Lucene search
K

39001 matches found

0day.today
0day.today
added 2020/01/29 12:0 a.m.147 views

Centreon 19.10.5 - (Pollers) Remote Command Execution Exploit

Exploit for php platform in category web applications Exploit Title: Centreon 19.10.5 - 'Pollers' Remote Command Execution Exploit Author: Omri Baso, Fabien Aunay Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentOS 7.7...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/29 12:0 a.m.99 views

Centreon 19.10.5 - (centreontrapd) Remote Command Execution Exploit

Exploit for php platform in category web applications Exploit Title: Centreon 19.10.5 - 'centreontrapd' Remote Command Execution Exploit Author: Fabien AUNAY, Omri Baso Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentO...

0.1AI score
Exploits0
0day.today
0day.today
added 2020/01/29 12:0 a.m.180 views

OpenBSD OpenSMTPD Privilege Escalation / Code Execution Vulnerabilities

Qualys discovered a vulnerability in OpenSMTPD, OpenBSD's mail server. This vulnerability is exploitable since May 2018 commit a8e222352f, "switch smtpd to new grammar" and allows an attacker to execute arbitrary shell commands, as root. OpenBSD OpenSMTPD Privilege Escalation / Code Execution...

10CVSS1AI score0.98946EPSS
Exploits27
0day.today
0day.today
added 2020/01/29 12:0 a.m.163 views

Kibana 6.6.1 - CSV Injection Vulnerability

Exploit for windows platform in category web applications Exploit Title: Kibana 6.6.1 - CSV Injection Google Dork: inurl:"/app/kibana" intitle:"Kibana" Exploit Author: Aamir Rehman Vendor Homepage: https://www.elastic.co/kibana Software Link: https://www.elastic.co/downloads/ Version: v6.6.1...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/29 12:0 a.m.139 views

Centreon 19.10.5 - Remote Command Execution Exploit

Exploit for php platform in category web applications Exploit Title: Centreon 19.10.5 - Remote Command Execution Exploit Author: Fabien AUNAY, Omri BASO Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentOS 7 CVE : -...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/01/28 12:0 a.m.110 views

Centreon 19.10.5 - Database Credentials Disclosure Vulnerability

Exploit for php platform in category web applications Exploit Title: Centreon 19.10.5 - Database Credentials Disclosure Exploit Author: Fabien AUNAY, Omri Baso Vendor Homepage: https://www.centreon.com/ Software Link: https://github.com/centreon/centreon Version: 19.10.5 Tested on: CentOS 7 CVE :...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/28 12:0 a.m.132 views

macOS / iOS ImageIO - Heap Corruption when Processing Malformed TIFF Image Exploit

The attached tiff image causes a crash in ImageIO on the latest macOS and iOS. To reproduce the issue, the attached code tester.m can be used. I've attached another code snippet to reproduce the issue on iOS as well. With tester.m compiled with ASAN, processing the attached tiff image should cras...

0.4AI score
Exploits0
0day.today
0day.today
added 2020/01/28 12:0 a.m.138 views

Octeth Oempro 4.8 - (CampaignID) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Octeth Oempro 4.8 - 'CampaignID' SQL Injection Exploit Author: Bruno de Barros Bulle www.xlabs.com.br Vendor Homepage: www2.octeth.com Version: Octeth Oempro v.4.7 and v.4.8 Tested on: Oempro v.4.7 CVE : CVE-2019-19740 An...

7.5CVSS0.4AI score0.05762EPSS
Exploits5
0day.today
0day.today
added 2020/01/28 12:0 a.m.127 views

Adive Framework 2.0.8 - Cross-Site Request Forgery (Change Admin Password) Vulnerability

Exploit for php platform in category web applications Exploit Title: Adive Framework 2.0.8 - Cross-Site Request Forgery Change Admin Password Exploit Author: Sarthak Saini Vendor Link : https://www.adive.es/ Software Link: https://github.com/ferdinandmartin/adive-php7 Version: 2.0.8...

