Lucene search
K
ExploitdbRecent

47904 matches found

Exploit DB
Exploit DB
added 2018/08/01 12:0 a.m.58 views

SonicWall Global Management System - XMLRPC set_time_zone Command Injection (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "SonicWall Global Management System XMLRPC settimezone Unath RCE", 'Description' = %q This module exploits a vulnerability in SonicWall Global...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/08/01 12:0 a.m.34 views

WebRTC - H264 NAL Packet Processing Type Confusion

Type confusion can occur when processing a H264 packet. In the method PacketBuffer::FindFrames in modules/videocoding/packetbuffer.cc there is a loop on line 296 that goes through the databuffer vector backwards. The flag ish264 is set before this loop, and if it is true, the loop extracts and se...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/08/01 12:0 a.m.35 views

Allok Fast AVI MPEG Splitter 1.2 - Buffer Overflow (PoC)

Exploit Title: Allok Fast AVI MPEG Splitter 1.2 SEH Overwrite POC Vulnerability Type: SEH Overwrite POC Discovery by: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Discovey Date: 2018-08-01 Software Link: http://www.alloksoft.com/fastsplitter.htm Tested Version: 1.2 Tested on OS:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/08/01 12:0 a.m.26 views

WebRTC - VP8 Block Decoding Use-After-Free

There is a use-after-free in VP8 block decoding in WebRTC. The contents of the freed block is then treated a pointer, leading to a crash in WebRTC. ==20098==ERROR: AddressSanitizer: heap-use-after-free on address 0x6330000a9491 at pc 0x0000014cde2f bp 0x7ff20616d7e0 sp 0x7ff20616d7d8 READ of size...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/08/01 12:0 a.m.37 views

WebRTC - FEC Processing Overflow

There are several calls to memcpy that can overflow the destination buffer in webrtc::UlpfecReceiverImpl::AddReceivedRedPacket. The method takes a parameter incomingrtppacket, which is an RTP packet with a mac length that is defined by the transport 2048 bytes for DTLS in Chrome. This packet is...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/31 12:0 a.m.94 views

Craft CMS SEOmatic plugin 3.1.4 - Server-Side Template Injection

Exploit Title: Craft CMS SEOmatic plugin 3.1.4 - Server-Side Template Injection Date: 2018-07-20 Software Link: https://github.com/nystudio107/craft-seomatic Exploit Author: Sebastian Kriesten 0xB455 Contact: https://twitter.com/0xB455 CVE: CVE-2018-14716 Category: webapps 1. Description An...

7.5CVSS7.6AI score0.33034EPSS
Exploits3
Exploit DB
Exploit DB
added 2018/07/31 12:0 a.m.27 views

Switch Port Mapping Tool 2.81 - 'SNMP Community Name' Denial of Service (PoC)

Exploit Title: Switch Port Mapping Tool 2.81 - 'SNMP Community Name' Denial of Service PoC Discovery by: Luis Martinez Discovery Date: 2018-07-27 Vendor Homepage: https://switchportmapper.com/ Software Link : http://download.switchportmapper.com/spm281.zip Tested Version: 2.81 Vulnerability Type:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/31 12:0 a.m.47 views

LG NAS 3718.510.a0 - Remote Command Execution

LG NAS 3718.510.a0 - Remote Command Execution Author: @0x616163 Date: 2018-07-29 Credits: https://www.vpnmentor.com/blog/critical-vulnerability-found-majority-lg-nas-devices/ CVE: N/A Firmware Version: 3718.510.a0 !/usr/bin/env python import sys import argparse import requests from collections...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/31 12:0 a.m.18 views

ipPulse 1.92 - 'Licence Key' Denial of Service (PoC)

Exploit Title: ipPulse 1.92 - 'License Key' Denial of Service PoC Discovery by: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Discovery Date: 2018-07-30 Vendor Homepage: https://www.netscantools.com/ippulseinfo.html Software Link: http://download.netscantools.com/ipls192.zip Tested...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.35 views

Responsive Filemanager 9.13.1 - Server-Side Request Forgery

Exploit Title: Responsive filemanager 9.13.1 - Server-Side Request Forgery Date: 2018-07-29 Exploit Author: GUIA BRAHIM FOUAD Vendor Homepage: http://responsivefilemanager.com/ Software Link: https://github.com/trippo/ResponsiveFilemanager/releases/download/v9.13.1/responsivefilemanager.zip...

