Disk Sorter Enterprise 9.1.12 - 'Login' Remote Buffer Overflow

!/usr/bin/python print "Disk Sorter Enterprise 9.1.12 Login Buffer Overflow" print "Author: Tulpa / tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpasecurity Exploit will land you NT AUTHORITY\SYSTEM You do not need to be authenticated, password below is...

CS-Cart < 4.4.2 XXE Vulnerability

CS-Cart is prone to an XML external entity XXE injection vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Minecraft Launcher 1.6.61 - Insecure File Permissions Privilege Escalation

Minecraft Launcher 1.6.61 - Insecure File Permissions Privilege Escalation Minecraft Launcher: https://minecraft.net Version: 1.6.61 By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Insecure File...

Fitbit Connect Service Privilege Escalation

Fitbit Connect Service: https://www.fitbit.com/ By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Unquoted Service Path Privilege Escalation Fitbit connect installs as a service with an unquoted service...

Wordpress <= 4.6.1 using the language file arbitrary code execution vulnerability

Author: p0wd3r know Chong Yu 404 security lab 0x00 vulnerability overview 1. Vulnerability description WordPress is a PHP and MySQL as a platform free and open source blogging software and content management system, recently in github...

PHP Press Release - Stored Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title : PHP Press Release - Stored Cross Site Scripting Author : Besim Google Dork : - Date : 09/10/2016 Type : webapps Platform : PHP Vendor Homepage : http://www.pagereactions.com/product.php?pku=1 Software link :...

VLC Media Player Buffer Overflow Vulnerability (Oct 2016)

VLC media player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

FreePBX 13.x RCE Vulnerability - Active Check

FreePBX is prone to a unauthenticated remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

FreePBX 3.0.x RCE Vulnerability - Active Check

FreePBX is prone to a unauthenticated remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MySQL 5.5.45 64bit Local Credential Dislcosure

MySQL 5.5.45 64bit Local Credentials Disclosure Tested on Windows Windows Server 2012 R2 64bit, English Vendor Homepage @ https://www.mysql.com Date 05/09/2016 Bug Discovered by Yakir Wizman https://www.linkedin.com/in/yakirwizman http://www.black-rose.ml Special Thanks & Greetings to friend of...

Multiple IP Cameras Authentication Bypass Vulnerability - Active Check

The IP Camera is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress Core Ajax handlers CSRF and Directory Traversal Vulnerabilities - Linux

WordPress is prone to CSRF and directory traversal vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

C2S DVR Management Credentials Disclosure and Authentication Bypass Vulnerabilities

C2S DVR Management application is prone to credentials disclosure and authentication bypass vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Zabbix 2.2.x < 3.0.4 RCE Vulnerability

Zabbix is prone to a remote code execution RCE vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

TikiWiki 15.1 ELFinder Unauthenticated File Upload

Description A file upload vulnerability in Tiki Wiki --Part83012510490351498898101-- 3. Info Author: Mehmet Ince https://www.exploit-db.com/exploits/40091/...

UAF vulnerability description-vulnerability warning-the black bar safety net

UAF Use After Freevulnerability is a memory corruption vulnerability,usually present in the browser. Recently,the browser's new version Added a series of controls,which also makes use of these vulnerabilities becomes more difficult. Nevertheless,they still seem to exist. This article mainly will ...

CoolPlayer+ Portable 2.19.6 Stack Overflow

Exploit Title: CoolPlayer+ Portable build 2.19.6 - .m3u Stack Overflow Egghunter+ASLR bypass Exploit Author: Karn Ganeshen Download link: https://sourceforge.net/projects/portableapps/files/CoolPlayer%2B%20Portable/CoolPlayerPlusPortable2.19.6.paf.exe/download?usemirror=liquidtelecom Version:...

TFTP Server 1.4 - &#039;WRQ&#039; Remote Buffer Overflow (Egghunter)

Exploit Title: TFTP Server 1.4 - WRQ Buffer Overflow Exploit Egghunter Exploit Author: Karn Ganeshen Vendor Homepage: http://sourceforge.net/projects/tftp-server/ Version: 1.4 Tested on: Windows Vista SP2 Coded this for Vista Ultimate, Service Pack 2 3-byte overwrite + short jump + Egghunter...

CVE-2016-4206

creationtimestamp| type| source ---|---|--- 2016-07-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40100...

PaKnPost Pro 1.14 - Multiple Vulnerabilities

PaKnPost Pro 1.14 - Multiple Vulnerabilities Exploit Title: PaKnPost Pro Arbitrary File Upload & Remote Code Execution Date: 2016-07-06 Product: PaKnPost Pro Vendor Homepage: http://www.paknpost.org Software Link: https://sourceforge.net/projects/paknpost/ Version: =1.14 Tested on: Windows, Linux...