CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2018/05/08 12:0 a.m.•77 views

Palo Alto Networks - 'readSessionVarsFromFile()' Session Corruption (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Palo Alto Networks readSessionVarsFromFile Session Corruption', 'Description' = %q This module exploits a chain of vulnerabilities in Palo Alto...

9.8CVSS7.4AI score0.94021EPSS

Packet Storm•added 2018/05/07 12:0 a.m.•74 views

Palo Alto Networks readSessionVarsFromFile() Session Corruption

7.5CVSS0.3AI score0.94021EPSS

Metasploit•added 2018/05/05 8:41 p.m.•47 views

Palo Alto Networks readSessionVarsFromFile() Session Corruption

This module exploits a chain of vulnerabilities in Palo Alto Networks products running PAN-OS versions prior to 6.1.19, 7.0.19, 7.1.14, and 8.0.6. This chain starts by using an authentication bypass flaw to to exploit an XML injection issue, which is then abused to create an arbitrary directory,...

9.8CVSS8.3AI score0.94021EPSS

0day.today•added 2018/05/02 12:0 a.m.•40 views

xdebug Unauthenticated OS Command Execution Exploit

This Metasploit module exploits a vulnerability in the eval command present in Xdebug versions 2.5.5 and below. This allows the attacker to execute arbitrary php code as the context of the web user. This module requires Metasploit: https://metasploit.com/download Current source:...

0.5AI score

BDU FSTEC•added 2018/04/12 12:0 a.m.•1 views

The vulnerability of the bta_scan_results_cb_impl function (btif_ble_scanner.cc) in the Android operating system, which allows a hacker to trigger a service failure

The vulnerability of the btascanresultscbimpl function btifblescanner.cc in the Android operating system is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures during BLE Bluetooth Low Energy scanning...

7.8CVSS5.5AI score0.02809EPSS

Exploits0References4Affected Software1

NVD•added 2018/04/04 9:29 p.m.•19 views

CVE-2018-1081

A flaw was found in Moodle 3.4 to 3.4.1, 3.3 to 3.3.4, 3.2 to 3.2.7, 3.1 to 3.1.10 and earlier unsupported versions. Unauthenticated users can trigger custom messages to admin via paypal enrol script. Paypal IPN callback script should only send error emails to admin after request origin was...

5.3CVSS5.1AI score0.00927EPSS

UbuntuCve•added 2018/04/04 9:29 p.m.•14 views

CVE-2018-1081

5.3CVSS6.7AI score0.00927EPSS

OSV•added 2018/04/04 9:29 p.m.•17 views

CVE-2018-1081

5.3CVSS5.5AI score

Prion•added 2018/04/04 9:29 p.m.•11 views

Design/Logic Flaw

5CVSS5.5AI score0.00927EPSS

Exploits0References3Affected Software1

CVE•added 2018/04/04 9:0 p.m.•68 views

CVE-2018-1081

A vulnerability (CVE-2018-1081) affects Moodle 3.4 to 3.4.1, 3.3 to 3.3.4, 3.2 to 3.2.7, 3.1 to 3.1.10 and earlier unsupported versions. Unauthenticated users can trigger custom messages to the admin via the PayPal Enrol script; the PayPal IPN callback script should only send error emails to the ...

5.3CVSS5AI score0.00927EPSS

Exploits0References3Affected Software1

Cvelist•added 2018/04/04 9:0 p.m.•27 views

CVE-2018-1081

5.1AI score0.00927EPSS

canvas•added 2018/03/23 2:29 p.m.•93 views

Immunity Canvas: IDRAC_APPWEB_RCE

Name| idracappwebrce ---|--- CVE| CVE-2018-1207 Exploit Pack| CANVAS Description| iDrac8 WebApp RCE Notes| CVE Name: CVE-2018-1207 NOTES: This module exploits a CGI Injection vulnerability in iDRAC8 in order to achieve Remote Code Execution. We upload a shared library that we can then invoke with...

7.5CVSS1AI score0.9379EPSS

Exploits3

Exploit DB•added 2018/03/20 12:0 a.m.•29 views

Microsoft Windows - Desktop Bridge Virtual Registry NtLoadKey Arbitrary File Read/Write Privilege Escalation

Windows: Desktop Bridge Virtual Registry NtLoadKey Arbitrary File Read/Write EoP Platform: Windows 1703 version 1709 seems to have fixed this bug Class: Elevation of Privilege Summary: The handling of the virtual registry NtLoadKey callback reloads registry hives insecurely leading to arbitrary...

7.4AI score

exploitpack•added 2018/03/20 12:0 a.m.•13 views

Microsoft Windows - Desktop Bridge Virtual Registry NtLoadKey Arbitrary File ReadWrite Privilege Escalation

Microsoft Windows - Desktop Bridge Virtual Registry NtLoadKey Arbitrary File ReadWrite Privilege Escalation Windows: Desktop Bridge Virtual Registry NtLoadKey Arbitrary File Read/Write EoP Platform: Windows 1703 version 1709 seems to have fixed this bug Class: Elevation of Privilege Summary: The...

0.7AI score

Veracode•added 2018/03/15 6:45 a.m.•29 views

Cross-site Scripting (XSS)

jolokia-core is vulnerable to cross-site scripting XSS attacks. The library does not properly validate the callback request parameter, allowing a malicious user to inject and execute arbitrary Javascript...

6.1CVSS6.3AI score0.76775EPSS

Exploits1References5Affected Software1

0day.today•added 2018/02/28 12:0 a.m.•49 views

Apple iOS 11.2.5 / watchOS 4.2.2 / tvOS 11.2.5 - bluetoothd Memory Corruption Exploit

Exploit for iOS platform in category dos / poc // // main.m // bluetoothdPoC // // Created by Rani Idan. // Copyright © 2018 zLabs. All rights reserved. // import "AppDelegate.h" include extern kernreturnt bootstraplookupmachportt bs, const char servicename, machportt service; / When hijacking...

8.5AI score0.2027EPSS

Exploits3

Exploit DB•added 2018/02/28 12:0 a.m.•36 views

Apple iOS 11.2.5 / watchOS 4.2.2 / tvOS 11.2.5 - 'bluetoothd' Memory Corruption

// // main.m // bluetoothdPoC // // Created by Rani Idan. // Copyright © 2018 zLabs. All rights reserved. // import "AppDelegate.h" include extern kernreturnt bootstraplookupmachportt bs, const char servicename, machportt service; / When hijacking session between bluetoothd and client, add callba...

7.4AI score