Showing 26 - 50 of 194

Files

Samba is_known_pipename() Arbitrary Module Load: Posted May 27, 2017; Authored by H D Moore, Tavis Ormandy, Brendan Coles, steelo | Site metasploit.com; This Metasploit module triggers an arbitrary shared library load vulnerability in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This Metasploit module requires valid credentials, a writeable folder in an accessible share, and knowledge of the server-side path of the writeable folder. In some cases, anonymous access combined with common filesystem locations can be used to automatically exploit this vulnerability.; tags | exploit, arbitrary; advisories | CVE-2017-7494; SHA-256 | 467d157dc1bbf3f036cc0f63f280fa7c6781fd91ca452708aab53393895c5ba1; Download | Favorite | View

JAD Java Decompiler 1.5.8e Buffer Overflow: Posted May 27, 2017; Authored by Juan Sacco; JAD Java Decompiler version 1.5.8e suffers from a local buffer overflow vulnerability.; tags | exploit, java, overflow, local; SHA-256 | 1f4316b80457aecc9ab1d4b63dda9a18973e331e719518b4ab41a40f4dcfe2b4; Download | Favorite | View

WordPress AffiliateWP 2.0.8 Cross Site Scripting: Posted May 27, 2017; Authored by DefenseCode, Neven Biruski; WordPress AffiliateWP plugin versions 2.0.8 and below suffer from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 3ca1fb705331fe04e70541cad5cf109d1809f68a6f5adb5bb5a70e9bc531215d; Download | Favorite | View

WordPress Huge-IT Video Gallery 2.0.4 SQL Injection: Posted May 27, 2017; Authored by DefenseCode, Neven Biruski; WordPress Huge-IT Video Gallery plugin version 2.0.4 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 18673ff6c4b5932c1002b8927b318cfd610e2f7db98ea60fc08d03be57d0fc05; Download | Favorite | View

WordPress All In One Schema.org Rich Snippets 1.4.1 XSS: Posted May 27, 2017; Authored by DefenseCode, Neven Biruski; WordPress All In One Schema.org Rich Snippets plugin versions 1.4.1 and below suffer from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 767cb75a0f15f68cae52091db7a8923f0807038c3700134bf985a7567713facf; Download | Favorite | View

Aries QWR-1104 Wireless-N Cross Site Scripting: Posted May 27, 2017; Authored by Touhid M.Shaikh; Aries QWR-1104 Wireless-N router suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | e5003c524c37548060cc231edf0fc24067399ffb00f05fa475cf690683a5c17d; Download | Favorite | View

Microsoft MsMpEng Denial Of Service: Posted May 27, 2017; Authored by Google Security Research, mjurczyk; Through fuzzing, a number of ways to crash the Microsoft MsMpEng service has been been discovered.; tags | exploit; advisories | CVE-2017-8535, CVE-2017-8536, CVE-2017-8537, CVE-2017-8538; SHA-256 | 05eda4b73f73c98a155075088def6208b82e5ecb6e7eba708c3a910c322807a5; Download | Favorite | View

SambaCry Exploit / Vulnerable Container: Posted May 27, 2017; Authored by OPSXCQ | Site github.com; This repo from github contains a SambaCry exploit and vulnerable container.; tags | exploit; advisories | CVE-2017-7494; SHA-256 | 1575fdf58a5dd6e72a33a6dc0648196f99226950d46f8032e30b023c560a06ca; Download | Favorite | View

WordPress Social-Stream 1.6.0 Twitter API Secret Disclosure: Posted May 27, 2017; Authored by Kyle Lovett; WordPress Social-Stream versions 1.6.0 and below suffer from a Twitter API OAuth secret disclosure vulnerability.; tags | exploit, info disclosure; SHA-256 | d9397402a5e15bf1dfe27b9c6cfe4a24c02c4ffc37e440343f5c6850e3501b41; Download | Favorite | View

Sandboxie 5.18 Denial Of Service: Posted May 27, 2017; Authored by Greg Priest; Sandboxie version 5.18 suffers from a local denial of service vulnerability.; tags | exploit, denial of service, local; SHA-256 | fd92cb6374cffa34d5f607414474570f094bcc34f9157c3f8a8a27dbc464daa0; Download | Favorite | View

D-Link DCS Series Cameras Insecure Crossdomain.xml: Posted May 27, 2017; Authored by SlidingWindow; D-Link DCS Series cameras implement a weak crossdomain.xml.; tags | exploit; advisories | CVE-2017-7852; SHA-256 | 50e8e437260ea37095cf7b417235509abfde4253d1cec1226635f8f3a293b3cb; Download | Favorite | View

Google Chrome 60.0.3080.5 V8 JavaScript Engine Out-Of-Bounds Write: Posted May 27, 2017; Authored by halbecaf; Google Chrome version 60.0.3080.5 V8 suffers from an out-of-bounds write vulnerability in the javascript engine.; tags | exploit, javascript; SHA-256 | 5df4f83fe15024aae18571a2cc409b7b22f94289acd7c97a542434dedf996134; Download | Favorite | View

