Clik here to view.
tnftp - 'savefile' Arbitrary Command Execution (Metasploit)
EDB-ID: 43112Author: MetasploitPublished: 2017-11-03CVE: CVE-2014-8517 Type: RemotePlatform: UnixAliases: N/AAdvisory/Source: LinkTags: Metasploit FrameworkVulnerable App: N/A # This module requires...
View ArticleClik here to view.
GraphicsMagick - Memory Disclosure / Heap Overflow
EDB-ID: 43111Author: SecuriTeamPublished: 2017-11-03CVE: CVE-2017-16352... Type: DosPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A The following advisory describes two...
View ArticleClik here to view.
Ladon Framework for Python 0.9.40 - XML External Entity Expansion
EDB-ID: 43113Author: RedTeam PentestingPublished: 2017-11-03CVE: N/A Type: WebappsPlatform: XMLAliases: N/AAdvisory/Source: LinkTags: XML External Entity (XXE)Vulnerable App: Attackers who can send...
View ArticleClik here to view.
IBM OpenPages CVE-2016-3048 Cross Site Scripting Vulnerability
IBM OpenPages is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
View ArticleClik here to view.
HP Performance Center CVE-2017-14359 Unspecified Cross Site Scripting...
HP Performance Center is prone to an unspecified cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Remote attackers can exploit this issue to execute...
View ArticleClik here to view.
GNU Binutils CVE-2017-15023 Remote Denial of Service Vulnerability
GNU Binutils is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. GNU Binutils 2.29 is vulnerable; other versions may also be...
View ArticleClik here to view.
GNU Binutils CVE-2017-15939 Incomplete Fix Remote Denial of Service...
GNU Binutils is prone to a denial-of-service vulnerability. Note: This issue is the result of an incomplete fix for the issue described in BID 101611 (GNU Binutils CVE-2017-15023 Remote Denial of...
View ArticleClik here to view.
GNU Binutils CVE-2017-15938 Remote Denial of Service Vulnerability
GNU Binutils is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. GNU Binutils 2.29 is vulnerable; other versions may also be...
View ArticleClik here to view.
GNU Binutils CVE-2017-15996 Multiple Denial of Service Vulnerabilities
GNU Binutils is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to cause a denial-of-service condition. GNU Binutils 2.29 is vulnerable; other versions may...
View ArticleClik here to view.
Oracle PeopleSoft Enterprise PeopleTools Remote Code Execution
Oracle PeopleSoft Enterprise PeopleTools versions prior to 8.55 suffer from a remote code execution vulnerability.MD5 | 386817b75cfab78cda1a360f8acbe438Download#!/usr/bin/python3# Oracle PeopleSoft...
View ArticleClik here to view.
GraphicsMagick Memory Disclosure / Heap Overflow
GraphicsMagick suffers from memory disclosure and heap overflow vulnerabilities.MD5 | 4c20de7dd05ba1f7488b1f5fb80a4f1cDownload'''Vulnerabilities summaryThe following advisory describes two (2)...
View ArticleClik here to view.
WordPress JTRT Responsive Tables 4.1 SQL Injection
WordPress JTRT Responsive Tables plugin version 4.1 suffers from a remote SQL injection vulnerability.MD5 | 68e2e59e2090580701cdb76d1c40d401Download# Exploit Title: JTRT Responsive Tables 4.1 a...
View ArticleClik here to view.
Tor Browser 7.0.8 IP Address Leak
TorBrowser versions 7.0.8 and below for Mac OS X and Linux are affected by a critical security issue. According to the Tor Project, further details will be released in the near future. Due to a Firefox...
View ArticleClik here to view.
Splunk 6.6.x Local Privilege Escalation
Splunk version 6.6.x suffers from a local privilege escalation vulnerability. Splunk can be configured to run as a non-root user. However, that user owns the configuration file that specifies the user...
View ArticleClik here to view.
Avaya IP Office (IPO) 10.1 Active-X Buffer Overflow
Avaya IP Office (IPO) versions 9.1.0 through 10.1 suffer from an active-x buffer overflow vulnerability.MD5 | 2f1f9921cb68a6eaeba533573958d1b5Download[+] Credits: John Page (aka hyp3rlinx) [+] Website:...
View ArticleClik here to view.
Avaya IP Office (IPO) 10.1 Soft Console Remote Buffer Overflow
Avaya IP Office (IPO) versions 9.1.0 through 10.1 suffer from a soft console remote buffer overflow vulnerability.MD5 | 862ebfc960f33b8449d9f1fc7496e388Download[+] Credits: John Page (aka hyp3rlinx)...
View ArticleClik here to view.
Ipswitch WS_FTP Professional < 12.6.0.3 - Local Buffer Overflow (SEH)
EDB-ID: 43115Author: Kevin McGuiganPublished: 2017-11-03CVE: CVE-2017-16513 Type: DosPlatform: WindowsVulnerable App: N/A #Title: Ipswitch WS_FTP Professional Local Buffer Overflow (SEH) #Author: Kevin...
View ArticleClik here to view.
WordPress Plugin Userpro < 4.9.17.1 - Authentication Bypass
EDB-ID: 43117Author: Colette ChamberlandPublished: 2017-11-04CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Google Dork: inurl:/plugins/userpro # Date: 11.04.2017 # Exploit Author: Colette...
View ArticleClik here to view.
Actiontec C1000A Modem - Backdoor Account
EDB-ID: 43118Author: Joseph McDonaghPublished: 2017-11-04CVE: N/A Type: RemotePlatform: HardwareVulnerable App: N/A # Google Dork: NA # Date: 11/04/2017 # Exploit Author: Joseph McDonagh # Vendor...
View ArticleClik here to view.
Debut Embedded httpd 1.20 - Denial of Service
EDB-ID: 43119Author: z00nPublished: 2017-11-02CVE: CVE-2017-16249 Type: DosPlatform: HardwareVulnerable App: N/A # Date: 11/02/2017 # Exploit Author: z00n (@0xz00n) # Vendor Homepage:...
View Article