Lucene search
K

39001 matches found

0day.today
0day.today
added 2018/04/17 12:0 a.m.37 views

Brave Browser < 0.13.0 - long alert() argument Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title:Brave Browser...

6.5AI score0.05114EPSS
Exploits5
0day.today
0day.today
added 2018/04/17 12:0 a.m.86 views

Microsoft Windows - nt!NtQueryAttributesFile Kernel Stack Memory Disclosure Exploit

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryAttributesFile system call invoked with paths of certain kernel objects discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects Windows 7 to 10, 32/64-bit. The paths that...

6.2AI score0.0358EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.32 views

Brave Browser < 0.13.0 - window.close(self) Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title:Brave Browser Brave Window Object Remote Denial of Service. Brave Window Object Remote Denial of Service Proof of Concept Click the below link to Trigger the Vulnerability.. Brave Window Object DoS Test POC 0day.today 2018-04-17...

7.6AI score0.12888EPSS
Exploits4
0day.today
0day.today
added 2018/04/17 12:0 a.m.44 views

Cobub Razor 0.8.0 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Cobub Razor 0.8.0 SQL injection Vulnerability Exploit Author: Kyhvedni1/email [email protected]/4 Vendor Homepage: http://www.cobub.com/ Software Link: https://github.com/cobub/razor Version: 0.8.0 CVE : CVE-2018-8057 The...

7.5CVSS0.1AI score0.22979EPSS
Exploits5
0day.today
0day.today
added 2018/04/17 12:0 a.m.59 views

Microsoft Windows - nt!NtQueryInformationTransactionManager (TransactionManagerRecoveryInformation)

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryInformationTransactionManager system call invoked with the TransactionManagerRecoveryInformation 4 information class may disclose uninitialized kernel pool memory to user-mode clients. The vulnerability...

6.2AI score0.0358EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.44 views

Dell EMC ViPR Controller Information Exposure Vulnerability

Exploit for linux platform in category dos / poc DSA-2018-071: Dell EMC ViPR Controller Information Exposure Vulnerability Dell EMC Identifier: DSA-2018- 071 CVE Identifier: CVE-2018-1240 Severity: Medium Severity Rating: CVSS v3 Base Score: 5.4 AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H Affected...

0.00548EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.120 views

Microsoft Windows Kernel (Windows 7 x86) - Local Privilege Escalation (MS17-017) Exploit

Exploit for windows platform in category local exploits include include include include pragma commentlib, "psapi.lib" define POCDEBUG 0 if POCDEBUG == 1 define POCDEBUGBREAK getchar elif POCDEBUG == 2 define POCDEBUGBREAK DebugBreak else define POCDEBUGBREAK endif CONST LONG maxTimes = 2000; CON...

6.8CVSS7.7AI score0.57482EPSS
Exploits3
0day.today
0day.today
added 2018/04/17 12:0 a.m.46 views

Barco ClickShare CSE-200 Denial Of Service Vulnerability

Exploit for hardware platform in category dos / poc !/usr/bin/python Exploit Title: Barco ClickShare CSE-200 - Remote Denial of Service Date: 11-04-2018 Hardware Link: https://www.barco.com/de/product/clickshare-cse-200 Exploit Author: Florian Hauser Contact: florian DOT g DOT hauser AT gmail DOT...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/04/17 12:0 a.m.75 views

Microsoft Windows - nt!NtQueryFullAttributesFile Kernel Stack Memory Disclosure Exploit

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryFullAttributesFile system call invoked with paths of certain kernel objects discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects Windows 7 to 10, 32/64-bit. The paths...

6.2AI score0.03043EPSS
Exploits2
0day.today
0day.today
added 2018/04/17 12:0 a.m.39 views

Microsoft Edge - OpenProcess() ACG Bypass Exploit

Exploit for windows platform in category dos / poc Each Edge Content process MicrosoftEdgeCP.exe needs to call SetProcessMitigationPolicy on itself to enable ACG. The callstack when this happens is: 00 KERNELBASE!SetProcessMitigationPolicy 01 MicrosoftEdgeCP!SetProcessDynamicCodePolicy+0xc0 02...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/04/17 12:0 a.m.68 views

Microsoft Windows - nt!NtQueryVolumeInformationFile Kernel Stack Memory Disclosure Exploit

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryVolumeInformationFile system call invoked against certain kernel objects discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects Windows 10 32/64-bit; other versions were...

