Showing 1 - 15 of 15

Files Date: 2018-09-27

AppArmor Filesystem Blacklisting Bypass: Posted Sep 27, 2018; Authored by Jann Horn, Google Security Research; AppArmor has an issue where filesystem blacklisting can be bypassed by moving parents.; tags | exploit; SHA-256 | b2024aa06da618d87af0a264562f40bcd8ebfa1535eb007f2251a6df21367000; Download | Favorite | View

PCProtect 4 8.35 Privilege Escalation: Posted Sep 27, 2018; Authored by Hashim Jawad; PCProtect 4 version 8.35 suffers from a weak file permission privilege escalation vulnerability.; tags | exploit; SHA-256 | 1a3f9f98779877970807ab97138ae5d81df5de87bf4360b2b951f311a288ac81; Download | Favorite | View

Rausoft ID.prove 2.95 SQL Injection: Posted Sep 27, 2018; Authored by Ilya Timchenko; Rausoft ID.prove version 2.95 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | e2528102866a52d493d80ef903b6833bfc2afec275eb5ddc60bc42bc4450abf4; Download | Favorite | View

ManageEngine Desktop Central 10.0.271 Cross Site Scripting: Posted Sep 27, 2018; Authored by Ismail Tasdelen; ManageEngine Desktop Central version 10.0.271 suffers from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | b98475c7c1086afe41c236113ea38e1a2b485100d865ef19d96b91e77c7aeec3; Download | Favorite | View

iWay Data Quality Suite Web Console 10.6.1.ga XML Injection: Posted Sep 27, 2018; Authored by Sureshbabu Narvaneni; iWay Data Quality Suite Web Console version 10.6.1.ga suffers from an XML external entity injection vulnerability.; tags | exploit, web; SHA-256 | cd2ba04d9848a473c28202f68204338199eb8e5285f94b0ea6d14d308671ad8b; Download | Favorite | View

Microsoft Edge Sandbox Escape: Posted Sep 27, 2018; Authored by Google Security Research, lokihardt; Microsoft Edge suffers from a sandbox escape vulnerability.; tags | exploit; advisories | CVE-2018-8463, CVE-2018-8468, CVE-2018-8469; SHA-256 | 53dae687e4a4409c81987ce450a88ac52d2a2a51eac4971e2a0712be2ba423d2; Download | Favorite | View

Red Hat Security Advisory 2018-2826-01: Posted Sep 27, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2826-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.; tags | advisory, web, perl, code execution; systems | linux, redhat; advisories | CVE-2011-2767; SHA-256 | ac9aa4c6261769c2d22dbde4257dfbf26f2c23a34a9237188e0837eec6dda572; Download | Favorite | View

Red Hat Security Advisory 2018-2825-01: Posted Sep 27, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-2825-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.; tags | advisory, web, perl, code execution; systems | linux, redhat; advisories | CVE-2011-2767; SHA-256 | a11d5e847d6c1ff56b2c9c8a869908db8232a62f8df3b151cc7da252ed065f2a; Download | Favorite | View

WordPress WebARX Website Firewall 4.9.8 XSS / Bypass: Posted Sep 27, 2018; Authored by ed0x21son; WordPress WebARX Website Firewall plugin version 4.9.8 suffers from bypass and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 032d4a54514c2a1ec76ac9061e0c5fa5965ebbe2cb481a055156866bc0a19f07; Download | Favorite | View

WordPress Breadcrumb NavXT 6.1.0 Username Disclosure: Posted Sep 27, 2018; Authored by Janek Vind aka waraxe | Site waraxe.us; WordPress Breadcrumb NavXT plugin version 6.1.0 suffers from a username disclosure vulnerability.; tags | exploit; SHA-256 | a7d331bc7a3c3c5f71c497eb152d46ea8fb5956444bfa1d2462d1d680b57b936; Download | Favorite | View

gVisor Pagetables Reuse: Posted Sep 27, 2018; Authored by Jann Horn, Google Security Research; gVisor reuses pagetables across levels without paging-structure invalidation.; tags | exploit; SHA-256 | 193fccefc5c977b91f16570534ba06f19e07ed6de291fdd9b2d2eeba79b56a70; Download | Favorite | View

CMS ISWEB 3.5.3 SQL Injection: Posted Sep 27, 2018; Authored by Thiago Sena, Rafael Fontes Souza; CMS ISWEB version 3.5.3 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; advisories | CVE-2018-14956; SHA-256 | 2909ddd6bab3f45cee745aae9cdef49e2d801722783ac5bb7a6a1cdd2055a743; Download | Favorite | View

Citrix StorageZones Controller Improper Access Restrictions / Traversal: Posted Sep 27, 2018; Authored by Wolfgang Ettlinger | Site sec-consult.com; Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities.; tags | exploit, vulnerability; advisories | CVE-2018-16968, CVE-2018-16969; SHA-256 | ae39dfe4bfaaa26cd2361836889bfa69e570b2f0a6679a9b71736478c8294df6; Download | Favorite | View

Progress Kendo UI Editor 2018.1.221 Cross Site Scripting: Posted Sep 27, 2018; Authored by M. Tomaselli | Site sec-consult.com; Progress Kendo UI Editor version 2018.1.221 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2018-14037; SHA-256 | 635dd00f814500a20fbba041a4fa05e33c59282c7a7c1cf98dcbb1c9b0c6e85a; Download | Favorite | View

WordPress WP Insert 2.4.2 Arbitrary File Upload: Posted Sep 27, 2018; Authored by Mostafa Gharzi; WordPress WP Insert plugin versions 2.4.2 and below suffer from a remote file upload vulnerability.; tags | exploit, remote, file upload; SHA-256 | f14b654cbda91bb779faa992b5b3d046f5e22527ea9d6ba3195379ea30041d9a; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days