6.8CVSS0.4AI score0.03078EPSS
Exploits5
0day.today
0day.today
added 2020/01/27 12:0 a.m.286 views

Realtek SDK Information Disclosure / Code Execution Exploit

Realtek SDK based routers suffer from information disclosure, incorrect access control, insecure password storage, code execution, and incorrectly implemented CAPTCHA vulnerabilities. 1 Sensitive data disclosure and incorrect access control in several series of Realtek SDK based routers...

9.8CVSS0.1AI score0.29557EPSS
Exploits6
0day.today
0day.today
added 2020/01/27 12:0 a.m.115 views

Torrent 3GP Converter 1.51 - Stack Overflow (SEH) Exploit

Exploit Title: Torrent 3GP Converter 1.51 - Stack Overflow SEH Exploit Author: boku Software Vendor: torrentrockyou Vendor Homepage: http://www.torrentrockyou.com Software Link: http://www.torrentrockyou.com/download/tr3gpconverter.exe Version: Torrent 3GP Converter Version 1.51 Build 116 Tested...

0.1AI score
Exploits0
0day.today
0day.today
added 2020/01/24 12:0 a.m.120 views

TP-Link TP-SG105E 1.0.0 - Unauthenticated Remote Reboot Vulnerability

Exploit for hardware platform in category web applications Exploit Title: TP-Link TP-SG105E 1.0.0 - Unauthenticated Remote Reboot Exploit Author: PCEumel Vendor Homepage: https://www.tp-link.com/ Software Link: https://www.tp-link.com/us/support/download/tl-sg105e/Firmware Version: TP-Link...

0.1AI score
Exploits0
0day.today
0day.today
added 2020/01/24 12:0 a.m.136 views

Webtareas 2.0 - (id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Webtareas 2.0 - 'id' SQL Injection Exploit Author: Greg.Priest Vendor Homepage: http://webtareas.sourceforge.net/general/home.php Software Link: http://webtareas.sourceforge.net/general/home.php Version: Webtareas v2.0 Tested on...

0.3AI score
Exploits0
0day.today
0day.today
added 2020/01/24 12:0 a.m.122 views

Genexis Platinum-4410 2.1 - Authentication Bypass Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Genexis Platinum-4410 2.1 - Authentication Bypass Exploit Author: Husinul Sanub Author Contact: https://www.linkedin.com/in/husinul-sanub-658239106/ Vulnerable Product: Genexis Platinum-4410 v2.1 Home Gateway Router...

5CVSS9.2AI score0.07329EPSS
Exploits5
0day.today
0day.today
added 2020/01/24 12:0 a.m.120 views

OLK Web Store 2020 - Cross-Site Request Forgery Vulnerability

Exploit for asp platform in category web applications Exploit Title: OLK Web Store 2020 - Cross-Site Request Forgery Google Dork: intext:"TopManage ® 2002 - 2020" Exploit Author: Joel Aviad Ossi Vendor Homepage: http://www.topmanage.com/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/23 12:0 a.m.114 views

D-Link DIR-859 Unauthenticated Remote Command Execution Exploit

D-Link DIR-859 Routers are vulnerable to OS command injection via the UPnP interface. The vulnerability exists in /gena.cgi function genacgimain in /htdocs/cgibin, which is accessible without credentials. This module requires Metasploit: https://metasploit.com/download Current source:...

10CVSS1AI score0.89624EPSS
Exploits8
0day.today
0day.today
added 2020/01/23 12:0 a.m.248 views

Reliable Datagram Sockets (RDS) rds_atomic_free_op Privilege Escalation Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Reliable Datagram Sockets RDS rdsatomicfreeop NULL pointer dereference Privilege Escalation', 'Description' = %q This module attempts to gain roo...

