Clik here to view.
WAGO PFC 200 Series Authentication Bypass
WAGO PFC 200 Series suffers from multiple unauthenticated access bypass vulnerabilities.MD5 | e2abe1666aac18721e912c338c5dd1a2DownloadSEC Consult Vulnerability Lab Security Advisory < 20171130-0...
View ArticleClik here to view.
OpenEMR 5.0.0 Command Injection / Cross Site Scripting
OpenEMR version 5.0.0 suffers from code execution and cross site scripting vulnerabilities.MD5 | ae3d7e59300638cb1a92e34e6480a979DownloadSEC Consult Vulnerability Lab Security Advisory < 20171130-1...
View ArticleClik here to view.
TOR Virtual Network Tunneling Tool 0.3.1.9
Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with...
View ArticleClik here to view.
Multiple Cisco Nexus Series Switches CVE-2017-12342 Local Code Execution...
Multiple Cisco Nexus Series Switches are prone to a local code-execution vulnerability. A local attacker can exploit this issue to execute arbitrary code on the underlying host operating system. This...
View ArticleClik here to view.
Wireshark 'epan/dissectors/packet-iwarp-mpa.c' Denial of Service Vulnerability
Wireshark is prone to a remote denial-of-service vulnerability because it fails to properly handle certain types of packets. An attacker can leverage this issue to crash the affected application,...
View ArticleClik here to view.
Wireshark 'epan/dissectors/packet-netbios.c' Denial of Service Vulnerability
Wireshark is prone to a remote denial-of-service vulnerability because it fails to properly handle certain types of packets. An attacker can leverage this issue to crash the affected application,...
View ArticleClik here to view.
Geovap Reliance SCADA CVE-2017-16721 Cross Site Scripting Vulnerability
Geovap Reliance SCADA is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
View ArticleClik here to view.
Linux Kernel CVE-2017-1000405 Local Race Condition Vulnerability
The Linux Kernel is prone to a local race-condition vulnerability. An attacker can exploit this issue to modify arbitrary files in the context of the affected system or cause denial-of-service...
View ArticleClik here to view.
Perspective ICM Investigation & Case 5.1.1.16 - Privilege Escalation
EDB-ID: 43210Author: Konstantinos AlexiouPublished: 2017-12-05CVE: CVE-2017-11319 Type: LocalPlatform: WindowsVulnerable App: N/A # Exploit Title: Privilege Escalation - Perspective ICM Investigation...
View ArticleClik here to view.
VX Search 10.2.14 - 'command_name' Buffer Overflow
EDB-ID: 43209Author: W01fier00tPublished: 2017-12-05CVE: N/A Type: RemotePlatform: WindowsVulnerable App: print "*** VX Search Enterprise v10.2.14 Buffer Overflow (SEH) ***\n" # Exploit Title : VX...
View ArticleClik here to view.
IBM Sterling B2B Integrator CVE-2017-1482 Cross Site Scripting Vulnerability
IBM Sterling B2B Integrator is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
View ArticleClik here to view.
Techno Portfolio Management Panel - 'id' SQL Injection
EDB-ID: 43211Author: Ihsan SencanPublished: 2017-12-05CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Exploit Title: Techno - Portfolio Management Panel 1.0 - SQL Injection # Dork: N/A # Date:...
View ArticleClik here to view.
Readymade Classifieds Script 1.0 - SQL Injection
EDB-ID: 43212Author: Ihsan SencanPublished: 2017-12-05CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: SQL Injection (SQLi)Vulnerable App: N/A # Exploit Title: Readymade...
View ArticleClik here to view.
Amazon Audible DLL Hijacking
Amazon Audible suffers from a dll hijacking vulnerability.MD5 | ae9d60bd3397826b75d540aa43330e47DownloadAloha,*Introduction:*Vendor: AmazonAffected Product: Audible Software for Windows PCFixed in:...
View ArticleClik here to view.
Arq Backup 5.9.6 Local Root Privilege Escalation
Arq Backup versions 5.9.6 and below suffer from a local root privilege escalation vulnerability.MD5 | 2cf34b399d49d64d0321379e8239a52eDownloadArq Backup from Haystack Software is a great application...
View ArticleClik here to view.
Arq Backup 5.9.7 Local Root Privilege Escalation
Arq Backup versions 5.9.7 and below suffer from a local root privilege escalation vulnerability.MD5 | 6e034780e44ad140d984b98d2baff8d8DownloadAs well as the other bugs affecting Arq <= 5.9.6 there...
View ArticleClik here to view.
WordPress Z-URL Preview 1.6.1 Cross Site Scripting
WordPress Z-URL Preview plugin version 1.6.1 suffers from a persistent cross site scripting vulnerability.MD5 | 2049f91b261ca0923e0064f03667d973DownloadClass Input Validation ErrorRemote YesCredit...
View ArticleClik here to view.
Claymore's Dual Miner 10.1 Stack Buffer Overflow
Claymore's Dual ETH + DCR/SC/LBC/PASC GPU Miner versions 10.1 and below suffer from a stack buffer overflow vulnerability.MD5 | b5b0150ca62d32caa7710ac0b8863a4cDownloadAuthor:...
View ArticleClik here to view.
VirtualBox Man-In-The-Middle
VirtualBox suffers from a remote code execution vulnerability due to downloading updates over HTTP.MD5 | ec205f1c7d32d9c26e1cabb826548444DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
WordPress Smart Marketing SMS And Newsletters Forms 1.1.1 XSS
WordPress Smart Marketing SMS and Newsletters Forms plugin version 1.1.1 suffers from a persistent cross site scripting vulnerability.MD5 | 107d4a628f05b49647ad046218a61ea0DownloadClass Input...
View Article