6.2AI score0.0358EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.69 views

Microsoft Windows - nt!NtQueryVirtualMemory (Memory(Privileged)BasicInformation) Kernel 64-bit Stack

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryVirtualMemory system call invoked with the MemoryBasicInformation 0x0 and MemoryPrivilegedBasicInformation 0x8 information classes discloses uninitialized kernel stack memory to user-mode clients. The...

6.2AI score0.0358EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.55 views

Microsoft Windows - nt!NtQuerySystemInformation (SystemPageFileInformation(Ex)) Kernel 64-bit Stack

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQuerySystemInformation system call invoked with the SystemPageFileInformation 0x12 and SystemPageFileInformationEx 0x90 information classes discloses uninitialized kernel stack memory to user-mode clients. The...

6.2AI score0.0358EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.113 views

Joomla jDownloads 3.2.58 Component Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component jDownloads 3.2.58 - Cross Site Scripting Exploit Author: Sureshbabu Narvaneni Author Blog : http://nullnews.in Vendor Homepage: http://www.jdownloads.com/ Software Link:...

6.4AI score0.04073EPSS
Exploits4
0day.today
0day.today
added 2018/04/17 12:0 a.m.146 views

Microsoft Windows - nt!NtQueryInformationProcess (ProcessImageFileName) Kernel 64-bit Pool/Stack Mem

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryInformationProcess system call invoked with the ProcessImageFileName 0x1B information class discloses uninitialized kernel memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7...

6.2AI score0.0358EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.170 views

Microsoft Windows - nt!NtQueryVirtualMemory (MemoryImageInformation) Kernel 64-bit Stack Memory Disc

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryVirtualMemory system call invoked with the MemoryImageInformation 0x6 information class discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows...

6.2AI score0.03692EPSS
Exploits1
0day.today
0day.today
added 2018/04/17 12:0 a.m.90 views

Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 Insecure Direct Object Reference Vulnerability

Exploit for jsp platform in category web applications Exploit Title: Sophos Cyberoam UTM - Privilege Escalation Date: 31/08/2016 Exploit Author: Chintan Gurjar Frogy Vendor Homepage: http://www.sophos.com/ Software Link: https://www.cyberoam.com/downloads/datasheet/CR25iNG.html Version: Cyberoam...

9CVSS0.06984EPSS
Exploits3
0day.today
0day.today
added 2018/04/17 12:0 a.m.36 views

AMD Plays.tv 1.27.5.0 - plays_service.exe Arbitrary File Execution Exploit

Exploit for windows platform in category local exploits http://support.amd.com/en-us/download?cmpid=CCCOffline - Click "Automatically Detect - Download Now" Installation Automatically Installs "Raptr, Inc Plays TV Service" OR https://plays.tv/download Target OS: Windows Any Privilege: SYSTEM Type...

9.5AI score0.18092EPSS
Exploits3
0day.today
0day.today
added 2018/04/17 12:0 a.m.169 views

Microsoft Window Manager (Windows 7 x86) - Menu Management Component UAF Privilege Elevation Exploit

Exploit for windows platform in category local exploits include include include include pragma commentlib, "psapi.lib" define POCDEBUG 0 if POCDEBUG == 1 define POCDEBUGBREAK getchar elif POCDEBUG == 2 define POCDEBUGBREAK DebugBreak else define POCDEBUGBREAK endif static PVOIDfastcall...

7.2CVSS0.2AI score0.10034EPSS
Exploits4
0day.today
0day.today
added 2018/04/17 12:0 a.m.104 views

Microsoft Windows - CiSetFileCache TOCTOU Incomplete Fix Exploit

Exploit for windows platform in category dos / poc Windows: CiSetFileCache TOCTOU CVE-2017-11830 Incomplete Fix Platform: Windows 10 1709 including Win10S Class: Security Feature Bypass Summary: The fix for CVE-2017-11830 is insufficient to prevent a normal user application adding a cached signin...

6.8AI score0.0257EPSS
Exploits8
0day.today
0day.today
added 2018/04/17 12:0 a.m.47 views

CloudMe Sync 1.11.0 Local Buffer Overflow Exploit

Exploit for windows platform in category local exploits Exploit Title: Local Buffer Overflow on CloudMe Sync v1.11.0 Date: 08.03.2018 Vendor Homepage: https://www.cloudme.com/en Software Link: https://www.cloudme.com/downloads/CloudMe1110.exe Category: Local Exploit Discovery: Prasenjit Kanti Pau...