5.5CVSS0.8AI score0.07679EPSS
Exploits7
0day.today
0day.today
added 2020/01/23 12:0 a.m.190 views

Remote Desktop Gateway - (BlueGate) Denial of Service Exploit

include "BlueGate.h" / EDB Note: - Download Binary https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47964-1.exe - Download Source https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47964-2.zip / void errorconst char msg printf"ERRO...

9.8CVSS9.6AI score0.74897EPSS
Exploits10
0day.today
0day.today
added 2020/01/23 12:0 a.m.126 views

Citrix XenMobile Server 10.8 - XML External Entity Injection Exploit

Exploit for xml platform in category web applications Exploit Title: Citrix XenMobile Server 10.8 - XML External Entity Injection Google Dork: inurl:zdm logon Exploit Author: Jonas Lejon Vendor Homepage: https://www.citrix.com Software Link: Version: XenMobile Server 10.8 before RP2 and 10.7 befo...

7.5CVSS9.7AI score0.06801EPSS
Exploits4
0day.today
0day.today
added 2020/01/23 12:0 a.m.101 views

KeePass 2.44 - Denial of Service Exploit

Exploit Title : KeePass 2.44 - Denial of Service PoC Product : KeePass Password Safe Version : Help About KeePass Help any local help area Drag&Drop HTML File Save the contents to html. Payload-1: DoS & Run Cmd //=0;i-- tryo+=x.c" + "harAti;catchereturn o;f"\"function fx,yvar i,o=\"\\\""+...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/01/23 12:0 a.m.113 views

BOOTP Turbo 2.0 - Denial of Service (SEH) Exploit

Exploit Title: BOOTP Turbo 2.0 - Denial of Service SEHPoC Exploit Author: boku Software Vendor: Wierd Solutions Vendor Homepage: https://www.weird-solutions.com Software Link: https://www.weird-solutions.com/download/products/bootptdemoIA32.exe Version: BOOTP Turbo x86 Version 2.0 Tested On:...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/01/23 12:0 a.m.157 views

qdPM 9.1 - Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: qdPM 9.1 - Remote Code Execution Google Dork: intitle:qdPM 9.1. Copyright © 2020 qdpm.net Exploit Author: Rishal Dwivedi Loginsoft Vendor Homepage: http://qdpm.net/ Software Link:...

9.1AI score0.83235EPSS
Exploits16
0day.today
0day.today
added 2020/01/23 12:0 a.m.97 views

Pachev FTP Server 1.0 - Path Traversal Exploit

Exploit Title: Pachev FTP Server 1.0 - Path Traversal Vulnerability: Path Traversal Exploit Author: 1F98D Vendor Homepage: https://github.com/pachev/pachevftp from ftplib import FTP ip = rawinput"Target IP: " port = intrawinput"Target Port: " ftp = FTP ftp.connecthost=ip, port=port...

0.3AI score
Exploits0
0day.today
0day.today
added 2020/01/23 12:0 a.m.120 views

Windows/7 - Screen Lock Shellcode (9 bytes)

Title: Windows/7 - Screen Lock Shellcode 9 bytes Author: Saswat Nayak Date: 2020-01-22 Shellcode length 9 Tested on: Win 7 SP1-64 / Assembly code follows xor eax,eax xor ebx,ebx xor ecx,ecx mov eax,0x00000002 mov ebx,0x00020000 push ebx push al mov ecx,0x77661497 call ecx / char code=...

0.5AI score
Exploits0
0day.today
0day.today
added 2020/01/22 12:0 a.m.280 views

Ricoh Printer Drivers - Local Privilege Escalation Exploit

/ This proof of concept code monitors file changes on Ricoh's driver DLL files and overwrites a DLL file before the library is loaded CVE-2019-19363. Written by Pentagrid AG, 2019. Cf. https://pentagrid.ch/en/blog/local-privilege-escalation-in-ricoh-printer-drivers-for-windows-cve-2019-19363/...

