19 matches found
Exploit for CVE-2026-42945
nginx-rift-scanner Dependency-free Python 3 scanner for CVE...
Exploit for Stack-based Buffer Overflow in Microsoft
CVE-2026-41089 Detector Safe detection script for CVE-2026-...
SUSE CVE-2026-43369
In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix NULL pointer dereference in device cleanup When GPU initialization fails due to an unsupported HW block IP blocks may have a NULL version pointer. During cleanup in amdgpudevicefinihw, the code calls...
📄 FreePBX Filestore Command Injection
This script targets a potential remote command execution vector in the FreePBX Filestore module by leveraging a valid PHP session cookie PHPSESSID to access administrative AJAX endpoints. The exploit attempts to abuse the testconnection function within the filestore module to inject and execute...
CVE-2026-30900 Zoom Workplace Clients for Windows - Improper Check
Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access...
Zoom Clients for Windows 安全漏洞
Zoom Clients for Windows is a video conferencing software developed by the American company Zoom. There is a security vulnerability in Zoom Clients for Windows, which stems from improper version checking in the update function. This vulnerability could allow authenticated users to gain elevated...
WordPress ACF 0.9.1.1 Vulnerability Scanner
WordPress ACF plugin version 0.9.1.1 non‑intrusive vulnerability scanner that performs version checks...
EUVD-2023-59923
Malicious code in bioql PyPI...
CVE-2023-53266
In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Fix possible memory leak of ffhctxt Allocated 'ffhctxt' memory leak is possible if the SMCCC version and conduit checks fail and -EOPNOTSUPP is returned without freeing the allocated memory. Fix the same by moving th...
CVE-2020-25056
An issue was discovered on Samsung mobile devices with Q10.0 Galaxy S20 software. Because HAL improperly checks versions, bootloading by the S.LSI NFC chipset is mishandled. The Samsung ID is SVE-2020-16169 August 2020...
GHSA-Q6R9-R9PW-4CF7 tough failure to detect delegated target rollback
Summary When updating the snapshot role, TUF clients should ensure that any previously encountered targets or delegated targets metadata files continue to be present in new snapshot metadata files. Likewise, the new targets and delegated targets metadata versions must be greater than or equal to...
CVE-2023-34162
Version update determination vulnerability in the user profile module.Successful exploitation of this vulnerability may cause repeated HMS Core updates and cause services to fail...
Hyundai Gen5W_L 安全漏洞
Hyundai Gen5WL is an automotive standard navigation infotainment system from Hyundai, South Korea. The Hyundai Gen5WL suffers from a security vulnerability that arises from the fact that the AppUpgrade binary file used during firmware installation can be modified by an attacker to bypass version...
CVE-2022-22781
The Zoom Client for Meetings for MacOS Standard and for IT Admin prior to version 5.9.6 failed to properly check the package version during the update process. This could lead to a malicious actor updating an unsuspecting user’s currently installed version to a less secure version...
Metasploit Wrap-Up
Metasploit keeping that developer awareness rate up. Thanks to mrme & wvu, SharePoint is an even better target to find in your next penetration test. The newly minted module can net you a shell and a copy of the servers config, making that report oh so much more fun. Like to escape the sandbox?...
CVE-2020-25056
An issue was discovered on Samsung mobile devices with Q10.0 Galaxy S20 software. Because HAL improperly checks versions, bootloading by the S.LSI NFC chipset is mishandled. The Samsung ID is SVE-2020-16169 August 2020...
SNMP Login Successful For Authenticated Checks
It was possible to login using the provided SNMPv1 / SNMPv2 community string / SNMPv3 credentials. Hence version checks based on SNMP are working. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
Percona toolkit and xtrabackup information disclosure vulnerability
Percona percona-toolkit and xtrabackup are both products of Percona Inc. percona-toolkit is a set of high-level command-line tools. xtrabackup is a set of open-source tools for backing up InnoDB databases with MySQL. version checking subroutine is one of the version checking subroutine . A securi...
Mozilla Firefox location.hash Remote DoS Vulnerability
The host is installed with Mozilla Firefox browser and is prone to denial of service vulnerability. Vulnerability: The flaw is due to improper way of handling input passed to location.hash. OpenVAS Vulnerability Test $Id: secpodfirefoxlocationhashdosvuln.nasl 6468 2017-06-28 14:05:02Z cfischer $...