4.6CVSS7.6AI score0.02059EPSS
Exploits5
0day.today
0day.today
added 2018/04/17 12:0 a.m.30 views

Zortam MP3 Media Studio 23.45 - Local Buffer Overflow (SEH) Exploit

Exploit for windows platform in category dos / poc !/usr/bin/python Title: Zortam Mp3 Media Studio Local Buffer Overflow SEH Author: Kevin McGuigan Twitter: @h3xagram Author Website: https://www.7elements.co.uk Vendor Website: http://www.zortam.com/ Version: 23.45 Tested on: Windows 7 32 bit Date...

0.1AI score
Exploits0
0day.today
0day.today
added 2018/04/17 12:0 a.m.122 views

Microsoft Windows Kernel (Windows 7 x86) - Local Privilege Escalation (MS16-039) Exploit

Exploit for windows platform in category local exploits include include include include pragma commentlib, "psapi.lib" define POCDEBUG 0 if POCDEBUG == 1 define POCDEBUGBREAK getchar elif POCDEBUG == 2 define POCDEBUGBREAK DebugBreak else define POCDEBUGBREAK endif static HBITMAP hBmpHunted = NUL...

7.2CVSS7.7AI score0.13841EPSS
Exploits2
0day.today
0day.today
added 2018/04/17 12:0 a.m.104 views

D-Link DIR-615 Wireless Router - Persistent Cross Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: D-Link DIR-615 Wireless Router - Persistent Cross Site Scripting XSS Exploit Author: Sayan Chatterjee Vendor Homepage: http://www.dlink.co.in Hardware Link: http://www.dlink.co.in/products/?pid=678 Category: Hardware Wi-fi...

5.2AI score0.03503EPSS
Exploits5
0day.today
0day.today
added 2018/04/17 12:0 a.m.140 views

Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 Drupalgeddon2 Remote Code Execution Exploit

Exploit for php platform in category remote exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Drupalgeddon2', 'Description' = %q CVE-2018-7600 / SA-CORE-2018-002 Drupal before 7.58, 8.x...

0.2AI score0.99993EPSS
Exploits46
0day.today
0day.today
added 2018/04/14 12:0 a.m.202 views

Microsoft Credential Security Support Provider - Remote Code Execution Vulnerability

Exploit for windows platform in category remote exploits credssp This is a poc code for exploiting CVE-2018-0886. It should be used for educational purposes only. It relies on a fork of the rdpy projecthttps://github.com/preempt/rdpy, allowing also credssp relay. Written by Eyal Karni, Preempt...

7.6CVSS0.3AI score0.82334EPSS
Exploits4
0day.today
0day.today
added 2018/04/14 12:0 a.m.64 views

GNU Beep 1.3 - HoleyBeep Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits !/usr/bin/env python3 E-DB Note https://gist.github.com/Arignir/0b9d45c56551af39969368396e27abe8/ec853f14afd6e86fb3f2efce2086e28f33039ddc E-DB Note https://sigint.sh//holeybeep This is an exploit for HoleyBeep. To use it, place any command you...

0.2AI score0.01651EPSS
Exploits3
0day.today
0day.today
added 2018/04/13 12:0 a.m.56 views

Joomla Convert Forms version 2.0.3 - Formula Injection (CSV Injection) Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla Extension Convert Forms version 2.0.3 - Formula Injection CSV Injection Google Dork: N/A Exploit Author: Jetty Sairam Software Link:...

7.7AI score0.09568EPSS
Exploits5
0day.today
0day.today
added 2018/04/13 12:0 a.m.70 views

MikroTik 6.41.4 - FTP daemon Denial of Service PoC

Exploit for linux platform in category dos / poc Title: MikroTik 6.41.4 Denial of service FTP daemon crash CVE: CVE-2018-10070 CWE: CWE-400 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Version : 6.41.4 Released 2018-Apr-05 | All Version Date: 13-05-2018...

7.6AI score0.12987EPSS
Exploits5
0day.today
0day.today
added 2018/04/13 12:0 a.m.141 views

Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 Drupalgeddon2 Remote Code Execution Exploit

Exploit for php platform in category web applications require 'net/http' Hans Topo ruby port from Drupalggedon2 exploit. Based on Vitalii Rudnykh exploit target = ARGV0 command = ARGV1 url = target + '/user/register?elementparents=account/mail/%23value&ajaxform=1&wrapperformat=drupalajax' shell =...