7.8CVSS0.6AI score0.04566EPSS
Exploits8
0day.today
0day.today
added 2020/01/21 12:0 a.m.163 views

ManageEngine Network Configuration Manager 12.2 - (apiKey) SQL Injection Vulnerability

Exploit for java platform in category web applications Exploit Title: ManageEngine Network Configuration Manager 12.2 - 'apiKey' SQL Injection Exploit Author: AmirHadi Yazdani Vendor Homepage: https://www.manageengine.com/network-configuration-manager/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/21 12:0 a.m.1911 views

WordPress WP Fanzone 3.1 SQL Injection Vulnerability

WordPress WP Fanzone theme version 3.1 suffers from a remote SQL injection vulnerability. Exploit Title : Built with WordPress and WP FanZone Themes 3.1 SQL Injection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Vendor Homepage : wordpress.org -...

8.5AI score
Exploits0
0day.today
0day.today
added 2020/01/21 12:0 a.m.169 views

Neowise CarbonFTP 1.4 Insecure Proprietary Password Encryption Exploit

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/NEOWISE-CARBONFTP-v1.4-INSECURE-PROPRIETARY-PASSWORD-ENCRYPTION.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.neowise.com Product CarbonFTP v1.4 CarbonFTP is a...

5.5CVSS0.3AI score0.00967EPSS
Exploits8
0day.today
0day.today
added 2020/01/20 12:0 a.m.130 views

Sysax Multi Server 5.50 - Denial of Service Exploit

Exploit Title: Sysax Multi Server 5.50 - Denial of Service PoC Exploit Author: Shailesh Kumavat Vendor Homepage: https://www.sysax.com/ Software Link: https://www.sysax.com/download.htmsysaxserv Version: Sysax Multi Server 5.50 Tested on: WIndow 7 CVE : if applicable 1 Download software install i...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/01/20 12:0 a.m.165 views

Easy XML Editor 1.7.8 - XML External Entity Injection Vulnerability

Exploit Title: Easy XML Editor 1.7.8 - XML External Entity Injection Exploit Author: Javier Olmedo Vendor: Richard Wuerflein Software Link: https://www.edit-xml.com/EasyXMLEditor.exe Affected Version: 1.7.8 and before Patched Version: unpatched Category: Local Platform: XML Tested on: Windows 10...

8.1CVSS0.05163EPSS
Exploits5
0day.today
0day.today
added 2020/01/20 12:0 a.m.166 views

Adive Framework 2.0.8 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Adive Framework 2.0.8 - Persistent Cross-Site Scripting Exploit Author: Sarthak Saini Vendor Link : https://www.adive.es/ Software Link: https://github.com/ferdinandmartin/adive-php7 Version: 2.0.8 Category: Webapps Tested on:...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/20 12:0 a.m.179 views

Centreon 19.04 - Authenticated Remote Code Execution Exploit

Exploit for php platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Centreon Authenticated Macro Expression Location Setting Handler Code Execution",...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/19 12:0 a.m.174 views

Common Desktop Environment 2.3.1 Buffer Overflow Exploit

A buffer overflow in the CheckMonitor function in the Common Desktop Environment 2.3.1 and earlier and 1.6 and earlier, as distributed with Oracle Solaris 10 1/13 Update 11 and earlier, allows local users to gain root privileges via a long palette name passed to dtsession in a malicious .Xdefault...

8.8CVSS0.6AI score0.00643EPSS
Exploits7
0day.today
0day.today
added 2020/01/17 12:0 a.m.96 views

Torrent FLV Converter 1.51 Build 117 - Stack Oveflow (SEH partial overwrite) Exploit

Exploit Title: Torrent FLV Converter 1.51 Build 117 - Stack Oveflow SEH partial overwrite Exploit Author: antonio Vendor Homepage: http://www.torrentrockyou.com/ Software Link: http://www.torrentrockyou.com/download/trflvconverter.exe Version: 1.51 Build 117 Tested on: Windows 7 SP1 32-bit Copy...

