Clik here to view.
OpenText Documentum Content Server - Arbitrary File Download Privilege...
EDB-ID: 43003Author: Andrey B. PanfilovPublished: 2017-10-17CVE: CVE-2017-15012 Type: WebappsPlatform: MultipleVulnerable App: N/A # Opentext Documentum Content Server (formerly known as EMC Documentum...
View ArticleClik here to view.
OpenText Documentum Content Server - dmr_content Privilege Escalation
EDB-ID: 43004Author: Andrey B. PanfilovPublished: 2017-10-17CVE: CVE-2017-15013 Type: WebappsPlatform: MultipleVulnerable App: N/A # Opentext Documentum Content Server (formerly known as EMC Documentum...
View ArticleClik here to view.
Linux Kernel - 'AF_PACKET' Use-After-Free
EDB-ID: 43010Author: SecuriTeamPublished: 2017-10-17CVE: N/A Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Source:...
View ArticleClik here to view.
GNU glibc CVE-2015-0235 Remote Heap Buffer Overflow Vulnerability
GNU glibc is prone to a heap-based buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts may...
View ArticleClik here to view.
Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability
Xalan-Java library is prone to a security-bypass vulnerability. Attackers can leverage this issue to bypass security restrictions and perform unauthorized actions; this may aid in launching further...
View ArticleClik here to view.
Career Portal 1.0 - SQL Injection
EDB-ID: 43011Author: 8bitsecPublished: 2017-10-17CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-17 # Exploit Author: 8bitsec # Vendor Homepage:...
View ArticleClik here to view.
Wordpress Plugin Car Park Booking - SQL Injection
EDB-ID: 43012Author: 8bitsecPublished: 2017-10-17CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-17 # Exploit Author: 8bitsec # Vendor Homepage:...
View ArticleClik here to view.
Interspire Email Marketer Authentication Bypass
Interspire Email Marketer versions prior to 6.1.6 suffered from an administrative authentication bypass vulnerability.MD5 | d16b312e6faf1afda94639ee5d1222efDownloadTitle:======Interspire Email Marketer...
View ArticleClik here to view.
Linksys E Series CSRF / XSS / Denial Of Service / Header Injection
Linksys E series devices suffer from cross site request forgery, cross site scripting, header injection, denial of service, and various other vulnerabilities.MD5 |...
View ArticleClik here to view.
Afian AB FileRun 2017.03.18 CSRF / Shell Upload / XSS / Redirection
Afian AB FileRun version 2017.03.18 suffers from cross site request forgery, cross site scripting, open redirection, remote shell upload, and various other vulnerabilities.MD5 |...
View ArticleClik here to view.
Afian AB FileRun 2017.03.18 - Multiple Vulnerabilities
EDB-ID: 43015Author: SEC ConsultPublished: 2017-10-18CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A ======================================================================= title: Multiple...
View ArticleClik here to view.
Linksys E Series - Multiple Vulnerabilities
EDB-ID: 43013Author: SEC ConsultPublished: 2017-10-18CVE: N/A Type: WebappsPlatform: CGIVulnerable App: N/A ======================================================================= title: Multiple...
View ArticleClik here to view.
Xen - Unbounded Recursion in Pagetable De-typing
EDB-ID: 43014Author: Google Security ResearchPublished: 2017-10-18CVE: N/A Type: DosPlatform: LinuxVulnerable App: N/A in PV domains. This is useful if a guest wants to use the self-referential...
View ArticleClik here to view.
Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution...
Multiple RedHat JBoss products are prone to remote code execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected...
View ArticleClik here to view.
Microsoft Game Definition File Editor 6.3.9600 - XML External Entity Injection
EDB-ID: 43017Author: hyp3rlinxPublished: 2017-10-19CVE: N/A Type: LocalPlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
Microsoft Windows GDFMaker 6.3.9600.16384 XXE Injection
Microsoft Windows Game Definition File Editor (GDFMaker) version 6.3.9600.16384 suffers from an XML external entity injection vulnerability.MD5 | c7d0ae4a7bf14a2d1e2cae2ae115040aDownload[+] Credits:...
View ArticleClik here to view.
Xen Unbounded Recursion In Pagetable De-Typing
Xen allows pagetables of the same level to map each other as readonly in PV domains. This is useful if a guest wants to use the self-referential pagetable trick for easy access to pagetables by mapped...
View ArticleClik here to view.
WordPress Car Park Booking SQL Injection
WordPress Car Park Booking plugin suffers from a remote SQL injection vulnerability.MD5 | eef7c64d55a3975b1e686ced7ec5a15fDownload# Exploit Title: Wordpress Plugin Car Park Booking - SQL Injection#...
View ArticleClik here to view.
Career Portal 1.0 SQL Injection
Career Portal version 1.0 suffers from a remote SQL injection vulnerability.MD5 | c35d9e9437faf629db8b4cbdeec660ccDownload# Exploit Title: Career Portal v1.0 - SQL Injection# Date: 2017-10-17# Exploit...
View ArticleClik here to view.
Apache Solr 7.0.1 XXE Injection / Code Execution
Apache Solar version 7.0.1 suffers from XML external entity injection and remote code execution vulnerabilities.MD5 | c5a11c70eb9d20e9abf2fb6d5efc3959DownloadFirst Vulnerability: XML External Entity...
View Article