9.8CVSS9.8AI score0.76511EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.68 views

H2 Database 1.4.197 - Information Disclosure

Exploit Title: H2 Database 1.4.197 - Information Disclosure Date: 2018-07-16 Exploit Author: owodelta Vendor Homepage: www.h2database.com Software Link: http://www.h2database.com/html/download.html Version: all versions Tested on: Linux CVE : CVE-2018-14335 Description: Insecure handling of...

6.5CVSS7AI score0.13389EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.42 views

fusermount - user_allow_other Restriction Bypass and SELinux Label Control

/ It is possible to bypass fusermount's restrictions on the use of the "allowother" mount option as follows if SELinux is active. Here's a minimal demo, tested on a Debian system with SELinux enabled in permissive mode: =============================================== uuser@debian:$ mount|grep...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.54 views

ipPulse 1.92 - 'IP Address/HostName-Comment' Denial of Service (PoC)

Exploit Title: ipPulse 1.92 - 'IP Address/HostName-Comment' Denial of Service PoC Discovery by: Luis Martinez Discovery Date: 2018-07-27 Vendor Homepage: https://www.netscantools.com/ippulseinfo.html Software Link : http://download.netscantools.com/ipls192.zip Tested Version: 1.92 Vulnerability...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.14 views

Allok MOV Converter 4.6.1217 - Buffer Overflow (SEH)

Exploit Title: Allok MOV Converter 4.6.1217 - Buffer Overflow SEH Date: 2018-07-29 Discovery by: Shubham Singh Known As: Spirited Wolf Twitter: @Pwsecspirit Software Link: http://www.alloksoft.com/allokmovconverter.exe Tested Version: 4.6.1217 Tested on OS: Windows XP Service Pack 3 x86 Greetz:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.40 views

Charles Proxy 4.2 - Local Privilege Escalation

Charles Proxy is a great mac application for debugging web services and inspecting SSL traffic for any application on your machine. In order to inspect the SSL traffic it needs to configure the system to use a proxy so that it can capture the packets and use its custom root CA to decode the SSL...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/30 12:0 a.m.52 views

Microsoft Windows Kernel - 'win32k!NtUserConsoleControl' Denial of Service (PoC)

/ Exploit Title: Microsoft Windows Kernel - 'win32k!NtUserConsoleControl' Denial of Service PoC Author: vportal Date: 2018-07-27 Vendor homepage: http://www.microsoft.com Version: Windows 7 x86 Tested on: Windows 7 x86 CVE: N/A It is possible to trigger a BSOD caused by a Null pointer deference...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.278 views

QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service (PoC)

Exploit Title: QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service PoC Discovery by: Luis Martínez Discovery Date: 2018-07-26 Vendor Homepage: https://www.qnapsecurity.com/n/en/ Software Link : http://download.qnap.com/Surveillance/QVRClient/Qmon5.1.1.30070.zip Tested Version: 5.1.1.30070...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.79 views

Skia - Heap Overflow in SkScan::FillPath due to Precision Error

There is a heap overflow in Skia when drawing paths with antialiasing turned off. This issue can be triggered in both Google Chrom and Mozilla Firefox by rendering a specially crafted SVG image. PoCs for both browsers are attached. Details: When Skia fills a path with antialiasing turned off,...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.74 views

SoftNAS Cloud < 4.0.3 - OS Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SoftNAS Cloud OS Command Injection 1. Advisory Information Title: SoftNAS Cloud OS Command Injection Advisory ID: CORE-2018-0009 Advisory URL: http://www.coresecurity.com/advisories/softnas-cloud-OS-command-injection Date...

10CVSS9.6AI score0.89575EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.48 views

NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service (PoC)

Exploit Title: NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service PoC Discovery by: Luis Martínez Discovery Date: 2018-07-26 Vendor Homepage: https://www.netscantools.com/ Software Link : http://download.netscantools.com/nstb250.zip Tested Version: 2.5 Vulnerability Type: Denial of...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.119 views

Axis Network Camera - .srv to parhand Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Axis Network Camera .srv to parhand RCE', 'Description' = %q This module exploits an auth bypass in .srv functionality and a command injection in...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.52 views

WordPress Plugin Responsive Thumbnail Slider - Arbitrary File Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "WordPress Responsive Thumbnail Slider Arbitrary File Upload", 'Description' = %q This module exploits an arbitrary file upload vulnerability in...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/27 12:0 a.m.56 views

Online Trade 1 - Information Disclosure

Exploit Title: Online Trade 1 - Information Disclosure Exploit Author: Dhamotharan Date: 2018-07-17 Vendor Homepage: https://codecanyon.net/item/online-trade-online-forex-and-cryptocurrency-investment-system/21987193?srank=14 CVE : CVE-2018-14328 Version: 1 Tested on: Kali Linux Description :...

