Lucene search
K

15 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-20533 Malicious code in file-alb-um-zip-new-mp3-283978-tim-melina-theo-bobby-bsdj4-wndzis (npm)

The package file-alb-um-zip-new-mp3-283978-tim-melina-theo-bobby-bsdj4-wndzis was found to contain malicious code...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2023/10/04 11:30 a.m.33 views

ModuleShifting - Stealthier Variation Of Module Stomping And Module Overloading Injection Techniques That Reduces Memory IoCs

ModuleShifting is stealthier variation of Module Stomping and Module overloading injection technique. It is actually implemented in Python ctypes so that it can be executed fully in memory via a Python interpreter and Pyramid, thus avoiding the usage of compiled loaders. The technique can be used...

7.4AI score
Exploits0References11
0day.today
0day.today
added 2021/05/03 12:0 a.m.36 views

Windows/x64 - Dynamic NoNull Add RDP Admin (BOKU:SP3C1ALM0V3) Shellcode (387 Bytes)

Shellcode Title: Windows/x64 - Dynamic NoNull Add RDP Admin BOKU:SP3C1ALM0V3 Shellcode 387 Bytes Shellcode Author: Bobby Cooke boku Tested on: Windows 10 v2004 x64 Compiled from: Kali Linux x8664 Full Disclosure: github.com/boku7/x64win-AddRdpAdminShellcode Shellcode Description: 64bit Windows 10...

Exploits0
Packet Storm
Packet Storm
added 2020/08/13 12:0 a.m.186 views

GetSimple CMS Multi User 1.8.2 Cross Site Request Forgery

Exploit Title: GetSimple CMS Plugin Multi User v1.8.2 - Cross-Site Request Forgery Delete Admin/User Exploit Author: Bobby Cooke boku & Adeeb Shah @hyd3sec Date: August 12, 2020 Vendor Homepage: http://get-simple.info/extend/plugin/multi-user/133/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/08/04 12:0 a.m.136 views

Car Rental Management System 1.0 Remote Code Execution

Exploit Title: Car Rental Management System v1.0 - Unauthenticated RCE Exploit Author: Adeeb Shah @hyd3sec Shout out: Bobby Cooke boku Date: August 3, 2020 Vendor Homepage: https://projectworlds.in Software Link:...

Exploits0
0day.today
0day.today
added 2020/05/09 12:0 a.m.42 views

WebTareas 2.0p8 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WebTareas v2.0p8 - Login Portal - Reflected Cross Site Scripting XSS Exploit Author: Bobby Cooke Vendor Homepage: http://webtareas.sf.net/ Software Link:...

Exploits0
Exploit DB
Exploit DB
added 2020/04/13 12:0 a.m.149 views

Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow (SEH)

Exploit Title: Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow SEH Exploit Author: Bobby Cooke Date: 2020-04-11 Vendor: Drive Software Company Vendor Site: http://www.drive-software.com Software Download: http://www.drive-software.com/download/freeclock.exe Tested On:...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/03/23 12:0 a.m.565 views

Windows/x64 - WinExec Add-Admin Dynamic Null-Free Shellcode (210 Bytes)

210 bytes small WinExec add-admin dynamic null-free shellcode. // Shellcode Title: WinExec Add-Admin Dynamic Null-Free Shellcode 210 Bytes // Shellcode Author: Bobby Cooke // Date: March 21st, 2020 // Tested on: Windows 10 Home - 1909 x8664, Windows 10 Pro - 1909 x86 // Description: Windows...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/02/20 12:0 a.m.104 views

Windows/10 Pro - Dynamic Null-Free PopCalc Shellcode (223 bytes)

; Shellcode Title: Dynamic, Null-Free PopCalc Shellcode 223 Bytes ; Shellcode Author: Bobby Cooke ; Technique: PEB & Export Directory Table ; Tested On: Windows 10 Pro x86 10.0.18363 Build 18363 Create a new stack frame push ebp ; push current base pointer to the stack mov ebp, esp ; Set Base Sta...

0.4AI score
Exploits0
0day.today
0day.today
added 2020/01/30 12:0 a.m.197 views

Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode (571 Bytes)

Shellcode Title: Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode 571 Bytes Shellcode Author: Bobby Cooke Technique: PEB & Export Directory Table Tested On: Windows 10 Pro x86 10.0.18363 Build 18363 Shellcode Function: When executed, this shellcode creates a cmd.exe bind shell, using the...

7.1AI score
Exploits0
Veracode
Veracode
added 2019/05/02 5:40 a.m.34 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

10CVSS5.7AI score0.06181EPSS
Exploits0References19Affected Software1
Veracode
Veracode
added 2019/05/02 5:40 a.m.30 views

Memory Corruption

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

10CVSS5.7AI score0.06181EPSS
Exploits0References27Affected Software2
RedHat Linux
RedHat Linux
added 2015/07/03 5:12 a.m.46 views

Critical: Red Hat Security Advisory: firefox security update

Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

10CVSS6.5AI score0.06181EPSS
Exploits0References11
Mozilla
Mozilla
added 2015/03/31 12:0 a.m.52 views

Windows can retain access to privileged content on navigation to unprivileged pages — Mozilla

Mozilla developer Bobby Holley reported that windows created to hold privileged UI content retained access to privileged internal methods if later navigated to unprivileged content. If a separate flaw was found that allowed for web content to reference these privileged windows, an attacker could...

5CVSS9.4AI score0.67465EPSS
Exploits4References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2013/03/17 12:0 a.m.31 views

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 8506)

MozillaFirefox has been updated to the 17.0.4ESR release. Besides the major version update from the 10ESR stable release line to the 17ESR stable release line, this update brings critical security and bugfixes : - VUPEN Security, via TippingPoint's Zero Day Initiative, reported a use-after-free...

9.3CVSS9.2AI score0.06398EPSS
Exploits1References29
Rows per page
Query Builder