exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 50 of 170 RSS Feed

Files

Friends In War Make Or Break 1.7 Password Change
Posted Jul 27, 2017
Authored by shinnai

Friends in War Make or Break version 1.7 suffers from an unauthenticated administrative password change vulnerability.

tags | exploit
SHA-256 | 234bbef0b5e39ebc0a6238178a400f1a4461860312f92fef37656fc31f8b5bee
FreeIPA 2.213 Session Hijacking
Posted Jul 27, 2017
Authored by Ricardo Sanchez

FreeIPA version 2.213 suffers from a session hijacking vulnerability.

tags | exploit
advisories | CVE-2017-11191
SHA-256 | 3456feb0f0f4e99f51ee106a7c3a9173087d7fd408994cc6022e34492d7c8be9
GNU libiberty Buffer Overflow
Posted Jul 27, 2017
Authored by Marcel Bohme

GNU libiberty suffers from a buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2016-2226
SHA-256 | f488f4c8d718626de03b04b0bf3b6e0d6ab921be84730c63edda9b52a4fa8296
Friends In War Make Or Break 1.7 SQL Injection / Login Bypass
Posted Jul 27, 2017
Authored by Anarchy Angel

Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability that allows for login bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | 947786fb40025bbf1b4689f204b4c9d2994da84e69edc479629136ec1a705f2d
Joomla CCNewsLetter 2.1.9 SQL Injection
Posted Jul 27, 2017
Authored by Shahab Shamsi

Joomla CCNewsLetter component version 2.1.9 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 124d7a033bba060fa99da10c2eca4809543319e237e3f644453981891b943941
MEDHOST Document Management System Hardcoded Credentials
Posted Jul 27, 2017
Authored by Allen Franks

MEDHOST Document Management System contains hard-coded credentials used for customer database and Apache Solr access.

tags | exploit
advisories | CVE-2017-11693, CVE-2017-11694
SHA-256 | 85a0b069bd2522941bc398c17e5e9d33b41ced7ad37d1eba52db6905451be0d8
AudioCoder 0.8.46 Local Buffer Overflow
Posted Jul 27, 2017
Authored by Muhann4d

AudioCoder version 0.8.46 suffers from a local buffer overflow vulnerability.

tags | exploit, overflow, local
advisories | CVE-2017-8870
SHA-256 | 4ad07950b4dfd545873d33a377ecd6804695d4a9a310326efa94a16b1b05e8c3
MediaCoder 0.8.48.5888 Local Buffer Overflow
Posted Jul 27, 2017
Authored by Muhann4d

MediaCoder version 0.8.48.5888 suffers from a local buffer overflow vulnerability.

tags | exploit, overflow, local
advisories | CVE-2017-8869
SHA-256 | 33a3d7b54c7074fa0f638b43e2f08e3031bd106121c0db814735d452f42cdf7b
LAME 3.99.5 Denial Of Service
Posted Jul 26, 2017
Authored by qflb.wu

LAME version 3.99.5 suffers from multiple denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability
advisories | CVE-2017-9410, CVE-2017-9411, CVE-2017-9412
SHA-256 | 9cff4937e1bcc568febbb0445950ff770b81eb58522f9e37556f8ab99bcd8ecf
libjpeg-turbo 1.5.1 Denial Of Service
Posted Jul 26, 2017
Authored by qflb.wu

libjpeg-turbo version 1.5.1 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-9614
SHA-256 | a2a71ad6aedf5b71cfb68e0601892b527ec90972ad5aa5f5187411ee524dcfcb
WordPress Stop User Enumeration 1.3.8 User Enumeration
Posted Jul 26, 2017
Authored by Tom Adams

WordPress Stop User Enumeration plugin version 1.3.8 suffers from a user enumeration vulnerability.

tags | exploit
SHA-256 | b7513f284de1b5522ef7c496fd4c6816b69284ea65ff20882b3bb5824e1e4e39
WordPress YouTube Embed Plus 11.8.1 Cross Site Request Forgery
Posted Jul 26, 2017
Authored by Tom Adams

WordPress YouTube Embed Plus plugin version 11.8.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 6978786658c9e7e79af098ad01d5a2b6a44041145b418751a98e98150db7f01e
mpg123 1.24.0 Denial Of Service
Posted Jul 26, 2017
Authored by qflb.wu

mpg123 version 1.24.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-9545
SHA-256 | 813f4618284100f0c6096d573e09ddf74d26a0fa729d672a48549fd199472a69
Razer Synapse 2.20 DLL Hijacking
Posted Jul 26, 2017
Authored by Rithwik Jayasimha

Razer Synapse versions 2.20.15.1104 and below suffer from multiple dll search order hijacking vulnerabilities.

tags | exploit, vulnerability
systems | windows
advisories | CVE-2017-11652, CVE-2017-11653
SHA-256 | bf738331c729177e569ee26634555b687a094bf72cb90f5fc39cb6d342ddb6a0
Bittorrent 7.10.0 (Build 43581) Installer DLL Hijacking
Posted Jul 26, 2017
Authored by Rithwik Jayasimha

