13 matches found
WordPress PopAd Plugin <= 1.0.4 - Server Side Request Forgery (SSRF) Vulnerability
Server Side Request Forgery SSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin PopAd versions = 1.0.4...
CVE-2025-9616
The PopAd plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.4. This is due to missing or incorrect nonce validation on the PopAdresetcookietime function. This makes it possible for unauthenticated attackers to reset cookie time settings via...
CVE-2025-9616
The PopAd plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.4. This is due to missing or incorrect nonce validation on the PopAdresetcookietime function. This makes it possible for unauthenticated attackers to reset cookie time settings via...
CVE-2025-9616 PopAd <= 1.0.4 - Cross-Site Request Forgery to Settings Update
The PopAd plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.4. This is due to missing or incorrect nonce validation on the PopAdresetcookietime function. This makes it possible for unauthenticated attackers to reset cookie time settings via...
CVE-2025-9616
Consolidated details confirm CVE-2025-9616 affects the WordPress PopAd plugin (versions up to and including 1.0.4). The vulnerability is Cross-Site Request Forgery due to missing/incorrect nonce validation in PopAd_reset_cookie_time, enabling unauthenticated attackers to coerce an admin into a co...
PT-2025-35900
Name of the Vulnerable Software and Affected Versions: PopAd plugin for WordPress versions prior to 1.0.5 Description: The PopAd plugin for WordPress is susceptible to Cross-Site Request Forgery due to missing or incorrect nonce validation in the PopAd reset cookie time function. This allows...
WordPress plugin PopAd 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...
eXtremeMP3 Player - Buffer Overflow (SEH)
No description provided by source. +Exploit Title: Exploit Bufer Overflow eXtremeMP3 PlayerSEH +Date: 01\15\2010 +Author: C4SS!0 G0M3S +Software Link: http://ukms.tucows.com/files2/xtremv20RC1.exe +Version: 2.0 +Tested on: WIN-XP SP3 BRAZILIAN +CVE: N/A Create by C4SS!0 G0M3S WWW.INVASAO.COM.BR...
Triologic Media Player 8 (.m3u) Local Universal Unicode Buffer Overflow (SEH)
No description provided by source. Exploit Title: Triologic Media Player 8 .m3u Local Universal Unicode Buffer Overflow SEH Date: August 17, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Software Link: http://download.cnet.com/Triologic-Media-Player/3000-21394-10691520.html Version:...
HexChat 2.9.4 Buffer Overflow
!/usr/bin/python HexChat 2.9.4 Local Exploit Bug found by Jules Carter Exploit by Matt "hostess" Andreko http://www.mattandreko.com/2013/04/buffer-overflow-in-hexchat-294.html junk1 = "B"30 shellcode = msfvenom -p windows/messagebox EXITFUNC=process BufferRegister=ESP -e x86/alphamixed -f c...
HexChat 2.9.4 Local Exploit Submission
Exploit for windows platform in category local exploits !/usr/bin/python HexChat 2.9.4 Local Exploit Bug found by Jules Carter Exploit by Matt "hostess" Andreko http://www.mattandreko.com/2013/04/buffer-overflow-in-hexchat-294.html junk1 = "B"30 shellcode = msfvenom -p windows/messagebox...
HexChat 2.9.4 - Local Overflow
!/usr/bin/python HexChat 2.9.4 Local Exploit Bug found by Jules Carter Exploit by Matt "hostess" Andreko http://www.mattandreko.com/2013/04/buffer-overflow-in-hexchat-294.html junk1 = "B"30 shellcode = msfvenom -p windows/messagebox EXITFUNC=process BufferRegister=ESP -e x86/alphamixed -f c...
[EXPL] Easy File Sharing FTP Server PASS Buffer Overflow (Exploit)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...