Clik here to view.
AsusWRT RT-AC750GF - Cross-Site Request Forgery (Change Admin Password)
EDB-ID: 44937Author: WadeekPublished: 2018-06-25CVE: N/A Type: WebappsPlatform: HardwareVulnerable App: N/A # Date: 2018-06-23 # Exploit Author: Wadeek # Vendor Homepage: https://www.asus.com/ #...
View ArticleClik here to view.
Intex Router N-150 - Cross-Site Request Forgery (Add Admin)
EDB-ID: 44933Author: Samrat DasPublished: 2018-06-25CVE: N/A Type: WebappsPlatform: HardwareVulnerable App: N/A # Date: 2018-06-23 # Exploit Author: Navina Asrani # Version: N-150 # CVE : N/A #...
View ArticleClik here to view.
GNU libiberty CVE-2018-12697 Memory Corruption Vulnerability
GNU libiberty is prone to a memory-corruption vulnerability. Attackers can exploit this issue to crash the affected application, resulting in denial-of-service conditions. Given the nature of this...
View ArticleClik here to view.
GNU Binutils CVE-2018-12699 Heap Based Buffer Overflow Vulnerability
GNU Binutils is prone to a heap-based buffer-overflow vulnerability. Attackers can exploit this issue to cause denial-of-service condition, denying service to legitimate users. Given the nature of...
View ArticleClik here to view.
GNU libiberty CVE-2018-12698 Memory Corruption Vulnerability
GNU libiberty is prone to a memory-corruption vulnerability. Attackers can exploit this issue to cause excessive memory consumption, resulting in denial-of-service conditions. Given the nature of this...
View ArticleClik here to view.
KVM (Nested Virtualization) - L1 Guest Privilege Escalation
EDB-ID: 44944Author: Google Security ResearchPublished: 2018-06-25CVE: N/A Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: Denial of Service (DoS)Vulnerable App: N/A For code running on...
View ArticleClik here to view.
GNU Binutils CVE-2018-12700 Denial of Service Vulnerability
GNU Binutils is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service condition, denying service to legitimate users. GNU Binutils 2.30 is vulnerable;...
View ArticleClik here to view.
KVM Nest Virtualization L1 Guest Privilege Escalation
When KVM (on Intel) virtualizes another hypervisor as L1 VM it does not verify that VMX instructions from the L1 VM (which trigger a VM exit and are emulated by L0 KVM) are coming from ring 0.MD5 |...
View ArticleClik here to view.
AsusWRT RT-AC750GF Cross Site Request Forgery
AsusWRT RT-AC750GF suffers from a cross site request forgery vulnerability in the change admin password flow.MD5 | 810fac6d0bec022e04d317564bc41737Download# Exploit Title: AsusWRT RT-AC750GF -...
View ArticleClik here to view.
Intex Router N-150 Arbitrary File Upload
Intex Router N-150 suffers from a remote arbitrary file upload vulnerability.MD5 | 3f9571e629e73736e76af98281a91a9aDownload# Exploit Title:aa Intex Router N-150 - Arbitrary File Upload# Date:...
View ArticleClik here to view.
WordPress Comments Import And Export CSV Injection
WordPress Comments Import and Export plugin versions prior to 2.0.4 suffer from a CSV injection vulnerability.MD5 | 67e4a86a4ed8cd20c3a9c0a3bf7ccb33Download# Exploit Title: Wordpress Plugin Comments...
View ArticleClik here to view.
WordPress iThemes Security SQL Injection
WordPress iThemes Security plugin versions prior to 7.0.3 suffer from a remote SQL injection vulnerability.MD5 | 9541755a02a703816251ce29c6ec9eaaDownload# Exploit Title: WordPress Plugin iThemes...
View ArticleClik here to view.
Foxit Reader 9.0.1.1049 Remote Code Execution
Foxit Reader version 9.0.1.1049 suffers from a remote code execution vulnerability.MD5 | 18c5cf283845b752e51836f38737a0c2Download%PDF 1 0 obj<</Pages 1 0 R /OpenAction 2 0 R>> 2 0...
View ArticleClik here to view.
Digisol DG-BR4000NG Buffer Overflow
Digisol DG-BR4000NG buffer overflow proof of concept exploit.MD5 | 020263d88e3f160d0ad5703b997c9b26Download# Exploit Title: DIGISOL DG-BR4000NG - Buffer Overflow (PoC)# Date 2018-06-24# Vendor...
View ArticleClik here to view.
WordPress Advanced Order Export For WooCommerce CSV Injection
WordPress Advanced Order Export for WooCommerce plugins versions prior to 1.5.4 suffer from a CSV injection vulnerability.MD5 | f9bc72c6e4c67f8e96b5b5deac1450b5Download# Exploit Title: Wordpress Plugin...
View ArticleClik here to view.
Intex Router N-150 Cross Site Request Forgery
Intex Router N-150 suffers from an add admin cross site request forgery vulnerability.MD5 | cb429e85cc29d6eecefe0542095d9e09Download# Exploit Title:aa Intex Router N-150 - Cross-Site Request Forgery...
View ArticleClik here to view.
Digisol DG-BR4000NG Cross Site Scripting
Digisol DG-BR4000NG suffers from a cross site scripting vulnerability.MD5 | 61d5541a4ac9cc31ba3c8777eeb61854Download# Exploit Title: DIGISOL DG-BR4000NG - Cross-Site Scripting# Date: 2018-06-24# Vendor...
View ArticleClik here to view.
Ecessa Edge EV150 10.7.4 Add Superuser Cross Site Request Forgery
Ecessa Edge EV150 version 10.7.4 suffers from an add superuser cross site request forgery vulnerability.MD5 | 32235352c43c1764ff3761997d4f28ebDownload<!--Ecessa Edge EV150 10.7.4 CSRF Add Superuser...
View ArticleClik here to view.
Ecessa WANWorx WVR-30 10.7.4 Add Superuser Cross Site Request Forgery
Ecessa WANWorx WVR-30 version 10.7.4 suffers from an add superuser cross site request forgery vulnerability.MD5 | f9ae008e6a2e97e05d2523eb4a0e7f95Download<!--Ecessa WANWorx WVR-30 10.7.4 CSRF Add...
View ArticleClik here to view.
Ecessa ShieldLink SL175EHQ 10.7.4 Add Superuser Cross Site Request Forgery
Ecessa ShieldLink SL175EHQ version 10.7.4 suffers from an add superuser cross site request forgery vulnerability.MD5 | 8a8c1de2a67b10c2994223ebb10d07b6Download<!--Ecessa ShieldLink SL175EHQ 10.7.4...
View Article