Clik here to view.
MiniCMS 1.10 - Cross-Site Request Forgery
EDB-ID: 44362Author: zixianPublished: 2018-03-30CVE: CVE-2018-9092 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Request Forgery (CSRF)Vulnerable App: # Exploit Title:...
View ArticleClik here to view.
Open-AuditIT Professional 2.1 - Cross-Site Request Forgery
EDB-ID: 44360Author: Nilesh SapariyaPublished: 2018-03-30CVE: CVE-2018-8979 Type: WebappsPlatform: MultipleAliases: N/AAdvisory/Source: N/ATags: Cross-Site Request Forgery (CSRF)Vulnerable App: N/A #...
View ArticleClik here to view.
Homematic CCU2 2.29.23 - Arbitrary File Write
EDB-ID: 44361Author: Patrick Muench and Gregor KopfPublished: 2018-03-30CVE: CVE-2018-7300 Type: WebappsPlatform: CGIVulnerable App: N/A # Exploit Title: Homematic CCU2 Arbitrary File Write # Date:...
View ArticleClik here to view.
Allok Video Joiner 4.6.1217 - Stack-Based Buffer Overflow
EDB-ID: 44364Author: Mohan Ravichandran and Velayutham SelvarajPublished: 2018-03-30CVE: N/A Type: LocalPlatform: WindowsVulnerable App:...
View ArticleClik here to view.
Allok WMV to AVI MPEG DVD WMV Converter 4.6.1217 - Buffer Overflow
EDB-ID: 44365Author: Mohan Ravichandran and Velayutham SelvarajPublished: 2018-03-30CVE: N/A Type: LocalPlatform: WindowsVulnerable App:...
View ArticleClik here to view.
Wordpress Plugin Relevanssi 4.0.4 - Reflected Cross-Site Scripting
EDB-ID: 44366Author: Stefan BroederPublished: 2018-03-30CVE: CVE-2018-9034 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Scripting (XSS)Vulnerable App: # Date: 23-03-2018 #...
View ArticleClik here to view.
Allok AVI DivX MPEG to DVD Converter 2.6.1217 - Buffer Overflow (SEH)
EDB-ID: 44363Author: wetw0rkPublished: 2018-03-30CVE: N/A Type: LocalPlatform: WindowsVulnerable App: # # Exploit Title : Allok AVI DivX MPEG to DVD Converter - Buffer Overflow (SEH) # Date : 3/27/18 #...
View ArticleClik here to view.
Wordpress Plugin Contact Form 7 to Database Extension 2.10.32 - CSV Injection
EDB-ID: 44367Author: Stefan BroederPublished: 2018-03-30CVE: CVE-2018-9035 Type: WebappsPlatform: PHPVulnerable App: # Date: 23-03-2018 # Exploit Author : Stefan Broeder # Contact :...
View ArticleClik here to view.
Joomla! Component AcySMS 3.5.0 - CSV Macro Injection
EDB-ID: 44370Author: Sureshbabu NarvaneniPublished: 2018-03-30CVE: CVE-2018-9106 Type: WebappsPlatform: PHPVulnerable App: N/A # Google Dork: N/A # Date: 22-03-2018 ################################ #...
View ArticleClik here to view.
Joomla! Component Acymailing Starter 5.9.5 - CSV Macro Injection
EDB-ID: 44369Author: Sureshbabu NarvaneniPublished: 2018-03-30CVE: CVE-2018-9107 Type: WebappsPlatform: PHPVulnerable App: N/A Injection # Google Dork: N/A # Date: 22-03-2018...
View ArticleClik here to view.
Homematic CCU2 2.29.23 - Remote Command Execution
EDB-ID: 44368Author: Patrick Muench and Gregor KopfPublished: 2018-03-30CVE: CVE-2018-7297 Type: WebappsPlatform: CGIVulnerable App: N/A # Exploit Title: Homematic CCU2 Remote Command Execution # Date:...
View ArticleClik here to view.
WordPress Plugin WP Security Audit Log 3.1.1 - Sensitive Information Disclosure
EDB-ID: 44371Author: Colette ChamberlandPublished: 2018-03-30CVE: CVE-2018-8719 Type: WebappsPlatform: PHPVulnerable App: # Google Dork: inurl:/wp-content/uploads/wp-security-audit-log/ # Date:...
View ArticleClik here to view.
SysGauge 4.5.18 - Local Denial of Service
EDB-ID: 44372Author: Hashim JawadPublished: 2018-03-30CVE: N/A Type: DosPlatform: WindowsVulnerable App: ############################################################################################ #...
View ArticleClik here to view.
Tenda W308R v2 Wireless Router 5.07.48 - Cookie Session Weakness Remote DNS...
EDB-ID: 44373Author: Todor DonevPublished: 2018-03-30CVE: N/A Type: WebappsPlatform: ASPVulnerable App: N/A # # Tenda W308R v2 Wireless Router V5.07.48 # Cookie Session Weakness Remote DNS Change PoC #...
View ArticleClik here to view.
Advantech WebAccess < 8.1 - webvrpcs DrawSrv.dll Path BwBuildPath...
EDB-ID: 44376Author: Chris LynePublished: 2018-03-30CVE: N/A Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: N/ATags: RemoteVulnerable App: N/A # Exploit Title: Advantech WebAccess < 8.1...
View ArticleClik here to view.
osCommerce 2.3.4.1 - Remote Code Execution
EDB-ID: 44374Author: Simon ScannellPublished: 2018-03-30CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Date: 29.0.3.2018 # Exploit Author: Simon Scannell - https://scannell-infosec.net...
View ArticleClik here to view.
Systematic SitAware - NVG Denial of Service
EDB-ID: 44375Author: 2u53Published: 2018-03-30CVE: CVE-2018-9115 Type: DosPlatform: XMLVulnerable App: N/A # Date: 03/31/2018 # Exploit Author: 2u53 # Vendor Homepage:...
View ArticleClik here to view.
Tenda W316R Wireless Router 5.07.50 - Remote DNS Change (PoC)
EDB-ID: 44377Author: Todor DonevPublished: 2018-03-30CVE: N/A Type: WebappsPlatform: ASPVulnerable App: N/A # # Tenda W316R Wireless Router V5.07.50 # Cookie Session Weakness Remote DNS Change PoC # #...
View ArticleClik here to view.
D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router -...
EDB-ID: 44378Author: Gem GeorgePublished: 2018-03-30CVE: CVE-2018-9032 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Authentication Bypass / Credentials Bypass (AB/CB)Vulnerable App:...
View ArticleClik here to view.
Tenda W3002R/A302/w309r Wireless Router V5.07.64_en - Remote DNS Change (PoC)
EDB-ID: 44380Author: Todor DonevPublished: 2018-03-30CVE: N/A Type: WebappsPlatform: ASPVulnerable App: N/A # # Tenda W3002R/A302/w309r Wireless Router V5.07.64_en # Cookie Session Weakness Remote DNS...
View Article