0.4AI score
Exploits0
0day.today
0day.today
added 2020/01/17 12:0 a.m.98 views

APKF Product Key Finder 2.5.8.0 - (Name) Denial of Service Exploit

Exploit Title: APKF Product Key Finder 2.5.8.0 - 'Name' Denial of Service PoC Exploit Author: Ismail Tasdelen Vendor Homepage : http://www.nsauditor.com/ Link Software : http://www.nsauditor.com/downloads/apkfsetup.exe Tested on OS: Windows 10 CVE : N/A ''' Proof of Concept PoC:...

0.2AI score
Exploits0
0day.today
0day.today
added 2020/01/17 12:0 a.m.144 views

Wordpress InfiniteWP Client Plugin 1.9.4.5 - Authentication Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass Exploit Author: Raphael Karger Vendor Homepage: https://infinitewp.com/ Version: InfiniteWP Client 1.9.4.5 !/usr/bin/python3 import requests import json import...

0.1AI score
Exploits0
0day.today
0day.today
added 2020/01/17 12:0 a.m.142 views

Trend Micro Maximum Security 2019 - Privilege Escalation Vulnerability

Exploit Title: Trend Micro Maximum Security 2019 - Privilege Escalation Exploit Author: hyp3rlinx Vendor Homepage: www.trendmicro.com Version: Platform Microsoft Windows, Premium Security 2019 v15, Maximum Security 2019 v15 Internet Security 2019 v15, Antivirus + Security 2019 v15 + Credits: John...

7.8CVSS0.5AI score0.00732EPSS
Exploits5
0day.today
0day.today
added 2020/01/17 12:0 a.m.136 views

GTalk Password Finder 2.2.1 - (Key) Denial of Service Exploit

Exploit Title: GTalk Password Finder 2.2.1 - 'Key' Denial of Service PoC Exploit Author: Ismail Tasdelen Vendor Homepage : http://www.nsauditor.com/ Link Software : http://www.nsauditor.com/downloads/gpwdfindersetup.exe Tested on OS: Windows 10 CVE : N/A ''' Proof of Concept PoC:...

0.4AI score
Exploits0
0day.today
0day.today
added 2020/01/17 12:0 a.m.124 views

Wordpress Time Capsule Plugin 1.21.16 - Authentication Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Wordpress Time Capsule Plugin 1.21.16 - Authentication Bypass Exploit Author: B. Canavate Vendor Homepage: https://wptimecapsule.com/ Software Link: https://wptimecapsule.com/ Version: Wordpress Time Capsule Plugin 1.21.16 Teste...

7.4AI score
Exploits0
0day.today
0day.today
added 2020/01/17 12:0 a.m.116 views

Plantronics Hub 3.13.2 - SpokesUpdateService Privilege Escalation Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Plantronics Hub SpokesUpdateService Privilege Escalation', 'Description' = %q The Plantronics Hub client application for Windows makes use of an...

7.8CVSS0.5AI score0.04979EPSS
Exploits5
0day.today
0day.today
added 2020/01/16 12:0 a.m.122 views

Jenkins Gitlab Hook Plugin 1.4.2 - Reflected Cross-Site Scripting Vulnerability

Exploit for java platform in category web applications Exploit Title: Jenkins Gitlab Hook Plugin 1.4.2 - Reflected Cross-Site Scripting Exploit Author: Ai Ho Vendor Homepage : https://jenkins.io/ Effective version : Gitlab Hook Plugin 1.4.2 and earlier References:...

