CVE-2023-53698 xsk: fix refcount underflow in error path

In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is running out of memory. If xpalloctxdescs fails, and it can only fail due to not having enough memory,...

The Price of ‘Free’: How Nulled Plugins Are Used to Weaken Your Defense

The Wordfence Threat Intelligence Team has discovered a new malware campaign that highlights the hidden risks associated with "nulled plugins", or premium plugins that have been tampered with by third parties. This campaign is particularly concerning because it doesn't just infect websites: it...

Academy Learning Management System 5.7 Shell Upload

Exploit Title: Academy Learning Management System 5.7 Shell Upload Exploit Author: th3d1gger Vendor Homepage: https://codecanyon.net Software Link: https://codecanyon.net/item/academy-course-based-learning-management-system/22703468 Version: 5.7 Tested on Ubuntu 18.04 Totally wrong architecture f...

YODA Tool Found ~47,000 Malicious WordPress Plugins Installed in Over 24,000 Sites

As many as 47,337 malicious plugins have been uncovered on 24,931 unique websites, out of which 3,685 plugins were sold on legitimate marketplaces, netting the attackers $41,500 in illegal revenues. The findings come from a new tool called YODA that aims to detect rogue WordPress plugins and trac...

flinx <= 1.3 (category.php id) Remote SQL Injection Vulnerability

No description provided by source. -------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 + RxH -------------------------------------------------------------- Author : Houssamix From H-T Team Script : flinx 1.3 & below Download :...

vBulletin 4.0.x 4.1.3 - messagegroupid SQL Injection

vBulletin 4.0.x 4.1.3 - messagegroupid SQL Injection Exploit Title: Vbulletin 4.0.x = 4.1.3 messagegroupid SQL injection Vulnerability 0-day Google Dork: intitle: powered by Vbulletin 4 Date: 20/07/2011 Author: FB1H2S Software Link: urlhttp://www.vbulletin.com//url Version: 4.x.x Tested on:...

vBulletin 4.1.3 SQL Injection

Exploit Title: Vbulletin 4.0.x = 4.1.3 messagegroupid SQL injection Vulnerability 0-day Google Dork: intitle: powered by Vbulletin 4 Date: 20/07/2011 Author: FB1H2S Software Link: urlhttp://www.vbulletin.com//url Version: 4.x.x Tested on: relevant os CVE : urlhttp://members.vbulletin.com//url...

Vbulletin 4.0.x => 4.1.3 (messagegroupid) SQL injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Vbulletin 4.0.x = 4.1.3 messagegroupid SQL injection Vulnerability 0-day Google Dork: intitle: powered by Vbulletin 4 Date: 20/07/2011 Author: FB1H2S Software Link: urlhttp://www.vbulletin.com//url Version: 4.x.x Tested on:...

vBulletin 4.0.x 4.1.3 - &#039;messagegroupid&#039; SQL Injection

Exploit Title: Vbulletin 4.0.x = 4.1.3 messagegroupid SQL injection Vulnerability 0-day Google Dork: intitle: powered by Vbulletin 4 Date: 20/07/2011 Author: FB1H2S Software Link: urlhttp://www.vbulletin.com//url Version: 4.x.x Tested on: relevant os CVE : urlhttp://members.vbulletin.com//url...

Social Media 2.0.0 Local File Inclusion

x========================================================================================================================================x | Title : Social Media v2.0.0 LFI Vulnerabilities | Software : Social Media v2.0.0 | Vendor : http://www.mediascripts.com/ | Demo :...

vBulletin nulled &#40;validator.php&#41; files/directories disclosure

Description: With this file you can see all files.sql - .tar.gz - .zip - .rar - .php - .anything / directories from the folder with vBulletin installed... Exploit: http://www.website.com/vBforum/validator.php Author: PaxNwo www.rstcenter.com...

flinx &lt;= 1.3 (category.php id) Remote SQL Injection Vulnerability

No description provided by source. -------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 + RxH -------------------------------------------------------------- Author : Houssamix From H-T Team Script : flinx 1.3 & below Download :...

flinx 1.3 - &#039;id&#039; SQL Injection

-------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 + RxH -------------------------------------------------------------- Author : Houssamix From H-T Team Script : flinx 1.3 & below Download : http://rapidshare.com/files/86100439/flinx.rar.html Nulled BUG :...

solaris/sparc connect-back (with XNOR encoded session) 600 bytes

No description provided by source. / black-RXenc-con-back-SOLARIS.c MIPS This is a relitivly small 600 byte shellcode that encodes all network trafic between the exploited process and the attacker. All clear-text shell i/o is encoded using a simple NOT algo before being transmitted on the wire...