CVE-2019-3575

Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

Code injection

Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

PYSEC-2019-52

Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

PYSEC-2019-122

Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...

CVE-2019-3575

Sqla_yaml_fixtures up to version 0.9.1 is vulnerable to code injection: the fixture_text argument passed to sqla_yaml_fixtures.load can execute arbitrary Python code. Root cause is unsafe use of yaml.load. Impact is local code execution with high risk; remediation details are not provided in the ...

EZ CD Audio Converter 8.0.7 Denial Of Service

Exploit Title: EZ CD Audio Converter 8.0.7 - Denial of Service PoC Date: 2018-12-30 Exploit Author: Achilles Vendor Homepage: https://www.poikosoft.com/ Software Link : https://download.poikosoft.com/ezcdaudioconvertersetupx64.exe Exploit Author: Achilles Tested Version: 8.0.7 64-bit Tested on:...

NetworkSleuth 3.0.0.0 - Key Denial of Service Exploit

Exploit Title: NetworkSleuth 3.0.0.0 - 'Key' Denial of Service PoC Discovery by: Luis Martinez Vendor Homepage: www.nsauditor.com Software Link : http://www.nsauditor.com/downloads/networksleuthsetup.exe Tested Version: 3.0.0.0 Vulnerability Type: Denial of Service DoS Local Tested on OS: Windows...

EZ CD Audio Converter 8.0.7 - Denial of Service Exploit

Exploit Title: EZ CD Audio Converter Date: 30-12-2018 Vendor Homepage: https://www.poikosoft.com/ Software Link : https://download.poikosoft.com/ezcdaudioconvertersetupx64.exe Exploit Author: Achilles Tested Version: 8.0.7 64-bit Tested on: Windows 7 x64 Vulnerability Type: Denial of Service DoS...

Angry IP Scanner for Linux 3.5.3 - Denial of Service (PoC)

Angry IP Scanner for Linux 3.5.3 - Denial of Service PoC Exploit Title: Angry IP Scanner for Linux 3.5.3 - Denial of Service PoC Discovery by: Mr Winst0n Discovery Date: 2018-12-22 Vendor Homepage: https://angryip.org/ Software Link : https://angryip.org/download/ Tested Version: 3.5.3 latest...

AnyBurn 4.3 Local Buffer Overflow

!/usr/bin/env python Exploit Title: AnyBurn 4.3 - Local Buffer Overflow SEH Unicode Date: 20-12-2018 Exploit Author: Matteo Malvica Vendor Homepage: http://www.anyburn.com/ Software Link : http://www.anyburn.com/anyburnsetup.exe Tested Version: 4.3 32-bit Tested on: Windows 7 x64 SP1 Credits:...

Angry IP Scanner 3.5.3 Denial Of Service

Exploit Title: Angry IP Scanner - Denial of Service PoC Discovery by: Mr Winst0n Discovery Date: 2018-12-22 Vendor Homepage: https://angryip.org/ Software Link : https://angryip.org/download/ Tested Version: 3.5.3 latest version Tested on: Kali linux Vulnerability Type: Denial of Service DoS Step...

AnyBurn 4.3 - Local Buffer Overflow (SEH)

!/usr/bin/env python Exploit Title: AnyBurn 4.3 - Local Buffer Overflow SEH Unicode Date: 20-12-2018 Exploit Author: Matteo Malvica Vendor Homepage: http://www.anyburn.com/ Software Link : http://www.anyburn.com/anyburnsetup.exe Tested Version: 4.3 32-bit Tested on: Windows 7 x64 SP1 Credits:...

PDF Explorer 1.5.66.2 SEH Buffer Overflow

Exploit Title: PDF Explorer SEH Local Exploit Original Discovery:Gionathan "John" Reale DoS exploit Exploit Author: Achilles Date: 18-12-2018 Vendor Homepage: http://www.rttsoftware.com/ Software Link: https://www.rttsoftware.com/files/PDFExplorerTrialSetup.zip Tested Version: 1.5.66.2 Tested on:...

PDF Explorer 1.5.66.2 - Buffer Overflow (SEH)

PDF Explorer 1.5.66.2 - Buffer Overflow SEH Exploit Title: PDF Explorer SEH Local Exploit Original Discovery:Gionathan "John" Reale DoS exploit Exploit Author: Achilles Date: 18-12-2018 Vendor Homepage: http://www.rttsoftware.com/ Software Link:...

MegaPing Buffer Overflow / Denial Of Service

Exploit Title: MegaPing Date: 15-12-2018 Vendor Homepage: http://www.magnetosoft.com/ Software Link: http://www.magnetosoft.com/downloads/win32/megapingsetup.exe Exploit Author: Achilles Tested Version: Tested on: Windows 7 x64 Vulnerability Type: Denial of Service DoS Local Buffer Overflow Steps...

Nsauditor 3.0.28.0 - Local SEH Buffer Overflow

Nsauditor 3.0.28.0 - Local SEH Buffer Overflow Exploit Title: Nsauditor Local SEH Buffer Overflow Date: 15-12-2018 Vendor Homepage:http://www.nsauditor.com Software Link: http://www.nsauditor.com/downloads/nsauditorsetup.exe Exploit Author: Achilles Tested Version: 3.0.28.0 Tested on: Windows XP...

Nsauditor 3.0.28.0 - Local SEH Buffer Overflow

Exploit Title: Nsauditor Local SEH Buffer Overflow Date: 15-12-2018 Vendor Homepage:http://www.nsauditor.com Software Link: http://www.nsauditor.com/downloads/nsauditorsetup.exe Exploit Author: Achilles Tested Version: 3.0.28.0 Tested on: Windows XP SP3 1.- Run python code : Nsauditor.py 2.- Open...

MegaPing Denial of Service Exploit

Exploit Title: MegaPing Vendor Homepage: http://www.magnetosoft.com/ Software Link: http://www.magnetosoft.com/downloads/win32/megapingsetup.exe Exploit Author: Achilles Tested Version: Tested on: Windows 7 x64 Vulnerability Type: Denial of Service DoS Local Buffer Overflow Steps to Produce the...

UltraISO 9.7.1.3519 Output FileName Denial Of Service

Exploit Title: UltraISO 9.7.1.3519 - 'Output FileName' Denial of Service PoC and Pointer to next SEH and SE handler records overwrite Discovery by: Francisco Ramirez Discovery Date: 2018-12-14 Vendor Homepage: https://www.ultraiso.com/ Software Link : https://www.ultraiso.com/download.html Tested...

VSAXESS 2.6.2.70 Build 20171226_053 Denial Of Service

Exploit Title: VSAXESS V2.6.2.70 build20171226053 - 'organization' Denial of Service PoC Discovery by: Diego Santamaria Discovery Date: 2018-11-05 Vendor Homepage: https:https://www.visionistech.com/en/home/ Software Link: https://www.visionistech.com/en/vsaxess-desktop-software/ Tested Version:...