Sunell IPCAMERA IPR54/14AKDN(II)/13 Session ID Enumeration: Posted May 27, 2017; Authored by Stephan Sekula; Sunell IPCAMERA IPR54/14AKDN(II)/13 suffers from a session ID enumeration vulnerability.; tags | exploit; SHA-256 | 60ce71b07534bee0f99b4630549295320551670713e34c6613132c5fce336ac9; Download | Favorite | View

Sunell IPCAMERA IPR54/14AKDN(II)/13 Cross Site Scripting: Posted May 27, 2017; Authored by Stephan Sekula; Sunell IPCAMERA IPR54/14AKDN(II)/13 suffers from a reflective cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 27e65ecc5f751798e2ae87d44a144b020245e5f7941b691a517e197e2a0004f7; Download | Favorite | View

Sunell IPR54/14AKDN(II)/13 Cross Site Scripting: Posted May 27, 2017; Authored by Stephan Sekula; Sunell IPR54/14AKDN(II)/13 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 08008390429a0ee6a1e0891e649db3e2a21176e7ef4304f3a8a4f77d54e03e3d; Download | Favorite | View

OpenVPN Access Server 2.1.4 CRLF Injection: Posted May 27, 2017; Authored by Julian Boulet; OpenVPN Access Server version 2.1.4 suffers from a CRLF injection vulnerability.; tags | exploit; advisories | CVE-2017-5868; SHA-256 | 10cc7e203caeb7b199f43ae4c5d590f5d394419a9369a6b7bdb1eff2af577d79; Download | Favorite | View

WebKit Editor::Command::execute Universal Cross Site Scripting: Posted May 25, 2017; Authored by Google Security Research, lokihardt; WebKit suffers from a universal cross site scripting vulnerability via Editor::Command::execute.; tags | exploit, xss; advisories | CVE-2017-2504; SHA-256 | b403bbb69d0b3e963bb638919bb8560364e34988c717b45ebc3717df3f1fae75; Download | Favorite | View

WebKit enqueuePageshowEvent / enqueuePopstateEvent Universal XSS: Posted May 25, 2017; Authored by Google Security Research, lokihardt; WebKit enqueuePageshowEvent and enqueuePopstateEvent suffer from a universal cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2017-2510; SHA-256 | af070e1fb01da40b85a05e4da984fc2dfe9f6be669db41ba609b0417423c3c48; Download | Favorite | View

Mozilla Firefox ConvolvePixel Memory Disclosure: Posted May 25, 2017; Authored by Ivan Fratric, Google Security Research; Mozilla Firefox suffers from a memory disclosure vulnerability in ConvolvPixel. o.; tags | exploit; advisories | CVE-2017-5465; SHA-256 | 27c3bf47249dbc1cd71b07f2da059c87632637f14473ab6fde848168f7d09b8c; Download | Favorite | View

WebKit FrameLoader::clear Variable Theft: Posted May 25, 2017; Authored by Google Security Research, lokihardt; WebKit suffers from a variable theft issue in FrameLoader::clear via page navigation.; tags | exploit; advisories | CVE-2017-2515; SHA-256 | b2f1425e0cc7f6da7a5294cfe11ef3cbea388ebea94dcf08b5676216e6615267; Download | Favorite | View

Microsoft MsMpEng Privilege Escalation: Posted May 25, 2017; Authored by Tavis Ormandy, Google Security Research; Microsoft MsMpEng suffers from multiple privilege escalation vulnerabilities.; tags | exploit, vulnerability; SHA-256 | b57fb4337aa82768637ff7b8efdf2fef6727f821ca5bfd34a0c7ad06e2c615e7; Download | Favorite | View

WebKit HTMLObjectElement::updateWidget Universal XSS: Posted May 25, 2017; Authored by Google Security Research, lokihardt; WebKit suffers from a cross site scripting vulnerability in HTMLObjectElement::updateWidget.; tags | exploit, xss; advisories | CVE-2017-2493; SHA-256 | 5e1a9a4c59df034aade4206f4dcb044b4ce264d6f3524ad57ed2b3849dbbf858; Download | Favorite | View

WebKit WebCore::FrameView::scheduleRelayout Use-After-Free: Posted May 25, 2017; Authored by Google Security Research, lokihardt; WebKit suffers from a use-after-free vulnerability in WebCore::FrameView::scheduleRelayout.; tags | exploit; advisories | CVE-2017-2514; SHA-256 | 2d5a02001638af79822a62eb31b6aeafa5e4f683b79a12b2a326a9028975b890; Download | Favorite | View

Mozilla Firefox gfxTextRun Out-Of-Bounds Read: Posted May 25, 2017; Authored by Ivan Fratric, Google Security Research; gfxTextRun in Mozilla Firefox suffers from a heap overflow vulnerability.; tags | exploit, overflow; advisories | CVE-2017-5447; SHA-256 | ca7dc76b101bf1ce0d07c158ddb9d23bd3cc4262052161ffea414b47ab83a329; Download | Favorite | View

Skia Graphics Library Heap Overflow: Posted May 25, 2017; Authored by Ivan Fratric, Google Security Research; Skia Graphic Library suffers from a heap overflow vulnerability.; tags | exploit, overflow; SHA-256 | a91b4dffb9db505d11d1a2211a841657e91151b846608640c0c1fc28cfbd150b; Download | Favorite | View

Page 2 of 8 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

Files

Top Authors In Last 30 Days

Recent News