exploit the possibilities
Showing 1 - 25 of 43,161 RSS Feed

Exploit Files

Oracle Java Runtime Environment TTF Font Heap Out-Of-Bounds Read
Posted Feb 18, 2019
Authored by Google Security Research, mjurczyk

A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of TrueType fonts rendering in AlternateSubstitutionSubtable::process.

tags | exploit, java
MD5 | b638f363683e27c69a03b4345ce06c4f
Oracle Java Runtime Environment TTF Font Heap Out-Of-Bounds Read
Posted Feb 18, 2019
Authored by Google Security Research, mjurczyk

A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of TrueType fonts rendering in ExtractBitMap_blocClass.

tags | exploit, java
MD5 | 29c31d355f8a1212c89be8f95c56a750
Oracle Java Runtime Environment TTF Font Heap Out-Of-Bounds Read
Posted Feb 18, 2019
Authored by Google Security Research, mjurczyk

A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of TrueType fonts rendering in OpenTypeLayoutEngine::adjustGlyphPositions.

tags | exploit, java
MD5 | 44b1d7a8a3d751b214b9f70aab2957fd
Oracle Java Runtime Environment OpenType Font Heap Out-Of-Bounds Read
Posted Feb 18, 2019
Authored by Google Security Research, mjurczyk

A heap-based out-of-bounds read was observed in Oracle Java Runtime Environment version 8u202 while fuzz-testing the processing of OpenType fonts.

tags | exploit, java
MD5 | 5131a27c80fb2148eac10f4c01318b88
HTMLy 2.7.4 Cross Site Scripting
Posted Feb 18, 2019
Authored by Omar Kurt | Site netsparker.com

HTMLy version 2.7.4 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-8349
MD5 | 9c2fae1f1a3125e338c33a0c3d901126
Comodo Dome Firewall 2.7.0 Cross Site Scripting
Posted Feb 18, 2019
Authored by Ozer Goker

Comodo Dome Firewall version 2.7.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 5e7745733f4787cab9bbbc7c018c2c42
Master IP CAM 01 3.3.4.2103 Remote Command Execution
Posted Feb 18, 2019
Authored by Raffaele Sabato

Master IP CAM 01 version 3.3.4.2103 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2019-8387
MD5 | c52d6d75b01caff68b1bc84a984583ba
ArangoDB Community Edition 3.4.2-1 Cross Site Scripting
Posted Feb 18, 2019
Authored by Ozer Goker

ArangoDB Community Edition version 3.4.2-1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e7ebd0f7aa89a43efb9130c32cd8d7db
qdPM 9.1 Cross Site Scripting
Posted Feb 18, 2019
Authored by Mehmet Emiroglu

qdPM version 9.1 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-8390, CVE-2019-8391
MD5 | acfb25312890a6ee46a901dd42e38c61
Apache CouchDB 2.3.0 Cross Site Scripting
Posted Feb 18, 2019
Authored by Ozer Goker

Apache CouchDB version 2.3.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | e96dc647b95c5059349a2262bde12393
CMSsite 1.0 post.php SQL Injection
Posted Feb 18, 2019
Authored by Mr Winst0n

CMSsite version 1.0 suffers from a remote SQL injection vulnerability in post.php. This version of the software has been known to have SQL injection vulnerabilities since 2010.

tags | exploit, remote, php, vulnerability, sql injection
MD5 | 280cf3156e94b30f315f4f61a76a6531
mIRC Remote Command Execution
Posted Feb 18, 2019
Authored by Baptiste Devigne, Benjamin Chetioui

mIRC versions prior to 7.55 suffer from a remote command execution using argument injection through custom URI protocol handlers.

tags | exploit, remote, protocol
advisories | CVE-2019-6453
MD5 | 6b03c17a140390183e555131c0c6565b
Digi TransPort LR54 Restricted Shell Escape
Posted Feb 18, 2019
Authored by Stig Palmquist

Digi TransPort LR54 suffers from a restricted shell bypass vulnerability that gets a root shell.

