Clik here to view.
DataTaker DT80 dEX 1.50.012 - Information Disclosure
EDB-ID: 42313Author: Nassim AsrirPublished: 2017-07-11CVE: CVE-2017-11165 Type: WebappsPlatform: HardwareVulnerable App: N/A [+] Credits / Discovery: Nassim Asrir [+] Author Contact: wassline@gmail.com...
View ArticleClik here to view.
RSA Identity Governance And Lifecycle File Upload / XSS
Multiple RSA Identity Governance and Lifecycle products suffer from remote file upload and cross site scripting vulnerabilities. Affected products include RSA Identity Governance and Lifecycle versions...
View ArticleClik here to view.
RSA Authentication Manager 8.2 SP1 Cross Site Scripting
RSA Authentication Manager versions 8.2 SP1 and below suffer from a stored cross site scripting vulnerability.MD5 | ae44f3bc0782d5d9b8cbf572c21a6d09Download-----BEGIN PGP SIGNED MESSAGE-----Hash:...
View ArticleClik here to view.
PyCharm 2-0 / 2017 Buffer Overflow
PyCharm 2-0 / 2017 suffers from a command-line buffer overflow vulnerability.MD5 | e3f4c8185ee0692be23f0a6c867e5048Download# PyCharm 2-0 / 2017 Command Line Buffer Overflow# Author: Sultan...
View ArticleClik here to view.
Sitecore CMS 8.2 Cross Site Scripting / File Disclosure
Sitecore CMS version 8.2 suffers from cross site scripting and file disclosure vulnerabilities.MD5 | 4858233c0ae712bdc0b065aba7a0cab1DownloadExploit title: Sitecore CMS v8.2 multiple...
View ArticleClik here to view.
Dasan Networks GPON ONT WiFi Router H64X Series Authentication Bypass
Dasan Networks GPON ONT WiFi Router H64X Series does not properly perform authentication and authorization, allowing it to be bypassed through cookie manipulation. Setting the Cookie 'Grant' with value...
View ArticleClik here to view.
Dasan Networks GPON ONT WiFi Router H64X Series Cross Site Request Forgery
Dasan Networks GPON ONT WiFi Router H64X Series suffers from a cross site request forgery vulnerability.MD5 | f8789c203d45686a1478547c8f7ef85bDownloadDasan Networks GPON ONT WiFi Router H64X Series...
View ArticleClik here to view.
Apache Open Meetings 3.2.0 Cross Site Scripting
Apache Open Meetings version 3.2.0 suffers from a cross site scripting vulnerability.MD5 | 9e8232ac589f00d065c50a41985205d0DownloadSeverity: HighVendor: The Apache Software FoundationVersions Affected:...
View ArticleClik here to view.
Vodafone Italia Webmail Cross Site Scripting
Vodafone Italia's webmail system suffers from a cross site scripting vulnerability that can be leveraged via an incoming email.MD5 | d0d7db3a1272f4db6715ac4f88d6f69fDownload# Title: Vodafone Webmail -...
View ArticleClik here to view.
Dasan Networks GPON ONT WiFi Router H64X Series Privilege Escalation
Dasan Networks GPON ONT WiFi Router H64X Series suffers from a privilege escalation vulnerability.MD5 | 870b4516ab12344f5a3e0b816499e21aDownloadDasan Networks GPON ONT WiFi Router H64X Series Privilege...
View ArticleClik here to view.
Apache OpenMeetings 1.0.0 Denial Of Service
Apache OpenMeetings version 1.0.0 suffers from a denial of service vulnerability.MD5 | 5721ef0c587da867f957a3a7b39ef16bDownloadSeverity: LowVendor: The Apache Software FoundationVersions Affected:...
View ArticleClik here to view.
Dasan Networks GPON ONT WiFi Router H64X Series System Config Download
Dasan Networks GPON ONT WiFi Router H64X Series suffers from a system configuration download vulnerability.MD5 | 32c6926d4b55f78a96e9330f3313ccb5DownloadDasan Networks GPON ONT WiFi Router H64X Series...
View ArticleClik here to view.
PHPMailer CVE-2016-10045 Incomplete Fix Remote Code Execution Vulnerability
PHPMailer is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the application. Failed exploit attempts will result in...
View ArticleClik here to view.
Juniper ScreenOS Multiple HTML Injection Vulnerabilities
Juniper ScreenOS is prone to multiple HTML-injection vulnerabilities. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially...
View ArticleClik here to view.
Apache Struts 2.3.x Showcase - Remote Code Execution (PoC)
EDB-ID: 42324Author: Vex WooPublished: 2017-07-07CVE: CVE-2017-9791 Type: WebappsPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # -*- coding: utf-8 -*- # Just a demo...
View ArticleClik here to view.
Counter Strike: Condition Zero - '.BSP' Map File Code Execution
EDB-ID: 42325Author: Grant HernandezPublished: 2017-07-07CVE: N/A Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Counter Strike: Condition Zero BSP map...
View ArticleClik here to view.
WDTV Live SMP 2.03.20 - Remote Password Reset
EDB-ID: 42326Author: Sw1tChPublished: 2017-07-14CVE: N/A Type: WebappsPlatform: HardwareVulnerable App: N/A ## WDTV Live SMP Remote Password Reset Vulnerability ##...
View ArticleClik here to view.
Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution
EDB-ID: 42327Author: Rh0Published: 2017-07-14CVE: CVE-2016-9079... Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A <!-- FULL ASLR AND DEP BYPASS USING...
View ArticleClik here to view.
Orion Elite Hidden IP Browser Pro 7.9 OpenSSL / Tor / Man-In-The-Middle
Orion Elite Hidden IP Browser Pro versions 1.0 through 7.9 have insecure versions of Tor and OpenSSL included and also suffer from man-in-the-middle vulnerabilities.MD5 |...
View ArticleClik here to view.
Apache Struts 2.3.x Showcase Remote Code Execution
Apache Struts 2.3.x Showcase remote code execution proof of concept exploit.MD5 | b127e7bfe5e4cb4867bb2f3d6c8b1d64Download#!/usr/bin/python# -*- coding: utf-8 -*-# Just a demo for CVE-2017-9791import...
View Article