what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files Date: 2018-11-19 to 2018-11-20

Synaccess netBooter NP-0801DU 7.4 Cross Site Request Forgery

Posted Nov 19, 2018

Authored by LiquidWorm | Site zeroscience.mk

Synaccess netBooter NP-0801DU version 7.4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 51165dc49c8b4adc6fa1b8f096b07c086864dfa90c7505b714aa7155b9aceb9d

Download | Favorite | View

Synaccess netBooter NP-02x / NP-08x 6.8 Authentication Bypass

Posted Nov 19, 2018

Authored by LiquidWorm | Site zeroscience.mk

Synaccess netBooter NP-02x and NP-08x version 6.8 suffer from an authentication bypass vulnerability due to a missing control check when calling the webNewAcct.cgi script while creating users. This allows an unauthenticated attacker to create an admin user account and bypass authentication giving her the power to turn off a power supply to a resource.

tags | exploit, cgi, bypass

SHA-256 | 2016e1b7fad384a5d33b446ff9f1776a9a363ae3b420b71f0e2afb27ee2b41be

Download | Favorite | View

Microsoft Edge Chakra OP_Memset Type Confusion

Posted Nov 19, 2018

Authored by Google Security Research, lokihardt

Microsoft Edge suffers from a Chakra OP_Memset type confusion vulnerability.

tags | exploit

SHA-256 | 611fa33be1a70a1567073da40901233c4521faaaa46eb3028856e6977091b785

Download | Favorite | View