|
WordPress Arforms 3.7.1 - Directory Traversal
|
|
2019-10-11
|
|
Intelbras Router WRN150 1.0.18 - Persistent Cross-Site Scripting
|
|
2019-10-11
|
|
National Instruments Circuit Design Suite 14.0 - Local Privilege Escalation
|
|
2019-10-11
|
|
Windows Kernel - Out-of-Bounds Read in nt!MiRelocateImage While Parsing Malformed PE File
|
|
2019-10-10
|
|
Windows Kernel - Out-of-Bounds Read in CI!HashKComputeFirstPageHash While Parsing Malformed PE File
|
|
2019-10-10
|
|
Windows Kernel - Out-of-Bounds Read in nt!MiParseImageLoadConfig While Parsing Malformed PE File
|
|
2019-10-10
|
|
Windows Kernel - Out-of-Bounds Read in CI!CipFixImageType While Parsing Malformed PE File
|
|
2019-10-10
|
|
Windows Kernel - NULL Pointer Dereference in nt!MiOffsetToProtos While Parsing Malformed PE File
|
|
2019-10-10
|
|
Windows Kernel - win32k.sys TTF Font Processing Pool Corruption in win32k!ulClearTypeFilter
|
|
2019-10-10
|
|
TP-Link TL-WR1043ND 2 - Authentication Bypass
|
|
2019-10-10
|
|
ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow (Metasploit, DEP Bypass)
|
|
2019-10-10
|
|
Linux/x86 - Add User to /etc/passwd Shellcode (59 bytes)
|
|
2019-10-10
|
|
SMA Solar Technology AG Sunny WebBox device - 1.6 - Cross-Site Request Forgery
|
|
2019-10-10
|
|
XNU - Remote Double-Free via Data Race in IPComp Input Path
|
|
2019-10-09
|
|
Foscam Video Management System 1.1.6.6 - 'UID' Denial of Service (PoC)
|
|
2019-10-09
|
|
DeviceViewer 3.12.0.1 - 'add user' Local Buffer Overflow (DEP Bypass)
|
|
2019-10-09
|
|
vBulletin 5.0 < 5.5.4 - 'updateAvatar' Remote Code Execution
|
|
2019-10-08
|
|
Zabbix 4.4 - Authentication Bypass
|
|
2019-10-08
|
|
Linux/ARM - Fork Bomb Shellcode (20 bytes)
|
|
2019-10-08
|
|
freeFTP 1.0.8 - Remote Buffer Overflow
|
|
2019-10-07
|
|
CheckPoint Endpoint Security Client/ZoneAlarm 15.4.062.17802 - Privilege Escalation
|
|
2019-10-07
|
|
IBM Bigfix Platform 9.5.9.62 - Arbitrary File Upload
|
|
2019-10-07
|
|
Subrion 4.2.1 - 'Email' Persistant Cross-Site Scripting
|
|
2019-10-07
|
|
ASX to MP3 converter 3.1.3.7 - '.asx' Local Stack Overflow (DEP)
|
|
2019-10-07
|
|
Zabbix 4.2 - Authentication Bypass
|
|
2019-10-07
|
|
logrotten 3.15.1 - Privilege Escalation
|
|
2019-10-07
|
|
Joomla 3.4.6 - 'configuration.php' Remote Code Execution
|
|
2019-10-07
|
|
Android - Binder Driver Use-After-Free
|
|
2019-10-04
|
|
PHP 7.0 < 7.3 - 'gc' Disable Functions Bypass
|
|
2019-10-04
|
|
Linux/x86 - NOT + XOR-N + Random Encoded /bin/sh Shellcode (132 bytes)
|
|
2019-10-04
|
|
LabCollector 5.423 - SQL Injection
|
|
2019-10-04
|
|
AnchorCMS < 0.12.3a - Information Disclosure
|
|
2019-10-03
|
|
mintinstall 7.9.9 - Code Execution
|
|
2019-10-03
|
|
DOUBLEPULSAR - Payload Execution and Neutralization (Metasploit)
|
|
2019-10-02
|
|
Detrix EDMS 1.2.3.1505 - SQL Injection
|
|
2019-10-02
|
|
Counter-Strike Global Offensive 1.37.1.1 - 'vphysics.dll' Denial of Service (PoC)
|
|
2019-10-02
|
|
WebKit - Universal XSS Using Cached Pages
|
|
2019-10-01
|
|
WebKit - User-agent Shadow root Leak in WebCore::ReplacementFragment::ReplacementFragment
|
|
2019-10-01
|
|
WebKit - Universal XSS in WebCore::command
|
|
2019-10-01
|
|
WebKit - UXSS Using JavaScript: URI and Synchronous Page Loads
|
|
2019-10-01
|
|
DotNetNuke < 9.4.0 - Cross-Site Scripting
|
|
2019-10-01
|
|
vBulletin 5.0 < 5.5.4 - Unauthenticated Remote Code Execution
|
|
2019-10-01
|
|
PHP 7.1 < 7.3 - disable_functions Bypass
|
|
2019-10-01
|
|
kic 2.4a - Denial of Service
|
|
2019-10-01
|
|
DameWare Remote Support 12.1.0.34 - Buffer Overflow (SEH)
|
|
2019-10-01
|
|
Cisco Small Business 220 Series - Multiple Vulnerabilities
|
|
2019-09-30
|
|
TheSystem 1.0 - Command Injection
|
|
2019-09-30
|
|
thesystem 1.0 - Cross-Site Scripting
|
|
2019-09-30
|
|
GoAhead 2.5.0 - Host Header Injection
|
|
2019-09-30
|
|
phpIPAM 1.4 - SQL Injection
|
|
2019-09-30
|