0.1AI score0.89434EPSS
Exploits5
0day.today
0day.today
added 2020/01/16 12:0 a.m.93 views

Rukovoditel Project Management CRM 2.5.2 - (entities_id) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Rukovoditel Project Management CRM 2.5.2 - 'entitiesid' SQL Injection Blog: https://fatihhcelik.blogspot.com/ Exploit Author: Fatih Çelik Vendor Homepage: https://www.rukovoditel.net/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/16 12:0 a.m.172 views

SunOS 5.10 Generic_147148-26 - Local Privilege Escalation Exploit

Exploit: SunOS 5.10 Generic147148-26 - Local Privilege Escalation Date: 2020-01-15 Author: Marco Ivaldi Vendor: www.oracle.com Software Link: https://www.oracle.com/technetwork/server-storage/solaris10/downloads/latest-release/index.html CVE: CVE-2020-2696 / raptordtsessionipa.c - CDE dtsession L...

8.8CVSS0.3AI score0.00643EPSS
Exploits7
0day.today
0day.today
added 2020/01/16 12:0 a.m.84 views

Tautulli 2.1.9 - Denial of Service Exploit

Exploit for multiple platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Tautulli v2.1.9 - Shutdown Denial of Service', 'Description' = 'Tautulli versions 2.1....

7.1AI score0.14706EPSS
Exploits9
0day.today
0day.today
added 2020/01/16 12:0 a.m.179 views

WordPress Postie 1.9.40 Plugin - Persistent Cross-Site Scripting Exploit

Exploit for php platform in category web applications Exploit Title: WordPress Plugin Postie 1.9.40 - Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/plugins/postie/readme.txt Date: 2020-01-15 Exploit Author: V1n1v131r4 Vendor Homepage: https://postieplugin.com/ Software Link:...

3.5CVSS5.4AI score0.03376EPSS
Exploits6
0day.today
0day.today
added 2020/01/16 12:0 a.m.122 views

Online Book Store 1.0 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: Online Book Store 1.0 - Arbitrary File Upload Exploit Author: Or4nG.M4n aka S4udiExploit Vendor Homepage: https://projectworlds.in/free-projects/php-projects/online-book-store-project-in-php/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/01/16 12:0 a.m.88 views

Rukovoditel Project Management CRM 2.5.2 - (filters) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Rukovoditel Project Management CRM 2.5.2 - 'filters' SQL Injection Blog: https://fatihhcelik.blogspot.com/ Exploit Author: Fatih Çelik Vendor Homepage: https://www.rukovoditel.net/ Software Link:...

0.4AI score
Exploits0
0day.today
0day.today
added 2020/01/16 12:0 a.m.230 views

Citrix Application Delivery Controller (ADC) and Gateway 13.0 - Path Traversal Exploit

Exploit for multiple platform in category web applications Exploit Title: Citrix Application Delivery Controller ADC and Gateway 13.0 - Path Traversal CVE: CVE-2019-19781 Vulenrability: Path Traversal Vulnerablity Discovery: Mikhail Klyuchnikov Exploit Author: Dhiraj Mishra Vulnerable Version:...

7.5CVSS0.4AI score0.99999EPSS
Exploits48
0day.today
0day.today
added 2020/01/16 12:0 a.m.229 views

Microsoft Windows 10 (19H1 1901 x64) - ws2ifsl.sys Use After Free Local Privilege Escalation Exploit

/ The exploit works on 19H1. It was tested with ntoskrnl version 10.0.18362.295 EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47935.zip / include include include include include include include pragma commentlib, "ntdll.lib" // run cmd.exe...

7.8CVSS0.2AI score0.19403EPSS
Exploits2
0day.today
0day.today
added 2020/01/16 12:0 a.m.233 views

Microsoft Windows - CryptoAPI (Crypt32.dll) Elliptic Curve Cryptography (ECC) Spoof Code-Signing

EDB Note Download: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47933.zip require 'openssl' raw = File.read "ca.crt" cacert = OpenSSL::X509::Certificate.newraw Parse public key from CA cakey = cacert.publickey if !cakey.instanceof? OpenSSL::PKey::EC then puts...

8.1CVSS0.6AI score0.89436EPSS
Exploits14
Total number of security vulnerabilities39001