Bittorrent versions 7.10.0.43581 and below suffer from an installer dll search order hijacking vulnerability.

tags | exploit
systems | windows
SHA-256 | a3dd61ff0f2d5686afb200401a1d48f47d5d874b774922c27dab73e865fe322a
SoundTouch 1.9.2 Denial Of Service
Posted Jul 26, 2017
Authored by qflb.wu

SoundTouch version 1.9.2 suffers from multiple denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability
advisories | CVE-2017-9258, CVE-2017-9259, CVE-2017-9260
SHA-256 | a39bfe6023a9311f973a40c4058b50ef1eb49c77ad241658f36142672748ac0e
WordPress FormCraft Form Builder 3.2.31 Cross Site Scripting
Posted Jul 25, 2017
Authored by 8bitsec

WordPress FormCraft Premium WordPress Form Builder versions 3.2.31 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 4bec006b5fad6a94eee0bf1455d92a57d34b82f396e075e2d5904f4c9e22ca8c
WordPress Ultimate Affiliate Pro 3.6 Cross Site Scripting
Posted Jul 25, 2017
Authored by 8bitsec

WordPress Ultimate Affiliate Pro plugin versions 3.6 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | a9c2e3fb171f2a557f1f414f1374b2510df0bfc6492dda53411b1e527d16565e
Ubiquiti Networks Open Redirect
Posted Jul 25, 2017
Authored by T. Weber | Site sec-consult.com

Ubiquiti Networks products suffer from an open redirection vulnerability. Products affected include, but are not limited to TS-16-CARRIER, TS-5-POE, TS-8-PRO, AG-HP-2G16, AG-HP-2G20, AG-HP-5G23, AG-HP-5G27, AirGrid M, AirGrid M2, AirGrid M5, AR, AR-HP, BM2HP, BM2-Ti, BM5HP, BM5-Ti, LiteStation M5, locoM2, locoM5, locoM9, M2, M3, M365, M5, M900, NB-2G18, NB-5G22, NB-5G25, NBM3, NBM365, NBM9, NSM2, NSM3, NSM365, NSM5, PBM10, PBM3, PBM365, PBM5, PICOM2HP, and Power AP N.

tags | exploit
SHA-256 | d949ab82fa820e019e252e34b09b9796b3377a6125992b6741bbffca256e68f7
Ubiquiti Networks EP-R6 / ER-X / ER-X-SFP Cross Site Scripting
Posted Jul 25, 2017
Authored by Rene Freingruber, T. Weber | Site sec-consult.com

Ubiquiti Networks EP-R6, ER-X, and ER-X-SFP with firmware version 1.9.1 suffer from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | ee8734a3380cb25e9501ce4ed4a9ee0bd8e9edf795998ee4d8a0ad875a88622b
WebKit JSC ArgumentsEliminationPhase::transform Incorrect LoadVarargs Handling
Posted Jul 25, 2017
Authored by Google Security Research, lokihardt

WebKit JSC suffers from incorrect LoadVarargs handling in ArgumentsEliminationPhase::transform.

tags | exploit
advisories | CVE-2017-7056
SHA-256 | edbf79d7990323abaf4336e6c20ceed747d95e780f4b02cba2012766bb547326
WebKit WebCore::RenderSearchField::addSearchResult Heap Buffer Overflow
Posted Jul 25, 2017
Authored by Ivan Fratric, Google Security Research

WebKit suffers from a WebCore::RenderSearchField::addSearchResult heap buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-7049
SHA-256 | 4857989b812be535ca2a0333f4fc063225535c5a1fe5d4ed290ef1ed550fe158
WebKit WebCore::AccessibilityNodeObject::textUnderElement Use-After-Free
Posted Jul 25, 2017
Authored by Ivan Fratric, Google Security Research

WebKit suffers from a WebCore::AccessibilityNodeObject::textUnderElement use-after-free vulnerability.

tags | exploit
advisories | CVE-2017-7048
SHA-256 | 2c4791349359086c7adcb2d645742cfa4c6b35eba2831689924c2a562b2a4f62
WebKit WebCore::RenderObject Use-After-Free
Posted Jul 25, 2017
Authored by Ivan Fratric, Google Security Research

WebKit suffers from a use-after-free vulnerability in WebCore::RenderObject with accessibility enabled.

tags | exploit
advisories | CVE-2017-7046
SHA-256 | 6f4055f8c47d2cd352507cfd33da6af6a1b23136f339db9715ff1454fc57d670
WebKit WebCore::AccessibilityRenderObject::handleAriaExpandedChanged Use-After-Free
Posted Jul 25, 2017
Authored by Ivan Fratric, Google Security Research

WebKit suffers from a WebCore::AccessibilityRenderObject::handleAriaExpandedChanged use-after-free vulnerability.

tags | exploit
advisories | CVE-2017-7043
SHA-256 | 98991424a644c47d5333233cabf4be78b0b7efb8db1eb885c5daeef0bfbfa1d2
Page 2 of 7
Back12345Next

Top Authors In Last 30 Days

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close