Clik here to view.
WOOF WooCommerce Products Filter 1.1.9 LFI / Code Execution
WOOF WooCommerce Products Filter from PluginUs.Net version 1.1.9 suffers from shortcode execution and local file inclusion vulnerabilities.MD5 | 20403a264b5473118a85d5699ea5b70fDownloadSEC Consult...
View ArticleClik here to view.
WordPress Plugin Duplicator 1.2.32 - Cross-Site Scripting
EDB-ID: 44288Author: Stefan BroederPublished: 2018-03-15CVE: CVE-2018-7543 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Scripting (XSS)Vulnerable App: # Date: 25-02-2018 #...
View ArticleClik here to view.
Spring Data REST < 2.6.9 (Ingalls SR9), 3.0.1 (Kay SR1) - PATCH Request...
EDB-ID: 44289Author: Antonio Francesco SardellaPublished: 2018-03-15CVE: CVE-2017-8046 Type: WebappsPlatform: JavaAliases: Spring BreakAdvisory/Source: LinkTags: N/AVulnerable App: N/A // Date:...
View ArticleClik here to view.
MikroTik RouterOS < 6.41.3/6.42rc27 - SMB Buffer Overflow
EDB-ID: 44290Author: CoreLabsPublished: 2018-03-15CVE: CVE-2018-7445 Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A import socket import struct import sys...
View ArticleClik here to view.
Android DRM Services - Buffer Overflow
EDB-ID: 44291Author: Tamir Zahavi-BrunnerPublished: 2018-03-15CVE: CVE-2017-13253 Type: DosPlatform: AndroidAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A #include...
View ArticleClik here to view.
SAP NetWeaver AS JAVA CRM - Log injection Remote Command Execution
EDB-ID: 44292Author: erp scan teamPublished: 2018-03-14CVE: CVE-2018-2380 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A import argparse import urllib import...
View ArticleClik here to view.
ZOHO ManageEngine Event LogAnalyzer CVE-2018-8721 HTML Injection Vulnerability
ZOHO ManageEngine Event LogAnalyzer is prone to a HTML injection vulnerability because it fails to sufficiently sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and...
View ArticleClik here to view.
MikroTik RouterOS CVE-2018-7445 Buffer Overflow Vulnerability
MikroTik RouterOS is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer.Attackers can exploit...
View ArticleClik here to view.
Firefox 46.0.1 - ASM.JS JIT-Spray Remote Code Execution
EDB-ID: 44293Author: Rh0Published: 2018-03-16CVE: CVE-2016-9079... Type: RemotePlatform: WindowsVulnerable App: <!-- FULL ASLR AND DEP BYPASS USING ASM.JS JIT SPRAY (CVE-2017-5375) *PoC* Exploit...
View ArticleClik here to view.
Firefox 44.0.2 - ASM.JS JIT-Spray Remote Code Execution
EDB-ID: 44294Author: Rh0Published: 2018-03-16CVE: CVE-2016-9079... Type: RemotePlatform: WindowsVulnerable App: <!-- FULL ASLR AND DEP BYPASS USING ASM.JS JIT SPRAY (CVE-2017-5375) *PoC* Exploit...
View ArticleClik here to view.
Contec Smart Home 4.15 - Unauthorized Password Reset
EDB-ID: 44295Author: Z3ro0nePublished: 2018-03-16CVE: N/A Type: WebappsPlatform: HardwareVulnerable App: N/A # Shodan Dork : "content/smarthome.php" # Vendor Homepage : http://contec.co.il # Tested on...
View ArticleClik here to view.
Linux Kernel 4.13 (Debian 9) - Local Privilege Escalation
EDB-ID: 44303Author: anonymousPublished: 2017-12-11CVE: CVE-2017-16994 Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A /* * */ #include <stdio.h> #include...
View ArticleClik here to view.
Linux Kernel < 4.4.0-116 (Ubuntu 16.04.4) - Local Privilege Escalation
EDB-ID: 44298Author: Bruce LeidlPublished: 2018-03-16CVE: CVE-2017-16995 Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A * Ubuntu 16.04.4 kernel priv esc * * all...
View ArticleClik here to view.
Linux Kernel < 4.4.0-21 (Ubuntu 16.04 x64) - 'netfilter target_offset' Local...
EDB-ID: 44300Author: Vitaly NikolenkoPublished: 2018-03-19CVE: N/A Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A EDB Note: Download ~...
View ArticleClik here to view.
Linux Kernel < 3.5.0-23 (Ubuntu 12.04.2 x64) - 'SOCK_DIAG' SMEP Bypass Local...
EDB-ID: 44299Author: Vitaly NikolenkoPublished: 2018-03-19CVE: CVE-2013-1763 Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A * based on the exploit by SynQ * *...
View ArticleClik here to view.
LibRaw Denial Of Service
Secunia Research has discovered multiple vulnerabilities in LibRaw, which can be exploited by malicious people to cause a DoS (Denial of Service). LibRaw versions prior to 0.18.8 are affected.MD5 |...
View ArticleClik here to view.
MikroTik RouterOS SMB Buffer Overflow
A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain...
View ArticleClik here to view.
IBM Spectrum LSF Privilege Escalation
A vulnerability was identified within IBM Spectrum LSF which made it was possible to impersonate other users when submitting jobs for execution. Additionally, it was found to be possible to impersonate...
View ArticleClik here to view.
WordPress Site Editor 1.1.1 Local File Inclusion
WordPress Site Editor plugin version 1.1.1 suffers from a local file inclusion vulnerability.MD5 | 0ba37e13409bd3ec35a1f571dac0c489DownloadProduct: Site Editor Wordpress Plugin -...
View ArticleClik here to view.
Dell EMC NetWorker Buffer Overflow
Dell EMC NetWorker requires an update to address a buffer overflow vulnerability in the 'nsrd' daemon. Versions 9.0.x, prior to 9.2.1.1, prior to 9.1.1.6, and prior to 8.2.4.11 are affected.MD5 |...
View Article