Clik here to view.
WordPress Plugin WF Cookie Consent 1.1.3 - Cross-Site Scripting
EDB-ID: 44585Author: B0UGPublished: 2018-05-04CVE: CVE-2018-10371 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 23/04/2018 # Exploit Author: B0UG # Vendor Homepage: http://www.wunderfarm.com/ #...
View ArticleClik here to view.
Google Chrome V8 - Object Allocation Size Integer Overflow
EDB-ID: 44584Author: Google Security ResearchPublished: 2018-05-04CVE: CVE-2018-6065 Type: RemotePlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: RemoteVulnerable App: N/A See the following...
View ArticleClik here to view.
Windows WMI - Recieve Notification Exploit (Metasploit)
EDB-ID: 44586Author: MetasploitPublished: 2018-05-04CVE: CVE-2016-0040 Type: LocalPlatform: Windows_x86-64Aliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This...
View ArticleClik here to view.
IceWarp Mail Server < 11.1.1 - Local File Inclusion
EDB-ID: 44587Author: Trustwave's SpiderLabsPublished: 2018-05-04CVE: CVE-2015-1503 Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Product: IceWarp Mail Server...
View ArticleClik here to view.
CSP MySQL User Manager 2.3.1 SQL Injection
CSP MySQL User Manager version 2.3.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.MD5 | 05597906075c9d7b43825b0692fa10a8Download# Exploit Title: CSP MySQL...
View ArticleClik here to view.
WordPress WF Cookie Consent 1.1.3 Cross Site Scripting
WordPress WF Cookie Consent plugin version 1.1.3 suffers from a cross site scripting vulnerability.MD5 | 26cc5a1abc92a45a23d90a3e7285c177Download# Exploit Title: WF Cookie Consent - Authenticated...
View ArticleClik here to view.
IceWarp Mail Server Directory Traversal
IceWarp Mail Server versions prior to 11.1.1 suffer from a directory traversal vulnerability.MD5 | 4bb1b4b87510a3f0f06591f5e0e32e8aDownloadVendor: IceWarp (http://www.icewarp.com)Product: IceWarp Mail...
View ArticleClik here to view.
CSP MySQL User Manager 2.3.1 - Authentication Bypass
EDB-ID: 44589Author: Youssef MamiPublished: 2018-05-06CVE: CVE-2018-10757 Type: WebappsPlatform: LinuxVulnerable App: N/A # Date: 2018-05-04 # Exploit Author: Youssef mami # Vendor Homepage:...
View ArticleClik here to view.
DeviceLock Plug and Play Auditor 5.72 - Unicode Buffer Overflow (SEH)
EDB-ID: 44590Author: hyp3rlinxPublished: 2018-05-06CVE: CVE-2018-10655 Type: LocalPlatform: WindowsVulnerable App: N/A # Date: 2018-05-04 # Exploit Author: Youssef mami # Vendor Homepage:...
View ArticleClik here to view.
WordPress Plugin User Role Editor < 4.25 - Privilege Escalation
EDB-ID: 44595Author: Tomislav PaskalevPublished: 2018-05-06CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # This module requires Metasploit: https://metasploit.com/download # Current source:...
View ArticleClik here to view.
Linux/x86 - execve(/bin/sh) NOT Encoded Shellcode (27 bytes)
EDB-ID: 44594Author: Nuno FreitasPublished: 2018-05-06CVE: N/A Type: ShellcodePlatform: Linux_x86Shellcode: Download / View Raw Shellcode Size: 27 bytes ; Title : Execve /bin/sh Shellcode encoded with...
View ArticleClik here to view.
HWiNFO 5.82-3410 - Denial of Service
EDB-ID: 44593Author: bzyoPublished: 2018-05-06CVE: N/A Type: DosPlatform: WindowsVulnerable App: N/A # # Exploit Author: bzyo # Twitter: @bzyo_ # Exploit Title: HWiNFO 5.82-3410 - Denial of Service #...
View ArticleClik here to view.
LibTIFF CVE-2018-10779 Heap Based Buffer Overflow Vulnerability
LibTIFF is prone to a heap-based buffer-overflow vulnerability. An attacker can exploit this issue to obtain sensitive information or cause a denial-of-service condition. Due to the nature of this...
View ArticleClik here to view.
Linux/x86 execve(/bin/sh) Shellcode
27 bytes small Linux/x86 execve(/bin/sh) not encoded shellcode.MD5 | b1c067632d5b3649aa48336f5e076c6eDownload/*; Title : Execve /bin/sh Shellcode encoded with NOT; Date : May, 2018; Author : Nuno...
View ArticleClik here to view.
Linux Restricted Shell Bypass Guide
Whitepaper titled Linux Restricted Shell Bypass Guide.MD5 | d27133695ec11bcee5f1145b62e7f195DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
HWiNFO 5.82-3410 Denial Of Service
HWiNFO version 5.82-3410 suffers from a denial of service vulnerability.MD5 | ce4da972ca62813c94893aac6776ff8fDownload#!/usr/bin/python## Exploit Author: bzyo# Twitter: @bzyo_# Exploit Title: HWiNFO...
View ArticleClik here to view.
PlaySMS sendfromfile.php Code Execution
This Metasploit module exploits a code injection vulnerability within an authenticated file upload feature in PlaySMS version 1.4. This issue is caused by improper file name handling in...
View ArticleClik here to view.
PlaySMS import.php Code Execution
This Metasploit module exploits an authenticated file upload remote code execution vulnerability in PlaySMS version 1.4. This issue is caused by improper file contents handling in import.php (aka the...
View ArticleClik here to view.
WordPress User Role Editor Plugin Privilege Escalation
The WordPress User Role Editor plugin prior to v4.25, is lacking an authorization check within its update user profile functionality ("update" function, contained within the...
View ArticleClik here to view.
DeviceLock Plug And Play Auditor 5.72 Buffer Overflow
DeviceLock Plug and Play Auditor version 5.72 suffers from a unicode buffer overflow vulnerability.MD5 | e1efa280720a5cbabeff9a9ab68b5ae1Download[+] Credits: hyp3rlinx [+] Website:...
View Article