Clik here to view.
CA Privileged Access Manager 2.x Code Execution
CA Technologies Support is alerting customers to multiple potential risks with CA Privileged Access Manager. Multiple vulnerabilities exist that can allow a remote attacker to conduct a variety of...
View ArticleClik here to view.
WordPress Redirection 2.7.1 Deserialization Code Execution
WordPress Redirection plugin version 2.7.1 suffers from a code execution vulnerability.MD5 | 1e14e58ceb21022344666e902766b80bDownloadDetails================Software: RedirectionVersion: 2.7.1Homepage:...
View ArticleClik here to view.
Microsoft Windows CVE-2018-8210 Remote Code Execution Vulnerability
Microsoft Windows is prone to a remote code-execution vulnerability.An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application....
View ArticleClik here to view.
HP UCMDB Browser CVE-2018-6496 Cross Site Request Forgery Vulnerability
HP UCMDB Browser is prone to a cross-site request-forgery vulnerability because it fails to properly validate HTTP requests. Exploiting this issue may allow a remote attacker to perform certain...
View ArticleClik here to view.
Tapplock Smart Lock Insecure Direct Object Reference
Tapplock Smart Lock suffers from multiple insecure direct object reference vulnerabilities.MD5 | 763446d7594572376c209584efb7e078DownloadThe server http://api.tapplock.com/ which servers as the api...
View ArticleClik here to view.
phpMyAdmin 4.x Remote Code Execution
phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not properly choose delimiters to prevent use of the preg_replace (aka eval) modifier, which might allow remote...
View ArticleClik here to view.
Joomla Jomres 9.11.2 Cross Site Request Forgery
Joomla Jomres component version 9.11.2 suffers from a cross site request forgery vulnerability.MD5 | 85f5c9da3da7654810d5acb079efaa95Download# Exploit Title: Joomla!Component jomres 9.11.2 - Cross site...
View ArticleClik here to view.
Audiograbber 1.83 Buffer Overflow
Audiograbber version 1.83 local SEH buffer overflow exploit.MD5 | 8737acad1660bbb2394fd9aba67a272fDownload# Exploit Title: Audiograbber 1.83 - Local Buffer Overflow (SEH)# Date: 2018-06-16# Exploit...
View ArticleClik here to view.
Redis-cli Buffer Overflow
Redis-cli versions prior to 5.0 buffer overflow proof of concept exploit.MD5 | a53747670c7b2fd888620a15cd0610c7Download# Exploit Title: Redis-cli < 5.0 - Buffer Overflow (PoC)# Date: 2018-06-13#...
View ArticleClik here to view.
Redatam Web Server Directory Traversal
Redatam Web Server prior to version 7 suffer from a directory traversal vulnerability.MD5 | 0584808e1c49454251c2d5a7207ce5efDownload# Exploit Title: Redatam Web Server < 7 - Directory Traversal#...
View ArticleClik here to view.
Nikto 2.1.6 CSV Injection
Nikto version 2.1.6 suffers from a csv injection vulnerability.MD5 | aedc26323562020a43750f0d92a863caDownload# Exploit Title: Nikto 2.1.6 - CSV Injection# Google Dork: N/A# Date: 2018-06-01 # Exploit...
View ArticleClik here to view.
Pale Moon Browser Use-After-Free
Pale Moon Browser versions prior to 27.9.3 suffer from a use-after-free vulnerability.MD5 | e4036d6b66047ae0fac41ded1bba4462Download# Exploit Title: Pale Moon Browser < 27.9.3 - Use After Free (PoC)...
View ArticleClik here to view.
RabbitMQ Web Management Cross Site Request Forgery
RabbitMQ Web Management versions prior to 3.7.6 suffer from a cross site request forgery vulnerability.MD5 | 0e90026ca7e02938b9b68fbc91cea5caDownload# Exploit Title: RabbitMQ Web Management < 3.7.6...
View ArticleClik here to view.
Microsoft COM For Windows Improper Serialized Object Handling
Microsoft COM for Windows privilege escalation proof of concept exploit. A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects....
View ArticleClik here to view.
Redatam Web Server < 7 - Directory Traversal
EDB-ID: 44905Author: Berk DusunurPublished: 2018-06-18CVE: N/A Type: WebappsPlatform: WindowsVulnerable App: N/A # Google Dork: inurl: /redbin/rpwebutilities.exe/ # Date: 2018-06-18 # Exploit Author:...
View ArticleClik here to view.
Nikto 2.1.6 - CSV Injection
EDB-ID: 44899Author: Adam GreenhillPublished: 2018-06-18CVE: CVE-2018-11652 Type: LocalPlatform: LinuxVulnerable App: N/A # Google Dork: N/A # Date: 2018-06-01 # Exploit Author: Adam Greenhill # Vendor...
View ArticleClik here to view.
RabbitMQ Web Management < 3.7.6 - Cross-Site Request Forgery
EDB-ID: 44902Author: Dolev FarhiPublished: 2018-06-18CVE: N/A Type: WebappsPlatform: LinuxVulnerable App: N/A # Date: 2018-06-17 # Author: Dolev Farhi # Vendor or Software Link: www.rabbitmq.com #...
View ArticleClik here to view.
Audiograbber 1.83 - Local Buffer Overflow (SEH)
EDB-ID: 44903Author: Dennis 'dhn' HerrmannPublished: 2018-06-18CVE: N/A Type: LocalPlatform: WindowsVulnerable App: N/A # Date: 2018-06-16 # Exploit Author: Dennis 'dhn' Herrmann # Vendor Homepage:...
View ArticleClik here to view.
Microsoft COM for Windows - Privilege Escalation
EDB-ID: 44906Author: Code WhitePublished: 2018-06-18CVE: CVE-2018-0824 Type: LocalPlatform: WindowsAliases: UnmarshalPwnAdvisory/Source: LinkTags: LocalVulnerable App: N/A In May 2018 Microsoft patched...
View ArticleClik here to view.
Joomla! Component jomres 9.11.2 - Cross-Site Request Forgery
EDB-ID: 44901Author: L0RDPublished: 2018-06-18CVE: N/A Type: WebappsPlatform: PHPVulnerable App: # Date: 2018-06-15 # Exploit Author: L0RD # Vendor Homepage: https://www.jomres.net/ # Software link:...
View Article