LogicalDOC Enterprise 7.7.4 Username Enumeration Weakness

Summary LogicalDOC is a free document management system that is designed to handle and share documents within an organization. LogicalDOC is a content repository, with Lucene indexing, Activiti workflow, and a set of automatic import procedures. Description The weakness is caused due to the...

Geovision Inc. IP Camera Multiple Vulnerabilities

Geovision Inc. IP Camera is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

ALLMediaServer 0.95 - Remote Buffer Overflow

!/usr/bin/python Exploit Title: Stack Buffer Overflow in ALLMediaServer 0.95 Exploit Author: Mario Kartone Ciccarelli Contact: https://twitter.com/Kartone CVE: CVE-2017-17932 Date: 09-01-2018 Thanks to PoC: https://www.exploit-db.com/exploits/43406/ Software link:...

Exploit for Inadequate Encryption Strength in Telerik Ui_For_Asp.Net_Ajax

RAUcrypto !Languagehttps://img.shields.io/badge/Lang-Pyth...

Parallels Plesk Sitebuilder Multiple Vulnerabilities

Parallels Plesk Sitebuilder is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Telesquare SKT LTE Router SDT-CS3B1 Insecure Direct Object Reference Info Leak

Summary We introduce SDT-CS3B1 LTE router which is a SKT 3G and 4G LTE wireless communication based LTE router product. Description Insecure direct object references occur when an application provides direct access to objects based on user-supplied input. As a result of this vulnerability attacke...

Ipswitch WS_FTP Professional < 12.6.0.3 Local Buffer Overflow Vulnerability

Ipswitch WSFTP Professional is prone to a local buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Tizen Studio 1.3 Smart Development Bridge &lt; 2.3.2 - Buffer Overflow (PoC)

Exploit Title: Smart Development Bridge =2.3.2 part of Tizen Studio 1.3 Windows x86/x64 - Buffer Overflow PoC Date: 22.10.17 Exploit Author: Marcin Kopec Vendor Homepage: https://developer.tizen.org/ Software Link: https://developer.tizen.org/development/tizen-studio/download Version: 2.3.0, 2.3....

Tizen Studio 1.3 Smart Development Bridge 2.3.2 - Buffer Overflow (PoC)

Tizen Studio 1.3 Smart Development Bridge 2.3.2 - Buffer Overflow PoC Exploit Title: Smart Development Bridge =2.3.2 part of Tizen Studio 1.3 Windows x86/x64 - Buffer Overflow PoC Date: 22.10.17 Exploit Author: Marcin Kopec Vendor Homepage: https://developer.tizen.org/ Software Link:...

Tizen Studio 1.3 Smart Development Bridge <2.3.2 - Buffer Overflow PoC Exploit

Exploit for windows platform in category dos / poc Exploit Title: Smart Development Bridge =2.3.2 part of Tizen Studio 1.3 Windows x86/x64 - Buffer Overflow PoC Date: 22.10.17 Exploit Author: Marcin Kopec Vendor Homepage: https://developer.tizen.org/ Software Link:...

Dup Scout Enterprise 9.9.14 - &#039;Input Directory&#039; Local Buffer Overflow

!/usr/bin/python Exploit Title : Dup Scout Enterprise v9.9.14 - 'Input Directory' Local Buffer Overflow Date : 04 Sept, 2017 Exploit Author : Touhid M.Shaikh - www.touhidshaikh.com Contact : https://github.com/touhidshaikh Vendor Homepage: http://www.dupscout.com/ Version : v9.9.14 Software Link ...

Disk Pulse Enterprise Server Buffer Overflow Vulnerability (Aug 2017)

Disk Pulse Enterprise Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2017-8635

creationtimestamp| type| source ---|---|--- 2017-08-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42471...

Dasan Networks GPON ONT WiFi Router H64X Series Cross-Site Request Forgery

Summary H64xx is comprised of one G-PON uplink port and four ports of Gigabit Ethernet downlink supporting 10/100/1000Base-T RJ45. It helps service providers to extend their core optical network all the way to their subscribers, eliminating bandwidth bottlenecks in the last mile. H64xx is...

getsploit - Command line utility for searching and downloading exploits

Command line search and download tool for Vulners Database inspired by searchsploit. It allows you to search online for the exploits across all the most popular collections: Exploit-DB , Metasploit , Packetstorm and others. The most powerful feature is immediate exploit source download right in...

Simple File Uploader - Arbitrary File Download

Simple File Uploader - Arbitrary File Download Exploit Title: Simple File Uploader - Arbitrary File Download Date: 27/04/2017 Exploit Author: Daniel Godoy Vendor Homepage: https://codecanyon.net/ Software Link:...

Microsoft Windows - Uniscribe Font Processing Heap Memory Corruption in &#039;USP10!otlCacheManager::GlyphsSubstituted&#039; (MS17-011)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1025 We have encountered a crash in the Windows Uniscribe user-mode library, in the memset function called by USP10!otlCacheManager::GlyphsSubstituted, while trying to display text using a corrupted font file: --- 449c.6338: Access...

CVE-2017-6805

creationtimestamp| type| source ---|---|--- 2017-03-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41592...

Wireless IP Camera (P2P) WIFICAM - Remote Code Execution

Wireless IP Camera P2P WIFICAM - Remote Code Execution // Exploit-DB Note Source: https://pierrekim.github.io/advisories/expl-goahead-camera.c // Exploit-DB Note Credit: https://pierrekim.github.io/blog/2017-03-08-camera-goahead-0day.html include include include include include include include...

Wordpress < 4.7.1 - Username Enumeration (CVE-2017-5487)

Author: p0wd3r know Chong Yu 404 security lab Date: 2017-03-05 0x00 vulnerability overview Vulnerability description Recently exploit-db is published on a Wordpress 4.7.1 username enumeration vulnerabilities: , in fact, the vulnerability to 1-month 14, has been posted on the Internet, and given t...