CVE-2024-2021

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. Affected is an unknown function of the file /admin/listlocaluser.php. The manipulation of the argument ResId leads to sql injection. It is possible to launch the attack remotely. Th...

HP WMI Service 1.4.8.0 - 'HPWMISVC.exe' Unquoted Service Path

Exploit Title: HP WMI Service 1.4.8.0 - 'HPWMISVC.exe' Unquoted Service Path Discovery by: Jocelyn Arenas Discovery Date: 2020-11-07 Vendor Homepage: https://www8.hp.com/mx/es/home.html Tested Version: 1.4.8.0 Vulnerability Type: Unquoted Service Path Tested on OS: Windows 10 Home x64 es Step to...

OpenVPN Connect 3.0.0.272 - 'agent_ovpnconnect' Unquoted Service Path

Exploit Title: OpenVPN Connect 3.0.0.272 - 'ovpnagent' Unquoted Service Path Discovery by: Luis Martinez Discovery Date: 2019-11-03 Vendor Homepage: https://openvpn.net Software Link : https://openvpn.net/downloads/openvpn-connect-v3-windows.msi Tested Version: 3.0.0.272 Vulnerability Type:...

ExpressVPN Unquoted Service Path Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title : ExpressVPN - Unquoted Service Path Privilege Escalation Vendor Homepage : www.expressvpn.com Exploit Author: Iran Cyber Security Group Date : 2019-07-14 Tested on : Win10 Discovered By : Und3rgr0und Our Team :...

CVE-2016-7066

It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations...

CVE-2017-8933

Libmenu-cache 1.0.2 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service menu unavailability...

Fitbit Connect Service - Unquoted Service Path Privilege Escalation

Exploit for windows platform in category local exploits Fitbit Connect Service: https://www.fitbit.com/ By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Unquoted Service Path Privilege Escalation Fitbit...

Wacom Consumer Service - Unquoted Service Path Privilege Escalation

Wacom Consumer Service - Unquoted Service Path Privilege Escalation Wacom Consumer Service: http://www.wacom.com By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Unquoted Service Path Privilege Escalati...

Leap Service - Unquoted Service Path Privilege Escalation

Leap service: https://www.leapmotion.com/ By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Unquoted Service Path Privilege Escalation Leap motion's "LeapService" installs as a service with an unquoted...

Foxit Cloud Update Service - Unquoted Service Path Privilege Escalation

Foxit Cloud Update Service: https://www.foxitsoftware.com By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Unquoted Service Path Privilege Escalation Foxit reader's "cloud safe update service" installs ...

NetDrive 2.6.12 - Unquoted Service Path Privilege Escalation

Exploit for windows platform in category local exploits Exploit Title: NetDrive 2.6.12 Unquoted Service Path Elevation of Privilege Date: 24/09/2016 Exploit Author: Tulpa Contact: email protected Author website: www.tulpa-security.com Vendor Homepage: http://www.netdrive.net/ Software Link:...