527 matches found
WinduCMS 3.1 - Local File Disclosure
WinduCMS 3.1 - Local File Disclosure !/usr/bin/python Exploit Title: WinduCMS = 3.1 - Local File Disclosure Date: 2017-12-03 Exploit Author: Maciek Krupa Vendor Homepage: http://windu.org Version: 3.1 Tested on: Linux Debian 9 // Description // Local File Disclosure vulnerability exists in WinduC...
Input validation
An untrusted search path aka DLL Preload vulnerability in the Cisco Network Academy Packet Tracer software could allow an authenticated, local attacker to execute arbitrary code via DLL hijacking if a local user with administrative privileges executes the installer in the current working director...
Nigerian phishing: Industrial companies under attack
In late 2016, the Kaspersky Lab Industrial Control Systems Cyber Emergency Response Team Kaspersky Lab ICS CERT reported on phishing attacks that were primarily targeting industrial companies from the metallurgy, electric power, construction, engineering and other sectors. As further research...
Windows remote code execution vulnerability: June 13, 2017
Windows remote code execution vulnerability: June 13, 2017 Summary A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files. To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or...
Win32k Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...
CVE-2017-9150
creationtimestamp| type| source ---|---|--- 2017-05-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42048...
CVE-2016-8060
...
EternalChampion - Windows SMB Remote Code Execution Vulnerability (CVE-2017-0146)
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server. To exploit the vulnerability, in most...
Online Cinema and Event Booking Script 2.01 - newsid Parameter SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Online Cinema and Event Booking Script v2.01 - SQL Injection Google Dork: N/A Date: 06.03.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software :...
ohocms catid_user_save.php code execution vulnerability
No description provided by source...
CVE-2016-8481
An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2016-7791
Exponent CMS 2.3.9 is affected by CVE-2016-7791, a remote code execution vulnerability in /install/index.php. An attacker can upload a crafted exploit.tar.gz and trigger extraction via /install/index.php?install_sample=../../files/exploit, leading to arbitrary code execution. NVD lists CVSSv2 bas...
W3 Total Cache <= 0.9.4.1 – Unauthenticated Security Token Bypass
The /pub/apc.php file is used to empty the OPCache/APC. The script seems protected by a nonce aka security token: $nonce = W3Request::getstring'nonce'; $uri = $SERVER'REQUESTURI'; if wphash$uri == $nonce But the flaw stays in the == operator which is not the one to use when you want to compare...
Win32k Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...
Turbomail turbomail. web. ViewFile parameters filename arbitrary file read vulnerability
No description provided by source...
Win32k Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...
DuoMiCms search.php rec 代码执行
No description provided by source...
The exception in the exception--by means of a system of exception handling exception achieve incredible exploit-vulnerability warning-the black bar safety net
Memory read, write, execute attribute is system security the most important one of the mechanisms. Usually, if you want to overwrite the data in memory, you must first ensure that the block of memory having a write attribute, if you want to execute a piece of code in memory, you must first ensure...
GDI+ Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data...
Schneider Electric Quantum NOE 771 xx 弱口令
No description provided by source...