IDOR (Insecure direct object references) in Jira 8.13.10

We have found during testing that by sending a fake header with a domain name supplying as a suffix i.e. attack.eu into the Host header field, the web server processes the input to send the request to an attacker-controlled host that resides at the supplied domain, and not to an internal virtual...

Aircrack-NG 0.7 - 'Specially Crafted 802.11 Packets' Remote Buffer Overflow

/ airodump-exp.c - aircrack/airodump-ng 0.7 remote exploit Proof of concept exploit for a stack and heap based overflow in airodump-ng. The vulnerability can be exploited by transmitting some specially crafted 802.11 packets to execute arbitrary code on any machines within range that are sniffing...