9.8CVSS9.7AI score0.10662EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/07/26 12:0 a.m.236 views

Trivum Multiroom Setup Tool 8.76 - Corss-Site Request Forgery (Admin Bypass)

Exploit Title: Trivum Multiroom Setup Tool 8.76 - Corss-Site Request Forgery Admin Bypass Date: 2018-07-25 Software Link: https://world.trivum-shop.de https://world.trivum-shop.de/ Version: 9.34 build 13381 - 12.07.18 Category: hardware, webapps Tested on: V8.76 - SNR 8604.26 - C4 Professional...

9.8CVSS9.7AI score0.17871EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/07/26 12:0 a.m.33 views

Core FTP 2.0 - 'XRMD' Denial of Service (PoC)

Exploit Title: Core FTP 2.0 - 'XRMD' Denial of Service PoC Date: 2018-07-24 Exploit Author: Erik David Martin Vendor Homepage: http://www.coreftp.com/ Software Link: http://www.coreftp.com/server/download/CoreFTPServer.exe Version: Version 2.0, build 653, 32-bit Tested on: Windows XP Professional...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/26 12:0 a.m.36 views

Kirby CMS 2.5.12 - Cross-Site Request Forgery (Delete Page)

Exploit Title:​​ Kirby CMS 2.5.12 - Cross-Site Request Forgery Delete Page Date: 2018-07-22 Exploit Author: Zaran Shaikh Version: 2.5.12 CVE: NA Category: Web Application 1. Description The application allows malicious HTTP requests to be sent in order to trick a user into adding/ deleting web...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/25 12:0 a.m.49 views

GetGo Download Manager 6.2.1.3200 - Denial of Service (PoC)

Exploit Title: GetGo Download Manager 6.2.1.3200 - Buffer Overflow Denial of Service Date: 2018-07-25 Exploit Author: Nathu Nandwani Website: http://nandtech.co CVE: CVE-2017-17849 Tested On: Windows 7 x86, Windows 10 x64 Details The downloader feature of GetGo Download Manager is vulnerable to a...

10CVSS9.4AI score0.19015EPSS
Exploits9
Exploit DB
Exploit DB
added 2018/07/25 12:0 a.m.34 views

10-Strike Bandwidth Monitor 3.7 - Local Buffer Overflow (SEH)

Title: 10-Strike Bandwidth Monitor 3.7 - Local Buffer Overflow SEH Date: 2018-07-24 Exploit Author: absolomb Vendor Homepage: https://www.10-strike.com/products.shtml Software Link: https://www.10-strike.com/bandwidth-monitor/download.shtml Run script, open up generated txt file and copy to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/25 12:0 a.m.39 views

10-Strike LANState 8.8 - Local Buffer Overflow (SEH)

Exploit Title: 10-Strike LANState 8.8 - Local Buffer Overflow SEH Date: 2018-07-24 Exploit Author: absolomb Vendor Homepage: https://www.10-strike.com/products.shtml Software Link: https://www.10-strike.com/lanstate/download.shtml Version 8.8 Tested on: Windows 7 SP 1 x86 Open LANState, File -...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/24 12:0 a.m.59 views

Nagios Core 4.4.1 - Denial of Service

Exploit Title: Nagios Core Multiple Local Denial of Service Date: 2018-07-09 Exploit Author: Fakhri Zulkifli @d0lph1n98 Vendor Homepage: https://www.nagios.org/ Software Link: https://www.nagios.org/downloads/nagios-core/ Version: 4.4.1 and earlier Tested on: 4.4.1 qhcore, qhhelp, and qhecho in...