tags | exploit, shell, root, bypass
advisories | CVE-2018-20162
MD5 | 896322aa0ccd273bc0ef57111661649e
Realterm Serial Termianl 2.0.0.70 Buffer Overflow
Posted Feb 18, 2019
Authored by Alejandra Sanchez

Realterm Serial Terminal version 2.0.0.70 local buffer overflow SEH exploit.

tags | exploit, overflow, local
MD5 | 6ae4e98f66359c8481538edfc7bd863a
MISP 2.4.97 SQL Injection / Command Injection
Posted Feb 18, 2019
Authored by Tm9jdGlz

MISP version 2.4.97 suffers from SQL command execution via command injection in the STIX module.

tags | exploit, sql injection
advisories | CVE-2018-19908
MD5 | 0349325981ba6a0c0b8cb7c488aa8cae
RealTerm Serial Terminal 2.0.0.70 Denial Of Service
Posted Feb 17, 2019
Authored by Alejandra Sanchez

RealTerm Serial Terminal version 2.0.0.70 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | b5b97ae4f493aba7571a11b55a3a0f28
DASAN H665 Backdoor Account
Posted Feb 17, 2019
Authored by Krzysztof Burghardt

DASAN H665 has a vendor backdoor built into BusyBox /bin/login that provides remote root access with no password.

tags | exploit, remote, root
MD5 | 8fd617ceb423687bb1cff222714c6ebc
KVM VMX Preemption Timer Use-After-Free
Posted Feb 16, 2019
Authored by FX, Google Security Research

KVM suffers from a use-after-free vulnerability after using the emulated VMX preemption timer.

tags | exploit
advisories | CVE-2019-7221
MD5 | a0d1f27f5e38bc4b60b7e3417a578978
KVM kvm_inject_page_fault Uninitialized Memory Leak
Posted Feb 16, 2019
Authored by FX, Google Security Research

KVM suffers from an uninitialized memory leak vulnerability in kvm_inject_page_fault.

tags | exploit, memory leak
advisories | CVE-2019-7222
MD5 | d143badc5670e32e28cf7e6fb40d4424
Listing Hub CMS 1.0 SQL Injection
Posted Feb 16, 2019
Authored by Deyaa Muhammad

Listing Hub CMS version 1.0 suffers from a remote SQL injection vulnerability in pages.php.

tags | exploit, remote, php, sql injection
MD5 | a7da6c2e2bea589569ff55259567e47b
ZuzMusic 2.1 Cross Site Scripting
Posted Feb 16, 2019
Authored by Deyaa Muhammad

ZuzMusic version 2.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7ca5239c281f86e428865e72b8e242e0
JobFinder Cross Site Scripting
Posted Feb 16, 2019
Authored by Deyaa Muhammad

JobFinder suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d7af768a26e6fc8bfc4c7a525735dd08
WeHelp 1.6 Cross Site Scripting
Posted Feb 16, 2019
Authored by Deyaa Muhammad

WeHelp version 1.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | dadf8942b2d517c8af9fc12e82b4b0e5
Find A Place CMS Directory 1.5 SQL Injection
Posted Feb 16, 2019
Authored by Deyaa Muhammad

Find a Place CMS Directory version 1.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ac0cf064523b3a833efc27f4db1a02bb
Jinja2 2.10 Command Injection
Posted Feb 16, 2019
Authored by Jameel Nabbo

Jinja2 version 2.10 suffers from a command injection vulnerability.

tags | exploit
advisories | CVE-2019-8341
MD5 | 11bfeb8f8d50d84b15935cf7f8b3274f
Page 1 of 1,727
Back12345Next

File Archive:

February 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    22 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    2 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    50 Files
  • 6
    Feb 6th
    24 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    6 Files
  • 9
    Feb 9th
    1 Files
  • 10
    Feb 10th
    1 Files
  • 11
    Feb 11th
    22 Files
  • 12
    Feb 12th
    25 Files
  • 13
    Feb 13th
    16 Files
  • 14
    Feb 14th
    32 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    10 Files
  • 17
    Feb 17th
    2 Files
  • 18
    Feb 18th
    27 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close