Showing 101 - 125 of 172

Files

Microsoft Edge Chakra PushPopFrameHelper Incorrect Usage: Posted Aug 16, 2017; Authored by Google Security Research, lokihardt; Microsoft Edge Chakra suffers from an incorrect usage of PushPopFrameHelper in InterpreterStackFrame::ProcessLinkFailedAsmJsModule.; tags | exploit; advisories | CVE-2017-8646; SHA-256 | 53077803d9044bae974a778111a9fcaf6c3e820a11cbd47102da400e9b90b579; Download | Favorite | View

Microsoft Edge Charka Failed Re-Parse: Posted Aug 16, 2017; Authored by Google Security Research, lokihardt; InterpreterStackFrame::ProcessLinkFailedAsmJsModule in Microsoft Edge Chakra incorrectly re-parses.; tags | exploit; advisories | CVE-2017-8645; SHA-256 | c53cd289f467e1de7349832a952c443f0911075c2b4e8105c672275feffcbb42; Download | Favorite | View

Microsoft Edge Source Fetch Out-Of-Bounds Access: Posted Aug 16, 2017; Authored by Google Security Research, natashenka; Microsoft Edge suffers from an out-of-bounds access vulnerability when fetching source.; tags | exploit; advisories | CVE-2017-8657; SHA-256 | 90333c9b80c4a525c88f900f5a40bd465f51ad669c4eb1250701f102f0bcbe41; Download | Favorite | View

Microsoft Edge Charka PreVisitCatch Missing Call: Posted Aug 16, 2017; Authored by Google Security Research, lokihardt; Microsoft Edge Chakra does not call SetIsCatch for all cases in PreVisitCatch.; tags | exploit; advisories | CVE-2017-8656; SHA-256 | fb550f7db174597f5dc9611f3e8ca799750409d21d7b6218303131f8b1c4cc78; Download | Favorite | View

Microsoft Edge CInputDateTimeScrollerElement::_SelectValueInternal Out-Of-Bounds Read: Posted Aug 16, 2017; Authored by Ivan Fratric, Google Security Research; Microsoft Edge suffers from an out-of-bounds read in CInputDateTimeScrollerElement::_SelectValueInternal. The vulnerability has been confirmed on Windows 10 Enterprise 64-bit (OS version 1607, OS build 14393.1198) and Microsoft Edge 38.14393.1066.0, Microsoft EdgeHTML 14.14393.; tags | exploit; systems | windows; advisories | CVE-2017-8644; SHA-256 | 0c7c105204e786ed354e8850c674a49c8d2983959710c13a19f428b802d31607; Download | Favorite | View

Philex CMS 0.2 Directory Traversal: Posted Aug 16, 2017; Authored by Renzi; Philex CMS version 0.2 suffers from a directory traversal vulnerability.; tags | exploit, file inclusion; SHA-256 | 413a323e988d90ebbb6c90349a66bc86d6b89c0eb0ddafc89ec41cb84ed9eb73; Download | Favorite | View

FreeBSD 10.3 Jail SHM Issue: Posted Aug 16, 2017; Authored by WhiteWinterWolf; FreeBSD jail incompletely protects the access to the IPC primitives. The 'allow.sysvipc' setting only affects IPC queues, leaving other IPC objects unprotected, making them reachable system-wide independently of the system configuration. Versions 7.0 through 10.3 are affected. Proof of concept included.; tags | exploit, proof of concept; systems | freebsd, bsd; SHA-256 | 0beaf294618c4baefabc3693cafae6df318872d746e906006697c1f46542cd94; Download | Favorite | View

AdvanDate iCupid Dating Software 12.2 SQL Injection: Posted Aug 15, 2017; Authored by Ihsan Sencan; AdvanDate iCupid Dating software version 12.2 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | acca81d6fff2697fdb0f281c4a5e631ebea4912fb786a0298555e08d0859d8b9; Download | Favorite | View

ALLPlayer 7.4 Buffer Overflow: Posted Aug 15, 2017; Authored by f3ci; ALLPlayer version 7.4 SEH unicode buffer overflow exploit.; tags | exploit, overflow; SHA-256 | ca1ca522fd89108e5175a0d469750879c75d75143ff8ae8b79094fb603a7709a; Download | Favorite | View

ClipBucket 2.8.3 SQL Injection / Arbitrary File Read / Write: Posted Aug 15, 2017; Authored by bRpsd; ClipBucket version2.8.3 suffers from remote SQL injection, arbitrary file read/write, and default credential vulnerabilities.; tags | exploit, remote, arbitrary, vulnerability, sql injection, file inclusion; SHA-256 | 35e3ac02402d77e06f0e1a4277e12bf1acda098063add07c4e899598c8fc9d6b; Download | Favorite | View

Internet Download Manager 6.28 Build 17 Buffer Overflow: Posted Aug 15, 2017; Authored by f3ci; Internet Download Manager version 6.28 Build 17 SEH unicode buffer overflow exploit.; tags | exploit, overflow; SHA-256 | 20124fa681e0d3c04fd40055ba8e6800edf717da45e493d4113eeb5997407708; Download | Favorite | View