5.5CVSS5.8AI score0.0451EPSS
Exploits7
Exploit DB
Exploit DB
added 2018/07/24 12:0 a.m.45 views

Micro Focus Secure Messaging Gateway (SMG) < 471 - Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "MicroFocus Secure Messaging Gateway Remote Code Execution", 'Description' = %q This module exploits a SQL injection and command injection...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/24 12:0 a.m.42 views

D-link DAP-1360 - Path Traversal / Cross-Site Scripting

Exploit Title: D-Link DAP-1360 File path traversal and Cross site scriptingreflected can lead to Authentication Bypass easily. Date: 20-07-2018 Exploit Author: r3m0t3nu11 Contact : http://twitter.com/r3m0t3nu11 Vendor : www.dlink.com Version: Hardware version: F1 Firmware version: 6.O5 Tested...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.23 views

Linux/x86 - Bind (4444/TCP) Shell (/bin/sh) + IPv6 Shellcode (100 bytes)

Linux/x86 - Bind 4444/TCP Shell /bin/sh + IPv6 Shellcode 100 bytes. Shellcode exploit for Linuxx86 platform Title: Linux/x86 - Bind 4444/TCP Shell + IPv6 Shellcode 100 bytes Length : 100bytes Author: Kartik Durg Write-up Link: https://iamroot.blog/2018/07/17/0x1-shellbindtcpipv6-linux-x86/ Tested...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.28 views

Kirby CMS 2.5.12 - Cross-Site Scripting

Exploit Title:​​ Kirby CMS 2.5.12 - Cross-Site Scripting Date: 2018-07-22 Exploit Author: Zaran Shaikh Version: ​2.5.12 CVE : ​NA Category: ​Web Application Description The application allows user injected payload which can lead to Stored Cross Site Scripting. Proof of Concept 1. Visit the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.34 views

Davolink DVW 3200 Router - Password Disclosure

Exploit Title: Davolink DVW 3200 Router - Password Disclosure Google Dork: N/A Zoomeye dork : https://www.zoomeye.org/searchResult?q=%22var%20userpasswd%22%20%2Bapp%3A%22DAVOLINK%20GAPD-7000%20WAP%20httpd%22 Date: 2018-07-13 Exploit Author: Ankit Anubhav Vendor Homepage: www.davolink.co.kr Softwa...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.57 views

Microsoft Windows Speech Recognition - Buffer Overflow (PoC)

Title: Windows Speech Recognition- Buffer Overflow Author: Nassim Asrir Contact: [email protected] | https://www.linkedin.com/in/nassim-asrir-b73a57122/ Vendor: https://www.microsoft.com/ About Windows Speech Recognition: ================================= Windows Speech Recognition lets you...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.50 views

Microsoft Windows - 'dnslint.exe' Drive-By Download

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-DNSLINT.EXE-FORCED-DRIVE-BY-DOWNLOAD.txt + ISR: Apparition Security Greetz: indoushka | Eduardo Vendor ================= www.microsoft.com Product ===========...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.46 views

Splinterware System Scheduler Pro 5.12 - Privilege Escalation

Exploit Title: Splinterware System Scheduler Pro 5.12 - Privilege Escalation Exploit Author: bzyo Twitter: @bzyo Date: 2018-07-21 Vulnerable Software: System Scheduler Pro 5.12 Vendor Homepage: https://www.splinterware.com Version: 5.12 Tested Windows 7 SP1 x86 CVE: N/A Description: Splinterware...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.22 views

Synology DiskStation Manager 4.1 - Directory Traversal

Exploit Title: Synology DiskStation Manager 4.1 - Directory Traversal Google Dork: N/A Date: 2018-07-21 Exploit Author: Berk Dusunur Vendor Homepage: https://www.synology.com Software Link: https://www.synology.com Version: v4.1 Tested on: Parrot OS CVE : N/A PoC...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.21 views

Splinterware System Scheduler Pro 5.12 - Buffer Overflow (SEH)

!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: Splinterware System Scheduler Pro 5.12 - Local Buffer Overflow SEH Date: 07-21-18 Vulnerable Software: System Scheduler Pro 5.12 Vendor Homepage: https://www.splinterware.com Version: 5.12 Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.24 views

NUUO NVRmini - 'upgrade_handle.php' Remote Command Execution

Exploit Title: NUUO NVR Unauthenticated Remote Code Execution Exploit Author: Berk Dusunur Google Dork: N/A Date: 2018-07-21 Vendor Homepage: http://www.nuuo.com/ Software Link: http://www.nuuo.com/ Affected Version: v2016 Tested on: Parrot OS CVE : N/A Proof Of Concept GET...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/23 12:0 a.m.46 views

Tenda Wireless N150 Router 5.07.50 - Cross-Site Request Forgery (Reboot Router)

Exploit Title: Tenda Wireless N150 Router 5.07.50 - Cross-Site Request Forgery Reboot Router Date: 2018-07-21 Exploit Author: Nathu Nandwani Website: http://nandtech.co CVE: CVE-2015-5996 Description: The router is vulnerable to a cross-site request forgery attacker. If an administrator is...