0.2AI score0.99993EPSS
Exploits46
0day.today
0day.today
added 2018/04/12 12:0 a.m.102 views

F5 BIG-IP 11.6 SSL Virtual Server - Ticketbleed Memory Disclosure Exploit

Exploit for hardware platform in category remote exploits -- coding: utf-8 -- !/usr/bin/python Exploit Title: Ticketbleed Google Dork: n/a Exploit Author: @0x00string Vendor Homepage: https://f5.com/ Software Link: https://support.f5.com/csp/article/K05121675 Version: see software link for versio...

5CVSS6.7AI score0.74EPSS
Exploits7
0day.today
0day.today
added 2018/04/12 12:0 a.m.23 views

IMP XForm 2.0 DatalifeEngine SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: IMP XForm v2.0 DatalifeEngine Module SQL Injection Exploit Author: Hesam Bazvand Software Link: http://www.datalifeengine.ir/download/1396/IMP.XForm.v2.0.zip Tested on: Windows 10 / Kali Linux Category: WebApps Dork :...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/04/12 12:0 a.m.25 views

SysGauge Pro 4.6.12 Local Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title : SysGauge Pro v4.6.12 - Local Buffer Overflow SEH Exploit Author : Hashim Jawad Twitter : @ihack4falafel Author Website : ihack4falafel.com Vendor Homepage : http://www.sysgauge.com/ Vulnerable Software :...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/04/11 12:0 a.m.75 views

DVD X Player Standard 5.5.3.9 - Buffer Overflow Vulnerability

Exploit for windows platform in category local exploits Exploit Title: Buffer Overflow on DVD X Player Standard 5.5.3.9 Vendor Homepage: http://www.dvd-x-player.com Software Link: http://www.dvd-x-player.com/download/DVDXPlayerSetup- Standard.exe Category: Local SEH Based Exploit Credit: Prasenji...

7.6AI score0.04878EPSS
Exploits8
0day.today
0day.today
added 2018/04/11 12:0 a.m.46 views

WordPress File Upload Plugin 4.3.3 - Stored Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Plugin WordPress File Upload 4.3.3 - Stored XSS Exploit Author: ManhNho Vendor Homepage: https://www.iptanus.com/ Software Link: https://downloads.wordpress.org/plugin/wp-file-upload.zip Version: 4.3.3 Tested on: Windo...

6.6AI score0.03844EPSS
Exploits6
0day.today
0day.today
added 2018/04/11 12:0 a.m.44 views

Wordpress Activity Log 2.4.0 Plugin - Stored Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title : Activity Log Wordpress Plugin Stored Cross Site Scripting XSS Exploit Author : Stefan Broeder Vendor Homepage: https://pojo.me Software Link: https://wordpress.org/plugins/aryo-activity-log/ Version: 2.4.0 CVE : CVE-2018-8729...

4.3CVSS0.0563EPSS
Exploits7
0day.today
0day.today
added 2018/04/11 12:0 a.m.41 views

Wordpress Relevanssi 3.5.12 / 3.6.0 SQL Injection Vulnerability

Exploit for php platform in category web applications Details ================ Software: Relevanssi Version: 3.5.12,3.6.0 Homepage: https://wordpress.org/plugins/relevanssi/ Advisory report: https://advisories.dxw.com/advisories/sqli-relevanssi/ CVE: Awaiting assignment CVSS: 8.5 High;...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/04/11 12:0 a.m.40 views

WordPress Rating-Widget: Star Review System 2.8.9 Information Disclosure Vulnerability

WordPress Rating-Widget: Star Review System plugin version 2.8.9 suffers from an information disclosure vulnerability. Details ================ Software: Rating-Widget: Star Review System Version: 2.8.9 Homepage: https://wordpress.org/plugins/rating-widget/ Advisory report:...

7AI score
Exploits0
0day.today
0day.today
added 2018/04/11 12:0 a.m.29 views

WUZHI CMS 4.1.0 - Add Admin Account Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: WUZHI CMS 4.1.0 CSRF vulnerability add admin account Exploit Author: taoge Vendor Homepage: https://github.com/wuzhicms/wuzhicms Software Link: https://github.com/wuzhicms/wuzhicms Version: 4.1.0 CVE : CVE-2018-9926 An issue was...

0.3AI score0.03094EPSS
Exploits5
0day.today
0day.today
added 2018/04/11 12:0 a.m.37 views

WUZHI CMS 4.1.0 - Add User Account Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: WUZHI CMS 4.1.0 CSRF vulnerability add user account Exploit Author: taoge Vendor Homepage: https://github.com/wuzhicms/wuzhicms Software Link: https://github.com/wuzhicms/wuzhicms Version: 4.1.0 CVE : CVE-2018-9927 An issue was...

