Belkin NetCam F7D7601 suffers from remote command execution, network fingerprinting, and hard-coded password vulnerabilities.
4bd2b5bb8c5fc1891523e53b3179f3ae7e600feacbf458153657ff0e4b2e1524FTPGetter version 5.89.0.85 SEH buffer overflow exploit.
4fa92d2f4bc97359cff9f04b584dd37f0cfcc11abec7d9380c43260b85836ec4Easy File Sharing Web Server version 7.2 SEH buffer overflow PassWD exploit that spawns a reverse shell.
855626ab8af8fc4fef34a5da9dbdf4eba93dbb924d810fcb1456e7f629fe805eThis template covers IE8/9/10, and uses the user-agent HTTP header to detect the browser version. Please note IE8 and newer may emulate an older IE version in compatibility mode, in that case the module won't be able to detect the browser correctly. This is an example Metasploit module to be used for exploit development.
8143adacc68c1de409f678efae5e4cfb85f69d420b14992c225c72b7072d3163This exploit module illustrates how a vulnerability could be exploited in an TCP server that has a parsing bug. This is an example Metasploit module to be used for exploit development.
7080c0e0772da0f83c51df64e3f6e1cc4c7d74a7c1c2265e80261599694e52d2iSmartAlarm CubeOne suffers from a remote command execution vulnerability that allows disabling the alarm and setting it off.
4430cd29b879fd0975002c47989434a03744c202fb70efe80eea72dbabd51292Cisco DDR2200 and 2201v1 ADSL2+ Residential Gateway devices suffer from insecure direct object reference vulnerabilities that allow for remote code execution as well as a path traversal issue.
7653bf6d69854327291ba03c42436923b5ed5b87b1ea493bea7feccbee2bd185WDTV Live suffers from a remote SMP password reset vulnerability.
adf823f3fce3f792bea062367944f3a2c224fff3b6c5a0a5c1b4888072593ee5Counter Strike: Condition Zero .BSP map file code execution exploit.
1aaae42dcf775bae0172248b3082263a9ac732e19aa248d45bc4c3b2e68c7ed7Firefox version 50.0.1 full ASLR and DEP bypass exploit using ASM.JS JIT-spray.
86cecd285d657c050c53a7f7a6a47081e1bc4db32994a106122cf7a3a0d39213Apache Struts 2.3.x Showcase remote code execution proof of concept exploit.
cd6e613e04931295e1cb05abb73544d2cbf655028faed41cdb86dc4dc0492257Dasan Networks GPON ONT WiFi Router H64X Series suffers from a system configuration download vulnerability.
a627da9c1df890eec3dbf9c40fe603019d72bd3fa530fe22b040805a1417bfdeOrion Elite Hidden IP Browser Pro versions 1.0 through 7.9 have insecure versions of Tor and OpenSSL included and also suffer from man-in-the-middle vulnerabilities.
ea153ef267f8201a7355e376eb43cd29dc8fbd90d5353fe0f4d060beb44b2f07Dasan Networks GPON ONT WiFi Router H64X Series suffers from a privilege escalation vulnerability.
77c3e76e1b2715bfa3f6e6f46442a7d80501cb82f492ae6e10822b2c464e5804Vodafone Italia's webmail system suffers from a cross site scripting vulnerability that can be leveraged via an incoming email.
73bb1928c9a0788d7c25a40471f33fa8d63be2abed6dbec656c3c0643eb1aa01Dasan Networks GPON ONT WiFi Router H64X Series suffers from a cross site request forgery vulnerability.
888bec27cedcd3bccba124b1839b5ff363df148add2268e27c1b8b6cd55da46cDasan Networks GPON ONT WiFi Router H64X Series does not properly perform authentication and authorization, allowing it to be bypassed through cookie manipulation. Setting the Cookie 'Grant' with value 1 (user) or 2 (admin) will bypass security controls in place enabling the attacker to take full control of the device management interface.
c3cd6665c308dda2cda1ed68cf0ca4c303b2082244008416fbc1d832bb0787f1Sitecore CMS version 8.2 suffers from cross site scripting and file disclosure vulnerabilities.
745ca93afd64f6a67937abb2b76921c146c8517548a8b85d941d4e9385ae832dPyCharm 2-0 / 2017 suffers from a command-line buffer overflow vulnerability.
2e7002255ec35d2edf52b454d5e45882df5d1f17ed608219757d14789cf55e66iSmartAlarm Backend suffers from a server-side request forgery vulnerability.
da804f19d05a661b73dd051be5f3a1581b11b2858fec1fe0e6c21ddf2edf9c84AGFEO Smart Home ES 5xx / 6xx versions 1.9b and 1.10 suffers from authentication bypass, cross site scripting, and hard-coded private key vulnerabilities.
b2200472eb599e2f158bdd515a5c8503aba40b07de1704b509cb4ab9af230c5dIBM Informix DB-Access utility is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. The vulnerability is triggered by providing an overly long file parameter value inside a LOAD statement, which is used to insert data from an operating-system file into an existing table or view. Version 12.10 is affected.
7242df27de9624e0c0b57ed3ef055069c110005a841ad63815fe50406c581c74ObjectPlanet Opinio versions 7.6.3 and below suffer from a cross site scripting vulnerability.
1ec0215ae742091f21c37eeb17032a074dc5191ea8941b52c6a34d5e36556cdaDataTaker DT80 dEX version 1.50.012 suffers from an information disclosure vulnerability.
048568e8d903730e1c7a71509f06b027e564960e8dac311671ebcf6ca565d868RaidenHTTPD version 2.0.44 suffers from a cross site scripting vulnerability via the user-agent header.
4e5fb1d12824277e2c16c01b1e20fc64700a011ff335cb5fd70e538478517c43
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed