Lucene search
K

18 matches found

Packet Storm
Packet Storm
added 2024/04/03 12:0 a.m.313 views

SUPERAntiSpyware Professional X 10.0.1264 DLL Hijacking / Privilege Escalation

Title: SUPERAntiSpyware Professional X Version =10.0.1264 "version.dll" Local Privilege Escalation Date: 03.04.2024 Author: M. Akil Gündoğan Vendor Homepage: https://superantispyware.com/ Version: 10.0.1262 and lastest version 10.0.1264 Tested on: Windows 10 Professional x64 PoC Video:...

7.2AI score0.00604EPSS
Exploits2
OSV
OSV
added 2021/11/16 5:4 p.m.18 views

GHSA-X7J7-QP7J-HW3Q Cross-site scripting (XSS) from writer field content in the site frontend

Impact Kirby's writer field stores its formatted content as HTML code. Unlike with other field types, it is not possible to escape HTML special characters against cross-site scripting XSS attacks, otherwise the formatting would be lost. Cross-site scripting XSS is a type of vulnerability that...

5.4CVSS6AI score0.00898EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2020/08/28 9:45 p.m.70 views

Cross Site Scripting and RCE in baserCMS

baserCMS 4.3.6 and earlier is affected by Cross Site Scripting XSS and Remote Code Execution RCE. Impact: XSS to RCE via Arbitrary file upload. Attack vector is: Administrator must be logged in. Components are: ThemeFilesController.php, UploaderFilesController.php. Tested baserCMS Version : 4.3.6...

7.6CVSS1.4AI score0.02152EPSS
Exploits0References5Affected Software1
Talos Blog
Talos Blog
added 2017/07/20 12:29 p.m.43 views

Vulnerability Spotlight: Multiple Vulnerabilities in CorelDRAW X8

Today, Talos is disclosing several vulnerabilities that have been identified in CorelDRAW X8. CorelDRAW X8 is graphics suite used for manipulating raster and vector images and is a common alternative to Adobe Creative Cloud. Several of the vulnerabilities being disclosed today specifically affect...

8.6AI score0.0274EPSS
Exploits5
exploitpack
exploitpack
added 2014/12/12 12:0 a.m.13 views

JetAudio 8.1.3 - .mp4 Crash (PoC)

JetAudio 8.1.3 - .mp4 Crash PoC Exploit Title : jetAudio 8.1.3 Basic Use-after-free Corrupted mp4 Crash POC Product : jetAudio Basic Date : 12.12.2014 Exploit Author : ITDefensor Vulnerability Research Team http://itdefensor.ru/ Software Link : http://www.jetaudio.com/download/ Vulnerable version...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2014/07/08 12:0 a.m.15 views

Microsoft Internet Explorer 910 - CFormElement Use-After-Free Memory Corruption (PoC) (MS14-035)

Microsoft Internet Explorer 910 - CFormElement Use-After-Free Memory Corruption PoC MS14-035 loaded = false ; function func if loaded document.body.innerHTML = "" ; // free CFormElement input1 = document.getElementById"input1" ; input1.onclick = func ; loaded = true ; input1.click; // Call DoClic...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2014/06/24 12:0 a.m.11 views

Microsoft Internet Explorer 8910 - CInput Use-After-Free Crash (PoC) (MS14-035)

Microsoft Internet Explorer 8910 - CInput Use-After-Free Crash PoC MS14-035 MS14-035 Internet Explorer CInput Use-after-free POC Test check var startfl=false; function changer // Call of changer function will happen inside mshtml!CFormElement::DoReset call, after execution of this function crash ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2012/12/17 12:0 a.m.81 views

DDIVRT-2012-48 VMware View Connection Server Directory Traversal (CVE-2012-5978)

Title ----- DDIVRT-2012-48 VMware View Connection Server Directory Traversal CVE-2012-5978 Severity -------- High Date Discovered --------------- September 26, 2012 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: r@b13$ Vulnerability Description...

