Clik here to view.
PTCEvolution 5.50 - SQL Injection
EDB-ID: 42733Author: Ihsan SencanPublished: 2017-09-15CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: PTCEvolution 5.50 - SQL Injection # Dork: N/A # Date: 15.09.2017 # Vendor...
View ArticleClik here to view.
Contact Manager 1.0 - 'femail' Parameter SQL Injection
EDB-ID: 42734Author: Ihsan SencanPublished: 2017-09-15CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Contact Manager 1.0 - SQL Injection # Dork: N/A # Date: 15.09.2017 # Vendor...
View ArticleClik here to view.
Netdecision 5.8.2 - Local Privilege Escalation
EDB-ID: 42735Author: Peter BarisPublished: 2017-09-16CVE: CVE-2017-14311 Type: LocalPlatform: WindowsVulnerable App: N/A /* # Exploit Title: Netdecision 5.8.2 - Local Privilege Escalation -...
View ArticleClik here to view.
UTStar WA3002G4 ADSL Broadband Modem - Authentication Bypass
EDB-ID: 42739Author: Gem GeorgePublished: 2017-09-15CVE: CVE-2017-14243 Type: WebappsPlatform: HardwareVulnerable App: N/A # CVE: CVE-2017-14243 # Date: 15-09-2017 # Exploit Author: Gem George # Author...
View ArticleClik here to view.
DigiAffiliate 1.4 - Cross-Site Request Forgery (Update Admin)
EDB-ID: 42738Author: Ihsan SencanPublished: 2017-09-18CVE: N/A Type: WebappsPlatform: ASPVulnerable App: N/A # # # # # # Exploit Title: DigiAffiliate 1.4 - Cross-Site Request Forgery (Update Admin) #...
View ArticleClik here to view.
Digirez 3.4 - Cross-Site Request Forgery (Update Admin)
EDB-ID: 42736Author: Ihsan SencanPublished: 2017-09-18CVE: N/A Type: WebappsPlatform: ASPVulnerable App: N/A # # # # # # Exploit Title: Digirez 3.4 - Cross-Site Request Forgery (Update User &...
View ArticleClik here to view.
iBall ADSL2+ Home Router - Authentication Bypass
EDB-ID: 42740Author: Gem GeorgePublished: 2017-09-18CVE: CVE-2017-14244 Type: WebappsPlatform: HardwareVulnerable App: N/A # CVE: CVE-2017-14244 # Date: 15-09-2017 # Exploit Author: Gem George # Author...
View ArticleClik here to view.
Digileave 1.2 - Cross-Site Request Forgery (Update Admin)
EDB-ID: 42737Author: Ihsan SencanPublished: 2017-09-18CVE: N/A Type: WebappsPlatform: ASPVulnerable App: N/A # # # # # # Exploit Title: Digileave 1.2 - Cross-Site Request Forgery (Update User &...
View ArticleClik here to view.
Microsoft Windows Kernel - 'win32k!NtGdiGetGlyphOutline' Pool Memory Disclosure
EDB-ID: 42741Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8680 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel - 'nt!NtSetIoCompletion / nt!NtRemoveIoCompletion'...
EDB-ID: 42743Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8708 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel - 'win32k!NtGdiGetPhysicalMonitorDescription' Stack...
EDB-ID: 42742Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8681 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel - 'win32k!NtGdiDoBanding' Stack Memory Disclosure
EDB-ID: 42749Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8687 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel - 'win32k!NtGdiEngCreatePalette' Stack Memory...
EDB-ID: 42748Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8685 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel - 'win32k!NtGdiGetFontResourceInfoInternalW' Stack...
EDB-ID: 42747Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8684 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel - 'win32k!NtQueryCompositionSurfaceBinding' Stack...
EDB-ID: 42750Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8678 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
Microsoft Windows Kernel win32k.sys TTF Font Processing - Out-of-Bounds Read...
EDB-ID: 42746Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8683 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Out Of BoundsVulnerable App: N/A We have...
View ArticleClik here to view.
Apache - HTTP OPTIONS Memory Leak
EDB-ID: 42745Author: Hanno BockPublished: 2017-09-18CVE: CVE-2017-9798 Type: WebappsPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Optionsbleed proof of concept test #...
View ArticleClik here to view.
Microsoft Windows Kernel win32k.sys TTF Font Processing - Out-of-Bounds...
EDB-ID: 42744Author: Google Security ResearchPublished: 2017-09-18CVE: CVE-2017-8682 Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Out Of BoundsVulnerable App: N/A We have...
View ArticleClik here to view.
HPE < 7.2 - Java Deserialization
EDB-ID: 42756Author: Raphael KuhnPublished: 2017-09-19CVE: CVE-2016-4372 Type: RemotePlatform: JavaVulnerable App: N/A...
View ArticleClik here to view.
ZKTeco ZKTime Web 2.0.1.12280 Cross Site Request Forgery
ZKTeco ZKTime Web version 2.0.1.12280 suffers from a cross site request forgery vulnerability.MD5 | 1ebd8d29476f9a7cfd4912a6b57b2711Download*Vulnerability Type*: Cross Site Request Forgery...
View Article