CVE-2019-10553

Multiple Read overflows due to improper length checks while decoding authentication in Cs domain/RAU Reject and TC cmd in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

CVE-2020-8432

In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c dorenamegptparts function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified...

CVE-2020-8432

In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c dorenamegptparts function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified...

CVE-2020-8432

In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c dorenamegptparts function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified...

CVE-2020-8432

In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c dorenamegptparts function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified...

CVE-2020-8432

CVE-2020-8432 affects Das U-Boot up to 2020.01, with a double free in the cmd/gpt.c do_rename_gpt_parts() function. The double free can lead to a write-what-where condition and remote code execution. The issue was introduced during a memory-leak fix identified by static analysis. Publicly referen...

CVE-2020-8432

In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c dorenamegptparts function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified...

Torrent 3GP Converter 1.51 - Stack Overflow (SEH) Exploit

Exploit Title: Torrent 3GP Converter 1.51 - Stack Overflow SEH Exploit Author: boku Software Vendor: torrentrockyou Vendor Homepage: http://www.torrentrockyou.com Software Link: http://www.torrentrockyou.com/download/tr3gpconverter.exe Version: Torrent 3GP Converter Version 1.51 Build 116 Tested...

PT-2020-19490 · Meinberg · Meinberg Lantime M300 +1

Name of the Vulnerable Software and Affected Versions: Meinberg Lantime M300 and M1000 devices affected versions not specified Description: The issue allows attackers with privileges to configure a device to execute arbitrary OS commands by editing the /config/netconf.cmd script, also known as...

Shell Backdoor List - PHP / ASP Shell Backdoor List

What is a shell backdoor ? A backdoor shell is a malicious piece of code e.g. PHP, Python, Ruby that can be uploaded to a site to gain access to files stored on that site. Once it is uploaded, the hacker can use it to edit, delete, or download any files on the site, or upload their own. How to...

Microsoft Windows 10 build 1809 - Local Privilege Escalation (UAC Bypass)

Exploit Title: Microsoft Windows 10 - Local Privilege Escalation UAC Bypass Author: Nassim Asrir Date: 2019-01-10 Exploit Author: Nassim Asrir CVE: N/A Tested On: Windows 10Pro 1809 Vendor : https://www.microsoft.com Technical Details I discovered a Local Privilege Escalation in Windows 10 UAC...

Linux kernel memory leak vulnerability (CNVD-2020-00515)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability in the 'mwifiextmcmd' function of the file drivers/net/wireless/marvell/mwifiex/cfg80211.c in versions of Linux kernel prior to 5.1.6 arises...

aeropress (=0.0.5), allennlp-datalawyer (>=0.1.0 <=0.1.10) +34 more potentially affected by CVE-2019-19274 via typed-ast (>=0.6.3 <=1.3.1)

typed-ast PYPI version =0.6.3, =0.1.0, =1.0.1, =1.0.17, =2.4.1, =0.1.1, =1.0.0, =2.2.2b1, =0.31.0, =1.3.5, =1.0.0, =0.3.4, =0.9.94, =2.0.3 - hmt-escrow =0.2.0rc1 and more Source cves: CVE-2019-19274 Source advisory: OSV:PYSEC-2019-130...

UBUNTU-CVE-2019-19074

A memory leak in the ath9kwmicmd function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption, aka CID-728c1e2a05e4...

DEBIAN-CVE-2019-18808

A memory leak in the ccprunshacmd function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service memory consumption, aka CID-128c66429247...

trace-cmd bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

CVE-2019-16295

Stored XSS in filemanager2.php in CentOS-WebPanel.com aka CWP CentOS Web Panel 0.9.8.885 exists via the cmdarg parameter. This can be exploited by a local attacker who supplies a crafted filename within a directory visited by the victim...

delpino73 Blue-Smiley-Organizer 1.32 - (datetime) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: delpino73 Blue-Smiley-Organizer 1.32 - 'datetime' SQL Injection Exploit Author: Cakes Vendor Homepage: https://github.com/delpino73/Blue-Smiley-Organizer Software Link: https://github.com/delpino73/Blue-Smiley-Organizer.git...

delpino73 Blue-Smiley-Organizer 1.32 - datetime SQL Injection

delpino73 Blue-Smiley-Organizer 1.32 - datetime SQL Injection Exploit Title: delpino73 Blue-Smiley-Organizer 1.32 - 'datetime' SQL Injection Date: 2019-10-28 Exploit Author: Cakes Vendor Homepage: https://github.com/delpino73/Blue-Smiley-Organizer Software Link:...

delpino73 Blue-Smiley-Organizer 1.32 SQL Injection

Exploit Title: delpino73 Blue-Smiley-Organizer 1.32 - 'datetime' SQL Injection Date: 2019-10-28 Exploit Author: Cakes Vendor Homepage: https://github.com/delpino73/Blue-Smiley-Organizer Software Link: https://github.com/delpino73/Blue-Smiley-Organizer.git Version: 1.32 Tested on: CentOS7 CVE : N/...