Clik here to view.
Tor Browser 0.3.2.x Use-After-Free
Tor Browser versions 0.3.2.x before 0.3.2.10 suffer from a use-after-free vulnerability that can result in a denial of service condition.MD5 | 9d118821391301bd5355288fc73f49e1Download# Exploit Title:...
View ArticleClik here to view.
TOR Virtual Network Tunneling Tool 0.3.3.8
Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with...
View ArticleClik here to view.
Tor Browser < 0.3.2.10 - Use After Free (PoC)
EDB-ID: 44994Author: t4rkd3vilzPublished: 2018-07-09CVE: CVE-2018-0491 Type: DosPlatform: LinuxVulnerable App: N/A # Date: 09.07.2018 # Exploit Author: t4rkd3vilz # Vendor Homepage:...
View ArticleClik here to view.
GitList 0.6.0 - Argument Injection (Metasploit)
EDB-ID: 44993Author: MetasploitPublished: 2018-07-09CVE: N/A Type: RemotePlatform: PHPAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF), RemoteVulnerable App: # This module requires...
View ArticleClik here to view.
HP VAN SDN Controller - Root Command Injection (Metasploit)
EDB-ID: 44991Author: MetasploitPublished: 2018-07-09CVE: N/A Type: RemotePlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module requires...
View ArticleClik here to view.
Boxoft WAV to WMA Converter 1.0 - Local Buffer Overflow (SEH)
EDB-ID: 44989Author: AchillesPublished: 2018-07-09CVE: N/A Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: N/ATags: Local, Buffer OverflowVulnerable App: N/A # Date: 2018-07-08 # Software...
View ArticleClik here to view.
Linux/x86 - Kill Process Shellcode (20 bytes)
EDB-ID: 44990Author: Nathu NandwaniPublished: 2018-07-09CVE: N/A Type: ShellcodePlatform: Linux_x86Shellcode: Download / View Raw Shellcode Size: 20 bytes Exploit Title: Kill PID shellcode Date:...
View ArticleClik here to view.
HID discoveryd - command_blink_on Unauthenticated RCE (Metasploit)
EDB-ID: 44992Author: MetasploitPublished: 2018-07-09CVE: N/A Type: RemotePlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF), RemoteVulnerable App: N/A # This module...
View ArticleClik here to view.
Umbraco CMS SeoChecker Plugin 1.9.2 - Cross-Site Scripting
EDB-ID: 44988Author: Ahmed Elhady MohamedPublished: 2018-07-09CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: Cross-Site Scripting (XSS)Vulnerable App: N/A # Author Information...
View ArticleClik here to view.
Gitea 1.4.0 - Remote Code Execution
EDB-ID: 44996Author: Kacper SzurekPublished: 2018-07-04CVE: N/A Type: WebappsPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # pip install dulwich==0.19.0 from requests...
View ArticleClik here to view.
Oracle WebLogic 12.1.2.0 - RMI Registry UnicastRef Object Java...
EDB-ID: 44998Author: bobsecqPublished: 2018-07-07CVE: CVE-2017-3248 Type: WebappsPlatform: MultipleAliases: N/ATags: N/AVulnerable App: N/A # -*- coding: utf-8 -*- from argparse import...
View ArticleClik here to view.
Elektronischer Leitz-Ordner 10 - SQL Injection
EDB-ID: 44999Author: Jens RegelPublished: 2018-07-10CVE: N/A Type: WebappsPlatform: LinuxVulnerable App: N/A # Author: Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG # Software:...
View ArticleClik here to view.
WolfSight CMS 3.2 - SQL Injection
EDB-ID: 44997Author: Berk DusunurPublished: 2018-07-10CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Google Dork: N/A # Date: 2018-07-10 # Exploit Author: Berk Dusunur & Zehra Karabiber #...
View ArticleClik here to view.
OpenSSH < 6.6 SFTP - Command Execution
EDB-ID: 45001Author: SECFORCEPublished: 2018-03-20CVE: N/A Type: RemotePlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # The original discovery by Jann Horn:...
View ArticleClik here to view.
D-Link DIR601 2.02 - Credential Disclosure
EDB-ID: 45002Author: Thomas ZukPublished: 2018-07-10CVE: N/A Type: WebappsPlatform: HardwareVulnerable App: N/A # Date: 2018-07-10 # Exploit Author: Richard Rogerson # Vendor Homepage:...
View ArticleClik here to view.
SAP BusinessObjects Business Intelligence Suite CVE-2018-2431 Cross Site...
SAP BusinessObjects Business Intelligence Suite is prone to an cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Remote attackers can exploit this issue to...
View ArticleClik here to view.
Oracle WebLogic 12.1.2.0 Remote Code Execution
Oracle WebLogic version 12.1.2.0 RMI registry UnicastRef object java deserialization remote code execution exploit.MD5 | 0b5ec20bae66318da834b3ae3e8f3db3Download#!/usr/bin/python# -*- coding: utf-8...
View ArticleClik here to view.
Facebook For Android Crash
Facebook Messenger for Android can be crashed via the application's status check. This can be exploited by an MITM attacker via intercepting that call and returning a large amount of data. This happens...
View ArticleClik here to view.
VLC Media Player 2.2.8 Arbitrary Code Execution
VLC Media Player version 2.2.8 use-after-free arbitrary code execution proof of concept exploit.MD5 | 66b5b85b319862615c1b1ff3c0a7c287DownloadMessage Classification: Restricted# Exploit Title: VLC...
View ArticleClik here to view.
WolfSight CMS 3.2 SQL Injection
WolfSight CMS version 3.2 suffers from a remote SQL injection vulnerability.MD5 | 9d9a26e6ccda04e1605c749f589ebc1aDownload# Exploit Title: WolfSight CMS 3.2 - SQL Injection# Google Dork: N/A# Date:...
View Article