CGAL libcgal out-of-bounds read vulnerability (CNVD-2021-16361)

Libcgal is an open source C++ library that provides geometric algorithms for fast and reliable data processing. CGAL libcgal NefS2/SNCioparser.h SNCioparser::readsface sfh-volume in CGAL CGAL-5.1.1 has an out-of-bounds read vulnerability that can be exploited by an attacker to achieve code...

Cisco RV110W/RV130/RV130W/RV215W Remote Command Execution and Denial of Service Vulnerability (CNVD-2021-41176)

The Cisco RV110W is a Wireless-N VPN firewall, the Cisco RV130 is a multifunction VPN router, the Cisco RV130W is a Wireless-N multifunction VPN router, and the Cisco RV215W is a Wireless-N VPN router. A remote command execution and denial of service vulnerability exists in the Web management...

Google Chrome Resource Management Error Vulnerability (CNVD-2021-03572)

Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in versions of Google Chrome prior to 87.0.4280.141, which can be exploited by an attacker to execute arbitrary code...

Exploit for Deserialization of Untrusted Data in Laravel

CVE-2018-15133...

Microsoft Azure Sphere Unsigned Code Execution Vulnerability

Azure Sphere is a secure, advanced application platform with built-in communications and security features for connected devices. An unsigned code execution vulnerability exists in Microsoft Azure Sphere versions prior to 20.08. An attacker could exploit the vulnerability to execute code...

Exploit for Code Injection in Microsoft

This repository contains a proof-of-concept PoC exploit for CVE-2017-8759, a vulnerability in the Windows Shell that allows for arbitrary code execution. The exploit is designed to weaponize the vulnerability, allowing an attacker to execute malicious code on a vulnerable system. The PoC is...

Unspecified vulnerability in Linkplay firmware

The Anker Zolo Halo is a smart speaker from Anker Philippines. A security vulnerability exists in the Linkplay firmware. An attacker can exploit the vulnerability to execute code...

Unspecified vulnerability in Linkplay firmware

The Anker Zolo Halo is a smart speaker from Anker Philippines. A security vulnerability exists in the Linkplay firmware. An attacker can exploit the vulnerability to execute code...

Drupal Command Injection Vulnerability

Drupal is an open source content management system developed by the Drupal community using the PHP language. A security vulnerability exists in Drupal versions 8.8.x before 8.8.8, 8.9.x before 8.9.1, and 9.0.x before 9.0.1. An attacker can exploit the vulnerability to execute code with the help o...

Zen Load Balancer 3.10.1 - Remote Code Execution Exploit

Exploit for cgi platform in category web applications Exploit Title: Zen Load Balancer 3.10.1 - Remote Code Execution Google Dork: no Exploit Author: Cody Sixteen Vendor Homepage: https://code610.blogspot.com Software Link:...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1514)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2019-6330 · Fluentd · Fluentd +1

Name of the Vulnerable Software and Affected Versions: Fluent Fluentd version 1.8.0 Fluent-ui version 1.2.2 Description: The issue is related to the use of a default password in Fluent Fluentd and its browser manager fluentd-ui, allowing attackers to gain escalated privileges and execute arbitrar...

Exploit for OS Command Injection in Webmin

CVE-2019-12840POC PoC for Webmin Package Update Au...

Exploit for CVE-2018-11776

Apache-Struts-0Day-Exploit Critical Remote Code Execution...

Exploit for Code Injection in Pivotal_Software Spring_Data_Commons

CVE-2018-1273 Spring Data Commons RCE 远程命令执行漏洞 usage !...

Erlang Port Mapper Daemon Cookie Remote Code Execution Exploit

The erlang port mapper daemon is used to coordinate distributed erlang instances. Should an attacker get the authentication cookie, remote code execution is trivial. Usually, this cookie is named ".erlang.cookie" and varies on location. This module requires Metasploit:...

Linux/x86_64 - mkdir() evil Shellcode (30 bytes)

/ ;Title: Linux/x8664 - mkdir shellcode 30 bytes ;Author: Touhid M.Shaikh ;Contact: https://github.com/touhidshaikh ;Category: Shellcode ;Architecture: Linux x8664 ;Description: Create Folder with 755 permission. ; You can Change folder by change code in ASM in fname Field ;Shellcode Length: 30...

Deep dive in Lexmark Perceptive Document Filters Exploitation

This post authored by Marcin Noga with contributions from Nick BiasiniIntroductionTalos discovers and releases software vulnerabilities on a regular basis. We don't always publish a deep technical analysis of how the vulnerability was discovered or its potential impact. This blog will cover these...

fastjson < 1.2.24 remote code execution vulnerability

No description provided by source...

Naenara Browser 3.5 (RedStar 3.0 Desktop) - JACKRABBIT Client-Side Command Execution Exploit

Exploit for linux platform in category local exploits n0m3rcYn0M3rCyn0m3Rc N0MeRCYn0m3rCyn0m3rCyn0m n0MERCypDK var xunescape = unescape; oneblock = xunescape"%u0040%u1000"; stackpivot =...