TeamViewer version 11.0.65452 (64bit) suffers from a local credential memory disclosure vulnerability.
5df2ccec7663ba0f0db19fc8e94dcd8bbd953bc3a84ecee19c4c70a3b12659da
Adobe ColdFusion versions 11 and below suffer from an XML external entity (XXE) injection vulnerability.
a212b04a6debb5df2b3e137824d36dd10c3fdf16684e40ee63a9ffdcf54319c3
Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
f9e7742580849f202254e75d9fc245ba53f4d7490f47a6d30f02a7b10aacc512
CumulusClips version 2.4.1 suffers from code execution, cross site request forgery, cross site scripting vulnerabilities.
53a7f1b77a48aaeba13609553c746db3beb34a646b4649842afc6da152df004d
Infoblox versions 7.0.1 suffers from a cross site scripting vulnerability.
43894eaa240d979b743f31f562b2301aab11aad88ea28bedcfd71ada24084a50
Unrar version 0.0.1 suffers from a memory corruption vulnerability.
84b51492e7d21612e1ead0788970d3a5fa81d6291212b4a1b86ed00a3eec0126
Arabseed XCMS version 1.0.9 suffers from a remote SQL injection vulnerability.
08241df43d61ff75fbef59dc3732d5f2e1ad108aebe57018155ce290a5a25091
Infoblox versions 7.0.1 and below suffer from CRLF injection attacks that allow for HTTP response splitting.
749fa2a00236c2a6f1b578a58b9d7cc3503cade2244f4ad2c45a3833c28789e1
FreePBX versions prior to 13.0.154 suffer from a remote command execution vulnerability.
319c000813d183950d7b33d2c579b62062547a307f38619721fde20f435e3458
ELNet Power Meter suffers from unauthenticated web management access and weak credential management vulnerabilities.
9683c724c202a4b1a997848e090a1cefe22caaf7565d4b99e32408f765991a8f
Powerlogic / Schneider Electric IONXXXX series smart meters suffers from cross site request forgery and missing access control vulnerabilities.
eeaeca67fb8040d4eb66e65e1d69d543daa6736f03e61b9bbddbf11e71fed0d5
ffmpeg versions 3.1.2 and below suffer from a heap overflow vulnerability.
bb7bc6eb8a6573fd4d187e7077d2e999ddb1dc6fb1498ca5fed3f183713322a5
This write up provides code of the 'two-write-where-and-what' format string (FMS) exploitation technique and how to exploit it when located on the heap.
16841cd5b6ed14ba9eb7eb5ef0c058099fb5874500ad3084fa66dcad12dcd4d8