0.3AI score0.00709EPSS
Exploits5
0day.today
0day.today
added 2018/04/11 12:0 a.m.23 views

Google Chrome V8 JIT - LoadElimination::ReduceTransitionElementsKind Type Confusion

Exploit for multiple platform in category dos / poc / I think this commit has introduced the bug: https://chromium.googlesource.com/v8/v8.git/+/9884bc5dee488bf206655f07b8a487afef4ded9b Reduction LoadElimination::ReduceTransitionElementsKindNode node ... if objectmaps.containsZoneHandleSetsourcema...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/04/11 12:0 a.m.56 views

WordPress Image Zoom 1.23 Plugin Denial Of Service Vulnerability

Exploit for php platform in category web applications Details ================ Software: WP Image Zoom Version: 1.23 Homepage: http://wordpress.org/plugins/wp-image-zoooom/ Advisory report: https://advisories.dxw.com/advisories/wp-image-zoom-dos/ CVE: Awaiting assignment CVSS: 7.5 High;...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/04/11 12:0 a.m.72 views

WordPress File Upload Plugin 4.3.2 - Stored Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Plugin WordPress File Upload 4.3.2 - Stored XSS Date: 31/03/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iptanus.com/ Software Link: https://downloads.wordpress.org/plugin/wp-file-upload.zip Version: 4.3.2...

5.5AI score0.03244EPSS
Exploits5
0day.today
0day.today
added 2018/04/11 12:0 a.m.165 views

Linux/x64 - x64 Assembly Shellcode (Generator)

!/usr/bin/env python Features: - Linux shellcode x64 assembly code generation - stack based smaller payload size - execve based - supports long commands meaning bigger than an x64 register - 64 bits - supports long parameters meaning bigger than an x64 register - 64 bits - one command only execve...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/04/10 12:0 a.m.35 views

KYOCERA Multi-Set Template Editor 3.4 - Out-Of-Band XML External Entity Injection Vulnerability

Exploit for linux platform in category web applications Vendor: KYOCERA Corporation Product https://global.kyocera.com Affected version: 3.4.0906 Summary: KYOCERA Net Admin is Kyocera's unified device management software that uses a web-based platform to give network administrators easy and...

7.1AI score
Exploits0
0day.today
0day.today
added 2018/04/10 12:0 a.m.47 views

WordPress Google Drive 2.2 Plugin - Remote Code Execution Vulnerability

Exploit for php platform in category web applications Exploit Title: Plugin Google Drive for WordPress 2.2 – RCE – Unlik Exploit Author: Lenon Leite Vendor Homepage: https://wordpress.org/plugins/wp-google-drive/ Software Link: https://wordpress.org/plugins/wp-google-drive/ Contact:...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/04/10 12:0 a.m.24 views

WooCommerce CSV-Importer-Plugin 3.3.6 - Remote Code Execution Vulnerability

Exploit for php platform in category web applications Exploit Title: Plugin Woocommerce CSV importer 3.3.6 – RCE – Unlink Date: 08/04/2018 Exploit Author: Lenon Leite Vendor Homepage: https://wordpress.org/plugins/woocommerce-csvimport/ Software Link:...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/04/10 12:0 a.m.17 views

Buddypress Xprofile Custom Fields Type 2.6.3 - Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: Plugin Buddypress Xprofile Custom Fields Type 2.6.3 RCE – Unlink Date: 08/04/2018 Exploit Author: Lenon Leite Vendor Homepage: https://wordpress.org/plugins/buddypress-xprofile-custom-fields-type/ Software Link:...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/04/10 12:0 a.m.32 views

iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting Exploit Author: ManhNho Vendor Homepage: https://www.iscripts.com Demo Page: https://www.demo.iscripts.com/sonicbb/demo/ Version: 1.0 Tested on: Windows 10 Category: Webapps...

0.2AI score0.02606EPSS
Exploits5
0day.today
0day.today
added 2018/04/10 12:0 a.m.36 views

KYOCERA Net Admin 3.4 - Cross Site Request Forgery - Add Admin Exploit

Exploit for linux platform in category web applications Vendor: KYOCERA Corporation Product https://global.kyocera.com Affected version: 3.4.0906 Summary: KYOCERA Net Admin is Kyocera's unified device management software that uses a web-based platform to give network administrators easy and...

7.1AI score
Exploits0
Total number of security vulnerabilities39001