21 matches found
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
CVE-2023-38831 - Ejecución Remota de Código en WinRAR RCE exp...
MAL-2022-5680 Malicious code in react-video-live-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d468d734a18f047e43acca515c76ba9b95e8f540c2898360d01c8b8fe4e1a170 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Exploit for Cross-site Scripting in Kunena
CVE-2019-15120 Exploit for XSS via BBCode on Kunena extension...
Microsoft Windows MSHTML Engine - (Edit) Remote Code Execution Exploit
Exploit for windows platform in category local exploits Exploit Title: Microsoft Windows CVE-2019-0541 MSHTML Engine "Edit" Remote Code Execution Vulnerability Google Dork: N/A Date: March, 13 2019 Exploit Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link:...
Keybase: Local privilege escalation bug using Keybase redirector on macOS
There's a local privilege escalation bug in the latest version of Keybase for macOS. The issue is in the process of launching keybase-redirector. The process works as follows: 1. Copy keybase-redirector binary to a root-only location 2. Check its signature 3. Launch the binary Code ref. Note the...
Microsoft Windows - Advanced Local Procedure Call (ALPC) Local Privilege Escalation
Microsoft Windows - Advanced Local Procedure Call ALPC Local Privilege Escalation Note: PoC will now hijack the print spooler service - spoolsv.exe - as it required less code then hijacking printfilterpipelinesvc.exe, which was shown in the original video demo Description of the vulnerability The...
Urban Dictionary: Stored XSS on urbandictionary.com
hi team, I have found an XSS flaw on your site in add page. POC in this video...
Bitwarden: Export vault feature is vulnerable to CSV injection
Hello guys I don't know if you care about this issue but it seems that the export feature in your https://vault.bitwarden.com//tools is vulnerable to CSV injection. If a CSV contains a malicious command it may have big impact Even though there is a popup notification for users before opening the...
Nextcloud: URI scheme bypass in mail app lead to HTML content spoof and opener control
Bug When we load a HTML mail from mailbox via api, etc http://nextcloud/index.php/apps/mail/accounts//folders/SU5CT1g=/messages//html Our content will be passed to HTML Purifier to strip malicious XSS patterns. After that, an filter will apply to transform acceptable URI schemes http, https, ftp,...
UBNT Bug Bounty #3 - Persistent Filename Vulnerability
Document Title: =============== UBNT Bug Bounty 3 - Persistent Filename Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1468 View Video: https://www.youtube.com/watch?v=JeEWyV9VMpE Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1467 Release...
WordPress Plugin Huge-IT Slider 2.7.5 - Multiple Vulnerabilities
WordPress Plugin Huge-IT Slider 2.7.5 - Multiple Vulnerabilities Exploit Title: WordPress: wordpress huge-it-slider 2.7.5 & Persistent JS-HTML Code injection, Arbitrary slider deletion Date: 2015-06-23 Google Dork: intitle:"index of" intext:"/wp-content/plugins/slider-image/" Exploit Author:...
Vulnerability in the Dropbox SDK for Android (CVE-2014-8889)
Hi, We have recently discovered a vulnerability in the Dropbox SDK for Android. This vulnerability may enable theft of sensitive information from apps that use the vulnerable Dropbox SDK both locally by malware and also remotely by using drive-by exploitation techniques. The vulnerability is...
Microsoft Windows - OLE Package Manager SandWorm
Microsoft Windows - OLE Package Manager SandWorm !/usr/bin/env python import os import zipfile import sys ''' Full Exploit: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/35019.tar.gz Very quick and ugly SandWorm CVE-2014-4114 exploit builder Exploit Title:...
WordPress Theme Konzept Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications Exploit Title : WordPress Theme Konzept Arbitrary File Upload Vulnerability Exploit Author : NULLPointer Contact : https://www.facebook.com/xenith.gianni Date : 19/09/2014 Vendor Homepage :...
Facebook SDK vulnerability threatening millions of mobile phone users accounts-vulnerability warning-the black bar safety net
From MetaIntell the smartphone leadership risk management(MRM)security researchers, found a latest version of Facebook SDK vulnerability in the vulnerability exposes millions of Facebook user's authentication token, it still sounds very scary. ! Facebook for Android and IOS SDK provides the use o...
Watermark Master 2.2.23 - Local Buffer Overflow (SEH)
!/usr/bin/python Exploit Title:Watermark Master Buffer Overflow SEH Date found: 31.10.2013 Exploit Author: metacom URL:http://www.videocharge.com/download.php Software Link:www.videocharge.com/download/WatermarkMasterInstall.exe Version: 2.2.23 Vulnerable products:Watermark Master and Watermark...
Apple iOS v7.0.2 5S - Denial of Service Vulnerability (PoC)
Document Title: =============== Apple iOS v7.0.2 5S - Denial of Service Vulnerability PoC References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1106 Video: https://www.youtube.com/watch?v=jf4t0yFoSD8 Release Date: ============= 2013-10-02 Vulnerability Laboratory ID VL-ID:...
[XSSF v.3.0] Cross-Site Scripting Framework
The Cross-Site Scripting Framework XSSF is a security tool designed to turn the XSS vulnerability exploitation task into a much easier work. The XSSF project aims to demonstrate the real dangers of XSS vulnerabilities, vulgarizing their exploitation. This project is created solely for education,...
PHP Webbots Technic via File Include & Webshell VD
Document Title: =============== PHP Webbots Technic via File Include & Webshell VD References: =========== Download: http://www.vulnerability-lab.com/resources/videos/445.wmv View: http://www.youtube.com/watch?v=pwkUVZPxEmQ Release Date: ============= 2012-02-18 Vulnerability Laboratory ID VL-ID:...
French security firm VUPEN Say New Bugs Can Bypass Google Chrome Sandbox !
French security firm VUPEN Say New Bugs Can Bypass Google Chrome Sandbox ! Researchers at the French security firm VUPEN say that they have discovered several new vulnerabilities in Google Chrome that enable them to bypass the browser's sandbox, as well as ASLR and DEP and run arbitrary code on a...