Clik here to view.
Avaya OfficeScan (IPO) < 10.1 - ActiveX Buffer Overflow
EDB-ID: 43120Author: hyp3rlinxPublished: 2017-11-05CVE: CVE-2017-12969 Type: DosPlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
Avaya OfficeScan (IPO) < 10.1 - 'SoftConsole' Buffer Overflow (SEH)
EDB-ID: 43121Author: hyp3rlinxPublished: 2017-11-05CVE: CVE-2017-11309 Type: RemotePlatform: WindowsVulnerable App: N/A [+] Website: hyp3rlinx.altervista.org [+] Source:...
View ArticleClik here to view.
IBM OpenPages CVE-2017-1147 Cross Site Scripting Vulnerability
IBM OpenPages is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
View ArticleClik here to view.
Logitech Media Server 7.9.0 - 'Radio URL' Cross-Site Scripting
EDB-ID: 43123Author: Dewank PantPublished: 2017-11-03CVE: CVE-2017-16568 Type: WebappsPlatform: MultipleVulnerable App: N/A # Shodan Dork: Search Logitech Media Server # Date: 11/03/2017 # Exploit...
View ArticleClik here to view.
Logitech Media Server 7.9.0 - 'favorites' Cross-Site Scripting
EDB-ID: 43122Author: Dewank PantPublished: 2017-11-03CVE: CVE-2017-16567 Type: WebappsPlatform: MultipleVulnerable App: N/A # Shodan Dork: Search Logitech Media Server # Date: 11/03/2017 # Exploit...
View ArticleClik here to view.
SMPlayer 17.11.0 - '.m3u' Buffer Overflow (PoC)
EDB-ID: 43124Author: bzyoPublished: 2017-11-05CVE: N/A Type: DosPlatform: WindowsVulnerable App: N/A # # Exploit Author: bzyo # Twitter: @bzyo_ # Exploit Title: SMPlayer 17.11.0 - '.m3u' Crash (PoC) #...
View ArticleClik here to view.
WordPress Ultimate Form Builder Lite Plugin 'wp-admin/admin-ajax.php' SQL...
The Ultimate Form Builder Lite plugin for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...
View ArticleClik here to view.
Ayukov NFTPD CVE-2017-15222 Stack Buffer Overflow Vulnerability
Ayukov NFTPD is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers can exploit this issue to execute arbitrary...
View ArticleClik here to view.
Foxit Reader CVE-2017-10948 Use After Free Remote Code Execution Vulnerability
Foxit Reader is prone to a remote code-execution vulnerability. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the user running the application....
View ArticleClik here to view.
Multiple MitraStar Routers CVE-2017-16523 Local Privilege Escalation...
Multiple MitraStar routers are prone to a local privilege-escalation vulnerability. A local attacker may exploit this issue to execute arbitrary commands with root privileges.MitraStar DSL-100HN-T1...
View ArticleClik here to view.
Avaya IP Office Contact Center CVE-2017-11309 Remote Buffer Overflow...
Avaya IP Office Contact Center is prone to a remote buffer-overflow vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the user. Failed attempts will...
View ArticleClik here to view.
Linux Kernel 4.13 - 'waitid()' SMEP/SMAP Privilege Escalation
EDB-ID: 43127Author: sallsPublished: 2017-11-06CVE: CVE-2017-5123 Type: LocalPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A // By Chris Salls (twitter.com/chris_salls) //...
View ArticleClik here to view.
PCRE CVE-2017-16231 Local Stack Buffer Overflow Vulnerability
PCRE is prone to a local stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers can exploit this issue to execute arbitrary...
View ArticleClik here to view.
IBM BigFix Platform CVE-2017-1221 Security Weakness
IBM BigFix Platform is prone to a security weakness. Successfully exploiting this issue may allow attackers to bypass security mechanism or to gain access to sensitive information. This may lead to...
View ArticleClik here to view.
Linux Soft Exploit Suggester 0.6
linux-soft-exploit-suggester finds exploits for all vulnerable software in a system helping with the privilege escalation. It focuses on software packages instead of Kernel vulnerabilities.MD5 |...
View ArticleClik here to view.
Dialog Mobile Broadband 23.015.11.01.297 DLL Hijacking
Dialog Mobile Broadband version 23.015.11.01.297 suffers from a dll hijacking vulnerability.MD5 | d50ba80bd092d2bcf2040522c57ed047DownloadVulnerable software .......................... Dialog Mobile...
View ArticleClik here to view.
Zoho ManageEngine Applications Manager 13 SQL Injection
Zoho ManageEngine Applications Manager version 13 suffers from multiple post-authentication remote SQL injection vulnerabilities.MD5 | 8115dc4d1bf7c179bd4ceb7ff2fb80dfDownloadManageEngine Applications...
View ArticleClik here to view.
web2Project 3.3 Cross Site Scripting
web2Project version 3.3 suffers from a cross site scripting vulnerability.MD5 | 4e8e7b7c29e31c60bed470d5f0f52883Download___________________________________________________|| Exploit Title: web2Project...
View ArticleClik here to view.
CoolPlayer+ Portable 2.19.6 Stack Overflow
CoolPlayer+ Portable version 2.19.6 stack overflow exploit with ASLR bypass and a bind shell.MD5 | 7aaf5691cd3da9557d896e0e81599b4fDownload# Exploit Title: CoolPlayer+ Portable 2.19.6 Stack Overflow...
View ArticleClik here to view.
FreeFloat FTP Server 1.0 HOST Buffer Overflow
FreeFloat FTP Server version 1.0 HOST buffer overflow exploit with ASLR bypass.MD5 | 279ef236aabe94105640f6b282f744beDownload#!/usr/bin/python# Exploit Title: FreeFloat FTP Server HOST Buffer Overflow...
View Article