WordPress Brandfolder 3.0 Remote / Local File Inclusion

Exploit Title: Wordpress brandfolder plugin / RFI & LFI Google Dork: inurl:wp-content/plugins/brandfolder Date: 03/22/2016 Exploit Author: AMAR^SHG Vendor Homepage: https://brandfolder.com Software Link: https://wordpress.org/plugins/brandfolder/ Version: =3.0 Tested on: WAMP / Windows I-Details...

KLA10765 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface, gain privileges and write local files. Below...

Drupal 7.x < 7.43 Multiple Vulnerabilities

The version of Drupal running on the remote web server is 7.x prior to 7.43. It is, therefore, affected by the following vulnerabilities : - A flaw exists in the File module that allows an attacker to view, delete, or substitute a link to a file that has not yet been submitted or processed by a...

Metabrik - Perl Brik Platform

Smartphones have their apps, Web browsers have their apps, shells don’t. With Metabrik , we tried to merge the power of shells with the power of the Perl language by creating a platform allowing to quickly write reusable Briks. Metabrik goals: Glue the Perl language with a shell Give a standardis...

Cisco AnyConnect Secure Mobility Client 2.x < 3.1.13015.0 / 4.x < 4.2.1035.0 Arbitrary File Manipulation

The Cisco AnyConnect Secure Mobility Client installed on the remote host is version 2.x or 3.x prior to 3.1.13015.0 or 4.x prior to 4.2.1035.0. It is, therefore, affected by an arbitrary file manipulation vulnerability due to missing source path validation in interprocess communication IPC...

foobar2000 1.3.9 - (.asx) Local Crash PoC

Exploit for windows platform in category dos / poc Exploit Title: foobar2000 1.3.9 .asx Local Crash PoC Date: 11-15-2015 Exploit Author: Antonio Z. Vendor Homepage: http://www.foobar2000.org/ Software Link: http://www.foobar2000.org/getfile/036be51abc909653ad44d664f0ce3668/foobar2000v1.3.9.exe...

iBackDoor: High-Risk Code Hits iOS Apps

Introduction FireEye mobile researchers recently discovered potentially “backdoored” versions of an ad library embedded in thousands of iOS apps originally published in the Apple App Store. The affected versions of this library embedded functionality in iOS apps that used the library to display...

KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilitie...

CVE-1999-0019

Delete or create a file via rpc.statd, due to invalid information...

Spoofing

IniNet embeddedWebServer aka eWebServer before 2.02 mishandles URL encoding, which allows remote attackers to write to or delete files via a crafted string...

CVE-2015-1002

IniNet embeddedWebServer (aka eWebServer) prior to version 2.02 is vulnerable to an Improper Handling of URL Encoding (HEX Encoding) that can allow remote attackers to write to or delete files via a crafted string. The CVE-2015-1002 entry is corroborated by multiple sources (NVD/NVD-derived) and ...

Cisco TelePresence VCS Expressway 8.5.1 / 8.5.2 request-xconfdump Symbolic Link Local File Manipulation (cisco-sa-20141007-vcs)

According to its self-reported version, the instance of Cisco TelePresence Video Communication Server VCS Expressway running on the remote host is affected by a file manipulation vulnerability in request-xconfdump due to insufficient protection of files. An authenticated, local attacker can explo...

Input validation

The IPC channel in Cisco AnyConnect Secure Mobility Client 2.0.0343 through 4.18 allows local users to bypass intended access restrictions and move arbitrary files by leveraging the lack of source-path validation, aka Bug ID CSCuv48563...

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:1658-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : MozillaFirefox (openSUSE-2015-619)

MozillaFirefox was updated to Firefox 41.0 bnc947003 Security issues fixed : - MFSA 2015-96/CVE-2015-4500/CVE-2015-4501 Miscellaneous memory safety hazards - MFSA 2015-97/CVE-2015-4503 bmo994337 Memory leak in mozTCPSocket to servers - MFSA 2015-98/CVE-2015-4504 bmo1132467 Out of bounds read in...

Security update for MozillaFirefox (important)

MozillaFirefox was updated to Firefox 41.0 bnc947003 Security issues fixed: MFSA 2015-96/CVE-2015-4500/CVE-2015-4501 Miscellaneous memory safety hazards MFSA 2015-97/CVE-2015-4503 bmo994337 Memory leak in mozTCPSocket to servers MFSA 2015-98/CVE-2015-4504 bmo1132467 Out of bounds read in QCMS...

FreeBSD : mozilla -- multiple vulnerabilities (2d56c7f4-b354-428f-8f48-38150c607a05)

The Mozilla Project reports : MFSA 2015-96 Miscellaneous memory safety hazards rv:41.0 / rv:38.3 MFSA 2015-97 Memory leak in mozTCPSocket to servers MFSA 2015-98 Out of bounds read in QCMS library with ICC V4 profile attributes MFSA 2015-99 Site attribute spoofing on Android by pasting URL with...

Arbitrary file manipulation by local user through Mozilla updater — Mozilla

Security researcher Holger Fuhrmannek reported that when the Mozilla updater is run, the updater can be manipulated to load the updated files from a working directory under user control in concert with junctions. When the updates are run by the Mozilla Maintenance Service on Windows, these...

CVE-2015-6265

The CLI in Cisco Application Control Engine ACE 4700 A5 3.0 and earlier allows local users to bypass intended access restrictions, and read or write to files, by entering an unspecified CLI command with a crafted file as this command's input, aka Bug ID CSCur23662...

GOM Audio 2.0.8 - .gas Crash (PoC)

GOM Audio 2.0.8 - .gas Crash PoC Exploit Title: GOM Audio 2.0.8 Crash POC Date: 8/24/2015 Exploit Author: UnN0n Software Vendor : http://audio.gomlab.com/ Software Link: http://audio.gomlab.com/downloadlog.gom Version: 2.0.8 2015/06/17 Tested on: Windows 7 x8632 BIT Steps to Produce the Crash: 1-...