Clik here to view.
AdvanDate iCupid Dating Software 12.2 SQL Injection
AdvanDate iCupid Dating software version 12.2 suffers from a remote SQL injection vulnerability.MD5 | df23b824132b0a3759517fb05491eebcDownload# # # # ## Exploit Title: iCupid Dating Software 12.2 - SQL...
View ArticleClik here to view.
FreeBSD 10.3 Jail SHM Issue
FreeBSD jail incompletely protects the access to the IPC primitives. The 'allow.sysvipc' setting only affects IPC queues, leaving other IPC objects unprotected, making them reachable system-wide...
View ArticleClik here to view.
Philex CMS 0.2 Directory Traversal
Philex CMS version 0.2 suffers from a directory traversal vulnerability.MD5 | 2506b9c0aa524dc31cfbd3aa844da9b1DownloadTitle:=======Philex CMS - Directory Traversal Introduction:==============A content...
View ArticleClik here to view.
Microsoft Chakra JIT Server IRBuilder::Build Integer Overflow
The Microsoft Chakra JIT server suffers from an integer overflow in IRBuilder::Build.MD5 | a4a8941cfa0b53cfa91df56147d65240Download Microsoft Chakra JIT server integer overflow in IRBuilder::Build...
View ArticleClik here to view.
Microsoft Edge CInputDateTimeScrollerElement::_SelectValueInternal...
Microsoft Edge suffers from an out-of-bounds read in CInputDateTimeScrollerElement::_SelectValueInternal. The vulnerability has been confirmed on Windows 10 Enterprise 64-bit (OS version 1607, OS build...
View ArticleClik here to view.
Microsoft Edge 38.14393.1066.0 -...
EDB-ID: 42459Author: Google Security ResearchPublished: 2017-08-16CVE: CVE-2017-8644 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Out Of BoundsVulnerable App: N/A Source:...
View ArticleClik here to view.
Cisco AnyConnect Secure Mobility Client Software CVE-2017-6788 Cross Site...
Cisco AnyConnect Secure Mobility Client Software is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...
View ArticleClik here to view.
Microsoft Edge Charka PreVisitCatch Missing Call
Microsoft Edge Chakra does not call SetIsCatch for all cases in PreVisitCatch.MD5 | 46515fd1c1a80220b621f07b9b99321aDownloadMicrosoft Edge: Chakra: PreVisitCatch doesn't call SetIsCatch for all cases...
View ArticleClik here to view.
Microsoft Edge Source Fetch Out-Of-Bounds Access
Microsoft Edge suffers from an out-of-bounds access vulnerability when fetching source.MD5 | 701b7d08c5c0bd9f550ef032f9389f29DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Microsoft Edge Charka Failed Re-Parse
InterpreterStackFrame::ProcessLinkFailedAsmJsModule in Microsoft Edge Chakra incorrectly re-parses.MD5 | 65e0073a3d3deddfb8c73ca0f7f0cf9aDownload Microsoft Edge: Chakra:...
View ArticleClik here to view.
Microsoft Edge Chakra PushPopFrameHelper Incorrect Usage
Microsoft Edge Chakra suffers from an incorrect usage of PushPopFrameHelper in InterpreterStackFrame::ProcessLinkFailedAsmJsModule.MD5 | acec101c7b823cc6f8e22b1fe6ec1f01Download Microsoft Edge: Chakra:...
View ArticleClik here to view.
Microsoft Edge Chakra TryUndeleteProperty Incorrect Usage
Microsoft Edge Chakra suffers from an incorrect usage of TryUndeleteProperty.MD5 | 1f197a1d5f569cc871c7c7d4aebd5330Download Microsoft Edge: Chakra: Incorrect usage of TryUndeleteProperty...
View ArticleClik here to view.
Microsoft Edge Chakra Incorrect Jit Optimization
This is a follow-up finding that the fix for an incorrect jit optimization with TypedArray setter in Microsoft Edge Chakra may not be sufficient.MD5 | afbcee955491660e874dbdcf65f457b4DownloadMicrosoft...
View ArticleClik here to view.
Microsoft Edge Chakra JavascriptFunction::EntryCall Mishandled CallInfo
Microsoft Edge Charka does not handle CallInfo properly in JavascriptFunction::EntryCall.MD5 | ca7cefcfefb9812efa9d1102c48d1f49Download Microsoft Edge: Chakra: JavascriptFunction::EntryCall doesn't...
View ArticleClik here to view.
Microsoft Edge Chakra Uninitialized Arguments
Microsoft Edge Chakra suffers from an uninitialized arguments vulnerability.MD5 | 254b2f18f283725c45ea772937348381Download Microsoft Edge: Chakra: Uninitialized arguments CVE-2017-8640Here's a snippet...
View ArticleClik here to view.
Microsoft Edge Chakra Parser::ParseFncFormals Uninitialized Arguments
Microsoft Edge Chakra suffers from an uninitialized arguments vulnerability in Parser::ParseFncFormals with the "PNodeFlags::fpnArguments_overriddenInParam" flag.MD5 |...
View ArticleClik here to view.
Microsoft Edge Chakra EmitNew Integer Overflow
Microsoft Edge Chakra suffers from an integer overflow vulnerability in EmitNew.MD5 | 8345cf786d59f19382f074d30d3d7a64Download Microsoft Edge: Chakra: Integer overflow in EmitNew CVE-2017-8636The...
View ArticleClik here to view.
Microsoft Edge Chakra Incorrect Jit Optimization
Yet another finding that the fix for an incorrect jit optimization with TypedArray setter in Microsoft Edge Chakra may not be sufficient.MD5 | bdb1cf3e206e20716cc1331d5db8586bDownloadMicrosoft Edge:...
View ArticleClik here to view.
Adobe Flash Invoke Accesses Trait Out-Of-Bounds
The included proof of concept file causes the traits of an ActionScript object to be accessed out of bounds in Adobe Flash. This can probably lead to exploitable type confusion.MD5 |...
View ArticleClik here to view.
Photogallery Project 1.0 - SQL Injection
EDB-ID: 42462Author: Ihsan SencanPublished: 2017-08-17CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Photogallery Project 1.0 - Multiple Vulnerabilities # Dork: N/A # Date:...
View Article