OSNEXUS QuantaStor 4 Information Disclosure: Posted Aug 14, 2017; Authored by Nahuel Sanchez | Site vvvsecurity.com; OSNEXUS QuantaStor version 4 suffers from multiple information disclosure vulnerabilities including user enumeration.; tags | exploit, vulnerability, info disclosure; advisories | CVE-2017-9978, CVE-2017-9979; SHA-256 | 0762c7d4aa2b0a1660c63fde56c7e91b852dcdf5a6a1019d3e8ed62845a1049f; Download | Favorite | View

Quali CloudShell 7.1.0.6508 (Patch 6) Cross Site Scripting: Posted Aug 14, 2017; Authored by Benjamin Lee; Quali CloudShell version 7.1.0.65.08 (Patch 6) suffers from multiple persistent cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; advisories | CVE-2017-9767; SHA-256 | 637e3c25b0e12a3262f74153f673da90fae642dc9440c35c5b91eeb653a851ff; Download | Favorite | View

Xamarin Studio For Mac 6.2.1 (Build 3) / 6.3 (Build 863) Privilege Escalation: Posted Aug 14, 2017; Authored by Yorick Koster, Securify B.V.; Xamarin Studio for Mac versions 6.2.1 (build 3) and 6.3 (build 863) suffer from a local privilege escalation vulnerability.; tags | exploit, local; SHA-256 | a2f41032628fcb3233d26bea6d30e9def54faf5fca09f48714b2342e3c33ceb0; Download | Favorite | View

WordPress FAdvertisement SQL Injection: Posted Aug 13, 2017; Authored by APA Golestan; WordPress Fadvertisement plugin suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 7a0c1f93965ef9d2bb44f595dfe5547d386b27bab0b7e54ce79edb7f45ae222a; Download | Favorite | View

Tomabo MP4 Converter 3.19.15 Denial Of Service: Posted Aug 13, 2017; Authored by Andy Bowden; Tomabo MP4 Converter version 3.19.15 suffers from a denial of service vulnerability.; tags | exploit, denial of service; SHA-256 | c2ac20551ba3d941d91fa48803f943ffcee28a55676e5555fee1f68ad92e235d; Download | Favorite | View

Theo CMS 2.0 SQL Injection: Posted Aug 12, 2017; Authored by Manuel Garcia Cardenas; Theo CMS versions 2.0 and below suffer from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 98622efd08cc1f0807c5bcb0ef43a726068683d3fc06d28c72fe1e086dca2cc6; Download | Favorite | View

RealTime RWR-3G-100 Router Cross Site Request Forgery: Posted Aug 12, 2017; Authored by Touhid M.Shaikh; RealTime RWR-3G-100 router suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 9958db6e4a33e71786b0330d416a220f1c73c39d6218e05719d261b1aae1c47a; Download | Favorite | View

De-Workshop Auto Workshop Portal 1.0 SQL Injection: Posted Aug 11, 2017; Authored by Ihsan Sencan; De-Workshop Auto Workshop Portal version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | c7209a306e6ced6b8889e2b1bf366ddf07dd56722572489f3264a0003bd57460; Download | Favorite | View

De-Journal Academic Journal And Peer Review System 1.0 SQL Injection: Posted Aug 11, 2017; Authored by Ihsan Sencan; De-Journal Academic Journal and Peer Review System version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 720a785e6381af5a5f86a54b8c798145d81b3faf8719782e5720d9dee371053e; Download | Favorite | View

Pluck CMS 4.7.4 Cross Site Request Forgery: Posted Aug 11, 2017; Authored by Und3rgr0und, Ehsan Cod3r; Pluck CMS version 4.7.4 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 49f4ac3f2d05457707a143d5c21e77ac3ac4d068da5364ca96bf90dc3b045a9a; Download | Favorite | View

De-Tutor 1.0 SQL Injection: Posted Aug 11, 2017; Authored by Ihsan Sencan; De-Tutor version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 951c1f5e23eaa8e4f943bfa8bd3b8f63b8402a5368d5df8bf8a4fbca3aadc00b; Download | Favorite | View

ImageBay 1.0 SQL Injection: Posted Aug 10, 2017; Authored by Ihsan Sencan; ImageBay version 1.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | f1eb847dfd9d7cfd266366361cb0eed43f6bfbcf00d888021488f6b76d5a8a55; Download | Favorite | View

Microsoft Edge textarea.defaultValue Memory Disclosure: Posted Aug 10, 2017; Authored by Ivan Fratric, Google Security Research; There is a use-after-free vulnerability in Microsoft Edge that can lead to memory disclosure. The vulnerability has been confirmed on Windows 10 Enterprise 64-bit (OS version 1607, OS build 14393.1198), Microsoft Edge 38.14393.1066.0, Microsoft EdgeHTML 14.14393.; tags | exploit; systems | windows; advisories | CVE-2017-8652; SHA-256 | 6c092dbe2c1f903c835e705268adc2d309af972d14f860be14610356e48c272c; Download | Favorite | View

CMS Made Simple 0.9.2 Cross Site Scripting: Posted Aug 10, 2017; Authored by Renzi; CMS Made Simple version 0.9.2 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 4b27df202538a2753de72529c61cfe0b8b51899dff5a0f9ed0bb67fbaa911210; Download | Favorite | View

Page 5 of 7 Back 3 4 5 6 7 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

Files

Top Authors In Last 30 Days

Recent News