CVE-2019-8900

CVE-2019-8900 concerns a SecureROM vulnerability in some Apple devices that allows an unauthenticated local attacker to execute arbitrary code on boot. Exploitation requires physical access: device must be connected to a computer and booted in DFU mode; the change is not persistent across reboots...

Content Copy Protection & Prevent Image Save <= 1.3 - CSRF to Stored Cross-Site Scripting (XSS)

The plugin does not check for CSRF when saving its settings, not perform any validation and sanitisation on them, allowing attackers to make a logged in administrator set arbitrary XSS payloads in them. -- PoC 1 | Authenticated Persistent XSS & XFS | Image saving disabled message text: ! POST...

CyberLink Power2Go Essential 9.0.1002.0 Overflow

!/usr/bin/perl Exploit Title: CyberLink Power2Go Essential 9.0.1002.0 - Registry SEH/Unicode Buffer Overflow Discovery date: 11-26-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software/Version: CyberLink Power2Go 9 Essential 9.0.1002.0 Vendor Site: http://www.cyberlink.com...

Skype 5.8 & 5.5 - Corruption & Persistent Vulnerability

Document Title: =============== Skype 5.8 & 5.5 - Corruption & Persistent Vulnerability References: =========== Download: http://www.vulnerability-lab.com/resources/videos/447.wmv View: http://www.youtube.com/watch?v=zQWgD-YzN-4 Release Date: ============= 2012-03-28 Vulnerability Laboratory ID...