5CVSS0.6AI score0.02802EPSS
Exploits0
securityvulns
securityvulns
added 2011/12/12 12:0 a.m.48 views

DDIVRT-2011-38 KnowledgeTree login.php Blind SQL Injection

Title ----- DDIVRT-2011-38 KnowledgeTree login.php Blind SQL Injection Severity -------- High Date Discovered --------------- November 18, 2011 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: sxkeebler and r@b13$ Vulnerability Description...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2011/10/31 12:0 a.m.78 views

DDIVRT-2011-35 Cisco Unified Contact Center Express Directory Traversal [CVE-2011-3315]

Title ----- DDIVRT-2011-35 Cisco Unified Contact Center Express Directory Traversal CVE-2011-3315 Severity -------- High Date Discovered --------------- August 9, 2011 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: r@b13$ Vulnerability Description...

7.8CVSS0.7AI score0.26393EPSS
Exploits0
securityvulns
securityvulns
added 2009/06/10 12:0 a.m.56 views

TELUS Security Labs VR - Microsoft Office Excel Malformed Records Stack Buffer Overflow

Microsoft Office Excel Malformed Records Stack Buffer Overflow TSL ID : FSC20090609-01 Reference: http://telussecuritylabs.com/threats/show/FSC20090609-01 1. Affected Software Microsoft Office Excel 2000 Microsoft Office Excel 2002 Reference: http://office.microsoft.com/en-us/excel/default.aspx 2...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2009/03/09 12:0 a.m.50 views

DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability

Title ----- DDIVRT-2009-22 SMART Board Whiteboard Directory Traversal Vulnerability Severity -------- High Date Discovered --------------- January 19th, 2009 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: David Marshall and r@b13$ Vulnerability Description...

Exploits0
0day.today
0day.today
added 2008/09/05 12:0 a.m.26 views

Google Chrome Browser 0.2.149.27 (SaveAs) Remote BOF Exploit

Exploit for unknown platform in category remote exploits ============================================================ Google Chrome Browser 0.2.149.27 SaveAs Remote BOF Exploit ============================================================ PoC Code is in Attach file because this file is saved in...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/09/05 12:0 a.m.15 views

Google Chrome 0.2.149.27 - SaveAs Remote Buffer Overflow

Google Chrome 0.2.149.27 - SaveAs Remote Buffer Overflow PoC Code is in Attach file because this file is saved in 'Unicode' type for exploit. Here is Description for this Vuln : · Type of Issue : Buffer Overflow. · Affected Software : Google Chrome 0.2.149.27. · Exploitation Environment : Goog...

1.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/05 12:0 a.m.38 views

Google Chrome 0.2.149.27 - 'SaveAs' Remote Buffer Overflow

PoC Code is in Attach file because this file is saved in 'Unicode' type for exploit. Here is Description for this Vuln : · Type of Issue : Buffer Overflow. · Affected Software : Google Chrome 0.2.149.27. · Exploitation Environment : Google Chrome Language: Vietnamese on Windows XP SP2. ·...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/06/12 12:0 a.m.35 views

CA-ArcServe

CA ArcServe is prone to a remote buffer overflow because it fails to perform adequate boundary-checks on user-supplied data. Successfully exploiting will allow an attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a...

10CVSS1AI score0.80542EPSS
Exploits6
securityvulns
securityvulns
added 2008/04/25 12:0 a.m.49 views

DDIVRT-2008-11 BadBlue uninst.exe DoS

Title ----- DDIVRT-2008-11 BadBlue uninst.exe DoS Severity -------- Medium Date Discovered --------------- March 5th 2008 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Steven James and r@b13$ Vulnerability Description ------------------------- BadBlue is a...

2.1AI score
Exploits0
securityvulns
securityvulns
added 2006/01/19 12:0 a.m.32 views

[Full-disclosure] DM Primer error handling weakness & an old CAM BO revisited

Apologies for the poor grammer and formatting... DM Primer is a shared service related to CA's Unicenter Remote Control. It is used in Enterprise environments to deploy URC6 from the URC v6.x Administration server. Dmprimer.exe listens on a client device for instructions from the server in a...

Exploits0
Rows per page
Query Builder