to view.
Cisco Secure Access Control Server XML External Entity Information Disclosure...
Cisco Secure Access Control Server is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may lead to further attacks....
View ArticleClik here to view.
ManageEngine Applications Manager CVE-2018-7890 Remote Code Execution...
ManageEngine Applications Manager is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the affected system. Failed exploit...
View ArticleClik here to view.
ManageEngine Applications Manager 13.5 - Remote Code Execution (Metasploit)
EDB-ID: 44274Author: Mehmet IncePublished: 2018-03-12CVE: CVE-2018-7890 Type: WebappsPlatform: JavaVulnerable App: N/A # This module requires Metasploit: http://metasploit.com/download # Current...
View ArticleClik here to view.
DEWESoft X3 SP1 (64-bit) - Remote Command Execution
EDB-ID: 44275Author: hyp3rlinxPublished: 2018-03-12CVE: CVE-2018-7756 Type: RemotePlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
TextPattern 4.6.2 - 'qty' SQL Injection
EDB-ID: 44277Author: Manuel GarcÃa CárdenasPublished: 2018-03-12CVE: CVE-2018-7474 Type: WebappsPlatform: PHPVulnerable App: N/A MGC ALERT 2018-002 - Original release date: February 12, 2018 - Last...
View ArticleClik here to view.
Prisma Industriale Checkweigher PrismaWEB 1.21 - Hard-Coded Credentials
EDB-ID: 44276Author: LiquidWormPublished: 2018-03-12CVE: N/A Type: WebappsPlatform: MultipleVulnerable App: N/A Vendor: Prisma Industriale S.r.l. Product web page: https://www.prismaindustriale.com...
View ArticleClik here to view.
SC 7.16 - Stack Buffer Overflow
EDB-ID: 44279Author: Juan SaccoPublished: 2018-03-12CVE: N/A Type: LocalPlatform: LinuxVulnerable App: N/A # Bug found using Exploit Pack - Local fuzzer feature. # # Tested on: GNU/Linux - Kali Linux #...
View ArticleClik here to view.
Advantech WebAccess < 8.3 - Directory Traversal / Remote Code Execution
EDB-ID: 44278Author: Chris LynePublished: 2018-03-12CVE: CVE-2017-16720 Type: WebappsPlatform: WindowsVulnerable App: N/A # Exploit Title: Advantech WebAccess < 8.3 webvrpcs Directory Traversal RCE...
View ArticleClik here to view.
Eclipse Equinoxe OSGi Console - Command Execution (Metasploit)
EDB-ID: 44280Author: MetasploitPublished: 2018-03-12CVE: N/A Type: RemotePlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module requires...
View ArticleClik here to view.
ACL Analytics 11.X - 13.0.0.579 - Arbitrary Code Execution
EDB-ID: 44281Author: Clutchisback1Published: 2018-03-12CVE: N/A Type: WebappsPlatform: WindowsVulnerable App: N/A # Google Dork: N/A # Date: 03-07-2018 # Exploit Author: Clutchisback1 # Vendor...
View ArticleClik here to view.
Hola VPN 1.79.859 Insecure Service Permissions
Hola VPN version 1.79.859 suffers from an insecure service permission vulnerability.MD5 | 1876f7351ffbf17ac8b728051bcb8ddcDownload=====[ Tempest Security Intelligence - ADV-22/2018 ]===Hola VPN...
View ArticleClik here to view.
10-Strike Network Monitor 5.4 Unquoted Service Path
10-Strike Network Monitor version 5.4 suffers from an unquoted service path vulnerability.MD5 | 76d354f866dec2773e1d08ee03b36139Download=====[ Tempest Security Intelligence - ADV-20/2018 ]===10-Strike...
View ArticleClik here to view.
Panda Global Security 17.0.1 Unquoted Service Path
Panda Global Security version 17.0.1 suffers from an unquoted service path vulnerability.MD5 | 13cfd6979af78b1bf0f9385013a7115dDownload=====[ Tempest Security Intelligence - ADV-18/2018 ]===Panda...
View ArticleClik here to view.
WPS Free Office 10.2.0.5978 NULL DACL Grants Full Access
WPS Free Office version 10.2.0.5978 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through the use of an insecurely created named pipe.MD5 |...
View ArticleClik here to view.
Panda Global Security 17.0.1 NULL DACL Grants Full Access
Panda Global Security version 17.0.1 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through the use of an insecurely created named pipe.MD5 |...
View ArticleClik here to view.
Bacula-Web SQL Injection
Bacula-Web versions prior to 8.0.0-RC2 suffer from multiple remote SQL injection vulnerabilities.MD5 | c487454c0d4f19bdf7cb13152ae3d209DownloadTitle: Multiple SQL injection vulnerabilities in...
View ArticleClik here to view.
Tuleap 9.17.99.189 SQL Injection
Tuleap version 9.17.99.189 suffers from a remote SQL injection vulnerability.MD5 |...
View ArticleClik here to view.
DEWESoft X3 Remote Internal Command Access
DEWESoft X3 suffers from a remote internal command access vulnerability.MD5 | 45f984eff3502fa768d2b3fbeb988e12Download[+] Credits: John Page (aka hyp3rlinx)[+] Website: hyp3rlinx.altervista.org[+]...
View ArticleClik here to view.
Rootstealer X11 Code Executor
Rootstealer is a program to detect when a linux user opens a terminal with root and it injects intrusive commands in the terminal with X11.MD5 |...
View ArticleClik here to view.
SC 7.16 Buffer Overflow
SC version 7.16 suffers from a stack-based buffer overflow vulnerability.MD5 | f31013dba0290d48f00a17b2a876d39bDownload# Exploit Author: Juan Sacco -...
View Article