FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing

The Federal Bureau of Investigation FBI has released an article on defending against video-teleconferencing VTC hijacking referred to as “Zoom-bombing” when attacks are to the Zoom VTC platform. Many organizations and individuals are increasingly dependent on VTC platforms, such as Zoom and...

Exploit for Improper Input Validation in Google Android

CVE-2020-0041 This repository contains code for exploiting CV...

blog.schubachstore.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1126617 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting blog.schubachstore.com...

Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow (SEH)

Exploit Title: Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow SEH Date: 2020-03-26 Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/707414955696c57b71c7f160c720bed5-EasyRMtoMP3Converter.exe Version: 2.7.3.700 Tested on: Windows 7 x86 Proof of Concept: 1.-...

Easy RM to MP3 Converter 2.7.3.700 - Input Local Buffer Overflow (SEH)

Easy RM to MP3 Converter 2.7.3.700 - Input Local Buffer Overflow SEH Exploit Title: Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow SEH Date: 2020-03-26 Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/707414955696c57b71c7f160c720bed5-EasyRMtoMP3Converter.e...

Easy RM To MP3 Converter 2.7.3.700 Local Buffer Overflow

Exploit Title: Easy RM to MP3 Converter 2.7.3.700 - 'Input' Local Buffer Overflow SEH Date: 2020-03-26 Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/707414955696c57b71c7f160c720bed5-EasyRMtoMP3Converter.exe Version: 2.7.3.700 Tested on: Windows 7 x86 Proof of Concept: 1.-...

Serendipity Code Issue Vulnerability

Serendipity is a PHP-based blogging system from the Serendipity team. The system supports the creation of online journals, blogs, web pages and more. A code issue vulnerability exists in Serendipity versions prior to 2.3.4 Windows that stems from the program failing to properly validate filenames...

10-Strike Network Inventory Explorer 8.54 - Add Local Buffer Overflow (SEH)

10-Strike Network Inventory Explorer 8.54 - Add Local Buffer Overflow SEH Exploit Title: 10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow SEH Date: 2020-03-24 Author: Felipe Winsnes Vendor Homepage: https://www.10-strike.com/ Software Link:...

10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow (SEH)

Exploit Title: 10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow SEH Date: 2020-03-24 Author: Felipe Winsnes Vendor Homepage: https://www.10-strike.com/ Software Link: https://www.10-strike.com/networkinventoryexplorer/network-inventory-setup.exe Version: 8.54 Tested on:...

Starkiller - A Frontend For PowerShell Empire

Starkiller is a Frontend for Powershell Empire. It is an Electron application written in VueJS. If you'd like to contribute please follow the Contribution guide. Getting Started To run Starkiller, you can download the installers for Mac, Linux, and Windows on the Releases page. For more info on...

ERPNext Reflective Cross-Site Scripting Vulnerability

ERPNext is a free, open source, integrated enterprise resource planning software. A reflected cross-site scripting vulnerability exists in ERPNext 11.1.47. The vulnerability can be exploited by an attacker to conduct a cross-site scripting attack via the PATHINFO of the blog/ URI...

CVE-2019-20516

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the blog/ URI...

CVE-2019-20516

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the blog/ URI...

Cross site scripting

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the blog/ URI...

CVE-2019-20516

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the blog/ URI...

Easy File Sharing Web Server 7.2 Local Buffer Overflow

Exploit Title: Easy File Sharing Web Server 7.2 - SMTP 'Password' Local Buffer Overflow SEH Date: 03/16/2020 Author: Felipe Winsnes Vendor Homepage: http://www.sharing-file.com/ Software Link: http://www.sharing-file.com/download.php Version: 7.2 Tested on: Windows 7 Proof of Concept: 1.- Run the...

The Value and Ethics of Using Phone Data to Monitor Covid-19

Google and Facebook are discussing plans with the White House to share collective data on people's movements during the coronavirus pandemic...

CVE-2019-20511

ERPNext 11.1.47 allows blog?blogcategory= Frame Injection...

CVE-2019-20511

ERPNext 11.1.47 allows blog?blogcategory= Frame Injection...

Design/Logic Flaw

ERPNext 11.1.47 allows blog?blogcategory= Frame Injection...