8.8CVSS8.8AI score0.01383EPSS
Exploits4
Exploit DB
Exploit DB
added 2018/07/22 12:0 a.m.38 views

GeoVision GV-SNVR0811 - Directory Traversal

Exploit Title: GeoVision GV-SNVR0811 Directory Traversal Exploit Author: Berk Dusunur Google Dork: N/A Type: Hardware Date: 2018-07-21 Vendor Homepage: http://www.geovision.com.tw/product/GV-SNVR0811 Software Link: http://www.geovision.com.tw/product/GV-SNVR0811 Affected Version: N/A Tested on:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/21 12:0 a.m.32 views

Inteno’s IOPSYS - (Authenticated) Local Privilege Escalation

!/usr/bin/python import json import sys import subprocess import socket import os from websocket import createconnection def ubusAuthhost, username, password: ws = createconnection"ws://" + host, header = "Sec-WebSocket-Protocol: ubus-json" req = json.dumps"jsonrpc":"2.0","method":"call",...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/20 12:0 a.m.65 views

MSVOD 10 - 'cid' SQL Injection

Exploit Title: MSVOD V10 ¡V SQL Injection Google Dork: inurl:"images/lists?cid=13" Date: 2018/07/17 Exploit Author: Hzllaga Vendor Homepage: http://www.msvod.cc/ Version: MSVOD V10 CVE : CVE-2018-14418 Reference : https://www.wtfsec.org/2583/msvod-v10-sql-injection/ Payload:...

9.8CVSS9.7AI score0.09076EPSS
Exploits3
Exploit DB
Exploit DB
added 2018/07/20 12:0 a.m.49 views

Touchpad / Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass

Exploit Title: Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 - Unauthorized Authentication Reset Date: 2018-07-20 Software Link: https://world.trivum-shop.de Version: 2.56 build 13381 - 12-07-2018 Category: webapps Tested on: Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6...

9.8CVSS9.7AI score0.50601EPSS
Exploits3
Exploit DB
Exploit DB
added 2018/07/20 12:0 a.m.63 views

TP-Link TL-WR840N - Denial of Service

Exploit Title:- TP-Link Wireless N Router WR840N - Buffer Overflow Date:- 2018-07-16 Vendor Homepage:- https://www.tp-link.com/ Hardware Link:- https://www.amazon.in/TP-LINK-TL-WR840N-300Mbps-Wireless-External/dp/B01A0G1J7Q Version:- TP-Link Wireless N Router WR840N Category:- Hardware Exploit...

7.5CVSS7.7AI score0.08297EPSS
Exploits3
Exploit DB
Exploit DB
added 2018/07/19 12:0 a.m.47 views

Google Chrome - Swiftshader Blitting Floating-Point Precision Errors

getInternalFormat == FORMATNULL return; ifblitReactorsource, sourceRect, dest, destRect, options return; SliceRectF sRect = sourceRect; SliceRect dRect = destRect; bool flipX = destRect.x0 destRect.x1; bool flipY = destRect.y0 destRect.y1; ifflipX swapdRect.x0, dRect.x1; swapsRect.x0, sRect.x1;...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/07/19 12:0 a.m.657 views

Linux - BPF Sign Extension Local Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linux BPF Sign Extension Local Privilege Escalation', 'Description' = %q Linux kernel prior to 4.14.8 utilizes the Berkeley Packet Filter BPF whi...

7.8CVSS7.8AI score0.30052EPSS
Exploits16
Exploit DB
Exploit DB
added 2018/07/19 12:0 a.m.35 views

Google Chrome - Swiftshader Texture Allocation Integer Overflow

There's a remotely triggerable memory corruption issue in SwiftShader that's reachable from WebGL, resulting from an integer overflow issue. In the GPU process there is validation on the sizes passed to texture creation functions to ensure that they shouldn't cause overflow. However, in the...

7.4AI score
Exploits0
Total number of security vulnerabilities47904