This Metasploit module triggers an arbitrary shared library load vulnerability in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This Metasploit module requires valid credentials, a writeable folder in an accessible share, and knowledge of the server-side path of the writeable folder. In some cases, anonymous access combined with common filesystem locations can be used to automatically exploit this vulnerability.
467d157dc1bbf3f036cc0f63f280fa7c6781fd91ca452708aab53393895c5ba1
JAD Java Decompiler version 1.5.8e suffers from a local buffer overflow vulnerability.
1f4316b80457aecc9ab1d4b63dda9a18973e331e719518b4ab41a40f4dcfe2b4
WordPress AffiliateWP plugin versions 2.0.8 and below suffer from a cross site scripting vulnerability.
3ca1fb705331fe04e70541cad5cf109d1809f68a6f5adb5bb5a70e9bc531215d
WordPress Huge-IT Video Gallery plugin version 2.0.4 suffers from a remote SQL injection vulnerability.
18673ff6c4b5932c1002b8927b318cfd610e2f7db98ea60fc08d03be57d0fc05
WordPress All In One Schema.org Rich Snippets plugin versions 1.4.1 and below suffer from a cross site scripting vulnerability.
767cb75a0f15f68cae52091db7a8923f0807038c3700134bf985a7567713facf
Aries QWR-1104 Wireless-N router suffers from a cross site scripting vulnerability.
e5003c524c37548060cc231edf0fc24067399ffb00f05fa475cf690683a5c17d
Through fuzzing, a number of ways to crash the Microsoft MsMpEng service has been been discovered.
05eda4b73f73c98a155075088def6208b82e5ecb6e7eba708c3a910c322807a5
This repo from github contains a SambaCry exploit and vulnerable container.
1575fdf58a5dd6e72a33a6dc0648196f99226950d46f8032e30b023c560a06ca
WordPress Social-Stream versions 1.6.0 and below suffer from a Twitter API OAuth secret disclosure vulnerability.
d9397402a5e15bf1dfe27b9c6cfe4a24c02c4ffc37e440343f5c6850e3501b41
Sandboxie version 5.18 suffers from a local denial of service vulnerability.
fd92cb6374cffa34d5f607414474570f094bcc34f9157c3f8a8a27dbc464daa0
D-Link DCS Series cameras implement a weak crossdomain.xml.
50e8e437260ea37095cf7b417235509abfde4253d1cec1226635f8f3a293b3cb
Google Chrome version 60.0.3080.5 V8 suffers from an out-of-bounds write vulnerability in the javascript engine.
5df4f83fe15024aae18571a2cc409b7b22f94289acd7c97a542434dedf996134
Sunell IPCAMERA IPR54/14AKDN(II)/13 suffers from a session ID enumeration vulnerability.
60ce71b07534bee0f99b4630549295320551670713e34c6613132c5fce336ac9
Sunell IPCAMERA IPR54/14AKDN(II)/13 suffers from a reflective cross site scripting vulnerability.
27e65ecc5f751798e2ae87d44a144b020245e5f7941b691a517e197e2a0004f7
Sunell IPR54/14AKDN(II)/13 suffers from a persistent cross site scripting vulnerability.
08008390429a0ee6a1e0891e649db3e2a21176e7ef4304f3a8a4f77d54e03e3d
OpenVPN Access Server version 2.1.4 suffers from a CRLF injection vulnerability.
10cc7e203caeb7b199f43ae4c5d590f5d394419a9369a6b7bdb1eff2af577d79
WebKit suffers from a universal cross site scripting vulnerability via Editor::Command::execute.
b403bbb69d0b3e963bb638919bb8560364e34988c717b45ebc3717df3f1fae75
WebKit enqueuePageshowEvent and enqueuePopstateEvent suffer from a universal cross site scripting vulnerability.
af070e1fb01da40b85a05e4da984fc2dfe9f6be669db41ba609b0417423c3c48
Mozilla Firefox suffers from a memory disclosure vulnerability in ConvolvPixel. o.
27c3bf47249dbc1cd71b07f2da059c87632637f14473ab6fde848168f7d09b8c
WebKit suffers from a variable theft issue in FrameLoader::clear via page navigation.
b2f1425e0cc7f6da7a5294cfe11ef3cbea388ebea94dcf08b5676216e6615267
Microsoft MsMpEng suffers from multiple privilege escalation vulnerabilities.
b57fb4337aa82768637ff7b8efdf2fef6727f821ca5bfd34a0c7ad06e2c615e7
WebKit suffers from a cross site scripting vulnerability in HTMLObjectElement::updateWidget.
5e1a9a4c59df034aade4206f4dcb044b4ce264d6f3524ad57ed2b3849dbbf858
WebKit suffers from a use-after-free vulnerability in WebCore::FrameView::scheduleRelayout.
2d5a02001638af79822a62eb31b6aeafa5e4f683b79a12b2a326a9028975b890
gfxTextRun in Mozilla Firefox suffers from a heap overflow vulnerability.
ca7dc76b101bf1ce0d07c158ddb9d23bd3cc4262052161ffea414b47ab83a329
Skia Graphic Library suffers from a heap overflow vulnerability.
a91b4dffb9db505d11d1a2211a841657e91151b846608640c0c1fc28cfbd150b